HP Security Bulletin - A potential vulnerability has been identified with the SSH server in HP OpenVMS TCP/IP Services running on HP Integrity and HP Alpha. The vulnerability could be exploited to allow remote unauthorized access.
459276a7ea1aac5754eb5f337f27b7b105e47b8f18c9b7ff71141d893004d8c3
HP Security Bulletin - A potential security vulnerability has been identified with HP Compaq Notebook PC BIOS. The vulnerability could be exploited to allow local unauthorized users access to the system.
16e65183188141396cc23f3ebb4cb1be2bd39da72d2449e559973a51e5998bd0
HP Security Bulletin - A potential security vulnerability has been identified with HP Compaq Business Notebook PC BIOS. The vulnerability could be exploited to create a Denial of Service (DoS).
6c6afe549b20cf0dc7a2a3b09de008cf74c5b289ebfb034df0b34100656b3ccd
Secunia Security Advisory - Debian has issued an update for policyd-weight. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
dc8ebe107de50efb59f8da9f99d1ee85db4cf4c4e7cda4d2c28cdb03e12cc424
CA Security Advisory - CA products that implement the DSM ListCtrl ActiveX control are vulnerable to a buffer overflow condition that can allow a remote attacker to cause a denial of service or execute arbitrary code with the privileges of the user running the web browser.
09da45444339d3374071c6c750d520dceb4ed69662d8b774f4b6bf0b10195eef
XChat version 2.8.4-1 suffers from a password disclosure vulnerability.
03761d56dabf4d589196b54e429b5573f4c4e4b3945864e93bd1843f91fee6dd
It appears that Internet Explorer 7 may have an address bar spoofing vulnerability.
c2f099b1e957ea9fc84dce9b9a2509835c81dfe944c0e3fb7455aa7afb74d1a0
Mandriva Linux Security Advisory - A stack-based buffer overflow in sarg (Squid Analysis Report Generator) allowed remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. A cross-site scripting vulnerability in sarg version 2.x prior to 2.2.5 allowed remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. In addition, a number of other fixes have been made such as making the getword() function more robust which should prevent any overflows, other segfaults have been fixed, and the useragent report is now more consistent with the other reports.
9abf6a0301f35973eaf0f99a9ac33070788b14951bce8b102716cd93a62cce56
arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
81054ee1e1b964a20ad6a3d1093096e50c5a790d7b0a835c31883131199f6dfc
Nuface is a web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
8fd275a70bc56f9ab24f14dcd6caea94d71db4243192ae391210afd81e4e03f6
NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
7eb118a423a9c2c034e020175aa1d36efd3483c76b77afe4c82dcb09806f922f
The Joomla MyAlbum component version 1.0 suffers from a remote SQL injection vulnerability.
771c22825e7f27cb918d9625ea1fcb03472301cfe6352b8e6650a0344b42b7f4
Debian Security Advisory 1534-1 - Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite.
da9f4d2a464b27e37b1afa1be3ec9ac6368ef77f044788da8f8fdd28c0dcb65d
Debian Security Advisory 1533-1 - Christian Schmid and Meder Kydyraliev (Google Security) discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images.
fdd4dd5399f82e7f5885c40c212c136dbec30e69ad59365ec0ee9e18fef79b4e
Debian Security Advisory 1532-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
e88833628aa16e9976c86303172989887749f3e77a661e412e97078bf5dc631e
Secunia Security Advisory - xcorpitx has reported two vulnerabilities in various Iatek products, which can be exploited by malicious people to conduct SQL injection attacks.
3e3c787f359f99c6afcf108b619b7f057a612a98c841001adfbf6b81f25c9812
Secunia Security Advisory - Mati Aharoni has discovered a vulnerability in Quick Tftp Server Pro, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
f18c8f23724d6f284d424d2dcaa2df83a1fe55932f020c853c4ba94388da6d7e
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, or to cause a DoS (Denial of Service).
c77749b2e390a43455d9bbb0990e0efc3816e9b5c02e1af83cefc10bef95d0c5
Secunia Security Advisory - Mati Aharoni has discovered a vulnerability in TFTP Server SP, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
4b1ad56ba638034a86a864091b61978177a5697123298a3d770b2a3276861a65
Secunia Security Advisory - Luigi Auriemma has discovered some vulnerabilities in IBM solidDB, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
116200dd3fa4be7fc845e8b185da73706a84ff47bc91142f20be73e80ce683e6
Secunia Security Advisory - A vulnerability has been reported in PerlMailer, which can be exploited by malicious people to conduct cross-site scripting attacks.
d9ead4e3008243fc7a946ad52422975803b719136fc41a1d2f75364dce5be86d
Secunia Security Advisory - A vulnerability has been reported in GNB DesignForm, which can be exploited by malicious people to conduct cross-site scripting attacks.
cd1a7a1f2cbb7f221518f340784487fdb8e5814f8f9e2fc5bca44ac4cf18682b
Secunia Security Advisory - Some vulnerabilities have been reported in ClanSphere, which can be exploited by malicious people to conduct cross-site scripting attacks.
1697ae56f81acdcdb3b58adfc623d65e5aa446ec95169f800169a6b92c5bb87c
Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system.
9f3241da75292100fa656ef608df71b0c3be7701652f848f54426be6a9c394e2
Secunia Security Advisory - Ubuntu has issued an update for sdl-image. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
0fe403d605dd2e0916f0c5f96efa7122642c842328109289ec770a49a4bd4e09