Secunia Security Advisory - HP-UX has issued an update for BIND 8. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
3cc1b43838f4726282336b60035db223b74810457f5512a477bfc79a14968a9bSamhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
ee978f76810c87f045093c5dc1364e8a97bfd872c6732f4a75b95d71184bdf21NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
d9ae1482ebef83590d7f149b97d1d69d3010c6565a52b7ae99193ac050d3c678Debian Security Advisory 1416-1 - It was discovered that Tk, a cross-platform graphical toolkit for Tcl performs insufficient input validation in the code used to load GIF images, which may lead to the execution of arbitrary code.
0c4d6292b13a01501302bcef3d53bd3d3f5c806f08a08eda4a7d8d67b8e70dc4Debian Security Advisory 1415-1 - It was discovered that Tk, a cross-platform graphical toolkit for Tcl performs insufficient input validation in the code used to load GIF images, which may lead to the execution of arbitrary code.
e3452025ce5f7fa647d6cdb89768db6ea9d091c8d44c9071f9aca03d87ec703cSecunia Security Advisory - Fedora has issued an update for tetex. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose and manipulate sensitive information and by malicious people to potentially compromise a vulnerable system.
fb9aba96376f64b7c8df54bb396b75581dfecae37190fa7074be37001ded67bdSecunia Security Advisory - Gentoo has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
5ad5c5775b3af846c9e865ca2ec1681a899fe01136e8b3760c197ce1f35835eap.mapper version 3.2.0 suffers from a remote file inclusion vulnerability.
a74a7edf3ff0355f846c09e4ed08f06ea90e970c93c28091d947bb3e47b41811Liferay Enterprise Portal version 4.3.1 suffers from cross site scripting vulnerabilities.
986158a74be87e3ba5f50ed3a1b3c2e834d1089cb1e5ba2389926537b234b0b8PHPkit version 1.6.1 suffers from a remote file inclusion vulnerability.
673400a894bf744378440e29d2c810971d88724b774f606c4b331a80034588b7Core Security Technologies Advisory - Lotus Notes suffers from a buffer overflow vulnerability in the Lotus WorkSheet file processor.
def9e3f9e9a61d8f256c986eaf93946e126019f6138919a51a98b739d7e78cb8Apple QuickTime RTSP response Content-type remote stack rewrite exploit for Internet Explorer 6/7.
75effbe555ebb351d97e13ff00995fd0384358d3d075db5ed1c1f8243cc48cf2BitDefender Online Scanner 8 ActiveX heap overflow exploit that makes use of OScan8.ocx and OScan81.ocx.
52a89951da1b8dce895efdff343cadc997c9adc65847c7240880f462c7d3a10cwpQuiz version 2.7 suffers from multiple remote SQL injection vulnerabilities.
87f2006a205be4968f46e94562b9ef9473168736e200e163e036b59d3ec55692Project Alumni version 1.0.9 suffers from a remote file disclosure vulnerability.
4ee50a5fa4c645d2e4a04e376723b53460b3aa67f030261ddcb53559cc9fbacaEurologon CMS suffers from multiple SQL injection vulnerabilities.
e528c3edb3c19020b333555943d33561222cf6cf5c9137f14a624799fcf1b784Eurologon CMS suffers from an arbitrary file download vulnerability via a directory traversal vulnerability.
1082e152950d4bf592a4dcec3045673137fdbb72e2b3abb4e55d368abee37c60RubyGnome2 version 0.16.0 suffers from a format string vulnerability in Gtk::MessageDialog.
1290188e9212d6f8f2bd961b93d864b9d925869a692ea15810137305c0a037f8This short technical briefing describes a technique using Tcl to create a backdoor within IOS that would allow a remote attacker to execute privileged commands on a networking device.
e9a229bcf26b8163b934b676f8f37dbddfc8bbc6aca0bc911d5d89e8d262262ePHPSlideShow version 0.9.9.2 suffers from a cross site scripting vulnerability in phpslideshow.php.
23d2071a41c0225dd44f1d2703b9c97d701adba2633e5030108ef09a46f27f06Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct cross-site request forgery attacks and potentially to compromise a user's system.
d5af7aab3ebd9859382b8b19149a0d471384cdc8156693ebc50558e2c7a4d64fSecunia Security Advisory - Ubuntu has issued an update for pcre. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, or potentially compromise an application using the library.
471e2fc55302a7db6a4de7964741097555023dddc87bff9614c6dc46004b4b86Secunia Security Advisory - Blue Coat has acknowledged a weakness in multiple Blue Coat products, which can be exploited by malicious, local users to disclose sensitive information.
5e9fe774663aa8a3c07409454f2498cef5ea2b22b044693c5955b962c6d20700Secunia Security Advisory - A security issue has been reported in Ruby on Rails, which can potentially be exploited by malicious people to conduct session fixation attacks.
44b0d1bb342d1c1819d7c9dce745c0202261380c93421f6aee77493e0c60866eSecunia Security Advisory - Ubuntu has issued an update for link-grammar. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
f9ffe081daf0b56c55ae87e5dc39bcff0d56a957e82982517abdf41dc0ce71e7
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed