Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
2c22b30bf82161672a8476192c1945a0333373a3e2dd88b48b7d94cb59cca599
A vulnerability allows attackers to remotely obtain domain credentials on vulnerable installations of Symantec Altiris Deployment Solution. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists within the axengine.exe service listening by default on TCP port 402. The service allows a remote client to request encrypted domain credentials without authentication. The encryption lacks a salt allowing an attacker with a local installation of Altiris Deployment Solution to easily decrypt the credentials.
7c57c51d7eb9485092b9733dd77580432e2148547cf273f9c09f17ffd9ef013f
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec Altiris Deployment Solution. User interaction is not required to exploit this vulnerability. The specific flaw exists within the axengine.exe process listening by default on TCP port 402. A lack of proper sanitation while parsing requests allows for a remote attacker to inject arbitrary SQL statements into the database. Exploitation of this vulnerability can result in arbitrary code execution under the context of the SYSTEM user.
148cb7d61bc722442ed25c93f163d9d66beaac36d1c62b2941df3e85f1a14b9d
SunShop version 3.5.1 remote blind SQL injection exploit.
e1c745af602151873dabafa1a2722b5d60773f5211f479497d7f9820fedc1325
Secunia Security Advisory - Deniz Cevik has reported a vulnerability in Oracle Application Server, which can be exploited by malicious people to bypass certain security restrictions.
e83ab09752e4f2198dc6a4032936fad02baa0f223d0d74b0dcced2d7641b08f4
Secunia Security Advisory - Russ McRee has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct cross-site scripting attacks.
6e0acb151b2b542788a641912cbb04e7f9622254ce7e5205a1415932f13a3cd8
Secunia Security Advisory - Gentoo has issued an update for libid3tag. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
88aa55c86601878b1212e782605e06bab2cb48da48d2638e83f72c98f0d4181c
Secunia Security Advisory - rPath has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to potentially cause a DoS (Denial of Service).
365e992f60b6db2fa2d9bc6e6ce9743e6b4ab40f8f05f7891904ab178a3b9058
Secunia Security Advisory - Cyb3r-1sT has reported some vulnerabilities in PHP Classifieds Script, which can be exploited by malicious people to conduct SQL injection attacks.
8a654526df114bab28de88f5def20567eab16fcaa47f325250d3656ae7bc3883
Secunia Security Advisory - A vulnerability has been reported in Cisco Catalyst Content Switching Module (CSM) and Cisco Catalyst Content Switching Module with SSL (CSM-S), which can be exploited by malicious people to cause a DoS (Denial of Service).
dd88e8966297bda8f5bf85eb62c67f0ca7df81057e4de353df6a5c6fc01309ec
Secunia Security Advisory - Fedora has issued an update for clamav. which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
9fd9c2d3cac59207482c000c1bd22a376ae3437e537fb868540a44871666b6eb
Secunia Security Advisory - EgiX has discovered a vulnerability in LANAI CMS, which can be exploited by malicious people to compromise a vulnerable system.
74d82cdc848b2ad94ef7d899c01200ab47dd4ce4d533ee2e426898e0a22ff625
Secunia Security Advisory - Fedora has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
c219e4e7c257cbc7fad9e0ff4cffd3835ebe7d5ae54e2c54759848e8391217c0
Secunia Security Advisory - Some vulnerabilities have been reported in the sr_feuser_register extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system.
1f5640fbd58ef377a1ba2ac5f141fa5f60a3b887822e233eb1bb4ab7cb4d34bd
Secunia Security Advisory - Fedora has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and potentially by malicious people to cause a DoS (Denial of Service).
db1d5919ad5e4f3e00cd76e0f389823ef0cfc137a2fb19ece2f618ce71855212
Aruba Networks Security Advisory - A user authentication vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. This vulnerability only affects customers using TACACS authentication for Controller management users. Cross-site scripting vulnerabilities were discovered during standard bug reporting procedures in the Aruba Mobility Controller. Certain malformed inputs to the web UI allow the injection of cross-site scripting (XSS) components, leading to a potential compromise of client web session integrity.
aec8536dcb3f16eb980fc23fac56434bc6aa1559924ab8dcc877f5a13f11221e
Secunia Security Advisory - MajnOoNxHaCkEr has discovered a vulnerability in Fusebox, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
b236f00173312c467f6aae413304fbe1f68ee50a5c8d64d48d15cd708b85abac
Secunia Security Advisory - A vulnerability has been reported in the Site Documentation module for Drupal, which can be exploited by malicious people to disclose sensitive information.
64d8b1264bb69927e41bcf428c5ec464ca77a5bd1c102f6d52c9cdfe8a3c3a97
Whitepaper discussing privilege escalation vulnerability in the Symantec Altiris Deployment Solution.
2fc81172db8cad360b6b8a9a6ecafd03ebc2aeeecdb3406f9337639913e4d644
68 Classifieds version 4.0 suffers from a SQL injection vulnerability in category.php.
3d3c7fa18f3f5e8fe27450120bc0e36d6d2f80c148b1b91a20fb66ed35293cca
Newsmanager version 2.09 suffers from remote file inclusion, remote file disclosure, SQL injection, and permission bypass vulnerabilities.
8cde26e7b3371649e8df64d73eaa3ec4014f1aa200e5d3508c5b57026539efdb
Kostenloses Linkmanagementscript suffers from multiple SQL injection vulnerabilities.
c587afdd3dd6fc7790d48e66cfa7bc3a069806931050f555c75f5aa61ae671e7
Symantec Altiris Client Service versions 6.5.248, 6.5.299, and 6.8.378 local privilege escalation exploit. Based on the vulnerability noted in MS04-019.
f1cad553cb21404e91c8a9c6e6ccb9b9a40445cde887bdb7e08dc593a46a8c79
Cisco Security Advisory - Administrators of systems running all Cisco Unified Presence versions can determine the software version by viewing the main page of the Cisco Unified Presence Administration interface. The software version can be determined by running the command show version active via the Command Line Interface (CLI).
8d661d777627d98bdaabf700e8d7a4f173aa8ef87201200f3bc5521f57ce39ec
Cisco Security Advisory - Cisco Unified Communications Manager, formerly Cisco CallManager, contains multiple denial of service (DoS) vulnerabilities that may cause an interruption in voice services, if exploited. These vulnerabilities were discovered internally by Cisco.
77c261b8ffee45de5b9394599d386aa78abb7b492f1286d6902de23dd74b0e98