Packet Storm new exploits for June, 2007.
b9db658141ad8817fcc87254542e683536444a6a5e29b100aab415c055808734
phpEventCalendar version 0.2.2 suffers from a remote SQL injection vulnerability in eventdisplay.php.
e796c3405715a01b1f0bfcde5b2104433c4b8f51a7845f60a9ce94c51d78146e
Easybe 1-2-3 Music Store suffers from a remote SQL injection vulnerability in process.php.
b88122d02cf98ea06f46f494db9d458e38b6e988052cb503b461a284d3f55583
Game Portal Manager version 1.7 from ArcadeBuilder is susceptible to a remote SQL injection vulnerability.
ea8a20cc6d7aa1a1c82bb3444a27fdef2da25541fbd4d48fccce318181e2ef11
Debian Security Advisory 1328-1 - Steve Kemp from the Debian Security Audit project discovered that unicon-imc2, a Chinese input method library, makes unsafe use of an environmental variable, which may be exploited to execute arbitrary code.
1de76c67e02089cdd4d2d3522f0048f660098f79fcd6ef7ecd90dc32e7a3f43c
Debian Security Advisory 1327-1 - Steve Kemp from the Debian Security Audit project discovered that gsambad, a GTK+ configuration tool for samba, uses temporary files in an unsafe manner which may be exploited to truncate arbitrary files from the local system.
cf0086eca53b95a49adf646a725823ccd1fde6626c070f7dfb8b517037dfa117
Debian Security Advisory 1326-1 - Steve Kemp from the Debian Security Audit project discovered that fireflier-server, an interactive firewall rule creation tool, uses temporary files in an unsafe manner which may be exploited to remove arbitrary files from the local system.
831e494aef2aae3cbbcf5377b797aeffe31c08e5e41a3071730036f38b62f641
XOOPS module xfsection version 1.01 remote file inclusion exploit.
cbf52bd2be1394e8d0ab5dcdb6036558cbc3fffa4fb03d7929715c7b80480280
WheatBlog version 1.1 suffers from remote file inclusion and SQL injection vulnerabilities.
8e54fa6392e6f75205e7892c47600d9143739b7a26aa1230252f38e05d77f445