iSelect version 1.4 suffers from a local buffer overflow vulnerability.
125ae804412a8c8c891b68bebc901c43Red Hat Security Advisory 2017-0064-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND handled a query response containing inconsistent DNSSEC information. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
3a592501a963c27a854653bfa6f5b2aeRed Hat Security Advisory 2017-0063-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND handled a query response containing inconsistent DNSSEC information. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
c7258c8e32fd2cdec50ee1c284329ea5Red Hat Security Advisory 2017-0062-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND processed a response to an ANY query. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
d741a0311679b57a9a1c03dd63f93e67Image Sharing Script version 4.13 suffers from cross site scripting and remote SQL injection vulnerabilities.
2926b2b0c85027046bdc79593aa7a071Debian Linux Security Advisory 3743-2 - The update for python-bottle issued as DSA-3743-1 would cause a crash if a unicode string was used as a header. Updated packages are now available to correct this issue.
b43310eac758ee22166349328e67d14fGentoo Linux Security Advisory 201701-36 - Multiple vulnerabilities have been found in Apache, the worst of which could lead to a Denial of Service condition. Versions less than 2.4.25 are affected.
6d481e903a3d0cf6b7a5e328042c47d6Debian Linux Security Advisory 3765-1 - Several programming errors in the wrestool tool of icoutils, a suite of tools to create and extract MS Windows icons and cursors, allow denial of service or the execution of arbitrary code if a malformed binary is parsed.
a7de17ac3e66ef2d17188c1627215630HP Security Bulletin HPSBGN03689 1 - Potential vulnerabilities have been identified in HPE Diagnostics. The vulnerabilities could be exploited remotely to allow Cross-Site Scripting and Click Jacking. Revision 1 of this advisory.
298c171354ff496cec83f56f7c4c7a6dHassium CMS version 0.10 suffers from a cross site scripting vulnerability.
d7a1f6e2a37741d497ec44a28e759401Huawei Flybox B660 suffers from a cross site request forgery vulnerability.
b438f17994b5259c3617fc08e7fc6fe4WinaXe Plus version 8.7 suffers from a buffer overflow vulnerability.
9bac5a37936490f3eaa2994969610c8dSalesforce event registration functionality allows for malicious script code to be inserted.
089ca573b6ffdbdfe2526c9ff201acb6Apple iTunes suffers from a malicious script insertion vulnerability.
413647577b51c2e7d12de99b51fe5dedMillion Pixels version 3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
b330744328374c38b90ce558be9ca280Business Networking Script version 8.11 suffers from cross site scripting and remote SQL injection vulnerabilities.
c25736778cc74d9b0004b7c35ee2fbcfopenWYSIWYG Insert Image version 1.4.7 suffers from a remote arbitrary unauthenticated file upload vulnerability.
740100de45e846df21c5ae89ee8513c2
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed