Secunia Security Advisory - A security issue has been reported in the Linux Kernel, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service).
596560330102d1cf204cf11fa24368cde517c0ef7d98ea5145702b4053ff51d9Secunia Security Advisory - Elazar Broad has discovered a vulnerability in Aurigma Image Uploader, which can be exploited by malicious people to compromise a user's system.
d274d51aa9c0aa28a3e614ffc0a50cb7c5cd68c74c69072ace08acdbd1d89798Secunia Security Advisory - Ubuntu has issued an update for pulseaudio. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
ff3b99108741e0e5b7dc5b42319ed3c31bd2a24a4b9a9166e176cf57ef5357e3Secunia Security Advisory - Tomasz Kuczynski has reported some vulnerabilities in Liferay Portal, which can be exploited by malicious people to conduct cross-site request forgery and phishing attacks, and by malicious users to conduct script insertion attacks.
b9dbaa67af40e6174d8268839047d162ad1640cfbdee5bd895918c2868607792wtmpClean is a tool for Unix which clears a given user from the wtmp database.
234a8b9af70ef0006f0f5477e9410170516475daccf33211750a951091da4230LightBlog version 9.5 suffers from a remote file upload vulnerability.
9d290fc5671ba5010bb3b57294afd72899f920b52a472e8c226106ec937b96f5Archimede Net 2000 suffers from a SQL injection vulnerability in E-Guest_show.php.
9ea91a12405a6215da39b10142c8d2ef0b4bdad551640c3675b60b55a493553aThe Joomla com_neoreferences component version 1.3.1 suffers from a remote SQL injection vulnerability.
ad7de9626d86f2716ef20890b10b03375d083f2fb5687243609d50e6e1a03040Secunia Security Advisory - muuratsalo has discovered two vulnerabilities in Nilson's Blogger, which can be exploited by malicious people to disclose sensitive information.
456e96ccfc6ae4f81dc8c5d92d5125278097933861b8b4e6d290ebd4d45fbfecSecunia Security Advisory - sascha has reported a vulnerability in Uniwin eCart Professional, which can be exploited by malicious people to conduct cross-site scripting attacks.
d09b6f56e58180eb8a64e818fac45de151d2d024f58646f2f04eb5811652f415Secunia Security Advisory - Sun has acknowledged a security issue in Sun Java Runtime Environment (JRE), which can be exploited by malicious people to bypass certain security restrictions.
71f213333819026a919bda875b6579e4e4722e5ad8d71670e7ca72e0583ba6dfSecunia Security Advisory - A vulnerability has been discovered in UltraVNC, which can be exploited by malicious people to compromise a user's system.
86f6837bec095a65042ca48589db724f77120fcfce175dbb3048d801b594db1fTotal Video Player version 1.03 M3U file local buffer overflow exploit that can bind a shell or spawn calc.exe.
ac6c1592c04aba81f122f71ff6d070490e92dd9bc417dd3e9dc9a2a7598370f2Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and corrupt a file system, and by malicious people to cause a DoS (Denial of Service).
bc8dd8266a58d96fa428b97db680519d9c9f17dc4fe0cab36dbed2f303685433Mandriva Linux Security Advisory - A vulnerability was found in xdg-open and xdg-email commands, which allows remote attackers to execute arbitrary commands if the user is tricked into trying to open a maliciously crafted URL.
c57058cff63e5c4b204a28c96e5dac52120dcb9b25ca85429a33d8f82e0db392Packet Storm new exploits for January, 2008.
f446d9c89b681bb33d7920cf2e251ff104ca8c7e92ede6a088035c9fe00794b5Ubuntu Security Notice 573-1 - It was discovered that PulseAudio did not properly drop privileges when running as a daemon. Local users may be able to exploit this and gain privileges. The default Ubuntu configuration is not affected.
ab4a2b7af6bc38fe408c4489d0f92d4d68b95e2bac578277fca47fe86dfd9211nilson's blogger version 0.11 suffers from remote file disclosure vulnerabilities.
8fd36cffcd57e5d9f620d30dfe27c1ae9c5db6fec8f29853709dce398b765df0sflog! version 0.96 suffers from remote file disclosure vulnerabilities.
903a550b4184735fac47d3cc4a24d3c6b463e6bc602aeee386ab5598d97d2ceeMandriva Linux Security Advisory - Multiple vulnerabilities were discovered by Tavis Ormandy and Will Drewry in the way that pcre handled certain malformed regular expressions. If an application linked against pcre, such as Konqueror, parses a malicious regular expression, it could lead to the execution of arbitrary code as the user running the application.
6438dccbbad93fb63c20daae54da39a23d83c331dd646da101db534c1d021466Mandriva Linux Security Advisory - Ruby network libraries Net::HTTP, Net::IMAP, Net::FTPTLS, Net::Telnet, Net::POP3, and Net::SMTP, up to Ruby version 1.8.6 are affected by a possible man-in-the-middle attack, when using SSL, due to a missing check of the CN (common name) attribute in SSL certificates against the server's hostname.
a57d994432a4c15e61b3f7dbb9618d3eedd8de4432c74d665dfa11d1bb92f00bSecunia Security Advisory - Dave Lewis has reported a vulnerability in Tripwire Enterprise, which can be exploited by malicious people to conduct cross-site scripting attacks.
c539e7c540e8f695d1d5a992ccd3766676edd1c998ef4ad4682ae09bf817f6d4Secunia Security Advisory - rPath has issued an update for xorg-x11. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
0cabd6a9bec90817449866283f1b96f522ffa9d5a53d6308bff53b6162943b61Secunia Security Advisory - Two vulnerabilities have been reported in VirtueMart, which can be exploited by malicious people to conduct cross-site request forgery attacks or to disclose sensitive information.
90db051289b6dba5d79c9b39d5e60e071273184394640892b57b70f794f6f219LiveLink versions 9.7.0 and below suffer from a cross site scripting vulnerability using UTF-7.
2debd51cc9e15f0acd2d969450070668b665b3f82bb69ee82b9a04e50707c5ce
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed