Secunia Security Advisory - SUSE has issued an update for java-1_5_0-ibm. This fixes multiple vulnerabilities, where some have an unknown impact and others can potentially be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), or compromise a vulnerable system.
f5e545152460d39b4b2e57d680d0fbb2ae2bb1a71b3c6564d9ed1142a8bee618Secunia Security Advisory - Some vulnerabilities have been reported in Panda Anti-Rootkit, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges.
6996c661d591a2f8fca19f3db0d89def328cb3650c3f149ec4370b2c722b5360Secunia Security Advisory - A vulnerability has been discovered in the AutarTimonial component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
8cd020d8677c98c479f2929d575ab9cf054d856db0e354d61dc581ce68315f87Secunia Security Advisory - Some vulnerabilities have been reported in Avahi, which can be exploited by malicious people to cause a DoS (Denial of Service).
0d08a45ed727a5022f0b932b496912925ab2f697495b5aaa5783ca7c4178cf29Secunia Security Advisory - Fedora has issued an update for avahi. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
12325a500e028a79cc88a88b010733bb62a613c163f65962298d803477f739a1Secunia Security Advisory - A weakness has been reported in Ruby, which can be exploited by malicious, local users to bypass certain security restrictions.
b42d4b7e6613b98167eb2dc57b0a9fa08b2ef8ee7527e10b824a73c746cae012Secunia Security Advisory - Accensus Security Group has discovered a vulnerability in Xlight FTP Server, which can be exploited by malicious users to disclose potentially sensitive information.
e5ca4e17765d89176fb987cabc92bc966c31304abef9d83059087bf1245a2675Secunia Security Advisory - Multiple vulnerabilities have been discovered in Sandbox, which can be exploited by malicious users to disclose sensitive information and upload arbitrary files and by malicious people to conduct SQL injection attacks and bypass security restrictions.
e6a14f7d8a1b79f26c7580f6d1d48b4e797723b95d91d7b4bd345d85fe3c9d24Secunia Security Advisory - Fedora has issued an update for mediawiki. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
0e513720b8d76f98d02b985cc9f67df6c0cbf2226721fe1d1810aa5d57ba8d95Secunia Security Advisory - Fedora has issued an update for mingw32-libtiff. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
de1b8811e5756ce2ddf31c2f33cb6d8560907e4f1c135c87aceca2a68492f507Secunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
0fb07d17786e327ca6381989a469f6a15806f63134aeb22f4c210e1be218229aSecunia Security Advisory - Luigi Auriemma has reported a vulnerability in the Unreal Engine, which can be exploited by malicious people to compromise a user's system.
43328aca4ae5710917ea3dd3a0efd16e7dfd4b23c73ed4f014a36eacd427676cSecunia Security Advisory - Fedora has issued an update for rpm. This fixes some weaknesses, which can be exploited by malicious, local users to gain escalated privileges.
ee197df7e98c43bf969c5a17acb2ed09137a7d8bc37d9c91811d64eae2a672b6Secunia Security Advisory - Fedora has issued an update for mediawiki. This fixes a vulnerability and a security issue, which can be exploited by malicious users to disclose sensitive information and bypass certain security restrictions.
704a7d1a40926f1c1c441c3f9a814b734b19ec6a866a311a4f6ae3de90b02244Secunia Security Advisory - Some vulnerabilities have been reported in various Panda products, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges.
00f274b61b5a4a50fba6c34b59ec867c2734b1d2f140d6f47a141c38c52c4368Mandriva Linux Security Advisory 2010-128 - The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a Content-Disposition header that suggests a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory. The updated packages have been patched to correct this issue.
12594a1475fa19afe93960ef2689c43dff131b17a533ae328cd239dcb0eccfe7PAM CAPTCHA suffers from a user enumeration vulnerability.
5d0e839a51d9062e9e47f0bc79a838a4442d42b96bc50b1e8d50ba213458eb4cHP NNM version 7.53 suffers from a buffer overflow vulnerability in ovwebsnmpsrv.exe.
6eeaab66bff0c4a05ace7074273ab99bbee5174fa6079fd37637c4ceb165dd30Download Indexed Cache is a proof of concept script that implements the Google SOAP Search API to retrieve content indexed within the Google Cache to support the "Search Engine Reconnaissance" section of the OWASP Testing Guide version 3.
42571e3120e00887108e79161991c1e09c0a3fb72178bd4a81286effe45c918fXlight FTP Server version 3.5.5 suffers from multiple directory traversal vulnerabilities.
b6085a823ca16bf1e6ab1591abb8e5a42bb35ac909c54739a36ec195f7777322VLC Media Player version 1.0.5 (Goldeneye) suffers from a remote URI handler stack buffer overflow vulnerability.
c3909901a0404e981f7a24029eec3b4c3cd4fbc194372078edd7d57d92d2d2fcBind port to 6678 XOR encoded polymorphic Linux / x86 shellcode.
46981d5d2de7c90df711355d03cff1745648fc7cdb7c67115497313855d5e0dbSafari JavaScript JIT shellcode and spray for ASLR / DEP bypass on Win32.
6a5ad5dcf34040adc8cd07830c26ebb5fde16628988909f26bbf382722e4f399Ubuntu Security Notice 943-1 - Martin Barbella discovered an integer overflow in an XSLT node sorting routine. An attacker could exploit this to overflow a buffer and cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. An integer overflow was discovered in Thunderbird. If a user were tricked into viewing malicious content, an attacker could overflow a buffer and cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Several flaws were discovered in the browser engine of Thunderbird. If a user were tricked into viewing a malicious site, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. If was discovered that Thunderbird could be made to access freed memory. If a user were tricked into viewing a malicious site, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
5f4b9bab6b156cbfa289cb3fb4a86f53b13d222f4d6bd2c47f5c03d4c208980cNetworX version 1.0.3 suffers from a shell upload vulnerability.
3f2d825ed95dca18465d356e05064c575ec6b717e1d44d614cddcec05d15b616
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed