Debian Linux Security Advisory 1982-1 - Julien Cristau discovered that hybserv, a daemon running IRC services for IRCD-Hybrid, is prone to a denial of service attack via the commands option.
678871e6c326ebcc674f9f842488b0cfPHPUnity.NewsManager suffers from a local file inclusion vulnerability.
b08a9981e156a482971368ece497c1f6The Joomla DMS component suffers from a remote SQL injection vulnerability.
192dc9a6f85780ea3a86f301c846cb2bWireshark version 1.2.5 LWRES getaddrbyname stack-based buffer overflow proof of concept exploit.
479d72c9caf421c392a0fce6d9cfeabbOCS Inventory NG server versions 1.3b3 and below suffer from a remote authentication bypass vulnerability.
6210683204c7c00f2cbb6c047ee564ecAOLShare YGPWz.dll Active-X control version 9.1.6.24 denial of service exploit.
24ebdfcd22a321c31628e3f433ef78fbMandriva Linux Security Advisory 2010-029 - The rootcerts package was added in Mandriva in 2005 and was meant to be updated when necessary. The provided rootcerts packages has been upgraded using the latest certdata.txt file from the mozilla cvs repdata.txt file. The rootcerts package provides the /etc/pki/tls/certs/ca-bundle.crt file which most softwares in Mandriva, and where applicable is sharing such as KDE, curl, pidgin, neon, and more. The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.
3d67fd7196559417c415a15d780d6703Tutorial Basico de Assembly Para Linux/i386 na sintaxe AT&T.Written in Portuguese.
50e8da05229e73932b4f026666cf8966Small whitepaper detailing simple methodologies surrounding PHP trojans.
668176f8cdeb5c3183faa7183ab35971Debian Linux Security Advisory 1968-2 - It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data (CVE-2009-4010).
206a48ca48247cafa78ec670f4c0480dCemaListe version 2.3 suffers from a database disclosure vulnerability.
40b53ea1725aff2642267b86a7700c2fAIC Audio Player version 1.4.1.587 local crash denial of service proof of concept exploit.
bb70a1f61201c6a977a457ad8f4cd175Ubuntu Security Notice 892-1 - Ronald Volgers discovered that FUSE did not correctly check mount locations. A local attacker, with access to use FUSE, could unmount arbitrary locations, leading to a denial of service.
8d6d9887d42f1d9e81abcc3b43ffd594PHP Product Catalog suffers from a cross site request forgery vulnerability.
9990443596e72946bcc911b1d41edd05Debian Linux Security Advisory 1981-2 - The latest DSA for maildrop introduced two regressions. The maildrop program stopped working when invoked as a non-root user, such as with postfix. Also, the lenny version dropped a dependency on the courier-authlib package.
00664f6329ad84b6d0353790886ea97bThe Joomla JE Quiz component suffers from a remote blind SQL injection vulnerability.
bdde6cbe47024bcb8c72905c703a04b9XAMPP versions 1.6.8 and below suffer from cross site request forgery, cross site scripting, path disclosure, remote SQL injection and directory traversal vulnerabilities.
d934d9380ec1f23797936d5bc2f1c657The Joomla CCNewsLetter component suffers from a local file inclusion vulnerability.
3c8c3fb4a90be768bdcd05608de94694Ubuntu Security Notice 893-1 - Ronald Volgers discovered that the mount.cifs utility, when installed as a setuid program, suffered from a race condition when verifying user permissions. A local attacker could trick samba into mounting over arbitrary locations, leading to a root privilege escalation.
6d7694cdc9b4cf486e8c305a1e883f1eThe Joomla CCNewsLetter component suffers from a directory traversal vulnerability.
28bcbd792bc663b5dc4d701b8085ff74Rising AntiVirus 2008 through 2010 local privilege escalation proof of concept exploit.
bf5bc5705505b6ba0c2581aa7bcf9bb1CommonSpot Server suffers from a cross site scripting vulnerability.
7144d772c8cbadba806662ced571db18Debian Linux Security Advisory 1981-1 - Christoph Anton Mitterer discovered that maildrop, a mail delivery agent with filtering abilities, is prone to a privilege escalation issue that grants a user root group privileges.
d71498bde7e9b947d97c068eb038aff8Arraid version 1. suffers from an insecure cookie handling vulnerability.
05ffa129dd1824cbc172ceacf2c8317bThe Joomla jVideoDirect component version 1.1 RC3b suffers from a remote blind SQL injection vulnerability.
b73a79491f87bdbe3d56e4250c65d66c
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed