UMI.CMS version 2.9 suffers from a cross site request forgery vulnerability. Fixed in version 2.9 build 21905.
1b0e4d26dfa1a21c5dc4f029c8a2dc7ada712c3e42ede3f39bd6f72be600733bUbuntu Security Notice 1820-1 - It was discovered that gpsd incorrectly handled certain malformed GPS data. An attacker could use this issue to cause gpsd to crash, resulting in a denial of service, or possibly execute arbitrary code.
7d1937ec0dd28f23e08629c52619bcc7a8f0391d7b540a3bb3d78cd8e2f4b676Linux kernel open-time capability file_ns_capable() local root exploit.
583714d753055ddbc2d0a4f4fd1aff410063e0daab0edac84f23b58fa33fda67Fujitsu's update utility "Fujitsu Desktop Update", which is factory-preinstalled on every Fujitsu (Siemens) PC with Windows, has a vulnerability which allows the execution of a rogue program in the security context of the current user.
2202eecc6bc0de9cf753988607db78f29bba9e60d2f845aacd1b52e1a0106eebAlienVault OSSIM versions 4.1.2 and below suffer from remote SQL injection vulnerabilities.
edf35d0b9315cc82230669af31e17a817456a6ac0929e244282a0af64f6ac336Joomla DJ Classifieds Extension component version 2.0 suffers from a remote blind SQL injection vulnerability.
3703cc31e5f10951bfd6e5534ddd70a4eaffe8cfee40eca7999ac64d25de08b6HP Security Bulletin HPSBUX02876 SSRT101148 - A potential security vulnerability has been identified with HP-UX running BIND. This vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.
bae15b6a39dd3cfa802f7792f5a093f226f0845242eea38a7516384dc050d8a6Flightgear versions 2.0 and 2.4 suffer from a remote format string vulnerability.
32b08be14ae9527b5ab40a98a1edc92b19a1f00ecc1b968542c6f8b64d1e37f0Nginx versions 1.3.9 through 1.4.0 suffer from a stack-based buffer overflow vulnerability.
7bc6c11ece1fcb0d26e264613945a82fd3064bb3d2a74e91677e963e3b0ad5b3Mandriva Linux Security Advisory 2013-163 - Buffer overflow in the extend_buffers function in the regular expression matcher in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service via crafted multibyte characters. Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library 2.17 and earlier allows remote attackers to cause a denial of service IP address that triggers a large number of domain conversion results. The updated packages have been patched to correct these issues.
0c0dd5bf03cefdee86dada6681973cbcc099724cc828fc09ee23d8df4de3e2d2Mandriva Linux Security Advisory 2013-162 - Integer overflow in the vfprintf function in stdio-common/vfprintf.c in glibc 2.14 and other versions allows context-dependent attackers to bypass the FORTIFY_SOURCE protection mechanism, conduct format string attacks, and write to arbitrary memory via a large number of arguments. Multiple errors in glibc's formatted printing functionality could allow an attacker to bypass FORTIFY_SOURCE protections and execute arbitrary code using a format string flaw in an application, even though these protections are expected to limit the impact of such flaws to an application abort. Various other issues were also addressed. The updated packages have been patched to correct these issues.
813cdf2b71f75914d833c5f26c1da07143f7dab6acfaf1fa4b28d8655d95c6f1Brother MFC-9970CDW Firmware 0D suffers from multiple cross site scripting vulnerabilities.
3420f3b475a358c1a02b1bf5b99838fcee8f5ab5d58b149eb50a76ae057e4a0f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed