Gentoo Linux Security Advisory GLSA 200412-09 - ncpfs is vulnerable to a buffer overflow that could lead to local execution of arbitrary code with elevated privileges.
e262216bae98af1a0d5e7622360f07eba270de33ef281c3e7faea6cb854ce520The MSIE DHTML Edit Control code is susceptible to a cross site scripting vulnerability.
a2fa0ec2b881347447d64fdd1223cffc003f89298b518e83dc245a833c9ccd93asp-rider is susceptible to a SQL injection attack.
231289ca7e27a01d5e6fbf56444e6022de5a0e369b8125728c2006b641639b2dphpGroupWare version 0.9.16.003 is susceptible to full path disclosure, cross site scripting, and SQL injection attacks. Exploitation provided.
b5aca02740fa15bc67a01e2d44fbe0bacfe56f3e5b36c9f677008bce868ea155OpenText FirstClass version 8.0 httpd /Search remote denial of service exploit that makes use of large requests.
fb4dc5b024b6fe2f010ac07f1f99025b4b11df2220ab3f2b2d7d56fa0968a223Secunia Security Advisory - Kostya Kortchinsky has reported two vulnerabilities in Microsoft Windows, allowing malicious people to compromise a vulnerable system via WINS.
89866b36f27afc2b1a1d32e4f73f249825e22fb9eee9e8fab69b36c0d4929d83Secunia Security Advisory - Kostya Kortchinsky has reported two vulnerabilities in Microsoft Windows NT, allowing malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. Both are related to DHCP functionality.
c19699dcb817421f4258c8e7b0454c65324ff9afafe1df5e4e36fc1572d8d546Secunia Security Advisory - Cesar Cerrudo has reported two vulnerabilities in Microsoft Windows, allowing malicious, local users to escalate their privileges. They involve both LPC and LSASS functionality.
4e291898e528e3d368c4e93fabea27381de7f1b101281ed398342faa8aa37eddA vulnerability in Microsoft HyperTerminal due to a boundary error in the handling of session files and telnet URLs can cause a buffer overflow by tricking a user into opening a malicious HyperTerminal session file (.ht) or clicking a specially crafted telnet URL in a malicious e-mail or on a website.
d5f48a0b9578759b5f20f38c3291107ddbb5f6e43f50da443fe60a814a424542iDEFENSE Security Advisory 12.13.2004-2 - Remote exploitation of a format string vulnerability in version 6.0.2 of Adobe's Reader could allow attackers to execute arbitrary code.
d3d1881e03cbfa45c3076cf6b1c2bf03b6162147c3ef132b72479f95e266ecb6iDEFENSE Security Advisory 12.14.2004-2 - Remote exploitation of a buffer overflow vulnerability in Microsoft Corp.'s Word 6.0/95 Document Converter could allow attackers to exploit arbitrary code under the privileges of the target user.
3194c6a036d5ebfbc45f0e7d1b3f0e87c2aca59cbdfe8330dffe6cb4bc195196Ubuntu Security Notice USN-38-1 - This advisory covers all the recent vulnerabilities discovered in the Linux 2.6 kernel series.
f928e968398cbd5ac5db9f7ab30d8bb1e4a4a4c236b96cf2ea594c3a6fceb29fTHC SSL Check is a small tool that checks the remote SSL stack for supported ciphers and versions. Useful for pentesting for weak SSL configuration discovery.
d83485d0098d2414deb86cdcded6e2677e172990931b8476ad1281cfc3aaaf52The RICOH Aficio 450/455 PCL 5e printer fails to handle malformed ICMP packets properly, resulting in a denial of service.
cb5f92ea8d0ceb9e29ef2ea5897de79e3ed045f798984508a408a0ea88096044iDEFENSE Security Advisory 12.14.2004 - Remote exploitation of a buffer overflow in version 5.09 of Adobe Acrobat Reader for Unix could allow for execution of arbitrary code.
a89e8f9d1a9fc9825cb2fcdac170c859c736acde6de2dc8e861608f0ba720525The ASP Calendar software allows for direct administrative panel access without any authorization.
58a18ee6a3a7fb6d46e2543f0af0941331c921d9aa787331ba8ed5112031bab9A locally exploitable flaw has been found in the Linux socket layer that allows a local user to hang a vulnerable machine. Kernel version 2.4 up to and including 2.4.28 and 2.6 up to and including 2.6.9 are susceptible. Full exploitation provided.
82a4d30397e375670877101fd568eef691baac3098d148ecc92a14d4113999f3Multiple bugs both locally and remotely exploitable have been found in the Linux IGMP networking module and the corresponding user API. Full exploit provided. Linux kernels 2.4 up to and include 2.4.28 and 2.6 up to and including 2.6.9 are affected.
abea45d57330bec18503dd9ea76e21f5d34db415e88430327a7b05eab5aecaf0Microsoft versions of Kerio software suffer from insecure default file system permissions.
aa4209f3eb3de180adc9adfea81874c2a9671328d5a2557c95e82b39d1946864Kerio software is susceptible to an insecure credential storage flaw.
a84152712c87724512fc15a2e25b45e88fd73e9e43df26bedb37ac5e0e387897phpBB versions 2.3.10 and below are susceptible to a directory traversal attack via the attachment module.
6017da91080d54bca6eb92a5128b902c4edae20c3c5f8a1f4287ec17d535dbbbRoxio Toast on Mac OS X is susceptible to local exploitation due to a format string bug.
0627dd28dd10b3f471bd7a18a02539d8f1a6b31aba37b37c0e2358aaedaf8f4bSTG Security Advisory: UseModWiki is susceptible to a cross site scripting flaw.
8ceff9b8b495b2bf36cc3d20014f641bbb038e2d16bc26206d1dc4a874b92c47Mandrake Linux Security Update Advisory - Herbert Xu discovered that iproute can accept spoofed messages sent via the kernel netlink interface by other users on the local machine. This could lead to a local Denial of Service attack.
0b77cae8ee0ff13e4f0c71207f40df5bb8a76c2bedd1527178bb64fdc86e1708Gentoo Linux Security Advisory GLSA 200412-08 - Multiple vulnerabilities have been discovered in nfs-utils that could lead to a Denial of Service, or the execution of arbitrary code.
3dbe14297a7e8d84a49b0480db26140e27c5460bd5bec5accb1ec58221cebbc2
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed