Apache versions 2.4.17 up to 2.4.38 apache2ctl graceful logrotate local privilege escalation exploit.
5c83e7c4b08d7c21ba57dab3c4dc0116CentOS Web Panel versions 0.9.8.793 (Free) and 0.9.8.753 (Pro) suffer from an email field persistent cross site scripting vulnerability.
f6f57efa6c03ff289d3e61cb9a33b3f3AllPlayer version 7.4 SEH unicode buffer overflow exploit.
dee707d7b200cc4d715c0246503d4041WordPress Limit Login Attempts Reloaded plugin version 2.7.4 suffers from a login limit bypass vulnerability.
deafb7f06e3f01e83bda2b5717157bcbThe call for papers for H2HC 16th edition is now open. H2HC is a hacker conference taking place in Sao Paulo, Brazil, from October 26th through the 27th, 2019.
4c732ebf34f1ec81c10c71b8ad5716cbUbuntu Security Notice 3941-1 - Fady Othman discovered that Lua incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service.
7a76a3fdd8d0d4ddb3e175ea825d1a7dUbuntu Security Notice 3940-2 - USN-3940-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
44e84f0d153e37f4126f831876a60a3bGentoo Linux Security Advisory 201904-12 - Multiple vulnerabilities have been found in ClamAV, the worst of which could result in a Denial of Service condition. Versions less than 0.101.2 are affected.
fce183a1f782d7c3380b0d8e3dca9a41Gentoo Linux Security Advisory 201904-11 - A vulnerability in emerge-delta-webrsync and Portage could result in a man-in-the-middle attack.
9e19ed273872064b31fcfe509d3b96d0Gentoo Linux Security Advisory 201904-10 - Multiple vulnerabilities have been found in Mailman, the worst of which could result in the arbitrary execution of code. Versions less than 2.1.29 are affected.
3e42a361d96167836d98aefec9e43be9Ubuntu Security Notice 3939-2 - USN-3939-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM. Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outside of the share, contrary to expectations. Various other issues were also addressed.
f01e8ef513a32d37d1d80396a801fd67Ubuntu Security Notice 3940-1 - It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled scanning certain OLE2 files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
0db6dd212c93549f9c21296f9f33cb72Ubuntu Security Notice 3939-1 - Michael Hanselmann discovered that Samba incorrectly handled registry files. A remote attacker could possibly use this issue to create new registry files outside of the share, contrary to expectations.
77cab3f7f7d3545fc100f87df1d9bec4Red Hat Security Advisory 2019-0710-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Issues addressed include an information leakage vulnerability.
c63bc8d905a0c5bc9a7b7be2c4f56412Debian Linux Security Advisory 4427-1 - Michael Hanselmann discovered that Samba, a SMB/CIFS file, print, and login server for Unix, was vulnerable to a symlink traversal attack. It would allow remote authenticated users with write permission to either write or detect files outside of Samba shares.
6dbf82c0e2816a01e20296a21f2db9caRed Hat Security Advisory 2019-0708-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 73.0.3683.75. Issues addressed include buffer overflow and bypass vulnerabilities.
34532bfa952cce5193284c32609a391cSlackware Security Advisory - New httpd packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.
b380ff7c61ee45cfbfe8797c825b8e72Debian Linux Security Advisory 4426-1 - Cedric Krier discovered that missing access validation in Tryton could result in information disclosure .
6f780a01c3fcf617bb228be002f3555bSlackware Security Advisory - New wget packages are available for Slackware 14.2 and -current to fix a security issue.
69b3a73a2275af41f2b9076bd4cefa97Slackware Security Advisory - New openjpeg packages are available for Slackware 14.2 and -current to fix security issues.
e7f65211e3e8d691732d2e0bfa1d8b3dDebian Linux Security Advisory 4425-1 - Kusano Kazuhiko discovered a buffer overflow vulnerability in the handling of Internationalized Resource Identifiers (IRI) in wget, a network utility to retrieve files from the web, which could result in the execution of arbitrary code or denial of service when recursively downloading from an untrusted server.
b1e8935c4405e703fd43b8d32ddb7066Bolt CMS version 3.6.6 suffers from cross site request forgery and code execution vulnerabilities.
64aa4f32a9e9165b16e9ca3b86e6f171River Past Cam Do version 3.7.6 suffers from an activation code local buffer overflow vulnerability.
a562f9e2659de19cabd62a345ea43543
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed