Ubuntu Security Notice 638-1 - Aaron Grattafiori discovered that the Gnome Help Viewer did not handle format strings correctly when displaying certain error messages. If a user were tricked into opening a specially crafted URI, a remote attacker could execute arbitrary code with user privileges.
86831794d274f24fc29c9fdd721b2c8ce02dcd0070de1a5bfe5b4903150f4f74Kyocera Command Center suffers from a directory traversal vulnerability.
42d830ef4de171b4deadad97f60d6a5e5ada87a058d0dfdd45dcec7b6995b466Search Engine suffers from a remote SQL injection vulnerability in viewcat.php.
7d367886141ab88ad0e6e88e78d2f987a94456e00aeeffc72616569f158aa711iG Shop suffers from a remote SQL injection vulnerability in display_review.php.
a948c300ff2259ebaba25ed1d03cd17f1dacdaf36d3d6508ed71cc5a7b986bd6HP Security Bulletin - A potential security vulnerability has been identified in the HP Enterprise Discovery. The vulnerability could be exploited remotely by an authorized user to gain extended privileges.
1f2c833b51ed915b7c7adbd4a301e8c0a6e079da9e8074c37eeb37ed8bdb3ab6Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery.
182fea16287e83ec6e8240c50a8186175d90dc5347dc0e36194387dcc7a24cd0YourOwnBux versions 3.1 and 3.2 Beta suffer from a remote SQL injection vulnerability.
13949b619ae0983341c350e12967e5edd1325022aa7b135461ead66ae57306e6Secunia Security Advisory - Lidloses_Auge has reported a vulnerability in webEdition CMS, which can be exploited by malicious people to conduct SQL injection attacks.
ad1f9acc303b710d564592c8d48bf1df885ed115b08625f58cf632fe3b722da3Secunia Security Advisory - Corwin has discovered some vulnerabilities in K-Rate Premium, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people and users to conduct script insertion and SQL injection attacks.
a551274ca1f7b446d590fe77629d73d74964afb86898ccd5822061b703d34a36Secunia Security Advisory - A vulnerability has been reported in HP Enterprise Discovery, which can be exploited by malicious users to gain escalated privileges.
d5e65529ce4dd3d47e53b9d282e73c5e28cbc05b1ed444e66fefa15ae0ac4585Secunia Security Advisory - Seth Fogie has reported some vulnerabilities in KM Scanner File Utility, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
4ec3e66e3374ceeb52967a67097513c609685b3acb50c372452ae53de1924988Secunia Security Advisory - Some vulnerabilities have been reported in IBM Lotus Quickr, which can be exploited by malicious people to conduct cross-site scripting attacks.
14047ec66284315cef70bb2c658fd269f0d62feebf08af594c3e4ffc8be3940dSecunia Security Advisory - A vulnerability with an unknown impact has been reported in IBM DB2.
e643d08debea8de749d5a636d865edbead0c4bfcb7c6bf3eeb9ce49b497d6ffdPardus Linux Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
4b1155a3c4fc7782e4b2a42dbe108c156dbc1b5e5f22ea2ec736bbd250b6459cSecunia Security Advisory - Lostmon has discovered two vulnerabilities in the PopnupBlog module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.
c4f812a3643b508bc0dc32257b0858d0adf80cff00d1c2dbe0a930c757bc8865phpMyRealty versions 1.0.9 and below suffer from a remote SQL injection vulnerability in pages.php.
81e538c0b8fa916b8f6e4187c920950fb4e36c656580130ce58436d666d89937Ultra Office Active-X Control remote buffer overflow exploit.
3dd1b972b74216bbab47b69731b811de8d063326cdb18686194e3bb481d70c18Ultra Office Active-X Control remote arbitrary file corruption exploit.
0ae05cadfce1255c7c221001b11d644d533cd3bdff33c20cedaebf7ec418ba13Mandriva Linux Security Advisory - Andreas Solberg found a denial of service flaw in how libxml2 processed certain content. If an application linked against libxml2 processed such malformed XML content, it could cause the application to stop responding. The original fix used to correct this issue caused some applications that used the libxml2 library to crash. These new updated packages use a different fix that does not cause certain linked applications to crash as the old packages did.
6978e44fa4ec963af815e34d9ca5be4c1c1f19cff96a972b445f68b57fcb7066This Metasploit exploit attacks multiple file manipulation vulnerabilities in the Kyocera Mita Scanner File Utility version 3.3.0.1.
64e913444258ee22a15a1f0eff7433971d7fb8f894cd50e84ed2e40a90ecc4b9The Kyocera Mita Scanner File Utility version 3.3.0.1 suffers from multiple file manipulation vulnerabilities.
3204e5cf719058624f5e2adbca6aa070e8dddb7b8bd0eac4ca7de5912af1f865Telartis's AWStats Totals versions 1.0 through 1.14 suffer from a remote code execution vulnerability.
d9ce95a383cb2e1ade8d4133679234958de2b0f8d679e1c091b434b2d3745d8fMyBulletinBoard (MyBB) versions 1.2.11 and below SQL injection exploit that leverages private.php.
646e2ede5bd3aa4e27fe7c586bc9878851a75daca96c6d13112499d9fe8bf441iFdate versions 2.0.3 and below suffer from a SQL injection vulnerability.
db417664c010daeca3661326e6ce4212da0cb4ef79b39a1533be92eda19de09dDebian Security Advisory 1631-2 - The previous security update of the libxml2 package introduced some problems with other packages, most notably with librsvg. This update corrects these problems whilst still fixing the reported security problem.
e2c04840497407f72b22d172c8869ca3f0dd0582f1a08719fbb2c6501ff74096
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed