Apple Security Advisory 2016-06-20-1 - AirPort Base Station Firmware Update 7.6.7 and 7.7.7 is now available and addresses an arbitrary code execution vulnerability.
82580c4dbeb889b59ee693c2e8136bdf9dd613b0bde73247408a328c96863758Slackware Security Advisory - New pcre packages are available for Slackware 14.1 and -current to fix security issues.
bb81087a01aaa55a52449ed8212fae7cacd64a6f7ca7e3768406ad119f003424Slackware Security Advisory - New libarchive packages are available for Slackware 14.1 and -current to fix security issues.
5ab416c95610b2c7d6d2ffbb23607802961886c6610f1d8a0b6446e0ee052757Horsys version 8 suffers from session fixation, user enumeration, cross site scripting, and various other vulnerabilities.
2cf891357719c9ee8d97ed7baefa0021b4075aec7115f053efab68a25f3f0d71Ansvif is "A Not So Very Intelligent Fuzzer". It feeds garbage arguments and data into programs trying to induce a fault.
8cbb2942a45529e4a172b71ddae8cca063120b045162d57ff421c2568ebaf477Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
a05aa534166495a4d9ea6104a936bc8edb49376aeb3ba0b1b2a4d9687d016669AIEngine is a packet inspection engine with capabilities of learning without any human intervention. It helps network/security professionals to identify traffic and develop signatures for use them on NIDS, Firewalls, Traffic classifiers and so on.
4606b29abd81fbb9d5bf1f0ee0488d3c0338d06e5d410b21c0c5be956666080dsNews CMS version 1.7.1 suffers from cross site request forgery, cross site scripting, and remote code execution vulnerabilities.
3c53f5181f2df9a44f7ad3ce3c305f11e96f62a68d57147e71a294d8f4fba36aDebian Linux Security Advisory 3605-1 - Several vulnerabilities were discovered in libxslt, an XSLT processing runtime library, which could lead to information disclosure or denial-of-service (application crash) against an application using the libxslt library.
20fdbd85e9d07462fa31177937cdcc2de883d6f58d73cd04f1530450db6af69aRed Hat Security Advisory 2016-1262-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 51.0.2704.103. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim.
45cbc6c211ad9e33d1e2722e7c7dc5c15d72fcbcc48dc5da28b0383515f280e3Ubuntu Security Notice 3013-1 - It was discovered that the Expat code in XML-RPC for C and C++ unexpectedly called srand in certain circumstances. This could reduce the security of calling applications. It was discovered that the Expat code in XML-RPC for C and C++ incorrectly handled seeding the random number generator. A remote attacker could possibly use this issue to cause a denial of service. Gustavo Grieco discovered that the Expat code in XML-RPC for C and C++ incorrectly handled malformed XML data. If a user or application linked against XML-RPC for C and C++ were tricked into opening a crafted XML file, an attacker could cause a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
6aa1759ea4a56ff06cbcd1346041c06eac65ab5a67eb809302bc6274df1d8247Ubuntu Security Notice 3012-1 - Dawid Golunski discovered that Wget incorrectly handled filenames when being redirected from an HTTP to an FTP URL. A malicious server could possibly use this issue to overwrite local files.
ce58c9f63ee02189ccf645ed4f89fd26639c73baac37f0bbea564d04d356fe3dUbuntu Security Notice 3009-1 - Edwin Toeroek discovered that Dnsmasq incorrectly handled certain CNAME responses. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service.
fae87ad5bfaa8a9c17f6b996b296915df4309e1b748f889d2d9e62d4ac549e3eUbuntu Security Notice 3011-1 - Falco Schmutz discovered that HAProxy incorrectly handled the reqdeny filter. A remote attacker could use this issue to cause HAProxy to crash, resulting in a denial of service.
d64d88165c30bf2bab31e6bea7949f76b8b433a484817070d502baeab2af153bUbuntu Security Notice 3010-1 - It was discovered that Expat unexpectedly called srand in certain circumstances. This could reduce the security of calling applications. It was discovered that Expat incorrectly handled seeding the random number generator. A remote attacker could possibly use this issue to cause a denial of service.
2b5fd3bd2daa487c282c26072ca85a214252d08ae2b0b736f89d37936653f75d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed