The OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.
9de08a12ff30a6bd1ca1d89eaf33d5e028b028bc4a19f273f13850688bea32fdA vulnerability exists in EMC NetWorker which can be exploited to potentially create a denial of service condition or eavesdrop on process communications. EMC Networker uses an RPC library to provide a portmapper service within nsrexecd. The portmapper restricts access for service commands to the localhost. However, the UDP protocol allows malicious users to spoof the source address of the network packet making it appear it originated from the localhost. This potentially may allow a remote malicious user to unregister existing NetWorker RPC services or register new RPC services. EMC NetWorker versions 7.5.3.5, 7.5 SP4 and later, and 7.6.1.2 and later are affected.
21660399dbf1d185b83eda092d0c5dc4da4a6779f9b2ea910ce9b02233783449KaiBB version 1.0.2 suffers from a cross site request forgery vulnerability.
7a28f4a1fe10f764356da1f62bcbd1a7999df21aad02f80f0146a1c8bd0ba117Lomtec ActiveWeb Professional 3.0 CMS allows for arbitrary file upload and execution as SYSTEM in ColdFusion.
78494c3386ff463a2ce2a536380cd254dc574d5098b1fb4f4bc4d3c6534f5261Polycom SoundPoint IP devices (IP phones) are vulnerable to denial of service attacks. Sending a HTTP GET request with a broken Authorization header causes a device restart after ~60 seconds.
a78894c7aae31beb25c89dc9a45ca6c2fbe30f26982a9bda17bb1eb156c2a216Comerciosonline CMS 5.6 suffers from a remote SQL injection vulnerability.
1dfdfb268510b8f456f24a42c54a0275f03ddcb1dd8a0af65a52d5b3f323c834Vanilla Forums version 2.0.16 suffers from a cross site scripting vulnerability.
e37155777c542c0a1b82329070dda63bce568aa31bb562e2a85892d2601dbb9eHycus CMS version 1.0.3 suffers from a path disclosure vulnerability.
9e9b7e185377ac957dede68c122016d64c6b2ae8dba8e47d305e96c975286831BLOG:CMS version 4.2.1.f suffers from a path disclosure vulnerability.
5a0e18a8fedf71824436e0362bf68c2075ddda6dddf1cca7aca4ea9446ddec0c71 different applications suffer from path disclosure vulnerabilities.
c09bd612dececc35c3aa2ed7ac7408eb5e85dcc00323899f103b29c64722dd94Secunia Security Advisory - A security issue has been reported in syslog-ng, which can be exploited by malicious, local users to disclose potentially sensitive information and manipulate certain data.
142720d549f61da469ed25c0f11b30f9e09ce62d8140a863fc397ea7bb84b781Secunia Security Advisory - Ubuntu has issued an update for awstats. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
0b382406378663ef41be606269519cca05dac241bbfdc14dca2442d7491bff97Secunia Security Advisory - A vulnerability has been reported in the WP Featured Post with thumbnail plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
a248b027bf0eb2d986c7e929e7359d896bdae72aa83921b49db2973ae3c4350cDBHcms suffers from a path disclosure vulnerability.
e10dd294c75e3592f6f977c9288a459034ea7ee0d39c7da3d59044fd7fac64f5Secunia Security Advisory - A vulnerability has been reported in ISC DHCP, which can be exploited by malicious people to cause a DoS (Denial of Service).
f079cc6b8ef2d1d9335940721d0d729e16aaebc6825718aa33fff069a564d9f1Secunia Security Advisory - A vulnerability has been discovered in XNova, which can be exploited by malicious people to conduct cross-site request forgery attacks.
7e475ab6d582eee9445663463cc8bd92286dfbd4d8c416d5000a6851f2b6a79fSecunia Security Advisory - A vulnerability has been discovered in Vanilla Forums, which can be exploited by malicious people to conduct cross-site scripting attacks.
ae5495d02e7f035c54d55353152e9ee7f4bc30248fb0fb0c1c0833d2d7fafbefSecunia Security Advisory - Ubuntu has issued an update for openjdk-6. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
fa53a788c3c0c0d60732e5dfe25576480d8c92780133c55c9657cdd5e2adb539Secunia Security Advisory - A vulnerability has been reported in ISC DHCP, which can be exploited by malicious people to cause a DoS (Denial of Service).
3ca141abf13c45232c1c9d1dfedaaae71a0b2b8efc99dae3e32a50922665fccfSecunia Security Advisory - Fedora has issued an update for myproxy. This fixes a security issue, which can be exploited by malicious people to conduct spoofing attacks.
9e9d067dbba4d853a0ca13706403ee80705f088ea6ef9833f121ea03ad3a8cd8Secunia Security Advisory - Multiple vulnerabilities have been reported in Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
90b7862f3478d76da9485ffe94e2e0f4c7d690366efa68cb12a7bb094560ef88Secunia Security Advisory - Multiple vulnerabilities have been reported in Symantec Quarantine Server, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
76b8ca661489e3173f8596b75f16dffeb297dae35adf8dd6e250079ce763b653Secunia Security Advisory - Some vulnerabilities have been reported in the Oracle PDF Import Extension for OpenOffice.org / Oracle Open Office, which can be exploited by malicious people to compromise a user's system.
70b0d8d09a27606810f9c5008fc57b6afb6ce5452f9baaa6444738fd69aa47a2Secunia Security Advisory - Some vulnerabilities have been reported in PRTG Network Monitor, which can be exploited by malicious people to conduct cross-site scripting attacks.
1c0a791fad46576a02e0ffd89acd6201cf9e0d0c022646a6ea1283014ad22eb5Secunia Security Advisory - Fedora has issued an update for hplip. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
0321fe49a6f13f30208a0dc5cb79159878a3b93f387a06ee50f8eaa34473fb7a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed