The client in Novell GroupWise version 6.5.3 is susceptible to an integer overflow. Previous versions are also believed vulnerable.
4479e84b3e7793c8486d9d5b65049c1958e50d78ec10b6f6901bfecb11feee05lucidCMS version 1.0.11 is susceptible to a cross site scripting flaw. Exploitation details provided.
8e4f3ee107c1ac2457e5280d808f7db457b257b66a1ce1d10e54e391c9d57732Admin tools for the Rule Set Based Access Control (RSBAC) system. Includes log viewers, special patches, nss and pam related functionality, and more.
f1cd5fa854a23d707cd1968dbef85340dba8171509727e6a7cb2568efaccdf91Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
1a8d987a7b09b6397f14fbc5ddebd259faf19763fc40b829a49a26bd4461d05bThis is a quick script to redirect a wireless client to a fake a login page for a WLAN. This is much stealthier than implementing a rouge AP in conjunction with layer 1/2 attacks against the WAP. It uses tethereal to listen for IP addresses being assigned to a new wireless client via DHCP, then runs dnsa-ng to redirect DNS queries from the new client to the specified IP.
17b5108909bf86dbdef1d4982b0cebc5b7051fe0b86c0c2f0fafbd25ace69bbdRealPlayer and Helix Player remote format string exploit. This flaw makes use of the .rp and .rt file formats. Code tested on Debian 3.1 against RealPlayer 10 Gold's latest version.
6328db676f993820bc2666d3bb3ed814c0ad55dcc1af7e473c92f8ec2ae10ef6Nokia models 7610 and 3210 suffer from a denial of service flaw in the OBEX implementation.
b0c97ab211f95b643a9aa6908eb8776121e799c92c0cdadae2646cd6c154ba66Secunia Security Advisory - Mandriva has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, manipulate certain data, bypass certain security restrictions, and compromise a user's system.
6b35ecdb0318d94ac61ca03059634e0b57108d190768d1277d491c5fc9efe115Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in httpd/mod_ssl included in some products, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially bypass certain security restrictions.
b92de57f6949b2fe210a89a93252b39d26828ed198a1339c20585ea86199163fSecunia Security Advisory - Psymera has discovered some vulnerabilities in CJ Web2Mail, which can be exploited by malicious people to conduct cross-site scripting attacks.
8b9d770c8caaab4de73d0a9ce02af2b0c55e412cc2ac405496b9f0069cf54e42Secunia Security Advisory - Psymera has discovered some vulnerabilities in CJ Tag Board, which can be exploited by malicious people to conduct cross-site scripting attacks.
48ffe77c0035ba8478cddc13734b37229476c6eb0b5aba332db23b1fac64eb23Secunia Security Advisory - A vulnerability and a security issue have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
bf42be9afdbddb64b4c42da53c409d863bfd22ce618a0f329e2c5cb4a6884c89Secunia Security Advisory - Psymera has discovered a vulnerability in CJ LinkOut, which can be exploited by malicious people to conduct cross-site scripting attacks.
13ca92e9fb35ebfb4a47a548af3b417704a310052f1948fc5e0456b4ca3bc4efWhitepaper that goes into deep detail describing kmalloc related kernel vulnerabilities and how to properly exploit them. Sample exploit provided.
aa18ea1dd27e815c37adf09949ea9330b6e83066adc40df68d73922c9b7a7c7dSecunia Security Advisory - rgod has discovered some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, disclose system and sensitive information, and compromise a vulnerable system.
a252003545360d6e5859ca4abbb5acac59aa8f9f3248a3dd298de3424e40a876Secunia Security Advisory - kcope has discovered a vulnerability in wzdftpd, which can be exploited by malicious users to compromise a vulnerable system.
d5305cba1c8c64f6cffd1c24c5e6b66a31b515d76065e164ca43cd52ac3fed07Secunia Security Advisory - rgod has reported a vulnerability in Mailgust, which can be exploited by malicious people to conduct SQL injection attacks.
667ce946fa5c6939e2cef5262b069dcf4d1a13898725789237356d815f32a57eSecunia Security Advisory - Kurdish Hackers Clan has reported a vulnerability in AlstraSoft E-Friends, which can be exploited by malicious people to compromise a vulnerable system.
ad07d8e6b6aa60ccaf9d4cbcba930ecca2dccde32d5ab1bf414cd38594b002d3Secunia Security Advisory - krasza has discovered a vulnerability in jPortal, which can be exploited by malicious people to conduct SQL injection attacks.
d97e3a30e38e1cf2be963d659549f38bb499937dc24de871e92c242334c04079Secunia Security Advisory - foster RST/GHC has reported a vulnerability in SEO-Board, which can be exploited by malicious people to conduct SQL injection attacks.
0ef1099ac83eb17d7b522dd5d007c7af821abb8f2c767eb8f83ef1c8b08c74b0Secunia Security Advisory - c0ntex has discovered a vulnerability in Helix Player, which potentially can be exploited by malicious people to compromise a user's system.
360949784c7d465422e69f8d9398b6262d710abe728a7f63b3bec06dd63552bfSecunia Security Advisory - A vulnerability has been reported in Solaris, which can be exploited by malicious, local users to gain escalated privileges.
c2d0ff224602f02254bce08595da1c763ca1366b84f16be2a25d5eecfad3b7afSecunia Security Advisory - Gentoo has issued an update for qt. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system.
7bf2165ae16a05840c808a8b6d6053de9119c3b36bf515c5b16b104b65830221Secunia Security Advisory - varunuppal has discovered a vulnerability in FL Studio, which potentially can be exploited by malicious people to compromise a user's system.
e2564a331365b98aa20681f64318a4feead60253400d1063bc251fba2383c117Secunia Security Advisory - Slackware has issued an update for x11. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges.
ec33b4f8db046a58ceaae7085de70fa0b0054b3133b285c3d9d71e4674b1c8c9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed