Ubuntu Security Notice 890-3 - USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.4. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash.
2d03d955c3cfb57a0bfe01de70f6a02b616d92fb935678c879af3a64fe866cb2Microsoft Internet Explorer vbDevKit.dll Active-X control code execution exploit.
ae5dc9de4a18ddc92f46faa9b54c22902ce0b958eae97535e533c3b5946f4a19QtWeb web browser version 3.0 denial of service crash exploit.
343d8e627562c61e373f4d0ceca649276e3eebd843e397d89e6ed5b532cc7efbThe Joomla Biographies component suffers from a local file inclusion vulnerability.
5a4ff7f35fd3c3b395c53d0a4cf3b7d59772f683df75cce6c7c5676ebdff414bMicrosoft Internet Explorer wshom.ocx Active-X remote add administrator exploit.
0347e7e42b988d8bac00f2f2b844f1a7af2a6822474ec2ae97615d9336ee74bciBoutique version 4.0 suffers from a cross site scripting vulnerability.
76547047abe0107cd4a8d1ca4a0a39f4fa9c469b9c75ab476112cb955c73ce21Silverstripe CMS versions 2.3.4 and below suffer from cross site scripting vulnerabilities.
0709ec68a83de79a2eab0dcab8bac9db071789e7d93d937708c1035b8c8e8658KosmosBlog version 0.9.3 suffers from cross site request forgery, cross site scripting and remote SQL injection vulnerabilities.
5472409e89b322c8412cef58eca01362107cafb2c31a4f056af0a8e602fab177Pico MP3 Player version 1.0 local denial of service proof of concept exploit that creates a malicious .mp3 file.
b4ecef5edbeca5a50418e1ed30c16096b3b02705765964b923a5e8d0d71b9b04yPlay version 1.0.76 local denial of service proof of concept exploit that creates a malicious .mp3 file.
ee325d98c5295a682847c7e6a3952d6ec69ba9c4794e6d11888897fd3dab9d5aThe Joomla Upcoming News component suffers from a remote SQL injection vulnerability.
57cb48d7ac1bd4e9145e585a02280ab5947ef0bdb9181ed224af8cf00e24b7edPHP Pro Bid version 6.0 suffers from a remote SQL injection vulnerability.
b30884a7711efc0fd9cfc59eabbf54e21ea842e3cbcb5c1bc8bc0d7a27093092The Joomla Biographies component suffers from a remote SQL injection vulnerability.
a9fda151ada334833570f84278d7358052f7ff9d316d0457ddb8b9f837a74f6eKayako SupportSuite versions 3.60.04 and below suffer from cross site scripting vulnerabilities.
3bbeb6774ce66b44e84ec67bd86733a3102629edc00c72695c1f6b04bf8f557beWebEditor suffers from a directory traversal vulnerability.
39ef626f478540c65864cc2ae871677d6b538b5003ab3ccfe7066098a8b171edWhitepaper regarding WEP cracking. Written in Bahasa Melayu.
f0d734b449b0bb0ab316183a4b162d9a57b699e4a4579390a1d7ac93f42b4196The Joomla Gameserver component version 1.2 suffers from a remote SQL injection vulnerability.
51d169573001f0c3951eaf3870a0f044437860d31190877a20181ed23486bab0DJ Studio Pro version 5.1.6.5.2 .pls file local stack overflow exploit.
63628ef1816d9e71233c778f7a71d4ef61879e18760cad5ff7a976d67a12b23aSecunia Security Advisory - Ubuntu has issued an update for python. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
6ce982eafa67a45248f33b0a01ae44cbb59fcc83c6ff21f2b8ed33c540b2d5deSecunia Security Advisory - Red Hat has issued an update for kernel-rt. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges, and by malicious people to cause a DoS.
1318878cfc3cb59614c1eec4ba0a9a00998750c7194ef82a77651ad0e2be4828Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Sun Solaris, which can be exploited by malicious people to poison the DNS cache.
0d4b2f652ddb7a3dcdff6b489be11157b7c6af1b9e0a55d5bf73085f469fe0bcSecunia Security Advisory - A vulnerability has been reported in SafeCentral, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
eb1a5b8d2053d1072c896119cef560071156c4b348a2f0cfdd34b6b50a2761d2Secunia Security Advisory - Cesar Cerrudo has discovered a vulnerability in Google Chrome, which can be exploited by malicious people to disclose potentially sensitive information.
24bbbdba3c36f374559d10bed71e89664505db90dde03b753e76a0fa2f9fd532Secunia Security Advisory - Cesar Cerrudo has discovered a vulnerability in Apple Safari, which can be exploited by malicious people to disclose potentially sensitive information.
297b8f6413cd5d835ad3aad5e092196957304ab8e3423258566dacce0560e5b8Secunia Security Advisory - AbdulAziz Hariri and Zein Fneish have discovered two vulnerabilities in InterBase SMP 2009, which can be exploited by malicious people to compromise a vulnerable system.
a8d067ea37e723f118d96e2b893a1c8859dec281c45b7353f7bfdd1c5d5ccc66
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed