FreeBSD Security Advisory - When initializing the SCTP state cookie being sent in INIT-ACK chunks, a buffer allocated from the kernel stack is not completely initialized. Fragments of kernel memory may be included in SCTP packets and transmitted over the network. For each SCTP session, there are two separate instances in which a 4-byte fragment may be transmitted. This memory might contain sensitive information, such as portions of the file cache or terminal buffers. This information might be directly useful, or it might be leveraged to obtain elevated privileges in some way. For example, a terminal buffer might include an user-entered password.
31263b7b248f107d5f7ed98d3b388e63dc69a3862d01f93e4c9b344f9c86de7cFreeBSD Security Advisory - An integer overflow in computing the size of a temporary buffer can result in a buffer which is too small for the requested operation. An unprivileged process can read or write pages of memory which belong to the kernel. These may lead to exposure of sensitive information or allow privilege escalation.
831fd4ba520eff2086ca0682aa7616522338d8662d219c74c434ceb7166343dbDebian Linux Security Advisory 2740-1 - Nick Brunn reported a possible cross-site scripting vulnerability in python-django, a high-level Python web development framework.
1671b9c95174b9e627098dc3bd5a91753223b915764d97e06efb1312af248f2fGentoo Linux Security Advisory 2013-08-04 - Multiple vulnerabilities have been found in Puppet, the worst of which could lead to execution of arbitrary code. Versions less than 2.7.23 are affected.
0540da72c54f57cbe5a156cdb95056d98fa489beca31a869e539fa0bb49ca073Mandriva Linux Security Advisory 2013-219 - Pedro Ribeiro discovered a buffer overflow flaw in rgb2ycbcr, a tool to convert RGB color, greyscale, or bi-level TIFF images to YCbCr images, and multiple buffer overflow flaws in gif2tiff, a tool to convert GIF images to TIFF. A remote attacker could provide a specially-crafted TIFF or GIF file that, when processed by rgb2ycbcr and gif2tiff respectively, would cause the tool to crash or, potentially, execute arbitrary code with the privileges of the user running the tool. Pedro Ribeiro discovered a use-after-free flaw in the t2p_readwrite_pdf_image\(\) function in tiff2pdf, a tool for converting a TIFF image to a PDF document. A remote attacker could provide a specially-crafted TIFF file that, when processed by tiff2pdf, would cause tiff2pdf to crash or, potentially, execute arbitrary code with the privileges of the user running tiff2pdf.
abadfaec26a7eeb332d6857b3d9a3fda4971210c3fa04c79b7632f3de3d6ec6eSamba malformed nttrans smb packet remote denial of service exploit. This is the second version of this exploit that adds an automated offset and second argument.
9ffc449f91de8aebdf2d549084d0b7ded62399e2e6a995fffee9b45af3a36af1Mandriva Linux Security Advisory 2013-218 - The python-django package addresses a security issue. The is_safe_url() function has been modified to properly recognize and reject URLs which specify a scheme other than HTTP or HTTPS, to prevent cross-site scripting attacks through redirecting to other schemes, such as javascript.
1504a9f25eef5880d207471510df5d68d0689eb24ea616adf9a8ef6310edda32Mandriva Linux Security Advisory 2013-217 - Updated spice packages address a vulnerability. A user able to initiate spice connection to the guest could use a flaw in server/red_channel.c to crash the guest.
0141aa0c20e6ba7b8bc867edb78229f58246fea99e2959aac781d177685f0cecMandriva Linux Security Advisory 2013-216 - ProcessTable.pm in the Proc::ProcessTable module 0.45 for Perl, when TTY information caching is enabled, allows local users to overwrite arbitrary files via a symlink attack on /tmp/TTYDEVS.
e270d97c7c30cd1dfa32136b75cbfb5d2f2f8687db2bbac9746b8e5e5f17ef6aFICOBank suffers from exposed directory listing and cross site scripting vulnerabilities. They do not believe any of this is an issue and if you use them, you should change banks immediately.
a3b64ae17ac6373785bfcea917ed3efed819ce567e81d61f13690c93de1a211emooSocial version 1.3 suffers from cross site scripting and local file inclusion vulnerabilities.
f6d11b27cd9d0d5b9bcb61f738af8f5ae3e5d96e66ec3b7958aa519b6521ef89Spring Framework versions 3.x and 4.x suffer from an XML external entity (XXE) injection vulnerability.
44db748efe1afb0144c46a27348301fabb29af09798bbf1a847a659236ae224dCloudflare suffers from a cross site scripting vulnerability.
681015cc7dbb3e4d2e076c6ae25daf1f2af32856d530de408b2030a5a71a1587Paypal suffers from an arbitrary account deletion vulnerability that leverages unvalidated email account additions.
841c2aec9aded6aabc4378df632abfd8fa15c280ccb7f358a5f308e52fa80358GDD FLVPlayer version 3.635 suffers from cross site scripting and content spoofing vulnerabilities.
44f7dd1212681cf231fd4da478749b23c764aaaf54bf4e11341f3f140cfc4311VMware Security Advisory 2013-0010 - VMware Workstation and VMware Player address a vulnerability in the vmware-mount component which could result in a privilege escalation on linux-based host machines.
75310092496198f08a5f8a13a612852a0938bbfbb7b8f5a1b4e025180516c7f1Gentoo Linux Security Advisory 201308-3 - Multiple vulnerabilities have been found in Adobe Reader, including potential remote execution of arbitrary code and local privilege escalation. Versions less than 9.5.5 are affected.
0af6a1ac495592b06c6193c61dbd2103e6d15307eaa4f7913b78ebea124c01baGentoo Linux Security Advisory 201308-2 - A vulnerability has been found in D-Bus which allows a local user to cause a Denial of Service. Versions less than 1.6.12 are affected.
f6e14ae68d9668ba0fe3c739ad991bb2d55d3e369778b6107e90e31b20957f01Slackware Security Advisory - New poppler packages are available for Slackware 14.0, and -current to fix a security issue. Related CVE Numbers: CVE-2012-2142.
6587966dd0d0af44dbefe57df78f76b6ed21b3d5d1c28a62f420bb8c360d5e57This archive holds proof of concept code for cross site request forgery, memory dump, and wifi credential disclosure vulnerabilities in Loftek Nexus 543 IP cameras.
d8d9a9612f6d40cf5a8de4bce2dac3ab2ab4a787138a95efeac38d560c8a7206Joomla VirtueMart component versions 2.0.22a and below suffer from a remote SQL injection vulnerability.
2492d1981ba286f22ce07569a6fbf8d8800141d6ba82d7bd60588a6cbe01734dPhpVibe version 3.1 suffers from a remote shell upload vulnerability.
5f986cf1468601c9a88f20bd84f17fd1e3b3eb1767c9565d26314580885f8339HP Security Bulletin HPSBST02897 - A potential security vulnerability has been identified with HP StoreOnce D2D Backup System. The vulnerability could be exploited remotely resulting in a Denial of Service (DoS). Please note that this issue does not affect HP StoreOnce Backup systems that are running software version 3.0.0 or newer. Revision 1 of this advisory.
c61be9b28d817735212be9dbf6795f3d6a6c29561e407dffca71466661ea80b3Slackware Security Advisory - New xpdf packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Related CVE Numbers: CVE-2012-2142.
ae28aa6055d227e157f5bec61d500f0a9f2584e6cf79d02dc70f9cc73ce5434fMandriva Linux Security Advisory 2013-215 - SQL injection and shell escaping issues were discovered and fixed in cacti. The updated packages have been upgraded to the 0.8.8b version which is not vulnerable to these issues.
1b7d6435cb76a412b78aa80f4b37e5b1fa3ac4f8c06b625dc1b3bc413a1b3fde
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed