Debian Linux Security Advisory 2031-1 - Sol Jerome discovered that kadmind service in krb5, a system for authenticating users and services on a network, allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number.
6164cb2bd1a01d67abb4ae28c6d3234def51187ed50848a93f4f60ea9c9c0fa7Trellian FTP client version 3.01 PASV buffer overflow exploit that acts as a fake FTP server.
18d7667e96d9bd14045ca8390a44f0df2452cafafb77a0a1a252a055404f6b76YaPig version 0.9.4 suffers from a remote file inclusion vulnerability.
cc1719ce5e3bcf687fdb359121adccb41821f38e4a436281279f06e3c071eedeiCommander is a free and open source Command and Control Centre that lets you manage multiple servers from one place. The idea of iCommander is to provide an easy and secure solution for system administrators that allows them to control several servers from one place and in the same time.
7be2331762400f819e69b2e768afe0786443a94e5e9e5393cc503e4a4a9ffa69xBtiTracker version 2.0.0 suffers from a remote SQL injection vulnerability.
4d47a74485b91d1ce68f66495c9b02b93b2e17ffe358bbf376a1f26fae563077My Gaming Ladder version 7.5 remote SQL injection exploit.
ee17141cff462b8eb9a55c6acca3ea94f5708d1b67e4fe6ad4d9a067359c0c1cThe Joomla RokModule component version 1.1 suffers from a remote blind SQL injection vulnerability.
83f8bf4069249dcf180c8d2761680cd3a7dc3dd167545373f911c89c1170b537The Joomla Preventive And Reservation component version 1.0.5 suffers from a local file inclusion vulnerability.
0faa1f869c3564534dff1a8ff9242016f32dff3031320a3cb22d1883b71b8341The Joomla JProject Manager version 1.0 suffers from a local file inclusion vulnerability.
3bb41e3e0a5a8df022c0488a222f51166faec0de0734eaad136afc939a11b3bbThe Joomla JFeedback component version 1.2 suffers from a local file inclusion vulnerability.
5167be1a4657e8a02d86e033f4eacbb7ef63d7258e6ca0a2d7f77d47ebae64acThe Joomla JA Job Board component version 1.4.4 suffers from a local file inclusion vulnerability.
87e37d17730750ec6026c47dfbe93d75bf0b957b2d59dfa435b622b72f0876abThe Joomla Ticketbook component version 1.0.1 suffers from a local file inclusion vulnerability.
c24df0ac678faaf92b6eaae80b6cd83e5335523006fe7a684daa1f9f2645c2afThe Joomla TweetLA! component version 1.0.1 suffers from a local file inclusion vulnerability.
ae766dcb4fc008b438cd6c0ad9710d378fc1745c064360301206dcd5fa46430aThe Joomla TRAVELbook component version 1.0.1 suffers from a local file inclusion vulnerability.
b9828af6b10fde75f2673b8db8844cf1980acaead04345407edcdcb9fe86dd85The Joomla AlphaUserPoints component suffers from a local file inclusion vulnerability.
465af90d5d7a5f69109b4ee0e1e73a31374e978661f30a6022b7a3606e316460The Joomla spsNewsletter component suffers from a local file inclusion vulnerability.
8d110c78f3a652a4592c9a89f11a82f20390b24c075f6e8dc8c4372feb829e08The Joomla Properties component suffers from a remote SQL injection vulnerability.
2a6c67110534985f4b0e735676732de4c0de879e7355b3ea0be77c1ab8e53602The Joomla Allvideos component suffers from a remote blind SQL injection vulnerability.
d4ed036d18b12c7f0e2cc5a7cbb2313131f86561d3c2843f9598b48c63e7c5dcvBulletin Cyb - Advanced Forum Statistics suffers from a denial of service vulnerability.
ec3d30e76b68c4548dca6b82771796442ce22bc81e811bb14d8b7bfa28075652The Joomla CA component suffers from a remote SQL injection vulnerability.
dc0372fd25f058859e5da7e0f98591e08d2c38ba7607ebe4ace1843176e1d905The MKPortal Anekdot module suffers from a cross site scripting vulnerability.
65e5ecfa5839acbbb79e01a403b13696eedfa3d487bb7246184d67df61a07ce1Virtual Security Research, LLC. Security Advisory - On December 2nd, VSR identified an authentication bypass vulnerability in TANDBERG's Video Communication Server, firmware version x4.2.1. This vulnerability allows for the complete bypass of authentication in the administrative web console. Since this web interface can be used to execute arbitrary code on the appliance as root (via software updates), the severity is considered critical.
db51c425156ad6e9f3fa40fb9a1383e98edfded1cb0710c6c58c4a658f0b3a0bVirtual Security Research, LLC. Security Advisory - On December 3rd, VSR identified a directory traversal and file retrieval vulnerability in the TANDBERG's Video Communication Server. This issue would allow an authenticated attacker (who has access as an administrator or less privileged user on the web administration interface) to retrieve files from the filesystem which are readable by the "nobody" system user.
ecd6138fe7cb748fda93151615a0f39b450b83fd760e7df84e7bd345e9f97124Virtual Security Research, LLC. Security Advisory - On December 2nd, VSR identified a SSH service authentication weakness vulnerability in the TANDBERG's Video Communication Server. This issue would allow an attacker with privileged network access to conduct server impersonation and man-in-the-middle attacks on administrator SSH sessions. Successful attacks could yield shell access to vulnerable appliances.
5d59b48678f9f742a235347210d3b7f85ea422e15a8e88168874895fb1bf8af4Secunia Security Advisory - A security issue has been reported in Garage Sale, which can be exploited by malicious people to compromise a vulnerable system
12cb9663af37b59b254bd7254d23fa81cea32ed4ca8fb04ff661cd542143d507
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed