Ubuntu Security Notice USN-822-1 - It was discovered that KDE-Libs did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only affected Ubuntu 9.04. It was discovered that the KDE JavaScript garbage collector did not properly handle memory allocation failures. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that KDE-Libs did not properly handle HTML content in the head element. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that KDE-Libs did not properly handle the Cascading Style Sheets (CSS) attr function call. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
e04d87eb0947023e41cabcb09990834aafcabc0d2554fb17c2ab973da27d010d
Mandriva Linux Security Advisory 2009-218 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
940574ed34e91952ce7c4208a6ef290ecd054124708ad5e6e7a4b5377e08e20b
Debian Security Advisory 1872-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation or a leak of sensitive memory.
cf39db21b853f2de19fa7441b737a0a470a70d17a10d2adf60f45715f7040e1e
Moa Gallery version 1.1.0 suffers from a remote SQL injection vulnerability.
ba38265c2912f787ce21bf424d24e1ec7bb1c9d4a3506de4d28170f1a0ed5423
humanCMS suffers from a remote SQL injection vulnerability that allows for authentication bypass.
98c38a3e81304f1aba2677eb6ac2bd0089fa2b33d8e716cb40e98bff4347d87c
Ed Charkow's Supercharged Linking remote blind SQL injection exploit.
9970c4840b479e3cd4353633f853273c925f8c37ce745cd8a88919ec6bc97ca0
Joomla Ninja component version 1.x suffers from a remote SQL injection vulnerability.
1489c68189bf87a95cd03d6913828f0ec8fec8be82f717e7d45c091406366a50
New5starRating version 1.0 suffers from a remote SQL injection vulnerability in rating.php.
1aafbc3fd0046c91ef8650dceca13a553433abe6ac5199374fb8e5bfce5f61b1
Uebimiau Webmail version 3.2.0-2.0 suffers from a database disclosure vulnerability.
00d83a2ef4d707bff417f0b966c127089a1c34a70089b7ac97eb81520f026f00
Lanai Core version 0.6 suffers form a remote file disclosure vulnerability.
56c6fed757c68b6901b8e100de8c38158a00d15e2203536feeda43b166e1e1ac
WAR-FTPD version 1.65 mkd/cd request denial of service exploit.
63b27405f3d2f0cc2d9d1e21d49f58acfa74cc6ffbbed76c92891477451e7166
Fazlo Player version 7.0 local buffer overflow proof of concept exploit.
d67dccbb28139875a907bfc855e7480d6fa7b473f5edc6f8a3786319b271a1a0
Hyenae is a highly flexible and platform independent network packet generator. It allows you to reproduce low level Ethernet attack scenarios (such as MITM, DoS, and DDoS) to reveal potential security vulnerabilities of your network. Besides smart wildcard-based address randomization, a highly customizable packet generation control, and an interactive attack assistant, Hyenae comes with a clusterable remote daemon for setting up distributed attack networks.
2389a66440d5635d196fccc4471fe836efc0c4f571071145d2159d57cd276797
Ksplice is practical technology for updating the Linux kernel without rebooting. It enables you to avoid the disruptive process of rebooting for kernel security updates and bugfixes. By making it easy to keep your systems up to date, Ksplice helps you avoid the security and stability risks of running out-of-date software.
bc32f50c9eea674ab92af5e22d57a64e87b472548f0dd0b88880ed6fa84caacc
Radvision's Scopia version 5.7 suffers from a cross site scripting vulnerability.
b12e4a3bdda500ff53f019e1e8009e33e5ab0307de536d27f492557383ca3ab5
The D-Link 500G suffers from an authentication bypass vulnerability when a Host: directive is not passed.
3b3982d76d54b390c3929411d1a82138df3bd8a69b219baa7885951f75c820b1
BlazeDVD version 5.1 Professional universal local buffer overflow exploit that works on XP and Vista.
0ce9ab13f9a018014586f8f6afb52072d6f7d4d38d7a089499d7322de9d0f830
WM Downloader local buffer overflow exploit that creates a malicious .smi file.
6958a23f5ab6e2fc8ec970f1a139585572f126c4d70a83e9cf895d393af89d4e
Mandriva Linux Security Advisory 2009-217 - A number of security vulnerabilities have been discovered in Mozilla Thunderbird. Security issues in thunderbird could lead to a man-in-the-middle attack via a spoofed X.509 certificate. A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
9d01bf4018ef272796f802e7b69bf36d94eabb3f0d7d7fb3c6e573ebfc24366a
Mandriva Linux Security Advisory 2009-216 - A number of security vulnerabilities have been discovered in the NSS and NSPR libraries and in Mozilla Thunderbird.
e8e619c27abfa1ea866f6d756a974aa55669f6f2b6b85c33173163bb95017751
Mandriva Linux Security Advisory 2009-215 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
ce2329ccd328b819f4a1a50965d05b35b19115fd980af077c798363ee77ad560
Mandriva Linux Security Advisory 2009-214 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
8baa30d1ae51b2aee60f255fb0bd84170f9ca0c145d62c2ac452aed9110c5983
Mandriva Linux Security Advisory 2009-213 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
111fda230c0d060c1db1fe458067d6dcf3b80aa0be55bee39174cc106791fe7d
Mandriva Linux Security Advisory 2009-212 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
72b925d3e0a240c46928b20b6fc7e1e32e82593cc0b1fa34698fc90cb3e7167c
Mandriva Linux Security Advisory 2009-211 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
5b61601e33e11594211de303a61c8e1b2463eb8687e98e63a81dd0577061bd5d