Gentoo Linux Security Advisory 201805-12 - Multiple vulnerabilities have been found in NTP, the worst of which could lead to remote code execution. Versions less than 4.2.8_p11 are affected.
818cfb09bc153d933a492ae7af6c8d103329d790eb73e41219b8664276dd14d4Gentoo Linux Security Advisory 201805-11 - A vulnerability has been found in Rootkit Hunter that allows a remote attacker to execute arbitrary code. Versions less than 1.4.6 are affected.
a6632fcd48d6eeb77af3ed94c4eb073d1d07d474ed3b215b210ef9212e7e1a97Sharetronix CMS version 3.6.2 suffers from cross site scripting and cross site request forgery vulnerabilities.
ff60c2ad72044999c4e760ff06f735ef631b2eb5425de926be039046061e1c77Ubuntu Security Notice 3660-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service via application crash, install lightweight themes without user interaction, or execute arbitrary code. An issue was discovered when processing message headers in Thunderbird. If a user were tricked in to opening a specially crafted message, an attacker could potentially exploit this to cause a denial of service via application hang. Various other issues were also addressed.
fc1c39618877875096d28d2a898f0398c867b92423d440ba31c833b8fe2834d6Gentoo Linux Security Advisory 201805-10 - Multiple vulnerabilities have been found in Zsh, the worst of which could allow local attackers to execute arbitrary code. Versions less than 5.5 are affected.
bcc13399a5aa0244fbf2117c08f42b8c6a1cf2d324abe383a04b370e63109d6bEasyService Billing version 1.0 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
a2a4de4eb18f28d5c18f12db019b54a2f3656bdfb574a24eefe0aa0628fb25e6Employee Work Schedule version 5.9 suffers from a remote SQL injection vulnerability.
3d61ac42dd18a5b6d1791febff4e0fb1fa2d8cc64f59ecf74d14d9dfbc99ba6eRed Hat Security Advisory 2018-1726-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.8.0. Issues addressed include buffer overflow and use-after-free vulnerabilities.
7ea44ed3b0d3746f514324a3d08dd7639ddd5ce2d84793e8260b11b80e410be3easyLetters version 1.0 suffers from a remote SQL injection vulnerability.
d40ec02fffa5caa81ccb6b4d4abc353e78198ab0b67d02ac9bb830727e27e2e4Red Hat Security Advisory 2018-1725-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.8.0. Issues addressed include buffer overflow and use-after-free vulnerabilities.
34a837e6700cb860342e157f23da394896e4dd95807b390148d9e83b2e7f0e39Red Hat Security Advisory 2018-1724-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP25. Issues addressed include a deserialization vulnerability.
2e5dd86e7bb7be2ad0379be9bb23b5763cf5029804d3da6d6184572e3beeb0demySurvey version 1.0 suffers from a remote SQL injection vulnerability.
9e367e231b02557e14dafedec14bbd7d8a17229e1a3d4574a905f967ec9dc0c1Ajax Full Featured Calendar version 2.0 suffers from a remote SQL injection vulnerability.
7e4cb4721904b05551a81aedec87cece96197fd63c1c8340e14ad44d6f68d0e9Red Hat Security Advisory 2018-1723-01 - IBM Java SE version 7 Release 1 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 7 to version 7R1 SR4-FP25. Issues addressed include a deserialization vulnerability.
336aa8a03be2a5c8ac78bdbe977acefaf909e808d197a57be5714d9740292384Red Hat Security Advisory 2018-1722-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP15. Issues addressed include a deserialization vulnerability.
edc73d4ed7139837602c028e2ae9536c4f1081766c634964c910b44a2140e2d2Red Hat Security Advisory 2018-1721-01 - IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR5-FP15. Issues addressed include deserialization vulnerabilities.
0272152fff5c50359d88831a1d656b2adf44cce4c367b7458def6c8f94cc9d77This whitepaper explains deserialization vulnerabilities in Java, Python, PHP, and Ruby.
6093b7b1afd7e2cb2437200d5e7cef8d3ec52ada1f7c203878f7c0778ab52c61
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed