Microsoft Internet Explorer 8 suffers from a vulnerability that allows an arbitrary web site the ability to force a victim to make tweets.
8269887c6dc615aa7b380185ff2cddb02707773fa120bc701801b7bafec70899SMBind versions 0.4.7 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass.
0da84d92d29133b3f50b81dffd38845ce1e493b4b43e77fddb677151dfde6607Pligg version 1.0.4 suffers from additional remote SQL injection vulnerabilities outside of the previously discovered findings.
bd510dfa8c37dd79fb700a945f23a47f0bda0d46ad0b2c4cc73c2acdada49063Month Of Abysssec Undisclosed Bugs - Trend Micro Internet Security Pro 2010 suffers from an Active-X extSetOwner remote code execution vulnerability.
4620de97498bd0557f5f5a7a75237763455786c027f6b263a0f56abfdcc5fb4eMonth Of Abysssec Undisclosed Bugs - Visinia version 1.3 suffers from cross site request forgery and local file inclusion vulnerabilities.
585ee45ed954de99a78e5b9e113589b44930bbce597ba8fcac84e298923a2dccVUPEN Vulnerability Research Team discovered a high risk vulnerability affecting Google Chrome. The vulnerability is caused by a memory corruption error when processing focus events, which could be exploited by remote attackers to potentially execute arbitrary code by tricking a user into visiting a specially crafted web page. Google Chrome versions prior to 6.0.472.53 are affected.
2295a6c5a62a9aab8f0009db39e9958b989b89bb1f3c39a635c47d462c9c9bfeMonth Of Abysssec Undisclosed Bugs - Visinia version 1.3 suffers from cross site request forgery and local file inclusion vulnerabilities.
54ba9b2a77570d5e24c797949460bf2d84ab31e6f9d24e86fadc566553993376Month Of Abysssec Undisclosed Bugs - Trend Micro Internet Security Pro 2010 suffers from an Active-X extSetOwner remote code execution vulnerability.
bbdd0a04d64f85ab56f13cb6ee058728c66b9b3b85d47b220ea29d630abf4871Debian Linux Security Advisory 2102-1 - It has been discovered that in barnowl, a curses-based instant-messaging client, the return codes of calls to the ZPending and ZReceiveNotice functions in libzephyr were not checked, allowing attackers to cause a denial of service (crash of the application), and possibly execute arbitrary code.
ab80e7337de5886d730835a02d434d8f7f3c6c6cda36cdb2a4d3ae519c3188acHP Security Bulletin - A potential security vulnerability has been identified with HP Operations Agent running on Windows. The vulnerabilities could be exploited locally resulting in an elevation of privileges and remotely allowing execution of arbitrary code.
bd721da8bf251414d3a9b4774068164e61684e3127a198b48521299815d52f8cSecunia Security Advisory - A vulnerability has been discovered in KeePass Password Safe, which can be exploited by malicious people to compromise a user's system.
212bbdb20030a8ac1337286e667ab1b71ae06818653b74a35bd2537b907c16c0Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges and by malicious people to cause a DoS.
ab30e7373aa72dba088713674d90a24c1be66c8c2b40ce46115b0c6821c903f7Secunia Security Advisory - A vulnerability has been reported in 3Com H3C S9500E switches, which can be exploited by malicious people to cause a DoS (Denial of Service).
6e6ef62c3c3db90d84ae7c860f53139b89925a4b3844f51cbd6c7f32f215843bSecunia Security Advisory - A vulnerability has been discovered in PhotoImpact, which can be exploited by malicious people to compromise a user's system.
206bd2e8e2a746b02f3b49f4ba317a0ff20096d89e3b1bb81bfb408e2ddba8e0Secunia Security Advisory - Two vulnerabilities have been reported in HP Operations Agent, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to potentially compromise a vulnerable system.
903b02e3759946a2ada824011e59051dfd9f95d2b0769c4617ca14b446bc00d2Secunia Security Advisory - Some vulnerabilities have been discovered in Visinia, which can be exploited by malicious people to conduct cross-site request forgery attacks and disclose sensitive information.
8e0a5151f81bc3ffa4f2891b91fd9e7d1b0d336c0fb3968e78d3668c9865dbb4Secunia Security Advisory - A vulnerability has been reported in Roxio MyDVD, which can be exploited by malicious people to compromise a user's system.
7e8f1e9ed1328f75ac9243c5f2aa6c30fbb5028de7e3d93c9f0c6bb991eab77eSecunia Security Advisory - A vulnerability has been discovered in MantisBT, which can be exploited by malicious people to conduct cross-site scripting attacks.
c5a2e5d8062ba402537b8e09729f11fba30abe69383a60fd86ee64b844a442d3Secunia Security Advisory - A vulnerability has been discovered in NuSOAP, which can be exploited by malicious people to conduct cross-site scripting attacks.
6e737644a9cbe78dcd865d7bab4a7c2cf239d9893d9df922b60f8e136053dd91Mandriva Linux Security Advisory 2010-170 - GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a.wgetrc filename followed by a 3xx redirect to a URL with a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory.
7e88aed1075989ac769d24f2faa6e97354507085f73aec9d9b3c569aa00eb29cGentoo Linux Security Advisory 201009-1 - An integer overflow vulnerability in wxGTK might enable remote attackers to cause the execution of arbitrary code. wxGTK is prone to an integer overflow error in the wxImage::Create() function in src/common/image.cpp, possibly leading to a heap-based buffer overflow. Versions less than 2.8.10.1-r1 are affected.
c2ac66e27ba600b2f3b5ab01ed974d8c839adb14c710f03fa8005debac84c079OneCMS version 2.6.1 suffers from a cross site scripting vulnerability.
36f4fb5855939c1f7d8dc2edead0768a8d6a834a57f32aca98abfabad05b4a8bWhitepaper called PATH Attacks. Written in German.
8a7171d2db605792d0b33902b06e2133656e7900ddfe53395a9f9b3645604ffaMonth Of Abysssec Undisclosed Bugs - Apple QuickTime player version 7.6.5 FlashPix NumberOfTiles remote code execution exploit.
aa5ee77d4f0cae3c9c6b145e680baba1d16f858fe6786e227c30f287041e1fa1Month Of Abysssec Undisclosed Bugs - Rainbow Portal version 2.0 suffers from login weakness, cross site scripting and remote SQL injection vulnerabilities.
3c9106c77965a19f36fcdf1cf3d15465ddacc650e342e9ea6adb4586e0bbf833
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed