Majordomo2 suffers from a directory traversal vulnerability in the help command. The parameter named extra is not properly sanitized. Versions 20110203 and below are affected.
a56132a9257c31bde8e4caffddc1080e11f6ed79939595cb7bcf42ff440d659bMandriva Linux Security Advisory 2011-044 - This advisory updates wireshark to the latest version (1.2.15), fixing several security issues. Wireshark 1.5.0, 1.4.3, and earlier frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a malformed file. Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long record in a Nokia DCT3 trace file. wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) via a pcap-ng file that contains a large packet-length field. Various other issues have been addressed as well.
226b5891bf60e311e70b2e108a9605a209856a8dce1a91a24138ea6d7b6b5cdfIcinga versions 1.3.0 and 1.2.1 suffer from cross site scripting vulnerabilities.
5504d3698e652a4b60d43cd8c74281f9ffb976cc20149c26f1009b0a0f445ddfPhotoSmash WordPress plugin version 1.0.1 suffers from a cross site scripting vulnerability.
a84959832cab5cd1fceda9fd23285ebd309435c85e42b54c57c87b35c1f9c0ffThe Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
bb2b506dabbf44526c7a55763a6d78f9c99344fde7b3dcd1de0cb29464834c53EzPub Simple Classic ASP CMS suffers from a remote SQL injection vulnerability.
dc9ee4cd7403e920bfc04f13411d03a8a3e99d9c1383f3e409abb0d54970b9581 Flash Gallery WordPress plugin version 0.2.5 suffers from cross site scripting and remote SQL injection vulnerabilities.
6ede757867af42703688c166b37d8c04a8397aacd56eec2f7a9132e3f8ce867fInline Gallery WordPress plugin version 0.3.9 suffers from a cross site scripting vulnerability.
3c2298acac7b2204a9ca7b68a1ae36404404ac8cf78c73ec3c3c3c03ed1b105fHP Security Bulletin HPSBUX02641 SSRT100412 - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM) for HP-UX, Linux, Solaris, and Windows running Java. The vulnerability could be remotely exploited to create a Denial of Service (DoS). Revision 1 of this advisory.
7de2ad982e2727b8e870feaa182fe6e5d5fdfb85e360494687337c5c582a1bddGRAND Flash Album Gallery WordPress plugin version 0.55 suffers from remote SQL injection and file disclosure vulnerabilities.
2e380e18f2ca3a4c01a87b1b6c137237d8ca4b642dc12ce6c0f32975a86bf800A buffer overflow vulnerability in the caiaq USB drivers in Linux has been identified. These drivers are in the kernel tree and installed by default in most Linux distributions. This vulnerability could be exploited in order to execute arbitrary code by an attacker with physical access to the system.
50ee3bf5cf01b2e96fee9bdabe9d4b1efa5b3f58c6f22cb7f2a1550e353f5ed3Nokia N97 .m3u playlist crash proof of concept exploit.
7f09b1a70d0c276a4d3ed229be13ddb6de013a627a045c4f829c4bbc9bc5c45cMovavi VideoSuite version 8.0 MovieEditor.exe local crash buffer overflow proof of concept exploit.
e185b19aa779684dd5463ac9fe95b0ac6768d2d89f498d49890fd694218eb6d0Movavi VideoSuite version 8.0 MediaPlayer.exe buffer overflow exploit that spawns a reverse shell.
be281d18ffd2d3e2019a0557e5c5b229b7651bde374585a97770dfbbd3e1ca75Movavi VideoSuite version 8.0 SlideShow.exe local crash buffer overflow proof of concept exploit.
b8815006777db4d9f469e36b6ada08850a6d7b38c0be8e655bb1e55df7322a04Mandriva Linux Security Advisory 2011-043 - A buffer overflow was discovered in libtiff which allows remote attackers to execute arbitrary code or cause a denial of service via a crafted TIFF image with CCITT Group 4 encoding.
a30c069b2a4cc6efb9588b6a66dfd73bfd71758866bd0849dc058e1257a3f581Web Development by Marco Monaco suffers from a remote SQL injection vulnerability.
36d8ea4b5fbc6e81c076e1a5c6f8d29bfc615fa0132595f40a4a7245d1dd90ad.NET runtime optimization service privilege escalation exploit that leverages the fact that the service's EXE file can be overwritten by any non-admin domain user and local power users. This exploit compiles to a service that uses the original service's id.
744f7672e14b5f0fc0764ea74c1519e7a0ebfe6e8883fc42b8bab17499280a19VMware Security Advisory 2011-0004 - Service Location Protocol daemon (SLPD) denial of service issue and ESX 4.0 Service Console OS (COS) updates for bind, pam, and rpm.
719826a83686579aa0ee4f4f4daf886e176fc92fd4d140eec35f2f8d630f07d1Whitepaper called 2010 Annual Study: U.S. Cost of a Data Breach. Compliance pressures, cyber attacks targeting sensitive data drive leading IT organizations to respond quickly and pay more. This is a benchmark study of 51 U.S. companies about the financial impact, customer turnover and preventive solutions related to breaches of sensitive information.
9cc176c8381bb68607f066dfc318ae42eb811a57dcdcb62a70a04cca68503a77The Joomla PR component suffers from a local file inclusion vulnerability.
d05fb5fca7c651cc513d71b01a1e79d24d078f660c03fabb8a1e67cf2830d010The Cool Video Gallery WordPress plugin version 1.3 suffers from a path disclosure vulnerability.
d8c5f2656a9552fad9a508757ad735ee92af63b934a3414eea7679f77371b31bPHP-Nuke suffers from a shell upload vulnerability.
97e017dd97ff9b8107b0a90088dcb0fe6da0fa7b3b64f3e82a40e383f4b1a318This is a basic TCP SYN scanner that is multi-threaded.
6697537b3cd72ac8405cf890c3f4b8cfb8b7cc6353dc99a998f585dbbd406d21Secunia Security Advisory - A weakness has been reported in GNOME Display Manager, which can lead to unexpected behavior with potentially security relevant implications.
f7f94c9656fcd115243b2e6a2525b74fe85c9c367311e42fa6de12b974c1dc91
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed