Secunia Security Advisory - Red Hat has issued an update for pidgin. This fixes multiple weaknesses, which can be exploited by malicious people to cause a DoS (Denial of Service).
7fd9e1555ddf49c0f8b6ed3fbd5f906196e16e94a449771e3f62b16574f48852Secunia Security Advisory - Ivan Markovic has reported some vulnerabilities in Huawei HG510, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site request forgery attacks.
21d49a0a862c57cdcab2b01b68c95a2d59fe06c151a5579889e4a32ee30e738bSecunia Security Advisory - Some vulnerabilities have been reported in the Content Distribution module for Drupal, one of which has an unknown impact and the other can be exploited by malicious people to manipulate certain data.
1e62da38b9b0ee084260560c3920f529c2e9416e5b58cdadded816fd80fdbfa4Secunia Security Advisory - A vulnerability has been reported in Symantec IM Manager, which can be exploited by malicious users to conduct script insertion attacks.
04a9abfe14b7f60bfcdedb88e335c3085673bbbdd911c995db8b34e05db88f5eSecunia Security Advisory - Tobias Klein has reported a vulnerability in avast!, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
0fd9fc4980ad1c56b43e372b8a44459328ce28089207a636b9eb3587ba2d13f2Secunia Security Advisory - Ubuntu has issued an update for pidgin. This fixes multiple weaknesses, which can be exploited by malicious people to cause a DoS (Denial of Service).
068ae24d920d3173bffdad9e62388f2570e5179eac4d99daf935c9c036ee4718Secunia Security Advisory - Easy Laster has reported a vulnerability in Ero Auktion, which can be exploited by malicious people to conduct SQL injection attacks.
c1c6eaebcf4a0d228a658b29af9fb6ed4611c3ffa3577e0cc0d73c9706a6915bSecunia Security Advisory - A vulnerability has been reported in IBM WebSphere Portal, which can be exploited by malicious people to conduct cross-site scripting attacks.
dee29c1f4d5a4076d3d51aacd6197b2aee3ad52fd38a2e3de4f7bc46270b32e8Secunia Security Advisory - A security issue has been reported in sudo, which can be exploited by malicious, local users to gain escalated privileges.
8ec3ce051084f1d3e2d49a689ffba9668e118c6eb4a46310201f533ca77509c1Secunia Security Advisory - A vulnerability has been discovered in Entry Level CMS, which can be exploited by malicious people to conduct SQL injection attacks.
e96c6b5735fb4ef8cb0eb61a09e2cef3194be208640be513b1723d985158d5f6Secunia Security Advisory - A vulnerability has been reported in avast! Home/Professional, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
9241eafc1bdec62c86bc865a18628b715a4c3636c7cbefa3eab9f8a81ac83870Secunia Security Advisory - Debian has issued an update for linux-2.6. This fixes multiple vulnerabilities and security issues, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, potentially gain escalated privileges, and bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service).
bbc1c4fe4cfdf97c3968e16943b1b237a234dd7776b54bdd1acdb9c3349bb8d1Secunia Security Advisory - CA has acknowledged a vulnerability in CA Service Desk, which can be exploited by malicious people to conduct cross-site scripting attacks.
38ab00eff4a207833c25821b29466368134899543fe1a1b0c1fdf42dac9bd933Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious users to bypass certain security restrictions, and by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
4dc1fecc9568c7217ffc652bcf494bdc5520b88e473f3acf37cd431791db24b0Secunia Security Advisory - Easy Laster has reported a vulnerability in Php Auktion Pro, which can be exploited by malicious people to conduct SQL injection attacks.
899a20d039f432d6576ca0ff0378866a896153b132334dcfb7d6047a74b57907Whitepaper called Hacking Oracle from the Web: Exploiting SQL Injection from Web Applications.
79d7a613b30646f28183095a34cb7269351d1fcc8c121d569257117938cc0ca4CA's support is alerting customers to a security risk with CA Service Desk r12.1. The release of Tomcat as included with CA Service Desk r12.1 is potentially susceptible to a cross-site scripting vulnerability.
2e92d226c13807796ab6b28da061de5d24b3df3aa35c5887901a5a31a4b25235SharePoint server suffers from a cross site scripting vulnerability.
cf4a048d4f84623e20fc5b7fea90e731ba397137d3b0ae7fe9935952176dc522E.M. Total Video Player version 1.31 local denial of service exploit that creates a malicious .wav file.
87c3586b55e0fe3ed4937946b59144741320c0c23ebf028ffb29a5b60038d44fCableTEL's Triple Play version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
980815ba4d4c7c916b860334459997b4fbba509ae415c307121b9de7a89edb7fUnHash is a program that performs a brute force attack against a given hash. The hash can be MD5 or SHA1, and the program will auto-detect which one is given.
87e6614915abd2a4200154b7ec02d0f533be9b9febe8e7d1b8cbd447150e62bdGNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP rver, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.
5b439b4b8916602787be846d8167141ed12986fcb2e04297d83fdc9391150374Ubuntu Security Notice 902-1 - Fabian Yamaguchi discovered that Pidgin incorrectly validated all fields of an incoming message in the MSN protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. Sadrul Habib Chowdhury discovered that Pidgin incorrectly handled certain nicknames in Finch group chat rooms. A remote attacker could use a specially crafted nickname and cause Pidgin to crash, leading to a denial of service. Antti Hayrynen discovered that Pidgin incorrectly handled large numbers of smileys. A remote attacker could send a specially crafted message and cause Pidgin to become unresponsive, leading to a denial of service.
35611ca76d703b9d1cdd647f16a07f7b90f473481b5e0afdd67eaee2f68d765bVKPlayer version 1.0 local denial of service exploit that creates a malicious .mid file.
5974b454aec94c032fb6ca13d56355f065d26844c4b088aab9b29cc0be6c95f0Whitepaper called Remote Buffer Overflow Exploitation. Written in Portuguese.
64a8be14586a9895deb175eb6875f0fd6992016a6393dff86273874be2347af4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed