Ubuntu Security Notice USN-818-1 - Scott Cantor discovered that Curl did not correctly handle SSL certificates with zero bytes in the Common Name. A remote attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications.
87d7384d403bedb921aab72dddaf26c450c38d3b491ce5ce3c4a0d3c673b2369TheGreenBow VPN client versions 4.61.003 suffers from a local denial of service vulnerability in tgbvpn.sys.
e0ea557aeaba20df3c36ad63d0a47918f2843ad7fe7be83c63da10582025c08eAdobe JRun Application Server version 4 updater 7 suffers from a directory traversal vulnerability.
a9bb76b8db1518a8b84fd46fa28ee3a623c046f5c797d18dff2e20ab5500a9abAdobe Coldfusion 8 suffers from cross site scripting and cross site request forgery vulnerabilities.
49f9ee669e1a069a54b29ec05332edca7f85faad63df7b07cebcd25f400c8e50Piwigo version 2.0.0 suffers from a remote SQL injection vulnerability.
70f523fca2812c34e9071d86d676486374c18aa275531deb1cb0a0a266cf7c68Mandriva Linux Security Advisory 2009-204 - Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow.
fd411e86c0abb62e49dcbb06a9bb371a4c10151d6d6cbe04dfad140d75c10b0aeth0 network card disabling polymorphic shellcode for Linux/x86.
b27693455f31b2416b2f93393c268807021608c34376c422293af6af3589d84bDebian Security Advisory 1865-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service or privilege escalation.
fcae27437b2b0fdbfe3736c4335096431f370e8341becfdced7a741ef6ea4579Debian Security Advisory 1864-1 - A vulnerability has been discovered in the Linux kernel that may lead to privilege escalation.
009ec0aca4015d32052a8fcf82a6d204c1a7ab6c9be5da98346d1d83ee133a6dDebian Security Advisory 1863-1 - Several remote vulnerabilities have been discovered in the zope, a feature-rich web application server written in python, that could lead to arbitrary code execution in the worst case.
9b50510b177e062943b28811c9b6700a49751d2e9d25c506bfa91c5bd4ee2182www.rackspace.com suffered from a remote SQL injection vulnerability.
f7265e670f795c1d66f8ad62df52f964db75311a6728c1c1d0d37c1b17ec0a53Easy Music Player version 1.0.0.2 .wav file universal local buffer overflow exploit.
fbf171eed24da261741c833e89c9787cae3cb2bf64be3c44314a873b4be6e4b2Hyenae is a highly flexible and platform independent network packet generator. It allows you to reproduce low level Ethernet attack scenarios (such as MITM, DoS, and DDoS) to reveal potential security vulnerabilities of your network. Besides smart wildcard-based address randomization, a highly customizable packet generation control, and an interactive attack assistant, Hyenae comes with a clusterable remote daemon for setting up distributed attack networks.
250217ea75c2bc9d734031a5fdbcd9407e3c3c910c95de1378b359368cb5f07fSecunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server Feature Pack for SCA, which can be exploited by malicious users to bypass certain security restrictions.
f6a9427e31f1b9dbfadcb40ccc9c3f5aac3a1a4425b350af63a972323997ef50Secunia Security Advisory - Some vulnerabilities have been discovered in Spiceworks, which can be exploited by malicious people to cause a DoS (Denial of Service) and conduct cross-site request forgery attacks.
d64d27d53b4131c5c216b4fbaf9a0e4c27dd42287bbeeea063368cda38a6c425Secunia Security Advisory - Adam Baldwin has discovered a vulnerability in Spiceworks, which can be exploited by malicious people to conduct cross-site scripting attacks.
62e3d53df8ce64b64dc0d23db326380b13178718a3e428a99e131040c1d8ba5aSecunia Security Advisory - SwEET-DeViL has reported some vulnerabilities in Alwasel, which can be exploited by malicious people to conduct SQL injection attacks.
57081e0a9bf4e7c76e2e40f2018f8d4168042baaa82f4da61f7d77a68688113bSecunia Security Advisory - Adam Baldwin has reported a vulnerability in Kayako SupportSuite, which can be exploited by malicious people to conduct script insertion attacks.
82d0570f3ec91543126431f385658b398228348f69953404aa56c6a30a8c5eacSecunia Security Advisory - ilkerkandemir has discovered a vulnerability in the Kunena component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
dd57d2afde633587b83e3123947dd8755e8c9c9c4fb775757a371c81877ad484Secunia Security Advisory - Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service).
ed771f8a529d085ce884b5372055602637d7d80d569e5c675f32cb63ecd1d961Secunia Security Advisory - Debian has issued an update for imagemagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a user's system.
d91198411e86d253cd898b614403cb433228cb65751002b1c67bbbb9ad946bc7Secunia Security Advisory - Fedora has issued an update for subversion. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
a0e3719b79d9329c22e008feaa3f58f8c333a837aeef91ea9734b6759fbdae55Secunia Security Advisory - Some vulnerabilities have been reported in libvorbis, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
e84f418349bd1de17140d879c4b5c70eab372f0c1b6a524f098f234d12a3c618Secunia Security Advisory - Red Hat has issued an update for subversion. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
fe6f26390fede37f0b72cae951475c6c2a596f64c9baa2626e1d5203345763f5Secunia Security Advisory - Some vulnerabilities have been reported in MAXcms, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
89687214339ad86796c71db7461b6c4982ed03f1cd115062159d77c6a913edcc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed