Secunia Security Advisory - Julian Rodriguez has reported a vulnerability in Xomol CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
b971e5fe8a6a61f9a620059d42f03e3e5b26ad5778142f2d9390b80d55fb98b3Secunia Security Advisory - Some vulnerabilities have been reported in Apple TV, which can be exploited by malicious people to compromise a vulnerable system.
c447a12e6759dc56fec40ac166b0143395ad4ab1d160117474bc41b9dd2a6799Secunia Security Advisory - A vulnerability has been reported in Novell eDirectory, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
3495456faedb4e20ec45a2118dbf10597d0eff7ca3e03b4332dc95ac8c23a143Secunia Security Advisory - CraCkEr has discovered two vulnerabilities in Zen Cart, which can be exploited by malicious people to disclose sensitive information.
3fe989fcdeb6250adba90d7040d09f51a13827571a98ff86bd9cf86dec540620Technical Cyber Security Alert TA08-193A - Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code.
fb35626ace7c09f0ff340228304c64438892373be175c5fc6d7cd020ab44b343Gentoo Linux Security Advisory GLSA 200807-08 - Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query source ports. Versions less than 9.4.2_p1 are affected.
2ae9df7ec33e646b13b8658d915fea9df21e83cea90c8ade5224e3d03f6827e3Debian Security Advisory 1607-1 - Several remote vulnerabilities have been discovered in the Iceweasel webbrowser, an unbranded version of the Firefox browser.
f5eecd6dc893f0e86d9f62c4eb40a3f15d1615a710e743ebece3cf49f75b9cf6Netragard, L.L.C Advisory - Core Image Fun House versions 2.0 and below for OS X suffer from a buffer overflow vulnerability when a specially crafted .funhouse file is leveraged. Proof of concept code included.
6c6bce17e27550c78e31772953580b27edbf6c06eb465a112c51012482a46cacHudson version 1.223 suffers from multiple cross site scripting vulnerabilities.
d54f1e93b9088a2fca193bb1d00866b98a969de4fce6127173d5f049aa4c744dSecunia Security Advisory - Hussin X has reported a vulnerability in DreamNews Manager, which can be exploited by malicious people to conduct SQL injection attacks.
ba8c9a46acea381999689c23064c19b41a41264020a66c53698e07630de69eb9Secunia Security Advisory - Fugitif has reported some vulnerabilities in eSyndiCat Directory Software, which can be exploited by malicious people to conduct cross-site scripting attacks.
44a4e3169598c4ec964a4fe1bc14743ec22efbc903219ccc5ce2f73fc43c5455Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Thunderbird included in Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or compromise a vulnerable system.
237f478a806f4e5e896209120a4b26e1c6e705a246a8b3d62e0ef4032ed33fbfSecunia Security Advisory - Some vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
3357ee2ebfa0bcc9a383bd71f2879c7159d8e95e09ce1d13016a90d7abafb6feSecunia Security Advisory - Julian Rodriguez has discovered some vulnerabilities in Pagefusion, which can be exploited by malicious people to conduct cross-site scripting attacks.
96269eb71c29abe32b6bf40d979f996b511cd97553aa78765c72f2ed10a6f206Secunia Security Advisory - SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
7a25caf5d3804c8ec0f04945f82b30ac5ed338db581fbb517cdded79175078ebSecunia Security Advisory - SUSE has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
7cd620454e2dd5a79657f13be61ecb898ab2f707336ba9a56212c638e934f973SUSE Security Announcement - SUSE has released updates that address the recent cache poisoning vulnerability regarding bind.
b33fa487b8062d9701e35cde6c9f6d3dacf7e307272a8699fd62e02761bc31f1IBM MRO MAXIMO versions 4.1 and 5.2 suffer from cross site scripting and information disclosure vulnerabilities.
ca60b29f62d445c4b816c1b20f895b671b0878aff48c7c34b6b5dce290e3012cMillion Pixels version 3 suffers from a remote SQL injection vulnerability.
c3ad19dde07a3d0237f8fedba6e93ecf627417ca4aad6d06cdbb810a5e6238e0Facebook Newsroom CMS version 0.5.0 Beta 1 suffers from a remote file inclusion vulnerability.
f2143afcd6ce1d06afc2adabe3344b85a9e8522e52087d2df5a937b8f35f111aWysi Wiki Wyg version 1.0 suffers from a local file inclusion vulnerability in index.php.
388cb6e838d1e08981d592d4ac179512768a26d6711f3258415146b097426d16Download Accelerator Plus (DAP) version 8.x local buffer overflow exploit that creates a malicious .m3u file. Binds a shell to port 1337.
6305cabf4f0599c7acaf1c16454bcc44de20fc5bc626ffed3675e6c5e3d9fdeaMandriva Linux Security Advisory - An integer overflow flaw was found in Pidgin's MSN protocol handler that could allow for the execution of arbitrary code if a user received a malicious MSN message. In addition, this update provides the ability to use ICQ networks again on Mandriva Linux 2008.0, as in MDVSA-2008:103 (updated pidgin for 2008.1). The updated packages have been patched to correct this issue.
7d84696431ca3cbdcdd7bc3811cc4ffa055ddcf1c20c7cb29c685bb32ae3d154eSyndiCat Directory Software pro version 2.2 suffers from a cross site scripting vulnerability.
f881675b70863cd64401fa61f03215e63cf2f16425ad50667adb77dab6397321Zen Cart version 1.3.8 suffers from multiple local file inclusion vulnerabilities.
5bbf90470be0dda95174059b1a4dcdac8a49fca9d335fccdb8bed22fb230045d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed