This document discusses the security implications of native IPv6 support and IPv6 transition/co-existence technologies on "IPv4-only" networks, and describes possible mitigations for the aforementioned issues.
b620fd364138e64c6e10717389b326fd4176c5005ea71cbad80cb84096381fe9It was discovered that the fix for CVE-2012-2110 released on 19 Apr 2012 was not sufficient to correct the issue for OpenSSL 0.9.8.
a2d545ec62a52607048d372fcbb97478bc42740f380ce0e3a1e6aa5f96c271dcThe Joomla Video Gallery component suffers from local file inclusion and remote SQL injection vulnerabilities.
462e3a42ad4cdf7f3d4b4fc799263665b5f88d737088527e7db190630d754023PHP Ticket System Beta 1 suffers from a remote SQL injection vulnerability.
f331b153861f4c95d8694429e29e08f749646cec6c2de5b128d953c29eb07810An undocumented backdoor account exists within all released versions of RuggedCom's Rugged Operating System (ROS®). The username for the account, which cannot be disabled, is "factory" and its password is dynamically generated based on the device's MAC address. Multiple attempts have been made in the past 12 months to have this backdoor removed and customers notified. Exploit included.
fb64f3c68bc6c2d150dfa801c3cc74442ea2352e08299729ea8753433d5ab22aBeyondCHM version 1.1 suffers from a buffer overflow vulnerability when handling a specially crafted chm file. Proof of concept included.
1f4140d1bd20cda3a4f39e3e694685f225a0d65e60da185fa2ca460418e79975HP Security Bulletin HPSBUX02768 SSRT100664 - Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS). Revision 1 of this advisory.
2210c7cd836543d508024ad2841fa47be4cc200493fb1438f0ec0ba35ad7c8e8Plown is a security scanner for Plone CMS. Although Plone has the best security track record of any major CMS and is considered highly secure, misconfigurations and weak passwords might enable system break-ins. Plown has been developed to ease the discovery of usernames and passwords, and act as an assistant to system administrators to strengthen their Plone sites.
49b65aa4f0f52ef71f03cc8968519322ebf0529377bec261d23cc1024bf2747eCMS By Hispanic Digital Network, Inc. suffers from cross site scripting and remote SQL injection vulnerabilities.
e0609b970a7a2371fc93de251413bd770167edbea45b1afe9330271db1a45913Whitepaper called Intro to SQL Injection and Countermeasures.
23c1a4f9df055f7ced98f3bad083e6f1881e9336751efcd55ecb930ac7852e99Ettercap version 0.7.4.1 suffers from a DLL hijacking vulnerability.
0a44574fc1b60dc3699352b2c882fc1583f45dbb3776d25cff6a520d75cd30d8Vulnerability Lab has produced a large amount of cross site scripting payloads that can be used with fuzzers for automated scanning, etc.
71078b2183d9cc07ac1636ddcb7060fb73257b6ebaedff466a4e3c1617e9defcWebsite Deisgn Cardiff suffers from a remote SQL injection vulnerability.
9fb16c16ea10f1e8ab6415d84c27188754c2862797de36e6bc36d57da8055092Mitsubishi.ru suffers from cross site scripting and remote SQL injection vulnerabilities.
c4f9192ef7220609caa4d99bd7ed8867a4dc1456498243db2df42f5a17131299Secunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
39628b1413f9c66ec4f1e39705ee7f7edff117e41382fe957c83915d9733dd27Secunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
3f0a95568a66cf67da9a171c977af5bcd18c6a1cf4289c8a53ee43d880420655Secunia Security Advisory - Two vulnerabilities have been reported in multiple products, which can be exploited by malicious people to compromise a user's system.
cc3289a47e2115d744bb358ed914b2717153e37997dbe5e3f54eecf07ce7e7c3Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges and by malicious people to cause a DoS.
aed5b6e2be7a0277a74358a0642f6036e15d0729e356a5f460a4b23255f4a4d5Secunia Security Advisory - SUSE has issued an update for SUSE Manager. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.
b0c8408942d275f30e267079642d97fbf210bdc1cf8f78ddc08d167596db105cSecunia Security Advisory - HP has issued an update for CIFS Server in HP-UX. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
7dcde65896633bc1a9d50d651648c143ed0fb1093261f0ed65a9e1ec434b7113Secunia Security Advisory - SUSE has issued an update for freetype2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
1e52e60e4cda086e97fa15ec34892449ec2f9eb6cd722e5723765f7ae7b326f6Secunia Security Advisory - Multiple vulnerabilities have been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
9a969e448a7aa14f5e60177f8c883f1af0dcce169e2b81efaa581f64427d5a99Secunia Security Advisory - Mavituna Security has discovered two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
99e4a80d2911f5d23e18a8a9ef3c053eb989085192b6b620ab1e5f44ad95aca8Secunia Security Advisory - Mavituna Security has discovered a vulnerability in Exponent CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
6b93b50373c08f0695b7705c828a1b2e88bd559a718e31dfdac19c79f82319e0Secunia Security Advisory - Ubuntu has issued an update for mysql. This fixes multiple vulnerabilities, where one has unknown impacts and the others can be exploited by malicious users to cause a DoS (Denial of Service).
9aa557fe7049cf468fa67a4ace50c87a56bb76ba8ee1472164aadb2bcc27455c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed