Call For Papers for Positive Hack Days VII which will take place May 23rd through the 24th, 2017 in Moscow, Russia.
b4c3196d44f89de1e50e9e944a731e974ea35703b3edd696d82a142a056778e9The call for papers for x33fcon has been announced. It will take place April 24th through the 28th, 2017, in Poland.
3acc312d41b80c2779e8ce5e93ee944cd27e962f11ddcde77d608d00d98139e9Multiple versions of Siemens SIMATIC suffer from a cross site request forgery vulnerability and poor cookie security settings.
26301c53dda7cca8354b059c0a9195478bf2208f7195cb4e264aa05d0d411026ntpd versions 4.2.7p22 up to but not including 4.2.8p9 and 4.3.0 up to, but not including 4.3.94 suffer from a remote denial of service vulnerability. The vulnerability allow unauthenticated users to crash ntpd with a single malformed UDP packet, which cause a null pointer dereference.
79e55d8f072b5a9de6e9fff18dfbf9aa41a4fd7c069871b13d06e0ab37af3960WonderCMS versions 0.9.8 and below suffer from a cross site scripting vulnerability.
58720b5f8ccfc0e14525cf466d3256def3710929cab1d0fd734fbae05efbfdacUbuntu Security Notice 3135-1 - Chris Evans discovered that GStreamer Good Plugins did not correctly handle malformed FLC movie files. If a user were tricked into opening a crafted FLC movie file with a GStreamer application, an attacker could cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking the program.
5d1e0d264b968b7b940c1590442ffefc50798c1586401b470059c4535715fdccUbuntu Security Notice 3134-1 - It was discovered that the smtplib library in Python did not return an error when StartTLS fails. A remote attacker could possibly use this to expose sensitive information. Various other issues were also addressed.
f4acba05d29f61abc115563263a86c66eefab809d6312eba26bddf0ab4433cc7Ubuntu Security Notice 3132-1 - Harry Sintonen discovered that tar incorrectly handled extracting files when path names are specified on the command line. If a user or automated system were tricked into processing a specially crafted archive, an attacker could possibly overwrite arbitrary files.
82a69e51a38cce1aed5947f726654c16554c637877b98ca50d8794a1d1ad0663Gentoo Linux Security Advisory 201611-20 - A buffer overflow in TestDisk might allow remote attackers to execute arbitrary code. Versions less than 7.0-r2 are affected.
dcdc93994e2a08593c7364a725d76d01ba45b80293d2feb7bd194282f907df0bGentoo Linux Security Advisory 201611-19 - A path traversal attack in Tar may lead to the remote execution of arbitrary code. Versions less than 1.29-r1 are affected.
61af9c3e2fef42cd67d49fe15711105155cf77af77c4e6aaa875cbb347291165Gentoo Linux Security Advisory 201611-18 - Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. Versions less than 23.0.0.207 are affected.
25374cbf5545f7ef72ab04c1eb0309daf105a811087b8f8a8f20156f79f743b1Gentoo Linux Security Advisory 201611-17 - A buffer overflow in RPCBind might allow remote attackers to cause a Denial of Service. Versions less than 0.2.3-r1 are affected.
afd05a0c233637b1e7809dcbcc7edbb1b672dd4a08a6ed63f1e333c2983b0d87Gentoo Linux Security Advisory 201611-16 - Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code. Versions less than 54.0.2840.100 are affected.
a8397f1dead0b8746099dc52697372ef684258ab45498b92df26cd99cee4688bGentoo Linux Security Advisory 201611-15 - Multiple vulnerabilities have been found in Poppler, the worst of which allows remote attackers to execute arbitrary code. Versions less than 0.42.0 are affected.
9e867017ee405f2ab3aa5e78c21182ba068554c3f7411e1496a5456c49780f29Microsoft Internet Explorer 8 suffers from an MSHTML Ptls5::LsFindSpanVisualBoundaries memory corruption vulnerability.
39193e6a0c7f58240b0b440fbf410393465f8e4e139f4ef637e931620333d816NodCMS Installer suffers from a client-side cross site scripting vulnerability.
b72247de0d6f1b4df2dbe1e8df61deb5ca0d4dd106a7e4a4d5933ab2e467339d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed