Apple Security Advisory 2012-10-16-1 - Multiple vulnerabilities exist in Java 1.6.0_35, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_37.
d6707593331f319d2e02ab042904fd2ed14c371cfdc5e2e49b8e9b34d474d419ManageEngine Support Center Plus versions 7908 and below suffer from multiple cross site scripting and shell upload vulnerabilities.
ce1d93bee37427da393ef8b2a378940e15f95dfe2266842aa8f8b6171109489aVideosmate Organizer version 4.2 suffers from authentication bypass and path disclosure vulnerabilities.
880befa250d4287f9d17efed7dffd5623e713602127613fb7304b05c5fb437f4Sisfokol version 4.0 suffers from a remote shell upload vulnerability.
a96997e054286875413e8ada93462f0f65be5c7e12988df9c6f7e6c6a47272e2The Joomla iCagenda component suffers from remote blind SQL injection and path disclosure vulnerabilities.
c186dd88d27cbd897492034bea5e2be409f2d91cd8ee702fa3a083a05391695bMyBB Profile Albums plugin version 0.9 suffers from a remote SQL injection vulnerability.
62d5c0744bcf097aeea0a55cc01c5e13dc19b2c4579f7c5c2089f594358480afSecunia Security Advisory - Ubuntu has issued an update for libgssglue. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
49ad1b8921e4aa5a5c1d5afe1418ab758cb73fa10e9023867110ebe7319fe51eSecunia Security Advisory - A vulnerability has been discovered in PBBoard, which can be exploited by malicious people to conduct SQL injection attacks.
75b0da9afb0ccae49924be44515f95f55f245ddc4736cdb6c945ba01ac751792Secunia Security Advisory - Multiple vulnerabilities have been reported in Proficy Real-Time Information Portal, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
790282d8752778b6bdab8d47caecc75b20d3fe3600f49ed2d9c6629afde226a0Secunia Security Advisory - SUSE has issue an update for MozillaFirefox. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, and compromise a user's system.
3abf01b274a3b77178925363529d95cfd4d30befbab11e243ffb50b23385885dSecunia Security Advisory - Red Hat has issued an update for rhncfg. This fixes a security issue, which can be exploited by malicious, local users to disclose sensitive information.
cb8aba635eb727e4171da0b4ab4a625e98d0fd1fa0c1b6a3960716c4731dc919Visual Tools DVR VS Series versions 3.0.6.16 and below and VX Series versions 4.2.19.2 and below suffer from administrative password disclosure, default administrative password, log file disclosure, command injection, and insecure permission vulnerabilities.
57aec9566565a83d94933270426cb1b822eb107ada1e1ad8c594b19a032e394fSlackware Security Advisory - New seamonkey packages are available for Slackware 13.37, 14.0, and -current to fix security issues.
a1636d69d9d9efd33ffeec96acaca997842846f462e2ce08036bba3101c5abf9In this paper the authors uncover and demonstrate a novel and interesting way to convert local bugs and features in remotely exploitable security vulnerabilities by using the well known Steam3 platform as an attack vector against remote systems.
57c4272e83ee441c391a6f412f9d691391e59e3704ad2da10b6aa6bdd6606b73
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed