accept no compromises
Showing 1 - 25 of 38 RSS Feed

Files Date: 2012-09-19

Drupal Spambot 6.x / 7.x Cross Site Scripting
Posted Sep 19, 2012
Authored by Jimmy Axenhus | Site drupal.org

Drupal Spambot third party module versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | f7e2f870d9e523096833c1559dfc872e
Drupal Fonecta Verify 7.x Cross Site Scripting
Posted Sep 19, 2012
Authored by Antti Alamaki | Site drupal.org

Drupal Fonecta Verify third party module version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 7df8eff287b7feea8eb797e727787555
Drupal PRH Search 7.x Cross Site Scripting
Posted Sep 19, 2012
Authored by Klaus Purer | Site drupal.org

Drupal PRH Search third party module version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 77b1efebfde382a93f2fb47031c5d363
Secunia Security Advisory 50687
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for asterisk. This fixes multiple vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
systems | linux, debian
MD5 | 5d93df196188efdb6fbe758ace7b061a
Secunia Security Advisory 50657
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Janek Vind has discovered a weakness and two vulnerabilities in TorrentTrader, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to enumerate user names and bypass certain security restrictions.

tags | advisory, vulnerability
MD5 | 6eec046caf86bb54471071019a1b9d13
Secunia Security Advisory 50639
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for gnupg and gnupg2. This fixes a security issue, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
systems | linux, ubuntu
MD5 | 6a9b0442b2885b0cff2e3715851c2024
Secunia Security Advisory 50615
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for otrs. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.

tags | advisory
systems | linux, suse
MD5 | a3bc71bbb6842df4327ec77f0536ed49
Secunia Security Advisory 50658
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for libxml2. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, redhat
MD5 | 3c4bab13b55fb732a3bec296772f48dc
Secunia Security Advisory 50677
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, ubuntu
MD5 | 31a37290a55f646edcfb67c9b55ecb9d
Secunia Security Advisory 50629
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for java-1.7.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive data and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, java, denial of service, local, vulnerability
systems | linux, redhat
MD5 | fa764b5a4c24e62afaeba9f4ec913973
Poweradmin Cross Site Scripting
Posted Sep 19, 2012
Authored by BHG Security Center, Siavash

Poweradmin suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.

tags | exploit, xss
MD5 | 4dfce78c8a985ee459e31b8f671a9c1e
SMF 2.0.2 Local File Inclusion
Posted Sep 19, 2012
Authored by Am!r | Site irist.ir

SMF version 2.0.2 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | e7cddc644b8d011e46a990f77a032d79
FreeSWITCH 1.2.0-rc2 Denial Of Service
Posted Sep 19, 2012
Authored by Zsolt Imre

FreeSWITCH version 1.2.0-rc2 suffers from a denial of service vulnerability.

tags | advisory, denial of service
MD5 | f81a7c83437e556f095617ff8893a9b1
Cyber WebCreations SQL Injection
Posted Sep 19, 2012
Authored by Net.W0lf, Hack Center Security Team

Cyber WebCreations suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
MD5 | 6ff08be9aff0eeeafaf8254a12aa5267
Clam AntiVirus Toolkit 0.97.6
Posted Sep 19, 2012
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: A bug were CL_EFORMAT: Bad format or broken data ERROR was reported as the scan result was fixed.
tags | virus
systems | unix
MD5 | 1dbdd803b37c0d9d222e4316049f46a2
Technical Cyber Security Alert 2012-262A
Posted Sep 19, 2012
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert 2012-262A - An unpatched use-after-free vulnerability in Microsoft Internet Explorer versions 7, 8, and 9 is being exploited in the wild. Microsoft has released Security Advisory 2757760 with mitigation techniques.

tags | advisory
MD5 | 81f8b16104c9a73d03edd115c175f387
TOR Virtual Network Tunneling Tool 0.2.2.39
Posted Sep 19, 2012
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: This release fixes two opportunities for remotely-triggerable assertions.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | 9157a1f02fcda9d7d2c5744176373abd
Ubuntu Security Notice USN-1571-1
Posted Sep 19, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1571-1 - Glen Eustace discovered that the DHCP server incorrectly handled IPv6 expiration times. A remote attacker could use this issue to cause DHCP to crash, resulting in a denial of service. This issue only affected Ubuntu 11.04, Ubuntu 11.10 and Ubuntu 12.04 LTS. Dan Rosenberg discovered that the DHCP AppArmor profile could be escaped by using environment variables. This update mitigates the issue by sanitizing certain variables in the DHCP shell scripts. Various other issues were also addressed.

tags | advisory, remote, denial of service, shell
systems | linux, ubuntu
advisories | CVE-2012-3955, CVE-2012-3955
MD5 | 0e015a66b20705a9579a71499c6ea5ea
Ubuntu Security Notice USN-1573-1
Posted Sep 19, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1573-1 - Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local, tcp
systems | linux, ubuntu
advisories | CVE-2012-3412, CVE-2012-3430, CVE-2012-3511, CVE-2012-3412, CVE-2012-3430, CVE-2012-3511
MD5 | 8c8737235e78749b7f6b0a43ec540682
Ubuntu Security Notice USN-1572-1
Posted Sep 19, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1572-1 - Ben Hutchings reported a flaw in the Linux kernel with some network drivers that support TSO (TCP segment offload). A local or peer user could exploit this flaw to to cause a denial of service. Jay Fenlason and Doug Ledford discovered a bug in the Linux kernel implementation of RDS sockets. A local unprivileged user could potentially use this flaw to read privileged information from the kernel. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local, tcp
systems | linux, ubuntu
advisories | CVE-2012-3412, CVE-2012-3430, CVE-2012-3511, CVE-2012-3412, CVE-2012-3430, CVE-2012-3511
MD5 | 31007ff833dd0f7140dd93a9465d0b13
Red Hat Security Advisory 2012-1289-01
Posted Sep 19, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-1289-01 - IBM Java SE version 7 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2012-0547, CVE-2012-0551, CVE-2012-1682, CVE-2012-1713, CVE-2012-1716, CVE-2012-1717, CVE-2012-1719, CVE-2012-1721, CVE-2012-1722, CVE-2012-1725, CVE-2012-1726, CVE-2012-3136, CVE-2012-4681
MD5 | a1e033c9ab69dd373c671fb10ac72e17
Red Hat Security Advisory 2012-1288-01
Posted Sep 19, 2012
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2012-1288-01 - The libxml2 library is a development toolbox providing the implementation of various XML standards. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way libxml2 handled documents that enable entity expansion. A remote attacker could provide a large, specially-crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. A one byte buffer overflow was found in the way libxml2 evaluated certain parts of XML Pointer Language expressions. A remote attacker could provide a specially-crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application.

tags | advisory, remote, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2011-3102, CVE-2012-2807
MD5 | 22b3cd4aa8eab7294af0ede7e49dccc5
Debian Security Advisory 2550-1
Posted Sep 19, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2550-1 - Several vulnerabilities were discovered in Asterisk, a PBX and telephony toolkit, allowing privilege escalation in the Asterisk Manager, denial of service or privilege escalation.

tags | advisory, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2012-2186, CVE-2012-3812, CVE-2012-3863, CVE-2012-4737
MD5 | a93dd500afaa4911a3f132cb99f9fc08
Secunia Security Advisory 50689
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has has issued an update for kvm. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to potentially gain escalated privileges and by malicious, local users to perform certain actions with escalated privileges.

tags | advisory, local
systems | linux, suse
MD5 | df8c4545152494a2303f2db90995cf27
Secunia Security Advisory 50667
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for chromium. This fixes multiple vulnerabilities, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system.

tags | advisory, vulnerability, xss
systems | linux, suse
MD5 | 4a844b81fd2f655ec5201cf310504c2c
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close