This document discusses the security implications of native IPv6 support and IPv6 transition/co-existence technologies on "IPv4-only" networks, and describes possible mitigations for the aforementioned issues.
4c30e6e9159627379ef776d8274b192dIt was discovered that the fix for CVE-2012-2110 released on 19 Apr 2012 was not sufficient to correct the issue for OpenSSL 0.9.8.
a48249934ce6fc947ab668fb05a6f779The Joomla Video Gallery component suffers from local file inclusion and remote SQL injection vulnerabilities.
687964eb7effc24d4e14e55641adefe4PHP Ticket System Beta 1 suffers from a remote SQL injection vulnerability.
de9c3151481d4ed277bda7277f2c0775An undocumented backdoor account exists within all released versions of RuggedCom's Rugged Operating System (ROS®). The username for the account, which cannot be disabled, is "factory" and its password is dynamically generated based on the device's MAC address. Multiple attempts have been made in the past 12 months to have this backdoor removed and customers notified. Exploit included.
e51be3bac64f7905511a5067a62595a4BeyondCHM version 1.1 suffers from a buffer overflow vulnerability when handling a specially crafted chm file. Proof of concept included.
34685c0f1589495d901a6187bb5dac85HP Security Bulletin HPSBUX02768 SSRT100664 - Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS). Revision 1 of this advisory.
77491bb5f757309ac5f2d24c865aac48Plown is a security scanner for Plone CMS. Although Plone has the best security track record of any major CMS and is considered highly secure, misconfigurations and weak passwords might enable system break-ins. Plown has been developed to ease the discovery of usernames and passwords, and act as an assistant to system administrators to strengthen their Plone sites.
03f2edb27ed5c9b3a25014a10e23f8a1CMS By Hispanic Digital Network, Inc. suffers from cross site scripting and remote SQL injection vulnerabilities.
5458913946de11ba54b7ea5fea41d190Whitepaper called Intro to SQL Injection and Countermeasures.
68db188cf8aab372f9306915334ea57dEttercap version 0.7.4.1 suffers from a DLL hijacking vulnerability.
ee04c8868d7c31f15510cc6477ba930aVulnerability Lab has produced a large amount of cross site scripting payloads that can be used with fuzzers for automated scanning, etc.
a1bef07ff4bd5d4358baf87d3e3c349fWebsite Deisgn Cardiff suffers from a remote SQL injection vulnerability.
5b98be3959d705d9134906b2cb8529ffMitsubishi.ru suffers from cross site scripting and remote SQL injection vulnerabilities.
35ecbdc9a41ce2eaea6f72391cec7b2dSecunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
531ab7bf438b2c2dd18ad3e370796afcSecunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in NET-i viewer, which can be exploited by malicious people to compromise a user's system.
1fd50063453cafb0e1303c3063064481Secunia Security Advisory - Two vulnerabilities have been reported in multiple products, which can be exploited by malicious people to compromise a user's system.
a76239a79f58ce7bec5976e603952095Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges and by malicious people to cause a DoS.
13be216706215cec3e7b0c1b04206e93Secunia Security Advisory - SUSE has issued an update for SUSE Manager. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.
3bc5c99fe76c742d87272e37d1052045Secunia Security Advisory - HP has issued an update for CIFS Server in HP-UX. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
53ad2f2bc751b0018b6a33c1b421c913Secunia Security Advisory - SUSE has issued an update for freetype2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
cf1363966d699cb2ff62828914a80809Secunia Security Advisory - Multiple vulnerabilities have been reported in Asterisk and Asterisk Business Edition, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
eaaa42dae33d524798f1d820466e4b16Secunia Security Advisory - Mavituna Security has discovered two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
7ec15d90726c507e355a8ea00014c8b8Secunia Security Advisory - Mavituna Security has discovered a vulnerability in Exponent CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
c2ce7e481ede7c188848830edea0ffadSecunia Security Advisory - Ubuntu has issued an update for mysql. This fixes multiple vulnerabilities, where one has unknown impacts and the others can be exploited by malicious users to cause a DoS (Denial of Service).
1d65fcdf0425acdeaa7756fc5eaa20eb
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed