Cisco Security Advisory - A vulnerability in Cisco Adaptive Security Appliance (ASA) Software for the Cisco ASA 1000V Cloud Firewall may cause the Cisco ASA 1000V to reload after processing a malformed H.323 message. Cisco ASA 1000V Cloud Firewall is affected when H.323 inspection is enabled. Cisco has released free software updates that address this vulnerability.
c9b5394a23772b025aea9fec34276df126d9de4895ea75872f43613c0eba8069Drupal Mark Complete third party module version 7.x suffers from a cross site request forgery vulnerability.
af50c6b603ae8b193d6fbcadc2f3486479c051eae1a10ee13362f17044f25b55Drupal Live CSS third party module versions 6.x and 7.x suffer from an arbitrary PHP code execution vulnerability.
5e91734de65cbb93c5ee23b3f4f30847fedb4a7324046b9cb400a1b03478db9eDebian Linux Security Advisory 2609-1 - An interpretation conflict can cause the Active Record component of Rails, a web framework for the Ruby programming language, to truncate queries in unexpected ways. This may allow attackers to elevate their privileges.
5b821d3e1a2d0e1f4b61d0f22af798ad2059c8c48dd822b5e252a0154434078cDrupal RESTful Web Services third party module version 7.x suffers from a cross site request forgery vulnerability.
4112611150f67e4d00012bc8789de858a12d6869b07560b68b813c73e85224c4Cydia Repo Manager suffers from a cross site request forgery vulnerability.
de476f95f33b7e4ed3fc54b3a18c444f99d6ac86819b705cc6c81acd3c57ab35Slackware Security Advisory - New freetype packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues.
1e0cce9a5fc7dbd714dbce76dcd670c91c3414a654e3ab4a5a0af79d0b44d4a5PHP Charts version 1.0 suffers from a remote code execution vulnerability.
64dbb04aef88e5fb2954ee4818a1aac7de41ecf55f1212bd08d0eddd49109241Red Hat Security Advisory 2013-0165-01 - These packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Software Development Kit. Two improper permission check issues were discovered in the reflection API in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. This erratum also upgrades the OpenJDK package to IcedTea7 2.3.4.
96f4593eeec2ef26da4263db201fe876a5b44e1c0379201967e3dbc5aa35962cUbuntu Security Notice 1693-1 - It was discovered that OpenJDK 7's security mechanism could be bypassed via Java applets. If a user were tricked into opening a malicious website, a remote attacker could exploit this to perform arbitrary code execution as the user invoking the program.
98cc5d87b988ad88e498cd05ed97036ae569afc4af11c252ca2ba0786c4bee11Ubuntu Security Notice 1692-1 - It was discovered that QEMU incorrectly handled certain e1000 packet sizes. In certain environments, an attacker may use this flaw in combination with large packets to cause a denial of service or execute arbitrary code in the guest.
8f41cb5967f46e89cb5e11c2d7d0ee866691b393d0205ae5a844327a2cef2d94This 250+ page document is a pentesting guide to using the Metasploit Framework. Written in Turkish.
b8f6fe8232b3bf30116e8fff2bb7ebd7f7879704c84e5874d496fd7ab235874cThis is a whitepaper that discusses methods of determining whether or not a system has been compromised based on artifacts left behind.
a306aabe484995792eac4fe144015a26dafaf4542b41a147cb317f4a93f2cc55Secunia Security Advisory - A weakness has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
e35a3d575e35782ba5a9abc6cc98b73a84694b31d161f3206966f701cd5f9b78Secunia Security Advisory - Deloitte has reported a vulnerability in Trimble NetRS, which can be exploited by malicious people to conduct cross-site scripting attacks.
49a91f60d482c914b60596e9332d32a283a4135ec83617c29e1bda116b7db6a4Secunia Security Advisory - A weakness has been reported in Oracle Agile PLM Framework, which can be exploited by malicious users to disclose potentially sensitive information.
1c67a8ceb4f4d8c7e61638c93fd70e030c19c98098b630809c2a79a31d4b146aSecunia Security Advisory - A vulnerability has been reported in Barracuda Web Application Firewall, which can be exploited by malicious users to conduct script insertion attacks.
33e0d6d81f807888b2a26754c49a9a835f8eba33af31800c9e8e98b67f34e3bbSecunia Security Advisory - Some vulnerabilities have been reported in Piwik, which can be exploited by malicious people to conduct cross-site scripting attacks.
1373a66846a2c75114dd8bc7a558b9b5e0d55e08e53b5fed11d84a1ea78c1dd7Secunia Security Advisory - Multiple vulnerabilities have been reported in Rack, which can be exploited by malicious people to cause a DoS (Denial of Service).
e63d2739589bb1480eb0914d6dfb945fde9af9cd29fe5fcc616289d5e734cc18Secunia Security Advisory - Oracle has acknowledged a vulnerability in Oracle GoldenGate Veridata, which can be exploited by malicious people to cause a DoS (Denial of Service).
f700bf1708c914938a9e2a305dd3b842917f537a102ae9e0f7cffa7189b36fdfSecunia Security Advisory - Debian has issued an update for qemu and qemu-kvm. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
e7c0b1b56a6cd7016c073ead28fe72d8cb30fbebd0edc5a7a812880866b41d5cSecunia Security Advisory - A vulnerability has been reported in Oracle Application Server, which can be exploited by malicious people to manipulate certain data.
b3de4737a0bb54b85d32261d1df022be5c2ccf7517e4fd08a3b57fb738fd8bb4haveged is a daemon that feeds the /dev/random pool on Linux using an adaptation of the HArdware Volatile Entropy Gathering and Expansion algorithm invented at IRISA. The algorithm is self-tuning on machines with cpuid support, and has been tested in both 32-bit and 64-bit environments. The tarball uses the GNU build mechanism, and includes self test targets and a spec file for those who want to build an RPM.
9ec85438386a46d5c3fe7b5b121cafd89c34bae68cbbfb4cecb1ff5622111013Secunia Security Advisory - Oracle has acknowledged a vulnerability in Oracle Management Pack for Oracle GoldenGate, which can be exploited by malicious people to cause a DoS (Denial of Service).
49f602477d14d734607c31d6e798a0985ba515bee89b33bdcd586f4f9ccabaebSecunia Security Advisory - A vulnerability has been reported in Cisco ASA 1000V Cloud Firewall, which can be exploited by malicious people to cause a DoS (Denial of Service).
a0703360b08b10bc3ee2eec7997db35044be97b8be8c1603c12c92a68718ee10
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed