Debian Linux Security Advisory 2232-1 - It was discovered that Exim, the default mail transport agent in Debian, uses DKIM data obtain from DNS directly in a format string, potentially allowing malicious mail senders to execute arbitrary code.
d90758ba3dc769c7d515058e5d8b8b70e63799f88587ff97e88cad0ac9feeedeDebian Linux Security Advisory 2231-1 - Multiple cross-site scripting vulnerabilities were discovered in Open Ticket Request System (OTRS), a trouble-ticket system.
d2e623ef5448e1d74f78b46c02330370c61851ca568c1c9b9faaac90b84ea536HOMEPINA suffers from file disclosure and directory traversal vulnerabilities.
2778957555a9e5fd79a567e05085ed48d1ae12c7b3b59e589cd2e310e8bcc611Designed By iWare suffers from a remote file disclosure vulnerability.
2f9005f5ed2e4c876e9523d4ff952195b4958f4d86cf3b192ca1b88a367fd4d0Broad Visions suffers from a remote SQL injection vulnerability.
d71d313a30ea3c53677c63b4c8c28b49e06c3192f8a50a33c7fd4ebc1f4cd599Unified Council Systems Administrator suffers from a remote SQL injection vulnerability that allows for authentication bypass.
3f42a9b1f825c11d41a5844a69053f8119adf7a938299ade108fe710cb1b019dHycus CMS suffers from a cross site request forgery vulnerability.
05dc8812967df7aa2fed40ba669486be853a2a38a629b989b380033eee027713DORG version 1.1 suffers from a cross site request forgery vulnerability.
f4377249a5c44293f72d971e58e238d182557a6ace8bb25848953da866500ae0phpThumb version 1.7.9 suffers from a remote information disclosure vulnerability.
042511440f3a175a27d2f1c27a9529bb0f9c124bf0aaa2983ca89ccae4324501Whitepaper called Understanding the heap by breaking it. A case study of the heap as a persistent data structure through non-traditional exploitation techniques.
f784cc1f14648890cc5d7ddb94b3cdc3112dcb6dc69d331aa678085a5d6333fdWhitepaper discussing the anatomy of a null session attack, how it works, and how to prevent it from happening to you. Written in Persian.
0a75c5fb650708bf7ac50efc1d8e0b4ab72bab8961ebc5e8d3490582f9c999baSilver Lizard Design suffers from a remote SQL injection vulnerability in page.php.
83d6d5b4ab9b4034094d010dae721d38b1963c29c09a4f2f7327c1e4fd247489DNS BIND Security Advisory - RRSIG queries can trigger a server crash when using response policy zones in BIND version 9.8.0.
ab7ae48212a23fb56aab29157624bc21cf0cfc022eba5e60f278df2b7ab6f884VCalendar version 1.1.5 suffers from a cross site request forgery vulnerability.
6ddc396774c3b268e0fb407b3546978d00409880d95883d2ee3d497f4378025cShort whitepaper discussing path traversal and bypass methods of exploitation.
11be4413b6236ab6fecdd5a45447e873eb69c85333a414919a70d7f54de08046Secunia Security Advisory - Red Hat has issued an update for xmlsec1. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
84af6242e5e87beb21e3abaf2ebd286153caf2334ac726c1076d5abadf5e36ddSecunia Security Advisory - Multiple vulnerabilities have been reported in IceWarp Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
fa182e1f9c85db4e6dbf35c341882bac96b76240dfabdfb9d912ad6c90a50a4bSecunia Security Advisory - SUSE has acknowledged a vulnerability in the rubygem-sqlite3 package for SUSE Linux Enterprise Server (SLES) 11, which can be exploited by malicious, local users to gain escalated privileges.
970ebe30f611be8d3e016e5842df2bfe2442c0c6f789cc6bc25386fb45fad4c8Secunia Security Advisory - A vulnerability has been discovered in SPlayer, which can be exploited by malicious people to compromise a user's system.
e13591977e4a1049181f5e6cea31797debd81ee2bea81d0d00e41607ff4e3f08Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in Directory Listing Script, which can be exploited by malicious people to conduct cross-site scripting attacks.
b1ad2263c6b3d7bb65cd4f33c0d7611e1464fef616906dbb88c127f318274e35Secunia Security Advisory - Secunia Research has discovered a vulnerability in the MuPDF plugin for Firefox, which can be exploited by malicious people to compromise a user's system.
20eea0542f76a32f41edc2edf564c1c9e659bc3887ddd18c5d727ab63f7da1caSecunia Security Advisory - A security issue and a vulnerability have been reported in VMware vCenter Server and VirtualCenter, which can be exploited by malicious, local users and malicious people to disclose sensitive information.
eea3d4d2fc8367e594cfdba33b2d727ab8c16e128285cc9259bc6302e1839cb3Secunia Security Advisory - A vulnerability has been discovered in Exim, which potentially can be exploited by malicious people to compromise a vulnerable system.
a250178b5f6c3c81848c3c0bbdae4b0b4ccdc617e98bfb081b8fd3e51340e640Secunia Security Advisory - SUSE has issued an update for MozillaFirefox and mozilla-xulrunner. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to disclose sensitive information and compromise a user's system.
20b60586c170ec836137c5ae81c91deec9e0956967554da116b01869a7160586Secunia Security Advisory - A weakness has been reported in NetBSD, which can be exploited by malicious users to cause a DoS (Denial of Service).
023a5afd78ef2fc2431e293d2ef687ee9cf70219bf470b6c6e8925b9c7b2462f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed