Cisco Security Advisory - Cisco IOS Software contains a queue wedge vulnerability that can be triggered when processing IP tunneled packets. Only Cisco IOS Software running on the Cisco 10000 Series router has been demonstrated to be affected. Successful exploitation of this vulnerability may prevent traffic from transiting the affected interfaces. Cisco has released free software updates that addresses this vulnerability. There are no workarounds for this vulnerability.
6baef27ee17b1645a0b3cf9801e8c00cf46dc9a489d655bcd169fc3bbed32934Drupal Organic Groups third party module version 7.x suffers from an access bypass vulnerability.
91af810727a7b08284c0d323ad8f55c3a81701a5125edcc803e23ba5ea6c8a8aCisco Security Advisory - The Cisco IOS Software Network Address Translation (NAT) feature contains two denial of service (DoS) vulnerabilities in the translation of IP packets. The vulnerabilities are caused when packets in transit on the vulnerable device require translation. Cisco has released free software updates that address these vulnerabilities.
f866d237931005ac54413bcca55338710c290b4fd86b1addc2bab627cc0c95adCisco Security Advisory - Cisco IOS Software contains a vulnerability in the Border Gateway Protocol (BGP) routing protocol feature. The vulnerability can be triggered when the router receives a malformed attribute from a peer on an existing BGP session. Successful exploitation of this vulnerability can cause all BGP sessions to reset. Repeated exploitation may result in an inability to route packets to BGP neighbors during reconvergence times. Cisco has released free software updates that address this vulnerability. There are no workarounds for this vulnerability.
23d8a7adf113a72de30fe0ecaf3f1520f220371d36f4002f0dc24c299a0a0a5aCisco Security Advisory - Cisco IOS Software contains a vulnerability in the Intrusion Prevention System (IPS) feature that could allow an unauthenticated, remote attacker to cause a reload of an affected device if specific Cisco IOS IPS configurations exist. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.
e8251e96479150686df876c0d24ac89a552912c860839492844250c23bbfc35cCisco Security Advisory - A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software and Cisco IOS XE Software that could allow an unauthenticated, remote attacker to cause an affected device to reload. Affected devices must be configured to process SIP messages and for pass-through of Session Description Protocol (SDP) for this vulnerability to be exploitable. Cisco has released free software updates that address this vulnerability. There are no workarounds for devices that must run SIP; however, mitigations are available to limit exposure to the vulnerability.
bb51ff6afc20c3af39a46768e6511999d94d12ed2cd1304e842711ee19fb98a6Cisco Security Advisory - Cisco Unified Communications Manager contains a vulnerability in its Session Initiation Protocol (SIP) implementation that could allow an unauthenticated, remote attacker to cause a critical service to fail, which could interrupt voice services. Affected devices must be configured to process SIP messages for this vulnerability to be exploitable. Cisco has released free software updates that address this vulnerability. A workaround exists for customers who do not require SIP in their environment.
4616ea2bfc5a76c367bcf2b61defaac5ff10db6330d3a208acc0be998c52124eCisco DPC2100 suffers from a denial of service vulnerability.
57eb8e0c57287bdb0c7cfc3d19dcb0bc551868b44599107a6bcb16f4f30d8e10WordPress ABC-Test plugin version 0.1 suffers from a cross site scripting vulnerability.
9fa0057ada1da700fbdc590dfebe6a5118a65cf4f8a88e073ae0a90928d88e9cDebian Linux Security Advisory 2550-2 - A regression in the SIP handling code was found in DSA-2550-1.
257470c284274fc1fd3cbf8ec8dbccf6abb979bacacbe6ada54bc3a32de3c9fbUbuntu Security Notice 1585-1 - Timo Warns discovered that FreeRADIUS incorrectly handled certain long timestamps in client certificates. A remote attacker could exploit this flaw and cause the FreeRADIUS server to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service.
ce621c38f5d4037dce0fa259d3b8c1c92af2fb679ebf12332d9cdc681d341260Ubuntu Security Notice 1584-1 - Justin C. Klein Keane discovered that the Transmission web client incorrectly escaped certain strings. If a user were tricked into opening a specially crafted torrent file, an attacker could possibly exploit this to conduct cross-site scripting (XSS) attacks.
90c1296444a62f587424bcba2909638250158165238badb300354cdfd0d08518Gentoo Linux Security Advisory 201209-14 - A vulnerability in file could result in Denial of Service. Versions less than 5.11 are affected.
d90a09d687cc30bad929972ba061bd394f735723d6508ffe9243ec770a0f54b0Gentoo Linux Security Advisory 201209-13 - A vulnerability in libjpeg-turbo could result in execution of arbitrary code or Denial of Service. Versions prior to 1.2.1 are affected.
5f19eaf06e1f6afd28e3e158dca5c9edceb74a0cb07765561fc2fced366b526f360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
cff15dcf5626494896c8a6d4970b7acec184525f959e7e6f3a3be6163debc79bThis perl script leverages /proc/self/environ to attempt getting code execution out of a local file inclusion vulnerability.
bd77eecfb380be0b2302b89fd25fafe9ee987dadd671f7e40d057f74b0ce0adeSecunia Security Advisory - Some vulnerabilities have been reported in IBM WebSphere Commerce Enterprise, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of service).
1815ebeeea8924e8905d4c362093735204793497b3fc3e626166ab6f92697de4Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
059bca242001d3d7ec02e3ffd216b78d93db6108bae6a8bd3ada1151b25e4cfdSecunia Security Advisory - A vulnerability has been reported in Cerberus FTP Server, which can be exploited by malicious people to conduct cross-site request forgery attacks.
232d93eacee901efa8f2126c0f3ccf877c08ec3c8850d1b7391f549e42ab79c5Secunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in OpenSSL included in Oracle SPARC Enterprise M Series, where one has unknown impacts and the others can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, or cause a DoS (Denial of Service).
bbb8f8115c47841735f14d5549f49263b66c395697b00f7a8bcc60755d088918Secunia Security Advisory - Gentoo has issued an update for libtasn1. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
395a52dd6140d88555e2b444482ac6d9983d00ea5075d4902492daed2dde28cfSecunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.
6b4b29e8447119f7f55a30dc0f58e34623ee22fbb1b430dff0f34556bca79725Secunia Security Advisory - A vulnerability has been reported in JAMF Casper Suite, which can be exploited by malicious people to conduct cross-site request forgery attacks.
9927943f83f5a4b8ef85c35692acc13e587dc9823f9bd6fc6bfbe31d1c91538bSecunia Security Advisory - Parvez Anwar has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
d37d73194424e28b6a1feb17b733cace1db58d857f8acbe4d5b0d33b6ec86f2dSecunia Security Advisory - IBM has acknowledged a vulnerability in IBM Sterling Secure Proxy, which can be exploited by malicious people to cause a DoS (Denial of Service).
5472528ccad8cf16baab9e864a50a1df9be7c7b2bddf91cd70385da36612b937
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed