Secunia Security Advisory - A vulnerability has been reported in EMC Retrospect Client for Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
28e6dab53768e85d8706f1ebc4430c7e0e06f65689f8df54a5002e8a12d7bb04iDefense Security Advisory 03.02.06 - The EWC Dantz Retrospect 7 backup client listens on TCP port 497 for commands from the central backup server. Sending a specially crafted malformed packet to this socket can force the backup client to terminate. This allows for an unauthenticated attacker to effectively disable the network backup services for a target network. This exploit has been tested with the Dantz Retrospect Client version 7.0.107. This is the latest available on the vendor's website.
ee09b829927318cb0d643d65ab7a8f4b0a4efc12e65ae4c5dc139bf66276e176iDefense Security Advisory 03.02.06 - Local exploitation of a design error in version 10.3.9 of Apple Computer Inc.'s Mac OS X could allow arbitrary files to be overwritten with user supplied contents. iDefense has confirmed the existence of this vulnerability in Mac OS X Version 10.3.9. In addition, the following versions been confirmed by the vendor to be vulnerable: Mac OS X Server Version 10.3.9, Mac OS X Version 10.4.5, Mac OS X Server Version 10.4.5.
e7446b72dec9077789ffe0797d1ef378c8198f6cc646387674d5f7e0a5fc95b1iDefense Security Advisory 03.02.06 - Remote exploitation of a directory traversal vulnerability in Apple Computer Inc.'s MacOS X could allow attackers to overwrite arbitrary files with user-supplied contents. iDefense has confirmed the existence of this vulnerability in MacOS X 10.4.2. Versions 10.4.5 and earlier of the 10.4.x family and versions 10.3.9 of the 10.3.x family of both Mac OS X and Mac OS X Server are vulnerable.
0e2db5deee7d5d07925f64a63585b5049025178f056c53c1ef37efb72211ef76E-Blah Platinum is susceptible to cross site scripting via the use of HTTP_REFERER.
55babc2e2971ea8c2ef0b403d2867a558f33e305e565e64a60470a45507252f1Secunia Security Advisory - Hamid Ebadi has discovered a vulnerability in PluggedOut Nexus, which can be exploited by malicious people to conduct SQL injection attacks.
de1c5b56d2ffedfd6b15020e1106aab02ed109c32c5517fe584edc2866be7dd3Secunia Security Advisory - A vulnerability with an unknown impact has been reported in SecureCRT and SecureFX.
7f5908b14df0c7758cc086b2491e31c17e9cb6dbf49687c022c277dd47780dadDirect download access of user password hashes in PHP Advanced Manager version 1.00 through 1.20 exists.
a67feb6dd1846b727f392b5ad41036cdb3fa20a1cde38238cf6dd80efae9093aSecunia Security Advisory - A vulnerability has been reported in Oreka, which can be exploited by malicious people to cause a DoS (Denial of Service).
4849bd10f1a2a4ca554ac4f0684b2b4565865718c3f7ef5a9eadd4d5731b72f5Secunia Security Advisory - Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
b538330545d6c934e87d675f1345e3d4f043c87b99472cd3f0c731397dba5238PluggedOut Nexus version 0.1 is susceptible to SQL injection attacks.
7f3f97071e828f1c8efdfa0b4ef466a5b482f62c538ced608f1d06e96d2e5818Debian Security Advisory DSA 984-1 - Derek Noonburg has fixed several potential vulnerabilities in xpdf, the Portable Document Format (PDF) suite.
2c355e3153b9fd073f6ff4985e41bc7a22d2a175e3e8e5ffae9122329f31cda9vBulletin versions 3.0.12 through 3.5.3 are susceptible to cross site scripting.
956d05d907dd327508a569da174f373a289b7d189f8a5a69f01776897b011ed0Ubuntu Security Notice USN-259-1 - A Denial of Service vulnerability was discovered in irssi. The DCC ACCEPT command handler did not sufficiently verify the remotely specified arguments. A remote attacker could exploit this to crash irssi by sending a specially crafted DCC commands.
31b2a2c0684d7af617382a76be69b167dc3fa107d58136ed3c2b639a2f7ffb86Debian Security Advisory DSA 981-1 - felinemalice discovered an integer overflow in BMV, a post script viewer for SVGAlib, that may lead to the execution of arbitrary code through specially crafted Postscript files.
2480213ab9fa0c6d8d69ed797cf10e437f546b26feeb239591d43d99730a0590Joomla! CMS version 1.0.7 is susceptible to arbitrary file creation and denial of service flaws.
073db6f50d0c746b53c27974267c645df5f328fc37b0709aabf1c26e812408eaWordPress version 2.0.1 suffers from cross site scripting, path disclosure, and directory listing flaws.
20e598ddc1065fc7f5070d73d0155d55915c09bfbec007fc414dd0e121dc361aFusionPHP version 1.0 is susceptible to cross site scripting, remote command execution, and remote file inclusion flaws. Exploitation details provided.
9af005e9bba671f0a13c9ab910bae4bcd0c30611c8eec4b05a522d2e0846b359A cross site scripting vulnerability exists in PHP-NUKE Submit-News.
833e1022a97464b878793d42a1a5aaf393dea367ce744ec145642a40cd17dba2/usr/bin/passwd local root exploit for Mac OS X.
97197ddd5e524ee50e986acb2ca1a3f44536133ef892db8bacad5ac7477cfb1cAPPLE-SA-2006-03-01 Security Update 2006-001 - A new update has been released for Mac OS X that addresses vulnerabilities in apache_mod_php, automount, COM, Directory Services, FileVault, IPSec, LibSystem, Mail, perl, rsync, Safari, LaunchServices, and Syndication.
58f31024c744aced1d8439c28d48b8fc1f81b5313812ff54beba65a2ee090d9fWoltlab Burning Board 2.x is susceptible to SQL injection and cross site scripting vulnerabilities. Exploitation details provided.
18fd6802df0d88487bdd015e0ad8c5d9e25eab7575e6e4d94412c4f5808cf937Zeppoo is a tool that attempts to detect if a rootkit is installed on your system. It also makes it possible to detect hidden tasks, modules, syscalls, some corrupted symbols and also hidden connections. Written in Python.
6091818f7426a5e029c832d85512c1f168ec3b68502639dc5bcf2d8a99281edaSMBlog version 1.2 is susceptible to a remote command execution vulnerability. Exploitation details provided.
9b245ffa84adfa1f98186156060bf8966ad5209dbe85751f60c4ba93dad99d134images versions 1.7.1 and below suffer from a remote code execution vulnerability. Exploitation details provided.
880f7ad4cb7abc5415f9549c343de09f42bdb8c3c4bd2be6b446e83275c4740d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed