Secunia Security Advisory - bolivar has reported a vulnerability in Basic Forum, which can be exploited by malicious people to conduct SQL injection attacks.
fcd7da2d00375d71e550f0ebbcb17cadb0061af1351c5a2babc051f3201c9359
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions, expose sensitive information, and manipulate data.
395dca194f8e14bbe83479a5b94c0a5dfd91198737956f23b8efd191a73793b9
Active PHP Bookmarks version 1.1.02 suffers from a remote file inclusion flaw in apb.php.
562d5f36a0c1bd8997400a8490dc46e6ab7b2cebdb0163d553a3a8be4304e364
Whitepaper entitled Cracking String Encrypting in Java Obfuscated Bytecode.
b3a054932b76ff48af0039a46178eecf584bc4eb5e4ead1c864b310c0394d2cb
Woltlab Burning Board Lite version 1.0.2 Zend_Hash_Del_Key_Or_Index / blind SQL injection exploit.
e295471bd99cd36e304cd10cd62404b9cf790413f6c6c2cb855454e1081f5dae
mmgallery suffers from a cross site scripting flaw.
9071003c6c8c1532702c2c247b28c4daeac7626488b311cb717aa5891fb9d8e1
Simple PHP Gallery version 1.1 suffers from a cross site scripting flaw.
88944544a16e9dac6f26da14d3579629367896361d5b17fc7edc2343e17c0520
Gentoo Linux Security Advisory GLSA 200611-20 - GNU gv does not properly boundary check user-supplied data before copying it into process buffers. Versions less than 3.6.2-r1 are affected.
cba70d2adfa77dcfee4ffb28520f3196f74302f716f95d1c81f203f31885df44
Gentoo Linux Security Advisory GLSA 200611-19 - M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage() function of coders/dcm.c, causing the improper handling of DCM images. Pihlaja also reported that there are several boundary errors in the ReadPALMImage() function of coders/palm.c, similarly causing the improper handling of PALM images. Versions less than 6.3.0.5 are affected.
eb03626dd75b41e22a1dd7f7a4714a958ea8b46bf360b20cc7dd3bc65b5c01c3
Gentoo Linux Security Advisory GLSA 200611-18 - Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflow. Versions less than 1.8.2 are affected.
54a3d42518a6830f76d715e26380c993a23bf54dd68182b9f2c763505bd6af74
Utility that sniffs HTTP Basic Authentication information and prints the base64 decoded form.
d1f498ffeccaf405d1c5eee02b9059c9c967af99640fa813e9ef92cb76640102
The Seventh National Computer and Information Security Conference ACIS 2006 (NCIS 2006) invites all researchers and practitioners to submit research papers in security topics.
09c5aa8aba24e5120087a319fd1f2bb90073b2247fc71df14537ec118f6c09f4
The Google Crawler could be leveraged as an anonymizer for launching remote file inclusion attacks.
1d9ac034caee1ce402b242faeef52d03b033b705d33d2a8ceee4d07f61800070
NVIDIA nView suffers from a local denial of service condition in keystone.exe.
7d22bcb7b9a88dbe9a3472b1ef5dd826c7ed3ca88845ae22ac72ae2da4defc87
Mandriva Linux Security Advisory MDKSA-2006-218-1 - An off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote attackers to cause a denial of service (crash) via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array.
0c1995f891f62c93e82e5908e9f4bed81d74128b3655271258f0fd6d3aae1a46
Gentoo Linux Security Advisory GLSA 200611-17 - Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that fvwm-menu-directory does not sufficiently sanitise directory names prior to generating menus. Versions less than 2.5.18-r1 are affected.
a29fbbf065020f67e0cb941dece13bd9270433aa7c319d93804e113250a8c44c
a-ConMan versions 3.2beta and below suffer from a remote file inclusion vulnerability.
f2f33d994fb8037fec0cf26a435839baad586e6b8bc79ad45b8903cf389f4922
InverseFlow Help Desk version 2.31 is susceptible to multiple cross site scripting flaws.
c08a060f103f26ab6d295cf63923f15878ff996977a02b623f4ee05bbd07eb90
Call for papers for the 3rd edition of the best Polish IT security conference, CONFIDENCE 2007, which is taking place on May 12 and May 13, 2007.
c50cc19809dd09df77eec2315f1b8f91c5e09015007d5559a93fe2cc50f5f35b
Secunia Research has discovered a security issue in PassGo SSO Plus version 2.1.0.32, which can be exploited by malicious, local users to gain escalated privileges.
55aae3eff1047ad72eec9e6d3d4305f55fa93d17b367dcf51e780830d77ce244
Mozilla has made public bug #360493 that discusses a flaw where Firefox's Password manager is exposed to public sites.
2d4ce343138dc4c7ae6a7ab1eb1432e4851b920bda267470684e6bd3bdd8a75b
HTTP proxy checking utility.
eec08c60dfe292551451ec91226d1e4a99c355b1e7cef9e6bfac347439032c2f
Google Site Indexer (GSI) is a program designed to create a directory listing when a site has turned directory listing off. It sends requests to google using the site operator. Also it gets the sites robots.txt file.
ff1c4129776bb482f9d57c28d911fdf7853b9b621596cdea8bd543ec3b16845d
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
01e21432ec5a60a3965ce3e3ebf9cdb4125c9dd5d218da22688857a6357e2a94
The mod_securid Apache module implements RSA SecurID authentication for the Apache Web server. It allows administrators to restrict access to Web sites (or parts of Web sites) to users authenticated using a SecurID token and an ACE server.
87c2643540d71c6fdf5c119067c34b61e9d37872340eca467bdb8ec2afb42713