Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.
d35a1edffeca94ff6560ac0e54c9f1711480f7f66e7e975a5d614802c1e8b860Debian Linux Security Advisory 2101-1 - Several implementation errors in the dissector of the Wireshark network traffic analyzer for the ASN.1 BER protocol and in the SigComp Universal Decompressor Virtual Machine may lead to the execution of arbitrary code.
7b2f15fdc7ec4db2d2bddda503707a4fbc9e81e6fbf9ccbdbd7f4c19c3f8153cCartXpress suffers from backup related, file disclosure and shell upload vulnerabilities.
6637f55bc566c82cf16fdfe5d5f556388117dfbb01841d832ef2393d72936653ApPHP suffers from cross site request forgery and cross site scripting vulnerabilities.
f52896eb27b251c1dc181712235f36f1f9af72d5e3c6d9587b1d1fa902df67d9KeePass Password Safe versions 2.12 and below suffer from a DLL hijacking vulnerability.
27dbb2d7b1a90d919e1bb2569728ac3730bb4f93303001bce971cda7b0ccb700WordPress versions 3.0.1 and below suffer from an URL redirection bug.
818645c1e23f450fea6cea2660c625b0ff9c7478a484a12a6949d2fed28619caHP Security Bulletin - A potential security vulnerability has been identified with HP Insight Diagnostics Online Edition running on Linux. The vulnerability could be exploited remotely resulting in cross site scripting (XSS).
c69549e0024fc2ad6f619ff0c4de6ae67da996928c1ab724182981d7ab8df1adTortoise SVN version 1.6.10 build 19898 suffers from the Windows DLL hijacking vulnerability.
9e458041f1e779bd80016839b2909b4a95fedd5e4ffd1c4e4b05752f80456ce3Zero Day Initiative Advisory 10-168 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the QTPlugin.ocx ActiveX control. The plugin accepts a parameter named _Marshaled_pUnk that it uses as a valid pointer. By specifying invalid values an attacker can force the application to jump to a controlled location in memory. This can be exploited to execute remote code under the context of the user running the web browser.
631cc7b0c010057230df142d3e530164f8b056bc448189e6d055b37b81eb3f93Mandriva Linux Security Advisory 2010-166 - Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; a crafted JPEG file, related to the gdip_load_jpeg_image_internal function in jpegcodec.c; or a crafted BMP file, related to the gdip_read_bmp_image function in bmpcodec.c, leading to heap-based buffer overflows. The updated packages have been patched to correct this issue.
da5ff90119d40112c96082889fb4d03c8984033ade5e99468d5e144613f8a459Web-Ideas Web Shop Standard suffers from a remote SQL injection vulnerability.
a7651507829dd54dda9a367e89e65463d9f40142716e22b30a0fb2b5bb26f1eaThis is a proof of concept, self replicating, social network based malware for NING.
de4f62f605510fd85d965fa28f6ecc9117079527689671ded2199c9061472bc2Ubuntu Security Notice 981-1 - It was discovered that libwww-perl incorrectly filtered filenames suggested by Content-Disposition headers. If a user were tricked into downloading a file from a malicious site, a remote attacker could overwrite hidden files in the user's directory.
c075eb9f7a7aa39e64016a87bd6f0e1be9762ecd2feaed17a9615c6901713fe9The Joomla JE FAQ component suffers from a remote blind SQL injection vulnerability.
4efb76783508ae2e5fc5547ba2be6993b0fda4cf388672d0f263879086b9b54eUbuntu Security Notice 980-1 - Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service.
c1f2f49d09fc41d4668cc934226fc360b15c361f48bd0194871e001339bc15e1Void SSH is a python script that performs multithreaded bruteforcing.
4b537bed529692e7a377f1559b3cb1255c25773329e525eaeda49f0a6e0e97d7The Joomla PicSell component suffers from a file disclosure vulnerability.
f104f0432e062b97ccdee2889a6ae50f8dda7b11c4129f72b9758f7561add987HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Software Distributor (sd). The vulnerability could be exploited locally to grant an increase in privilege, or to permit unauthorized access.
d3fd0a88a0f935a023804bb9df9f956436d99484cca1fc0cb4af711916d5bedfSecunia Security Advisory - A vulnerability has been discovered in IsoBuster, which can be exploited by malicious people to compromise a user's system.
7229004902c7043919f9d1812c5cdb3525b7e834ae312949eadc001535260dd3Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/ServerConductor/Control Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
1dd802509a8f48504b0f623d723b01008ac74be7050a8596603764e2f34bf9b7Secunia Security Advisory - A vulnerability has been discovered in Sophos Free Encryption, which can be exploited by malicious people to compromise a user's system.
da2f67cf4661c920b1087bf646af383301024c93ebddf3f1035fdf8267ad0a87Secunia Security Advisory - A vulnerability has been reported in Hitachi Cosminexus products, which can be exploited by malicious people to cause a DoS (Denial of Service).
fc2a23d8c3302cc04410afba93fc5755a3755e6891848d52e8fec706f4b7e907Secunia Security Advisory - A vulnerability has been reported in JP1/Automatic Job Management System, which can be exploited by malicious people to cause a DoS (Denial of Service).
d7878d2fca1c457cbffe0d1664b5ce9b6c1c645a4d594c2b3f5419aa86d3d5b5Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/Integrated Management, which can be exploited by malicious people to cause a DoS (Denial of Service).
ad6e8e80a3f89ec3cc896e8a11aa4f0aa46fcf6fe9e9f72093d0654575c824d0Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/Performance Management, which can be exploited by malicious people to cause a DoS (Denial of Service).
a22671b8014ab87fe8b92197375ba325ac645524a29f7d2a2f79eaee29f42882
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed