RW::Download version 2.0.3 lite suffers from a remote SQL injection vulnerability in index.php.
918e4f0238ade0cac70aaa0a1df292b7be74bf883de15b21be5e4e641dab0e7cWebace-Linkscript version 1.3 SE suffers from a remote SQL injection vulnerability in start.php.
c9757e44d3ab3ea8df866970cd82661abe7a70966b0d74228b41f6a7d006858fEDraw Office Views component version 5.2 ActiveX remote buffer overflow proof of concept exploit.
ed72f620718d7839f98aaa923396b1a9f51f380a73147bb28e527a27a19da795Secunia Security Advisory - Some vulnerabilities have been reported in Sophos Anti-Virus, which can be exploited by malware to bypass the scanning functionality.
43af2b0acb7ba7a016acdc59362b9ece1b134fd0b9c8853ddf9dbb146c6d97cfSecunia Security Advisory - rPath has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
076e55e358174e7a6f30a4a4b9ca146a7ad51f7140e7010a7a3c89de5d356a56Secunia Security Advisory - Mandriva has issued an update for mysql. This fixes a vulnerability and a security issue, which can be exploited by malicious users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service).
a84731daa202fd38e3fd45f59e30eb66d71f504e12476627793d79c09d310982Secunia Security Advisory - A vulnerability has been reported in Sophos Anti-Virus, which can be exploited by malicious people to conduct script insertion attacks.
af3c539a9ff35936cc7ba0af130c5111d516bd38ee23745d59a33af3aee2b91bSecunia Security Advisory - Mandriva has issued an update for konqueror. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks.
6f2852152dd0ec9df704582083c6584d885fe7bbf9df769c59b8ac898aaf79beSecunia Security Advisory - IBM has acknowledged a vulnerability in IBM HTTP Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
684c10ed8982db787c4f37cc3ceed33fe9346b440303b9bc6f0abec54ca1bac4Secunia Security Advisory - Mandriva has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
040c0db8f1062d10b8d4102673963d3c4b32ef9a4b2025005ebdb682ef5ce127Secunia Security Advisory - Mandriva has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
61263f08d1526561d133349829e30b1f7919be5ede1b1f3b50a82204fc32e28bSecunia Security Advisory - Will Dormann has reported some vulnerabilities in ER Mapper ECW JPEG 2000 Plug-ins, which can be exploited by malicious people to compromise a user's system.
94cc4d703d5d9510e4adb4a6d019ed9e451d64379618ec4010ce6388efb2d4e3Secunia Security Advisory - Avaya has acknowledged a security issue in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
14c0927ebef4151f28bde012fb45dcb721d96945e1ac599c67610065c2027b43Secunia Security Advisory - Gynvael Coldwind has reported a vulnerability in Total Commander, which can be exploited by malicious people to compromise a user's system.
ccd56d9c6122862540af7187a099f082de197bfe76ca090bc0e16659042b1455Secunia Security Advisory - Gynvael Coldwind has discovered a vulnerability in Magellan Explorer, which can be exploited by malicious people to compromise a user's system.
4c30d9fe4ed9e6cc6dc36316056001d2dac76486a5b20ce28b4700d7a1f2f327Secunia Security Advisory - Gynvael Coldwind has reported a vulnerability in Unreal Commander, which can be exploited by malicious people to compromise a user's system.
5b770ec91f71c7d448cb7f475d302bb3382f7dbcf52ece9b7584fd2397bc16d0Mandriva Linux Security Advisory - A vulnerability was found in MySQL's authentication protocol, making it possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash. Another flaw was discovered in MySQL that allowed remote authenticated users to gain update privileges for a table in another database via a view that refers to the external table.
09b9c908d64f50f5d69fedf2b8dfc4291c9881602901e6d1d546088539256cb3Mandriva Linux Security Advisory - konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed. KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property. Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.
f329935d43d24659138801a2a44db1304c358eea6b45350507c7850565ddaeecMandriva Linux Security Advisory - A stack-based buffer overflow in mod/server.mod/servrmsg.c in Eggdrop 1.6.18, and possibly earlier, allows user-assisted, malicious remote IRC servers to execute arbitrary code via a long private message.
2eb69836ef74fda2d2fc20390eb5f8234cac4258051d390149161224b4089699Mandriva Linux Security Advisory - A stack buffer overflow vulnerability was discovered in the RPC library used by Kerberos' kadmind program by Tenable Network Security. A remote unauthenticated user who could access kadmind would be able to trigger the flaw and cause it to crash. This issue is only applicable to Kerberos 1.4 and higher. Garrett Wollman found an uninitialized pointer vulnerability in kadmind which a remote unauthenticated attacker able to access kadmind could exploit to cause kadmind to crash. This issue is only applicable to Kerberos 1.5 and higher.
7839c4448b99e57a7f492e378a6ad5baca1dad3f52b9ef03b4aab569950e4949Debian Security Advisory 1369-1 - Sumit I. Siddharth discovered that Gforge, a collaborative development tool performs insufficient input sanitizing, which allows SQL injection.
f410184816943f0489d02b84bb38dddd3d7a625aa90da5934d70b2aa64159a01Debian Security Advisory 1367-2 - It was discovered that a buffer overflow of the RPC library of the MIT Kerberos reference implementation allows the execution of arbitrary code. The original patch from DSA-1367-1 didn't address the problem fully.
02889d46694d4dd63e73b1eed3d5fd7953777711b963bc78658c5cf8d4d2a7c2iTunes version 7.3.x suffers from a heap overflow vulnerability in the album cover parsing functionality. This has been fixed in version 7.4.
28b4a0b4a1f784dab5f1f222467ff29b633f6ffdf4df0e5380890bb5487820beMagellan Explorer version 3.32 build 305 suffers from a remote directory traversal vulnerability. Proof of concept code included.
e310a478305527fa2aa12b4bb1abf80a9eb24ad2d2f92d8240de3aa598e25bc6X-Diesel Unreal Commander version 0.92 suffers from a remote directory traversal vulnerability. Proof of concept code included.
5870174e59874a1e138c04a3fec453157f93e9da0d787391dcc503796e5d699d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed