Linux NTP query client version 4.2.6p1 suffers from a heap overflow vulnerability.
e94b04905dfb456cbe05f623dfb3db397887c73011b11cdd9f155c4178156f9fN'CMS version 1.1e pre-authentication local file inclusion remote code execution exploit.
85f321d6979321a817b65af7ce2caf7b767d603efd57204140b22cb3876fc47dNixory is an innovative, fast, and powerful anti-spyware program, with a user-friendly graphical interface. It protects Mozilla Firefox from dangerous spyware and harmful cookies. Platform independent source tarball.
5210fb837b7e86cbc145fb034b46af9b02a367daf9c837d1dc4c6a2b4387f089Constructr CMS version 3.03 suffers from cross site scripting and remote SQL injection vulnerabilities.
a4224d4b86b1a571f0f86d7e8a69d82fa301a58aad20b4eff53030bccf77f96dUbuntu Security Notice 1087-1 - Chris Evans discovered that libvpx did not properly perform bounds checking. If an application using libvpx opened a specially crafted WebM file, an attacker could cause a denial of service.
9d3e2a90265aa934845965e42c95f4e255060c47f4035aade8845850522c53bdThe Joomla File Uploader component suffers from a shell upload vulnerability.
eebd755ccb2bf6671987d607aac7a893809e50536a2a932a91198ac35a905883AbaloneSoft Technologies suffers from a cross site request forgery vulnerability. This code demonstrates the addition of an administrator user.
fd85ae5f9d2e72863747de284cba34876fb883c695e979c155997ad42b6a0ecdJetAudio version 5.1.5.2 stack buffer overflow exploit that creates a malicious .ape file.
4f36d84780d287fcfd0e6fc420704687760d7e768f1e8553dc1dd445145e4b59Debian Linux Security Advisory 2190-1 - Two XSS bugs and one potential information disclosure issue were discovered in wordpress, a weblog manager.
c081fc13a07cac35a8bb0778ed5b6d55cf90daa27355a7e32b1102e86f6ea4e9SmarterStats version 6.0 suffers from cross site scripting, denial of service, command execution, and directory traversal vulnerabilities.
0836c7412eeb88d123a674b23d5f7ccaf25ad59b6cf315b294ccc95936d268b5The QNX Neutrino RTOS runtime linker allows the creation or overwriting of an arbitrary file. Moreover the technique by which this can be achieved can be triggered even where the binary being executed is setUID and is running as another user. Version 6.5.0 is affected.
7d1751f1d7538142a5f545dae3d6e0f64cbacc7f8b27be5bec111384542a5645Brief write up discussing a methodology to bypass WAF's in SQL injection attacks. Written in Portuguese.
3e0175143f3e7d1cae2be0a31b1be3cbc1128240ee1b5c54227f7100ef05dbbbMedia Player Classic version 6.4.9.1 buffer overflow exploit that creates a malicious .ape file.
71229a752d215b5c5a70a50dccae37cf32d5c26ea9b279bf05b874d514cad78fKMPlayer version 2.9.3 stack buffer overflow exploit that creates a malicious .ape file.
e1cd3e5ce34474f19ebd6d65a7ce5667b3b0c0bc09d9c9a6730c3702d35aac68Secunia Security Advisory - Red Hat has issued an update for scsi-target-utils. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
1755def377cc1791f0bf3d960b142a673854badaad26cb8198d78cf75ac7accbSecunia Security Advisory - Fedora has issued an update for pywebdav. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks.
e9c9f41f5f043c918b6c8ad0868d9445b5f1562fa47dd9b7089476fc1dda257eSecunia Security Advisory - Multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting and spoofing attacks, and compromise a user's system.
4c5d22ccc3b878e932488eee4502825cfbe3959afd4c6919a197f3a0e5e2ad9bSecunia Security Advisory - A vulnerability has been reported in unixODBC, which potentially can be exploited by malicious people to compromise an application using the library.
0a981e3978b7986b443e3453922a14fd14df3e131929b76522c3023680e6d9daSecunia Security Advisory - A vulnerability has been reported in Comtrend CT-5367, which can be exploited by malicious people to bypass certain security restrictions.
1922585ab77f3ccdd9ff1c4fbdf2e9f35f843af55f4e1f0b52d6a61256b0f28bSecunia Security Advisory - A security issue has been reported in libvirt, which can be exploited by malicious people to bypass certain security restrictions.
5b86204e994ca86f4a82b165372b5020983f78cc1608b26c21c3af3d14127cacSecunia Security Advisory - Nikolas Sotiriu has reported a vulnerability in Majordomo 2, which can be exploited by malicious people to disclose sensitive information.
226f95b8ec6aaec501996f3676b60bc8523128e0d81fa62597513ae54a6bec43Secunia Security Advisory - Multiple vulnerabilities have been reported in Apple iOS, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting and spoofing attacks, cause a DoS (Denial of Service), and compromise a vulnerable device.
b2a469f6c27bcd0bcf71bfd7de04e919c5555695bf3a642a7c127ab1cb3ed021Secunia Security Advisory - Apple has acknowledge a security issue and multiple vulnerabilities in Apple TV, which can be exploited by malicious people to disclose sensitive information, cause a Dos (Denial of Service), and potentially compromise a vulnerable system.
5471465344bfaf827fc14ee770dd89062b1424414924996c0c1c78f809bffbf5Secunia Security Advisory - A vulnerability has been reported in Linux SCSI target framework (tgt), which can be exploited by malicious people to cause a DoS (Denial of Service).
e282b8be54d9f596cee2ca29964ef90fe847f9d1f0b3050101ca7f6e418f842fSecunia Security Advisory - SUSE has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
451abb2b8a7107eb80aba7297be4cb7d85400f2035be1dd445ad57bafb88545b
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed