Secunia Security Advisory - Julian Rodriguez has reported a vulnerability in Xomol CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
5db62e90a05dc941b44373b4465024f9Secunia Security Advisory - Some vulnerabilities have been reported in Apple TV, which can be exploited by malicious people to compromise a vulnerable system.
8caf50e6c50c7f446f86fddb77b9fb82Secunia Security Advisory - A vulnerability has been reported in Novell eDirectory, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
33bbb5c1257390b45320570852b87c01Secunia Security Advisory - CraCkEr has discovered two vulnerabilities in Zen Cart, which can be exploited by malicious people to disclose sensitive information.
ddd7a49d454708b5398dbea7dcd3ffa4Technical Cyber Security Alert TA08-193A - Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code.
9dcbc610d17f4041bd5a391dfaed7908Gentoo Linux Security Advisory GLSA 200807-08 - Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query source ports. Versions less than 9.4.2_p1 are affected.
455c82267a09dd03755f94fe0a3973baDebian Security Advisory 1607-1 - Several remote vulnerabilities have been discovered in the Iceweasel webbrowser, an unbranded version of the Firefox browser.
bbb8961bff35f4acaf5a236fb2ad6fa0Netragard, L.L.C Advisory - Core Image Fun House versions 2.0 and below for OS X suffer from a buffer overflow vulnerability when a specially crafted .funhouse file is leveraged. Proof of concept code included.
4ebf0758abef6c1b823f393ad43b0478Hudson version 1.223 suffers from multiple cross site scripting vulnerabilities.
51499410904bf63db854c00c99996f54Secunia Security Advisory - Hussin X has reported a vulnerability in DreamNews Manager, which can be exploited by malicious people to conduct SQL injection attacks.
9018215ffbee0b6d6fa8d0dc954d2eccSecunia Security Advisory - Fugitif has reported some vulnerabilities in eSyndiCat Directory Software, which can be exploited by malicious people to conduct cross-site scripting attacks.
78a87339041cfcd7e520b1a07fd32c7bSecunia Security Advisory - Sun has acknowledged some vulnerabilities in Thunderbird included in Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or compromise a vulnerable system.
20e0daa0655facd3b73bed63b7eaea7dSecunia Security Advisory - Some vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
cb00663efd674edecbdfb3d81265700dSecunia Security Advisory - Julian Rodriguez has discovered some vulnerabilities in Pagefusion, which can be exploited by malicious people to conduct cross-site scripting attacks.
c39232f3aff39be6685d5e10985d996aSecunia Security Advisory - SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
cf4ba3323f29a8830018c1c5f01e51bbSecunia Security Advisory - SUSE has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
956ced675fafad14308da318b469faa2SUSE Security Announcement - SUSE has released updates that address the recent cache poisoning vulnerability regarding bind.
4eee8765a56b57a922fbf0148e92e177IBM MRO MAXIMO versions 4.1 and 5.2 suffer from cross site scripting and information disclosure vulnerabilities.
c9c1e415f0785663f84351a39769590dMillion Pixels version 3 suffers from a remote SQL injection vulnerability.
1ce520e3fe90db3c5b2e162278298f32Facebook Newsroom CMS version 0.5.0 Beta 1 suffers from a remote file inclusion vulnerability.
a5c768c27da2796af9b3eb1b74b66a02Wysi Wiki Wyg version 1.0 suffers from a local file inclusion vulnerability in index.php.
3a510d5e0cc6fa54b5960ba5b11357b2Download Accelerator Plus (DAP) version 8.x local buffer overflow exploit that creates a malicious .m3u file. Binds a shell to port 1337.
0f0251e90f1fee446e809fcf8bc823c3Mandriva Linux Security Advisory - An integer overflow flaw was found in Pidgin's MSN protocol handler that could allow for the execution of arbitrary code if a user received a malicious MSN message. In addition, this update provides the ability to use ICQ networks again on Mandriva Linux 2008.0, as in MDVSA-2008:103 (updated pidgin for 2008.1). The updated packages have been patched to correct this issue.
585f78d48977a3a6f020773f8989e0cceSyndiCat Directory Software pro version 2.2 suffers from a cross site scripting vulnerability.
0b4c903d395413deba06a24307c561e1Zen Cart version 1.3.8 suffers from multiple local file inclusion vulnerabilities.
a4c2fa4e8b53a24df7cda2fd6bc6c25f
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed