Apache versions 2.4.17 up to 2.4.38 apache2ctl graceful logrotate local privilege escalation exploit.
3319265a25f9489c7617752a0f4a299d38530c30caf7932b9bb2b32075e9f1b7CentOS Web Panel versions 0.9.8.793 (Free) and 0.9.8.753 (Pro) suffer from an email field persistent cross site scripting vulnerability.
90cf8505ed265b5039863670819570430e5a685098f0e31f04e64699ac31401fAllPlayer version 7.4 SEH unicode buffer overflow exploit.
cdcfe0d171f3c0bf24abc0a8fe27c441c6fca5e3cfa42ae14f8839d090969059WordPress Limit Login Attempts Reloaded plugin version 2.7.4 suffers from a login limit bypass vulnerability.
eef175ca08fe79b2c8e8ab01f3a67f8f815208bdaeffbe6273e54c495c190023The call for papers for H2HC 16th edition is now open. H2HC is a hacker conference taking place in Sao Paulo, Brazil, from October 26th through the 27th, 2019.
32355068fc83ac2265fe7924fa7ee3638d2637c7d10c3a3253f45b92f711003cUbuntu Security Notice 3941-1 - Fady Othman discovered that Lua incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service.
a69c6ee3f1afece2e05bf235f0d4a463691b9d1d1ebc3712480da19c0f809ba8Ubuntu Security Notice 3940-2 - USN-3940-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
86fe43cb7fba2b448a20c34a943ecda043022d321b9de1b579c744ede6cc8e06Gentoo Linux Security Advisory 201904-12 - Multiple vulnerabilities have been found in ClamAV, the worst of which could result in a Denial of Service condition. Versions less than 0.101.2 are affected.
d8fb8259f3eb16785380ecf968fcaa3c3a8238f3a7c55f5e7e6fda86ab2b141eGentoo Linux Security Advisory 201904-11 - A vulnerability in emerge-delta-webrsync and Portage could result in a man-in-the-middle attack.
81c01b363fa6707f90471d4ab24d036e0b825007fc6696ce203aea1a0e6d5083Gentoo Linux Security Advisory 201904-10 - Multiple vulnerabilities have been found in Mailman, the worst of which could result in the arbitrary execution of code. Versions less than 2.1.29 are affected.
a79e6c6ba731e5c2d9ffa7d0b3890724a9a1b859fa110301746f83a8104b31dcUbuntu Security Notice 3939-2 - USN-3939-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM. Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outside of the share, contrary to expectations. Various other issues were also addressed.
423b0f2dd2d40485dec194a99014faf87bd1673d4acf74e2052f9b4ebe3e9feaUbuntu Security Notice 3940-1 - It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled scanning certain OLE2 files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
68574601107f81cd32da8a91b6019bc52cb887cc0892e641d419146e6403924dUbuntu Security Notice 3939-1 - Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outside of the share, contrary to expectations.
fe8c8be361e7efe99a3c9b5be9464c08c1ee939a9e02f25927742eacfcdd2467Red Hat Security Advisory 2019-0710-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Issues addressed include an information leakage vulnerability.
3b4ddb208c9013a79292f97074fa015b4b2d783ae30c4e19a69d205eb9fa491aDebian Linux Security Advisory 4427-1 - Michael Hanselmann discovered that Samba, a SMB/CIFS file, print, and login server for Unix, was vulnerable to a symlink traversal attack. It would allow remote authenticated users with write permission to either write or detect files outside of Samba shares.
bb0bf699d121fdc5f4aa06f23f2b467a1823fbcc50905ea223b146e44094180cRed Hat Security Advisory 2019-0708-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 73.0.3683.75. Issues addressed include buffer overflow and bypass vulnerabilities.
0e1089993f83e61b943f29742d6d0b4970fc0ee70c3117b31ec5acbf38782c12Slackware Security Advisory - New httpd packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.
9be71db2b131b2b10709f7b3ee6d53e6af06d87b4d850361ae89afcf06e5a270Debian Linux Security Advisory 4426-1 - Cedric Krier discovered that missing access validation in Tryton could result in information disclosure .
1864aa43e97633bbdf62aaf5895dd68e0330f492597fc7a02fbf4505395c11d5Slackware Security Advisory - New wget packages are available for Slackware 14.2 and -current to fix a security issue.
2902e1e20bdbdefea0ccced1bf0e38405c6a804cb78be4171e6550b18e1f7914Slackware Security Advisory - New openjpeg packages are available for Slackware 14.2 and -current to fix security issues.
d43a32bef67040b7d9a2b0056db977aead61689560c774ebe474eec49a1442c8Debian Linux Security Advisory 4425-1 - Kusano Kazuhiko discovered a buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI) in wget, a network utility to retrieve files from the web, which could result in the execution of arbitrary code or denial of service when recursively downloading from an untrusted server.
87bc6292969febbb49a9b20e063e5265d4bca4e9d34239ea1ce61f2ce251e94dBolt CMS version 3.6.6 suffers from cross site request forgery and code execution vulnerabilities.
03593bbea2cd0e9c07b4b91943f0cbaa6aab992fc30fff96ace5439a7a42dd60River Past Cam Do version 3.7.6 suffers from an activation code local buffer overflow vulnerability.
6cef28b2ab9fd8b33b32125f41208e84c141d479dc3ee99fa878d7a6b9cb1e55
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed