Newscoop version 3.5.3 suffers from cross site scripting, remote file inclusion, and remote SQL injection vulnerabilities.
179c3d850b4f0b8c40cd0b860cffbc9bc791577cafe65803bd5036477ee78092XOOPS version 2.5.4 suffers from multiple cross site scripting vulnerabilities.
128a2b4cd442c8b56300be601df8eac3e9f0f287fdd2cc683bdc79110222e0bfHP Security Bulletin HPSBMU02766 SSRT100624 - A potential security vulnerability has been identified with HP Onboard Administrator (OA). The vulnerability could be exploited remotely resulting in a Denial of Service (DoS). Revision 1 of this advisory.
2e9ccfbbee1de3ca1818aa7517b75f495f859618c8c98560ebcdeea64acb9a42ownCloud version 3.0.0 suffers from cross site scripting and open redirection vulnerabilities.
dcb41a8d27105adce78fe22f673e0fa7b51d9f521221de638e38bba3db43a2cfSites Powered By Fortune3 suffer from a cross site scripting vulnerability.
13b1a08a268820de58b2725ef1215111f696ca00f5a8d60215057eb2ee139327Drupal Gigya - Social Optimization module version 6.x suffers from a cross site scripting vulnerability.
5a648a49dcc4b4ce0da4b05ec58974c85fa9e0ade6360de5d89dc1e0ef413307Drupal Commerce Reorder module version 7.x suffers from a cross site request forgery vulnerability.
e864c23fc70ff39f1ecdb1cc5443132330a3c198903dbbc639d16efcfe4c0520LibreOffice version 3.5.2.2 suffers from a soffice.exe\soffice.bin memory corruption vulnerability when handling a malformed RTF file. This is a proof of concept exploit.
9108e491be1d7df3025c505170e97f3e07e7d1652a9bd9606c234343e61301b5VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "vgx.dll" component when processing certain VML behaviors, which could be exploited by attackers to compromise a vulnerable system by tricking a user into visiting a specially crafted web page.
b26b14f8e0513c5015cfa528b828f45892990e4d864673868941be4f05ba2bf9ClubHACK Magazine Issue 27 - Topics covered include Sysinternals Suite, The Burning issue in Web Application, and more.
b1c13729bc8393992e2f2cfcc38228182f6593cc5ba472cb1b4dbcaa90fa8ff2DocuWiki version 2012/01/25 suffers from cross site request forgery and cross site scripting vulnerabilities.
65f9c5fa6df169096268a3322d42c2a804c57e0e191fa90806551a8ae0aba88bHP Security Bulletin HPSBOV02765 SSRT100828 - A potential security vulnerability has been identified with HP OpenVMS. The vulnerability could be locally exploited to cause a Denial of Service (DoS). Revision 1 of this advisory.
4d2a8d178068bf200f957f02c86e295bc0bbbaec2cb18e79402e8faeb9e3671bThis Metasploit module exploits a stack buffer overflow in CyberLink Power2Go version 8.x. The vulnerability is triggered when opening a malformed p2g file containing an overly long string in the 'name' attribute of the file element. This results in overwriting a structured exception handler record.
130e60095a57a3b069f09bfa02ddc5fe4743b86427ffcaf33f1f4cc77609b845This Metasploit module exploits a stack-based buffer overflow in GSM SIM Editor 5.15. When opening a specially crafted .sms file in GSM SIM Editor a stack-based buffer overflow occurs which allows an attacker to execute arbitrary code.
451d9fa4a2e617e48ce85c48c985cb871ef37c17216ab0ee454a7063cff0d329This is a proof of concept exploit for the vulnerability documented in MS11-046 for the Microsoft Windows Ancillary Function Driver (AFD).
db03166f4056e42fe514f3a64ffbe8b1395886a9e9f58f55dbe8e7302af75e70Secunia Security Advisory - Sow Ching Shiong has reported multiple vulnerabilities in Oracle iPlanet Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
fd3226bb75fbdca70ed8caa37778a575b3a9f45fb3b010f3b19a9c412f129c5bSecunia Security Advisory - Ivano Binetti has reported a vulnerability in Sitecom WLM-2501 Wireless Modem Router 300N, which can be exploited by malicious people to conduct cross-site request forgery attacks.
c281578e7a42bdfd5e4a45774b36c15ba47c1372079325e32d799823eced520fSecunia Security Advisory - Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
6ca99f21fab513bcad9a1011f1390303bb4ae8272922f64890cea80449924394Microsoft Office 2008 SP0 RTF Pfragments exploit for the Mac.
b2f082bdc375ecd1d41a0063c2b3fb30dccf7a409ac8e7cacdabe327df682042Gentoo Linux Security Advisory 201204-5 - A heap-based buffer overflow in SWFTools could result in the execution of arbitrary code. Versions less than or equal to 0.9.1 are affected.
c1d30fecff6a729c3d5e2176bdf9ce5f6844f54afe79d521a276355db5d14539Gentoo Linux Security Advisory 201204-4 - Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. Versions less than 2.4.9 are affected.
02aa37b738a847bf31623fa9c69b35fba479601c27b4e8ed06de8136ba502917Gentoo Linux Security Advisory 201204-8 - Two format string vulnerabilities have been found in the Perl DBD-Pg module, allowing a remote PostgreSQL servers to execute arbitrary code. Versions less than 2.19.0 are affected.
bce5c31bb6b3eebc314508e6cb57e1a6a149a177ea49029bb3e039ea69959c01Gentoo Linux Security Advisory 201204-7 - Multiple vulnerabilities in Adobe Flash Player, the worst of which might allow remote attackers to execute arbitrary code. Versions less than 11.2.202.228 are affected.
bcf33f097735edaa2dba3ae55379f08e72c0e989bf92ca775ea579c3a0dded65Gentoo Linux Security Advisory 201204-6 - Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges. Versions less than 0.104-r1 are affected.
93ec59cdcfdba7ed45654ae2b831916e2ac8a536165e68aeba2de09b35d935c7Secunia Security Advisory - Multiple vulnerabilities have been reported in Oracle FLEXCUBE Universal Banking, which can be exploited by malicious users and malicious people to disclose sensitive information, manipulate certain data, and cause a DoS (Denial of Service).
5bd40aa64b2bf551db915094391ad8930f6f1c1f3b81fac6274fde437e87f3d0
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed