Debian Linux Security Advisory 2819-1 - Security support for Iceape, the Debian-branded version of the Seamonkey suite needed to be stopped before the end of the regular security maintenance life cycle.
4b7d7dc99d4bc335366c88ba49b5913681d7712bc3a5ed6733eb7cbe41477c33Debian Linux Security Advisory 2818-1 - Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to a new upstream version, 5.5.33, which includes additional changes, such as performance improvements, bug fixes, new features, and possibly incompatible changes. Please see the MySQL 5.5 Release Notes for further details.
a32ccfc50d3db892c186c24c3c194dc467f7b0aaee069c43eb68192ec6c04900Red Hat Security Advisory 2013-1841-01 - Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. All NSS users should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, applications using NSS must be restarted for the changes to take effect.
c76e897d9f2a81cec855edb8f61e2351ed973a88ef968d67b716ebfdb37cf426Red Hat Security Advisory 2013-1840-01 - Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. A flaw was found in the way NSS handled invalid handshake packets. A remote attacker could use this flaw to cause a TLS/SSL client using NSS to crash or, possibly, execute arbitrary code with the privileges of the user running the application. All NSS users should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, applications using NSS must be restarted for the changes to take effect.
95d8a3b6db2ae0f619812a98c0870e19128c44ca16cdcb4246f0ace0d7251338Piwigo version 2.5.3 suffers from a cross site request forgery vulnerability.
0ee1b359944cf580374fd8640de2d75f2808286f02db21b63ee16b7b92aca59fGentoo Linux Security Advisory 201312-11 - A buffer overflow vulnerability in Win32 Codecs can potentially allow for user-assisted arbitrary code execution. Versions less than or equal to 20071007-r4 are affected.
39d68b1d52bbae02397cedbe33f971f088260eb69863e2f325351c8e2d1a4351High-Tech Bridge Security Research Lab discovered a vulnerability in Bitrix Site Manager version 12.5.13 that can be exploited to spoof a user's identity and read, modify or delete pre-ordered items in customer's basket.
df32b7608aa8097f5c204ce23131150794fa4c21f8a3007af5bab1d3219dd012Cisco EPC3925 suffers from a cross site request forgery vulnerability.
54cf45bbfb7d3cc46996a670e9cd8bebdb93629d8f859c6204a5ccc5d7c1ffd9The Cisco EPC 2425 routers supplied by UPC are vulnerable to an offline dictionary attack if the WPA-PSK handshake is obtained by an attacker.
153a21db188fa2a24c0e2bc997de7e6f46e6109c48d3473227fe9a4f115a73aeBeetel TC1-450 Airtel wireless router suffers from multiple cross site request forgery vulnerabilities.
8b6efe00c1b182105a2b509cec1af4ad4d91a9dd268169e60e39a87761abc650LiveZilla version 5.1.2.0 stores a user's login and password in javascript.
c0e34cfa79a5303f3af1b34399c922a19304736819951622a1b1ac9265b4cf81iScripts Support Desk version 4.1 suffers from local file disclosure, PHP info disclosure, and remote SQL injection vulnerabilities.
ffcd1cb4640b8a69da7b59123a421f1bc5a47d487d99e0d730b4d3d634ddabf1LiveZilla version 5.1.2.0 suffers from a PHP object injection vulnerability.
3f15a1250351c7a5d359998644a5f3c1a7bf6c9c943d46a59d5534ec98612cf7iScripts Multicart suffers from multiple remote SQL injection vulnerabilities.
70d732cc05fd6cb35c128c592c7f8553d02c84c790c21194ec060a28e875d4cbPotPlayer version 1.5.42509 Beta integer division by zero denial of service exploit.
433a0bd4dcff0f36cdfb25d4e24e0e848b901b6836bb2aa78c1b06c31c698b02BuxAlert PTC remote SQL injection exploit.
fbd5da25bbec72925f7c66ded242e6c814ba92d70712e3aca5b01fb09b153928LiveZilla version 5.1.2.0 suffers from multiple cross site scripting vulnerabilities.
2cf18894a3875b9c1aadaad35adb2250a1d6a3890f83fb1d3bcd6561d6c76c5cDynamic Biz Website Builder from Etoshop.com suffers from remote SQL injection vulnerabilities.
73a82adc1101c05809d222fe146b1a7a50897b945b04fe023572a6289a94989fTraidnt Upload 3 add administrator exploit that leverages cookie manipulation.
71cb85b322354b0b3edf1cefc39569e8aaab5712f81d8c66d63f919e11968d8bSafari for Windows version 5.1.7 (discontinued) suffers from a remote code execution vulnerability.
85a2c8e2389b7e4cc56a6a54c016026ddfd5801abebe338bba22052217f2fe3a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed