Debian Linux Security Advisory 4154-1 - A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of this flaw to crash the snmpd process (causing a denial of service) or, potentially, execute arbitrary code with the privileges of the user running snmpd.
c2fdf78354d35abec9941075f6a4273bb1213ca58a281c089f7c7f2f8527420aWhitepaper called DOSfuscation: Exploring the Depths of CMD.exe Obfuscation and Detection Techniques.
409e2b8687a76174f5fa96d055dd6d91550c650388b0d2922e1f0ba7ead480f2Gentoo Linux Security Advisory 201803-14 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 52.6.0 are affected.
1f3a94ceae3f19b557b9b182f96a0256325f4f1e1effd4be0f02b5e62dec3892Ubuntu Security Notice 3608-1 - Richard Maciel Costa discovered that Zsh incorrectly handled certain inputs. An attacker could possibly use this to cause a denial of service. It was discovered that Zsh incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code.
4a99fa767bd53ffe79f1111930bcaa884a7ab3ea59090e770b75211d35a9356aUbuntu Security Notice 3609-1 - A use-after-free was discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service or execute arbitrary code.
d35256a660a16419932175d6f94dea291aa409fbf58711b6468f2c1e58baa424Ubuntu Security Notice 3610-1 - It was discovered that ICU incorrectly handled certain calendars. If an application using ICU processed crafted data, a remote attacker could possibly cause it to crash, leading to a denial of service.
34fe3ae72a2ad4c05fa888a8caef7746d0c5876fb34a09e7b67b23549f8c2cf1Microsoft Windows Remote Assistance suffers from an XML external entity injection vulnerability.
30f3cbd80b79f0e54f6c7a336934dced0eac0a94cb3f89c1fa94def8ecf8a977Microsoft Exchange suffers from an open redirect vulnerability.
984f3e5bf9a46dde0835b0d4970d3406f20883bb6d60759b4da0a53b6e0ee2abRSA Authentication Agent for Web for both IIS and Apache Web Server version 8.0. 1 and earlier contain multiple vulnerabilities that could potentially be exploit ed by malicious users to compromise affected systems. These issues include cross site scripting, buffer overflow, and information disclosure.
824af128e2d83214afc6cfd21dd6dd7b691bc610075d88c3421407f35c6e5466Debian Linux Security Advisory 4153-1 - It was discovered that a use-after-free in the compositor of Firefox can result in the execution of arbitrary code.
6fdc327eeeed36a23c75517202563b99a3b87fd50fea612fd920dbbe3b88833bManageEngine Service Desk Plus versions prior to 9403 suffer from a cross site scripting vulnerability.
18c8b8c9f96e716e3767d9ce3cef7dc2fab52a801c35c39e4cdbdf13647d3e04Debian Linux Security Advisory 4152-1 - Two vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer, which may result in denial of service or remote code execution. An attacker can craft a PDF document which, when opened in the victim host, might consume vast amounts of memory, crash the program, or, in some cases, execute code in the context in which the application is running.
4cae0d16fb6f8a731689702d39274a33edc04ac35c3e35b8938bcc0b279edac0Microsoft Skype Mobile versions 8.12 and 8.13 suffer from a denial of service vulnerability.
627876f417919cd828a3a6e72a859f920ead6c00795181bacedee7e3d7cd18cbSandoba CP:Shop CMS version 2016.1 suffers from multiple cross site scripting vulnerabilities.
64ca989b68e545c4ba0ee54044dee644fa3c5bfa7dc7a7e45edf2ff8068e580fTestLink Open Source Test Management versions prior to 1.9.16 remote proof of concept code execution exploit.
7f1cec95295792a263ea245ef75d239589db9afc06b5a1a8e021fc6d031a4154Open-AuditIT Professional version 2.1 suffers from a persistent cross site scripting vulnerability.
ad8b6267228824f15774008cba1ef47e47dc5d189886b7ab5d3f3ddfc68b62bc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed