Ubuntu Security Notice 531-2 - USN-531-1 fixed vulnerabilities in dhcp. The fixes were incomplete, and only reduced the scope of the vulnerability, without fully solving it. This update fixes the problem. Nahuel Riva and Gerardo Richarte discovered that the DHCP server did not correctly handle certain client options. A remote attacker could send malicious DHCP replies to the server and execute arbitrary code.
33bfc0c910c429cdbcde3d23d7599946f8924232f4521a459b925357814e997dMultiple buffer overflow vulnerabilities exist in Miranda IM, a popular open source instant messaging client. Versions 0.6.8 and 0.7.0 are vulnerable.
bcc23b2b842f75348ba44544a081549ace83baa1db1d2016e85ff4a230a1f0f6Secunia Security Advisory - Multiple vulnerabilities have been reported in IBM Lotus Notes, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information and by malicious people to bypass certain security mechanisms or compromise a user's system.
5f209b72bb2bde5f85bdfd1abc6425fc196327838c3aa5b781acaf2a3277d866Secunia Security Advisory - shinnai has discovered a vulnerability in PHP, which can be exploited by malicious, local users to bypass certain access restrictions.
07b4b57ac5b3e3cfc0180ad03afc5e69026a53ba3de9100f1d419f3195598f9dSecunia Security Advisory - A vulnerability has been reported in Macrovision SafeDisc, which can be exploited by malicious, local users to gain escalated privileges.
67b1adc7b4f06bb55324eb7abb16823a78f65afbe3abb0caf7bf7549c3179612Secunia Security Advisory - BorN To K!LL has discovered a vulnerability in InstaGuide Weather Free, which can be exploited by malicious people to disclose sensitive information.
aebcf572e038e10e7c21b316c6de4e5c2c66e8420c69eccd077b82a8684b67c8Secunia Security Advisory - Tan Chew Keong has reported a vulnerability in IBM Lotus Notes, which potentially can be exploited by malicious people to compromise a user's system.
206fdf3300633cfe7ad34db81175d41f56806612531bef371e75d118592fef3bSecunia Security Advisory - Gentoo has issued an update for star. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
7e7580adb8caccef6984ccfeb1c686e59d78342c112268ab9b6d9f93e26c07bfSecunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
8765c2bf74133c7421ca1a86261ba65317ff07dd3d049802b22586316f427083Secunia Security Advisory - Ubuntu has issued an update for dhcp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
42130d45b5bb49ea0ad49768290271f6b23d8fb9db864e8f763b4b4b09a8bc04Secunia Security Advisory - Red Hat has issued an update for flac. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
17bcfc7b4b2ee5ec1e633c8bc8d69cd904cc2901df0acf82dc661f2d59f942edSecunia Security Advisory - Some vulnerabilities have been reported in DeleGate, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
fb3ded865277591bc1f1e05c30a919f00c5b2d23237ae815111090870d765aceSecunia Security Advisory - Ubuntu has issued an update for OpenSSL. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
ec85a00839bf682f0aa42653023bf72df2eb9d28d830a301134967cb6757ed01Secunia Security Advisory - SkyOut has reported a vulnerability in WebIf, which can be exploited by malicious people to conduct cross-site scripting attacks.
5ce878dbd6908d51209251674609148bddd45d41a8ff631dbb605ffd65f0bc8fDebian Security Advisory 1393-1 - It was discovered that xfce-terminal, a terminal emulator for the xfce environment, did not correctly escape arguments passed to the processes spawned by "Open Link". This allowed malicious links to execute arbitrary commands upon the local system.
31be8cc034e77cdfc8024b7182247c9b9c32d51c2d7e9a0014476144661a646eDebian Security Advisory 1373-2 - It was discovered that ktorrent, a BitTorrent client for KDE, was vulnerable to a directory traversal bug which potentially allowed remote users to overwrite arbitrary files. This updated advisory correctly increases the version number of the fixed package such that it is installable upon the etch release of Debian.
b890c45ffa798379b6863690886a4152c13c2a309ce80b97c902b3f6e092d5c2Mandriva Linux Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.8.
2135e6c07c0d7978822688d56feada1ec50ecedb20b2a667e7732def2eeac94dKorean GHBoard suffers from arbitrary upload/download vulnerabilities.
143511d1607a676dfff68db0774fe89fcd9f929fb31244f1a6bd04f5fa7e8cb9eFileMan 7.x suffers from arbitrary file upload and direct configuration file access vulnerabilities.
4b3ef141a7745c449b88d5d6b8f2eef50d39f62a972dcbbef1c85fbe3e966269eLuisa's Download Script suffers from an arbitrary file download vulnerability.
5a8ef2903e52bad8de8a944878ec570fbad24b87e2b8341a637935e75cd6b776The phpBasic Music Module suffers from SQL injection and remote file inclusion vulnerabilities.
2ff80468a8ac54ef4313711d48841b289ffa6572aec9338e32bfdee7bc3655e8Oracle 10g CTX_DOC.MARKUP SQL injection exploit that grants DBA to an unprivileged user.
8b28ae199d3891631fefbbe4f1a2e1cfe2a8f93405095f67c5eb9a9e8dc9192dPHP Image version 1.2 suffers from multiple remote file inclusion vulnerabilities.
70b29344502c6f0f36c5ad1a28a6eed796609ef441f7327be4b743467b20e0b1PHP-Nuke Platinum version 7.6.b.5 suffers from a remote file inclusion vulnerability.
321c18dd076e5a8a3be953649399822329cc60545e23f918b94f468802e470e3Flatnuke 3 suffers from remote command execution and privilege escalation vulnerabilities.
bbb6429d807b0fccf730624aa6a06a0930460c0c0ba1df3233fb927601091476
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed