HP Security Bulletin - A potential vulnerability has been identified with the SSH server in HP OpenVMS TCP/IP Services running on HP Integrity and HP Alpha. The vulnerability could be exploited to allow remote unauthorized access.
459276a7ea1aac5754eb5f337f27b7b105e47b8f18c9b7ff71141d893004d8c3HP Security Bulletin - A potential security vulnerability has been identified with HP Compaq Notebook PC BIOS. The vulnerability could be exploited to allow local unauthorized users access to the system.
16e65183188141396cc23f3ebb4cb1be2bd39da72d2449e559973a51e5998bd0HP Security Bulletin - A potential security vulnerability has been identified with HP Compaq Business Notebook PC BIOS. The vulnerability could be exploited to create a Denial of Service (DoS).
6c6afe549b20cf0dc7a2a3b09de008cf74c5b289ebfb034df0b34100656b3ccdSecunia Security Advisory - Debian has issued an update for policyd-weight. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
dc8ebe107de50efb59f8da9f99d1ee85db4cf4c4e7cda4d2c28cdb03e12cc424CA Security Advisory - CA products that implement the DSM ListCtrl ActiveX control are vulnerable to a buffer overflow condition that can allow a remote attacker to cause a denial of service or execute arbitrary code with the privileges of the user running the web browser.
09da45444339d3374071c6c750d520dceb4ed69662d8b774f4b6bf0b10195eefXChat version 2.8.4-1 suffers from a password disclosure vulnerability.
03761d56dabf4d589196b54e429b5573f4c4e4b3945864e93bd1843f91fee6ddIt appears that Internet Explorer 7 may have an address bar spoofing vulnerability.
c2f099b1e957ea9fc84dce9b9a2509835c81dfe944c0e3fb7455aa7afb74d1a0Mandriva Linux Security Advisory - A stack-based buffer overflow in sarg (Squid Analysis Report Generator) allowed remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. A cross-site scripting vulnerability in sarg version 2.x prior to 2.2.5 allowed remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. In addition, a number of other fixes have been made such as making the getword() function more robust which should prevent any overflows, other segfaults have been fixed, and the useragent report is now more consistent with the other reports.
9abf6a0301f35973eaf0f99a9ac33070788b14951bce8b102716cd93a62cce56arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
81054ee1e1b964a20ad6a3d1093096e50c5a790d7b0a835c31883131199f6dfcNuface is a web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
8fd275a70bc56f9ab24f14dcd6caea94d71db4243192ae391210afd81e4e03f6NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
7eb118a423a9c2c034e020175aa1d36efd3483c76b77afe4c82dcb09806f922fThe Joomla MyAlbum component version 1.0 suffers from a remote SQL injection vulnerability.
771c22825e7f27cb918d9625ea1fcb03472301cfe6352b8e6650a0344b42b7f4Debian Security Advisory 1534-1 - Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite.
da9f4d2a464b27e37b1afa1be3ec9ac6368ef77f044788da8f8fdd28c0dcb65dDebian Security Advisory 1533-1 - Christian Schmid and Meder Kydyraliev (Google Security) discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images.
fdd4dd5399f82e7f5885c40c212c136dbec30e69ad59365ec0ee9e18fef79b4eDebian Security Advisory 1532-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
e88833628aa16e9976c86303172989887749f3e77a661e412e97078bf5dc631eSecunia Security Advisory - xcorpitx has reported two vulnerabilities in various Iatek products, which can be exploited by malicious people to conduct SQL injection attacks.
3e3c787f359f99c6afcf108b619b7f057a612a98c841001adfbf6b81f25c9812Secunia Security Advisory - Mati Aharoni has discovered a vulnerability in Quick Tftp Server Pro, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
f18c8f23724d6f284d424d2dcaa2df83a1fe55932f020c853c4ba94388da6d7eSecunia Security Advisory - Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, or to cause a DoS (Denial of Service).
c77749b2e390a43455d9bbb0990e0efc3816e9b5c02e1af83cefc10bef95d0c5Secunia Security Advisory - Mati Aharoni has discovered a vulnerability in TFTP Server SP, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
4b1ad56ba638034a86a864091b61978177a5697123298a3d770b2a3276861a65Secunia Security Advisory - Luigi Auriemma has discovered some vulnerabilities in IBM solidDB, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
116200dd3fa4be7fc845e8b185da73706a84ff47bc91142f20be73e80ce683e6Secunia Security Advisory - A vulnerability has been reported in PerlMailer, which can be exploited by malicious people to conduct cross-site scripting attacks.
d9ead4e3008243fc7a946ad52422975803b719136fc41a1d2f75364dce5be86dSecunia Security Advisory - A vulnerability has been reported in GNB DesignForm, which can be exploited by malicious people to conduct cross-site scripting attacks.
cd1a7a1f2cbb7f221518f340784487fdb8e5814f8f9e2fc5bca44ac4cf18682bSecunia Security Advisory - Some vulnerabilities have been reported in ClanSphere, which can be exploited by malicious people to conduct cross-site scripting attacks.
1697ae56f81acdcdb3b58adfc623d65e5aa446ec95169f800169a6b92c5bb87cSecunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system.
9f3241da75292100fa656ef608df71b0c3be7701652f848f54426be6a9c394e2Secunia Security Advisory - Ubuntu has issued an update for sdl-image. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
0fe403d605dd2e0916f0c5f96efa7122642c842328109289ec770a49a4bd4e09
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed