iDEFENSE Security Advisory 12.16.05 - Remote exploitation of a heap overflow vulnerability in Citrix, Inc.'s Program Neighborhood allows attackers to execute arbitrary code. The vulnerability specifically exists due to insufficient handling of corrupt Application Set responses. A heap-based buffer overflow will occur when the Citrix Program Neighborhood client receives an Application Set response containing a name value over 286 bytes. iDefense has confirmed the existence of this vulnerability in Citrix Presentation Server Client 9.0. All prior versions are suspected vulnerable.
6ea44b3f6b291474d433ca5dd285c702d83bfa6fb95f3dec9f5da6d3623ea280Secunia Security Advisory - Debian has issued an update for phpbb2. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting, script insertion, and SQL injection attacks, bypass certain security restrictions, and compromise a vulnerable system.
ede4cb813e1d399d49c47d592e7c77eaf721b4a494096d133849881ab4e28b7fSecunia Security Advisory - Alex Lanstein has reported a vulnerability in Cisco CAM (Clean Access Manager), which can be exploited by malicious people to cause a DoS (Denial of Service).
06f4aae1a6406cfdf0d234f30399f5f90b7c05801d91da43f95d08f954973c6aSecunia Security Advisory - Juniper has acknowledged a vulnerability in Juniper IVE OS, which potentially can be exploited by malicious people to bypass certain security restrictions.
ff85d8d62130c29010f72ee78cc63641664f8f1009da8b452e6c0c3e875f71d8Secunia Security Advisory - Kurt Fitzner has reported a vulnerability in Network Block Device (nbd), which potentially can be exploited by malicious people to compromise a vulnerable system.
bd95e9e9e4c086fd4c3772a4a47cb9971a21732f492e23251b1ab1ee19b22818Secunia Security Advisory - r0t has reported some vulnerabilities in Community Enterprise, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
211ad11032ed69a6aef08bebb237cfcafebdcb1c33d802c1e8dd7e51e6d26e4eSecunia Security Advisory - r0t has discovered a vulnerability in phpSlash, which can be exploited by malicious people to conduct SQL injection attacks.
68ee05230b0e49c79670996b36cc41d0043d3cc1e01ba6eee51437e4040b6e5dSecunia Security Advisory - r0t has reported some vulnerabilities in Papoo, which can be exploited by malicious people to conduct SQL injection attacks.
e47d55da8a5c85c9016ee4f3aff7cca7f611a1d07ee4a47c3b1b99ce07536ddeSecunia Security Advisory - trueend5 has discovered some vulnerabilities in Beehive Forum, which can be exploited by malicious people to conduct script insertion attacks.
eda5bd23aceb259bcb846b8915715c40f9256d992671acc6518bb89dc19b7138Secunia Security Advisory - Donnie Werner has reported a weakness and a vulnerability in Dev Hound, which can be exploited by malicious users to disclose system information and conduct script insertion attacks.
24eae0499f89e7fa1931558516f581def4dba145b5f1e0b3ef7c62c349a6ae3eSecunia Security Advisory - r0t has reported two vulnerabilities in OpenEdit, which can be exploited by malicious people to conduct cross-site scripting attacks.
3e73655184fd9616dbbaba2c7840e77fef7f64fdec5978117a0aa4659de60774Secunia Security Advisory - Debian has issued an update for nbd. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
06044fbbddee643e13d2154ee1df06376e9a1ac59ac1b457b51918378e5f7ae9Secunia Security Advisory - Information Risk Management Plc. has reported a vulnerability in Portfolio NetPublish, which can be exploited by malicious people to disclose sensitive information.
63d099ecaae3ae2733741f7a72bcaa143e806f7d406db15dea4f47f5bb36da19Secunia Security Advisory - Mazin Faour and Andy Davis have reported a vulnerability in Sygate Protection Agent, which can be exploited by malicious, local users to bypass certain security restrictions.
b20005a360abf4faac238b5fcedab91fcc82612281f645023988cf4c1217f1d2Secunia Security Advisory - r0t has reported some vulnerabilities in Scoop, which can be exploited by malicious people to conduct cross-site scripting attacks.
b3410c2c2383bbea54f6f0f7669e65905766a42ca4cebf7b1696afd62542f80aSecunia Security Advisory - Two vulnerabilities have been reported in the Chatspot module for phpBB, which potentially can be exploited by malicious people to conduct spoofing and SQL injection attacks.
acaac7362606d84558d53c4d205cc8a7430cf17fd2ecd5877c704932018e21f9Secunia Security Advisory - A vulnerability has been reported in TN3270 Resource Gateway (TN3270RG), which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially to gain escalated privileges.
5083452ce4e798c266a44fd4e70cec0acc773a499d5fa0b633bd6c36923a33e5Secunia Security Advisory - r0t has reported some vulnerabilities in Redakto WCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
26085e6e7cd49afa5328ca5533cdbcd5bfbbbe4a8028f44341414bc052b7115eSecunia Security Advisory - r0t has reported a vulnerability in RAMSite R|1 CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
28310836199f19a7c9edc9e46bfe2c4a12b6722a07d810a4e41be5d7686c3d75Secunia Security Advisory - r0t has reported some vulnerabilities in ProjectApp, which can be exploited by malicious people to conduct cross-site scripting attacks.
6d5ae34654be3059709fbefd74b9c5c678f151a3db166e3b087d7ae91e993fd4Secunia Security Advisory - r0t has reported some vulnerabilities in IntranetApp, which can be exploited by malicious people to conduct cross-site scripting attacks.
10ac8a37c5836ab52b61972fe6ccb176466953a5fb9094997bd06cd24d129454Secunia Security Advisory - r0t has reported a vulnerability in SiteEnable and PortalApp, which can be exploited by malicious people to conduct cross-site scripting attacks.
c0f51984895ddc5984488a84875ff7b7259727061459ae23867d2d3d6e9625c2Secunia Security Advisory - A vulnerability has been discovered in QuickTime Alternative, which can be exploited by malicious people to cause a DoS (Denial of Service), and with an unknown impact.
fcbff79fad7c8d53595903ebfbadba9818fea4ebe2f8f1e98593284518ef2a9cSecunia Security Advisory - r0t has reported some vulnerabilities in Tangora Portal CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
14b42328fa33b8927645b7a5f1290346d962651154d3ced4ba0f63888f9e315cSecunia Security Advisory - r0t has reported a vulnerability in SyntaxCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
4aa2107e07e9223c079ed0f6892148c6a0d872c693a1a7ea3727016f49e34820
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed