Gentoo Linux Security Advisory 201206-19 - A vulnerability in NVIDIA drivers may allow a local attacker to gain escalated privileges. Versions prior to 295.40 are affected.
9032b7e5b8959805683b191e7a879f7dGentoo Linux Security Advisory 201206-18 - Multiple vulnerabilities have been found in GnuTLS, allowing a remote attacker to perform man-in-the-middle or Denial of Service attacks. Versions less than 2.12.18 are affected.
44796bd189ac29a95fc21d07ba8b22adMandriva Linux Security Advisory 2012-088 - Security issues were identified and fixed in mozilla firefox and thunderbird. Heap-based buffer overflow in the utf16_to_isolatin1 function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to execute arbitrary code via vectors that trigger a character-set conversion failure. Use-after-free vulnerability in the nsFrameList::FirstChild function in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMonkey before 2.10 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) by changing the size of a container of absolutely positioned elements in a column. Various other issues have also been addressed.
1dcf1ded37eb2e639269faf984d889b0Technical Cyber Security Alert 2012-174A - Microsoft Security Advisory (2719615) warns of active attacks using a vulnerability in Microsoft XML Core Services. Microsoft Internet Explorer and Microsoft Office can be used as attack vectors.
e0fdec3f2a778e9ba75f1144d0d64c3eUploadify-amazon-s3 version 1.01 suffers from an unauthenticated remote shell upload vulnerability.
b3c8ab14d86b03e5f146ec8a6c8984e8WordPress Fancy Gallery third party module version 1.2.4 suffers from an unauthenticated remote shell upload vulnerability.
66f8b65377d7fd4874b2c38cb1f5f5c1Silverstripe Pixlr Image Editor third party module version 1.0.4 suffers from an unauthenticated remote shell upload vulnerability.
183cdba6a88f1378f62e4596f2c29f3cWordPress Flip Book third party module version 1.0 suffers from an unauthenticated remote shell upload vulnerability.
aff354633467c33276bfc37585c009c3Wolf CMS / Frog CMS BD uploadR third party module suffers from an unauthenticated remote shell upload vulnerability.
d968ee9ee08fed9f682fc57d590c00a6e107 Articulate third party module version 1.1.1 suffers from an unauthenticated remote shell upload vulnerability.
e5a90b7d2c959d4fbc8f8a610a5334b8WordPress Ajax Multi Upload third party module version 1.1 suffers from an unauthenticated remote shell upload vulnerability.
f4020a27ac86f8171a4293a6fa7dbb4cTor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86 version.
8bca855c501194fb025858c5c786fa1aSecunia Security Advisory - A vulnerability has been reported in AOL dnUpdater ActiveX Control, which can be exploited by malicious people to compromise a user's system.
16776e10055bf608354455c98a0e0c6bSecunia Security Advisory - Henry Hoggard has discovered two vulnerabilities in the Schreikasten plugin for WordPress, which can be exploited by malicious people to conduct script insertion attacks.
05b4190bce014a38d58070050cd16b86Secunia Security Advisory - Red Hat has issued an update for JBoss Enterprise BRMS Platform. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions.
7eb4fcbd90ef24a6ed1a1bd0b300dbbcSecunia Security Advisory - Multiple vulnerabilities have been discovered in Lokomedia CMS, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and script insertion attacks.
a2bc3341e97b924f197117b243610909Secunia Security Advisory - A weakness and a vulnerability have been reported in IBM Rational Directory Server, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks.
3debcc4759d7a436545c7268e6173d2eSecunia Security Advisory - A security issue has been reported in Western Digital ShareSpace, which can be exploited by malicious people to disclose certain sensitive information.
92b34da677fd7df24bfbe35b7a5931e6Secunia Security Advisory - Gentoo has issued an update for ejabberd. This fixes multiple vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service).
37c9cdd8b53e90856fa2606344917d54Secunia Security Advisory - Multiple vulnerabilities have been reported in IBM Lotus Expeditor, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, bypass certain security restrictions, and compromise a user's system.
bb0375d3b2dff7fd6d3d3b8b45a65c8aSecunia Security Advisory - Hans-Martin M
5ad0aef76e5dbd4efcd62c8b8a5c2835Secunia Security Advisory - Two vulnerabilities have been discovered in Traq, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
28627c86467a6e2dba6491038e3cc341This Metasploit module exploits a vulnerability found in Adobe Flash Player. By supplying a corrupt AMF0 "_error" response, it is possible to gain arbitrary remote code execution under the context of the user. This vulnerability has been exploited in the wild as part of the "World Uyghur Congress Invitation.doc" e-mail attack. According to the advisory, 10.3.183.19 and 11.x before 11.2.202.235 are affected.
9cd671aa77da3f3cf74a6b14f286d9ceOpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
4c847b558946b07a446b052cc29eb02aHP Security Bulletin HPSBOV02793 SSRT100891 - Potential security vulnerabilities have been identified with HP OpenVMS running SSL. The vulnerabilities could be remotely exploited to cause a Denial of Service (DoS) or to gain unauthorized access. Revision 1 of this advisory.
eacb8010f09a7a1c3c8779c2c97eb599
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed