Gentoo Linux Security Advisory GLSA 200507-20 - Shorewall fails to enforce security policies if configured with MACLIST_DISPOSITION set to ACCEPT or MACLIST_TTL set to a value greater or equal to 0. Versions less than 2.4.1 are affected.
5930fb17d6edac40cce43bc49a52e399682c0e8bba9558adba8ecfbfa03e7e8bGentoo Linux Security Advisory GLSA 200507-19 - zlib improperly handles invalid data streams which could lead to a buffer overflow. Versions less than 1.2.3 are affected.
25ea1b4cb4f2d4797e3138a8a5262c717106a109bf83ff703afb7458c8e7d92cHardened-PHP Project Security Advisory - Cross site scripting, password hash disclosure, SQL injection, and information disclosure vulnerabilities exist in Contrexx versions below 1.0.5.
985524575ae9eb12bcd0909c15c66b452b539eef3a58d55153bc284f126f0949Mozilla's xpcom is susceptible to a race condition that allows for the browser to be crashed.
53ef1e43dc15cf4c19e8f436c57f833c8bc5a26616db3f21c1362c8117f1a4c8netquery 3.1 allows for remote command execution, cross site scripting, and information disclosure attacks. Detailed exploitation provided.
8b7e5a03a311f1c2c6e28b6ab732cfa98658760038812a4ed3611802cea3f80eUbuntu Security Notice USN-152-1 - Andrea Barisani discovered a flaw in the SSL handling of pam-ldap and libnss-ldap. When a client connected to a slave LDAP server using SSL, the slave server did not use SSL as well when contacting the LDAP master server. This caused passwords and other confident information to be transmitted unencrypted between the slave and the master.
7cd4899c62267a74e9a03bb6d99544b1b9e4c73212466fcde94777b63ec4abaaSlimFTPd version 3.16 allows for arbitrary code execution due to an unchecked string concatenation that allows for a classic stack overflow.
248142956dd1f27265ceec445dcd2c473686f9c9aab7558319b56e8cc7a709e0Debian Security Advisory DSA 764-1 - Several vulnerabilities have been discovered in cacti, a round-robin database (RRD) tool that helps create graphs from database information.
69dc092cd7e61847c23942c14250fbfb01a831aa4311d412d5f135cf98ff1aa4KDE Security Advisory: Kopete contains a copy of libgadu that is used if no compatible version is installed in the system. Several input validation errors have been reported in libgadu that can lead to integer overflows and remote DoS or arbitrary code execution. All versions of Kopete as included in KDE 3.3.x up to including 3.4.1 are affected. KDE 3.2.x and older are not affected.
027346c8598e574fe798a52a6591511bfa26e78e5c41c50df090371a163a0bdeSecunia Security Advisory - Secunia Research has discovered two vulnerabilities in avast!, which can be exploited by malicious people to compromise a vulnerable system.
af2d59c94b24ce0f968cde92e48f4635efd474dbb4f4ab8e034415b495418f24Secunia Security Advisory - Markus Oberhumer has reported a vulnerability in zlib, which can be exploited by malicious people to cause a DoS (Denial of Service) against a vulnerable application.
66240b976b80e861b21ad42e07954409922f836e362c88709cbf3b28ed09b644Secunia Security Advisory - Two vulnerabilities have been reported in DNRD, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
8ef93c2a15e01d00a37b922782d5d156616568fadda1c14ec79f128cd4eb275bSecunia Security Advisory - r_i_t_b_15 has reported a vulnerability in dxxo Count, which can be exploited by malicious people to conduct SQL injection attacks.
0700fab7240a6fd117bca1b530af6f194345f89b3c1d6a66af58b4036f8b4da7Secunia Security Advisory - rgod has discovered some vulnerabilities in Ultimate PHP Board, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
ceff21002e1194c68dbbee8a5b9b93669c41c93fed536d6fb2b7d74bb7e2589fSecunia Security Advisory - Lostmon has reported a vulnerability in CMSimple, which can be exploited by malicious people to conduct cross-site scripting attacks.
cad3dc77c89dacc9e5e5d4181c00a0a260077ae1b09b431c5e870f26e65c061fSecunia Security Advisory - RST/GHC has discovered a vulnerability in PHPNews, which can be exploited by malicious people to conduct SQL injection attacks.
346cc53a57c9c85616ed689426cba660b8ea19b50fa6c77072e227a8c62df02eSecunia Security Advisory - Some vulnerabilities have been reported in phpBB. Some have unknown impacts, and another can be exploited by malicious people to conduct script insertion attacks.
4a55a5d8ef478bd95e5dc2ec9526601c6ee373db7e124fe39ad0752f7b19cf9fSecunia Security Advisory - rgod has discovered a vulnerability in PHPSiteSearch, which can be exploited by malicious people to conduct cross-site scripting attacks.
e3b7c05ec09024f69ffea3acd2a17413f95f1c4a58bf8ebaf3cc3ed6e73cfd55Secunia Security Advisory - F5 Networks has acknowledged multiple vulnerabilities in BIG-IP and 3-DNS, which can be exploited by malicious people to gain knowledge of various information, unpack files to arbitrary directories, or cause a DoS (Denial of Service).
63c7e08317e4578f57cf85947399b2e75d9630062c3ecd89954a913d0eb9beeeSecunia Security Advisory - Ubuntu has issued updates for libnss-ldap, libpam-ldap and slapd. These fix a security issue, which can be exploit by malicious people to gain knowledge of sensitive information.
9c5672eb631c49644774340917e50749a9fc763247e2a91a5c3244dceacce7fd
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed