Movavi VideoSuite version 8.0 Create Slideshow buffer overflow exploit.
c0b135cf05eb86501d0d23b86e34cc7375ecf853ca99ebdea0d0559a7da03f76
MS Visual Studio version 9.0 stack buffer overflow exploit that creates a malicious .vbproj file.
0b480d40a2331f5df4b4c655501576b71654c242ed718a3ef53273dbb6a1fb8e
MS Visual Studio version 9.0 stack buffer overflow exploit that creates a malicious .csproj file.
74b3656d556261d7be4e14ff5953aae3bd6a6b281eb5bbf605d302e0a7341cb7
DivX Player 'Skins' versions 6.8.2.1 and below buffer overflow exploit that creates a malicious .dps file.
8bb8d34ee72d5ad9c02643ea241a8334a8440315b79418f3e40f6edb2fdfe817
KMPlayer 'Skins' versions 2.9.3.1 and below buffer overflow exploit that creates a malicious .ksf file.
09ce70f4a113b96bc0354c7cf7813bdfa388168de31a5659bd6b66d26dbf3074
JetAudio 'Skins' versions 5.1.5.2 and below buffer overflow exploit that creates a malicious .jsk file.
bd748193bbbf0c7503296498530857cc7fd5b68c0834d379f503f83054734da4
AspX suffers from a remote XML inclusion vulnerability in liste.swf.
197774490414b5b04762408e32f672385375f62b433c29ed70ccb688ec522204
VLC Media Player version 0.8.6 ftp:// URI handler .xspf file buffer overflow exploit and advisory.
f35ea82345bcb20494c22fdfa59ee201ea2818efeb230d3eb92e10d7b9c5e656
MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods.
00e0125c2895877b555872647b0a98d13838a54acda78614bb6c6e70daadabc6
The Refractor 2 engine versions 1.50 and below suffer from a NULL pointer dereference vulnerability. Games such as Battlefield 2 and Battlefield 2142 are affected. Proof of concept code included.
c5154e86267664abbb20e9158985659f81c3f2ecfab82bcf19c80337dcd43227
PhreeBooks version R30RC4 suffers from a local file inclusion vulnerability.
b7c5789bbb2921bd6de523d5ab79a940339fabdeb8d94853c552e0b3e515caf1
PhreeBooks version R30RC4 suffers from a cross site scripting vulnerability.
a6b8d10ab6619fac3f4bc76d477b5e1890563a6d14ff85469043e0123765b293
WordPress ComicPress Manager version 1.4.9.9 suffers from a cross site scripting vulnerability.
e5450a5a4e077bc04451a78989b888ddeec04caaf5007763438e4e8b568b4952
WordPress IGIT Posts Slider Widget 1.0 suffers from a cross site scripting vulnerability.
bbe2057392caf862c9d3e71dd9caad522ffd2b1ec179adadef214733105d42e1
WordPress jQuery Mega Menu version 1.0 suffers from a local file inclusion vulnerability.
17fa7e534d41496514cf6464add06e0d2b540f8383c91fccd02c1be67c4ef773
WordPress Local Market Explorer version 3.1.1 suffers from a cross site scripting vulnerability.
a4b01e718b3386bd70edb7ce42f8f07b3eb573ef54340535199c9033a1b61915
WordPress OPS Old Post Spinner version 2.2 suffers from a local file inclusion vulnerability.
90ad721ad32aedc724e0e2b8821a1b2a8799469895fa5c47a8695d896aae6307
WordPress PG Flash Gallery version 4.1.1 suffers from a cross site scripting vulnerability.
3f427ed1d7171406cb2b3371554f6c371a26c729c20e3faf5bff54c723bec636
WordPress PhotoSmash version 1.0.2 suffers from a cross site scripting vulnerability.
5b9f04f2783eb3ed505cb32ec9ccd3d9a98f5c9ec304584a153e3fe9818666f7
WordPress WPhone version 1.5.2 suffers from a cross site scripting vulnerability.
f9d547194444eb0eee36ac7f489eb2c8509848f4dfa166cffc11129ddb61b16b
WordPress YT-Audio version 1.7 suffers from a cross site scripting vulnerability.
8462f2ce46970b28e4f00b8d6f9456d84febf6fda7f59767cbabce49a7f40c63
WordPress Zotpress version 2.6 suffers from a cross site scripting vulnerability.
60782f41cea55e5e0a2c3ce9309ab66504f1a16250b8664f8735e2e80c0be95d
Ubuntu Security Notice 1074-1 - Multiple vulnerabilities have been discovered and addressed in the Linux kernel. Al Viro discovered a race condition in the TTY driver. Dan Rosenberg discovered that the MOVE_EXT ext4 ioctl did not correctly check file permissions. Neil Brown discovered that NFSv4 did not correctly check certain write requests. David Howells discovered that DNS resolution in CIFS could be spoofed. Various other issues have also been addressed.
f173020807305076d904d843200bcb5d00acee46687f271c4a2338df4358536b
eXPert PDF Reader version 4.0 suffers from a NULL pointer dereference and heap corruption denial of service vulnerability.
290623376432a2f10c80421fb38a2d32682190ff9321dac7e355092b1f5512ff
Ubuntu Security Notice 1073-1 - Multiple vulnerabilities have been discovered and addressed in the Linux kernel. Gleb Napatov discovered that KVM did not correctly check certain privileged operations. Dan Jacobson discovered that ThinkPad video output was not correctly access controlled. Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. Nelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. Dan Rosenberg discovered that the USB subsystem did not correctly initialize certain structures. Various other issues have also been addressed.
6ba8f6c6dc8aeeea6fd8953752f7beab7c32ebb9e112702d7ac851c16c79263a