Newscoop version 3.5.3 suffers from cross site scripting, remote file inclusion, and remote SQL injection vulnerabilities.
62869e7a9632826105e6893985876e08XOOPS version 2.5.4 suffers from multiple cross site scripting vulnerabilities.
ffffcf262b03e4dbdea1d2bfa53dcb32HP Security Bulletin HPSBMU02766 SSRT100624 - A potential security vulnerability has been identified with HP Onboard Administrator (OA). The vulnerability could be exploited remotely resulting in a Denial of Service (DoS). Revision 1 of this advisory.
79b04850d91001a1a846bf3abeb93c06ownCloud version 3.0.0 suffers from cross site scripting and open redirection vulnerabilities.
c91fd67183b27813dac00c983a1baeb5Sites Powered By Fortune3 suffer from a cross site scripting vulnerability.
71e8faa2e17897860bf92b68b99c7c07Drupal Gigya - Social Optimization module version 6.x suffers from a cross site scripting vulnerability.
5ee496561aa1b97d93b98bb129b4b83eDrupal Commerce Reorder module version 7.x suffers from a cross site request forgery vulnerability.
718d72546ffe9a749b4afaeea29a8641LibreOffice version 3.5.2.2 suffers from a soffice.exe\soffice.bin memory corruption vulnerability when handling a malformed RTF file. This is a proof of concept exploit.
7053d8f0483bacdf0019c43ec1e53220VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Internet Explorer. The vulnerability is caused by a use-after-free error within the "vgx.dll" component when processing certain VML behaviors, which could be exploited by attackers to compromise a vulnerable system by tricking a user into visiting a specially crafted web page.
430a418df374f4f687210e3faa479f35ClubHACK Magazine Issue 27 - Topics covered include Sysinternals Suite, The Burning issue in Web Application, and more.
f6e9e90effb9cdb605450edbf5c0ab02DocuWiki version 2012/01/25 suffers from cross site request forgery and cross site scripting vulnerabilities.
85cd3ae33c6b8066b5f50cc1b24b09c2HP Security Bulletin HPSBOV02765 SSRT100828 - A potential security vulnerability has been identified with HP OpenVMS. The vulnerability could be locally exploited to cause a Denial of Service (DoS). Revision 1 of this advisory.
1254cd136a8f93c48e0fb3529bbca067This Metasploit module exploits a stack buffer overflow in CyberLink Power2Go version 8.x. The vulnerability is triggered when opening a malformed p2g file containing an overly long string in the 'name' attribute of the file element. This results in overwriting a structured exception handler record.
6f60db215db0d38c85d08e9138043d6cThis Metasploit module exploits a stack-based buffer overflow in GSM SIM Editor 5.15. When opening a specially crafted .sms file in GSM SIM Editor a stack-based buffer overflow occurs which allows an attacker to execute arbitrary code.
b607d4a63d0250d0e1f386df5bb3cafbThis is a proof of concept exploit for the vulnerability documented in MS11-046 for the Microsoft Windows Ancillary Function Driver (AFD).
2431b3c85028ae21eabf187c5609380fSecunia Security Advisory - Sow Ching Shiong has reported multiple vulnerabilities in Oracle iPlanet Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
a34ae1eb9f51e8ee921d423f08a445bcSecunia Security Advisory - Ivano Binetti has reported a vulnerability in Sitecom WLM-2501 Wireless Modem Router 300N, which can be exploited by malicious people to conduct cross-site request forgery attacks.
df9d02bdc233c90cb077cf2565a44f70Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
7ec33235c3e6fd8415c2c531ae4ada5dMicrosoft Office 2008 SP0 RTF Pfragments exploit for the Mac.
040a21ab845f9b5744323a2b61ee2509Gentoo Linux Security Advisory 201204-5 - A heap-based buffer overflow in SWFTools could result in the execution of arbitrary code. Versions less than or equal to 0.9.1 are affected.
9a09cb7c0ba59340288f723cdf17afb2Gentoo Linux Security Advisory 201204-4 - Multiple vulnerabilities have been found in FreeType, allowing remote attackers to possibly execute arbitrary code or cause Denial of Service. Versions less than 2.4.9 are affected.
1bd62f9ef95d51f9b11eb6c201db518eGentoo Linux Security Advisory 201204-8 - Two format string vulnerabilities have been found in the Perl DBD-Pg module, allowing a remote PostgreSQL servers to execute arbitrary code. Versions less than 2.19.0 are affected.
f2401780de40bc9dddc5f1908be596e0Gentoo Linux Security Advisory 201204-7 - Multiple vulnerabilities in Adobe Flash Player, the worst of which might allow remote attackers to execute arbitrary code. Versions less than 11.2.202.228 are affected.
7a47adeed32dc95b320af8afa7321355Gentoo Linux Security Advisory 201204-6 - Multiple vulnerabilities have been found in PolicyKit, the worst of which may allow a local attacker to gain root privileges. Versions less than 0.104-r1 are affected.
8007b9b2c4cb1c8374fe1ec937097e22Secunia Security Advisory - Multiple vulnerabilities have been reported in Oracle FLEXCUBE Universal Banking, which can be exploited by malicious users and malicious people to disclose sensitive information, manipulate certain data, and cause a DoS (Denial of Service).
6214517de869e64161eed60ddf240db9
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed