ViRobot UNIX/Linux Server web user interface remote root exploit which takes advantage of the setuid addschup cgi. Adds a root user to the system.
38923116589cf99dabcb2c13b224ec765e5f73330ad56759aa1b2a940d2964e6paFileDB versions 3.1 and below suffer from multiple cross site scripting, SQL injection, and local file inclusion vulnerabilities.
0427960de653354efd8c4d33d81c78d90121dc6b3653b5afe2097495b775a352Technical Cyber Security Alert TA05-165A - Microsoft has released updates that address critical vulnerabilities in Windows and Internet Explorer. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service.
d16e25171688391530d6a64e3fef80a0369b7544dfaaf133c3d1d72e23e9f47biDEFENSE Security Advisory 06.14.05-3 - Remote exploitation of a buffer overflow vulnerability in Microsoft Corp.'s orun32.exe application allows attackers to execute arbitrary code under the context of the logged-on user.
88c6d267bd7c5361a5352699424ccd34455fb12ba4e073e7362c146aab904c9biDEFENSE Security Advisory 06.14.05-2 - Remote exploitation of a buffer overflow vulnerability in the news reader functionality of Microsoft Corp.'s Outlook Express allows attackers to execute arbitrary code under the current users privileges.
283d346b962967fe9b7ee5586000dc6abb0af5bfc947d8aab86d79072dee8c04iDEFENSE Security Advisory 06.14.05-1 - Remote exploitation of an input validation error in multiple telnet clients could allow an attacker to gain sensitive information about the victim's system.
153d164a9a32480ca06882ae35204f19c876dd5d4919e21ead7b01dfff03e2a9A vulnerability in the Finjan SurfinGate product allows a user to bypass filtering and download normally blocked files. Tested with SurfinGate Version 7.0SP2 and SP3.
35f27acf967a775f95b063303aca8862f5282dc4c9706be544537fe0768f99c1MAST RunAsP.exe version 3.5.1 suffers from a local privilege escalation vulnerability.
957de7c6b79920cb9c9cd9f02cdcf41379a975871a6ff6f1eb48e937fc406517Gentoo Linux Security Advisory GLSA 200506-12 - MediaWiki incorrectly handles page template inclusions, rendering it vulnerable to cross-site scripting attacks. Versions less than 1.4.5 are affected.
b5bcc9f23552ecf2e6121d7c6e7c48bb7e4ed43c158b7d7504a247a97568ecadFusionBB versions .11 Beta and earlier suffer from local file inclusion and SQL injection flaws.
24550f3df2baa0ef6d78a486eea8df52ca8d90111ec586881b6e272f2e6bfd8dSecunia Security Advisory - A vulnerability has been reported in OpenBSD, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
6d4dcd2222af34dac158442878fe9cc84104b59b92efe88576c2fde2f8f99dfaSecunia Security Advisory - SUSE has issued updates for gpg2, telnet, unace and horde. These fix some vulnerabilities, which can be exploited by malicious people to gain knowledge of various information, conduct cross-site scripting attacks and compromise a user's system.
6997c08ffc30e3229ddd5fc8c24e6cfe80fd462246020840dacd65189d0a19a9Secunia Security Advisory - class101 has reported a weakness in RealVNC, which can be exploited by malicious people to gain knowledge of various system information.
daa4dcf30a7c60a8ef3e1e0dfe1be33bd113a4737dc3c6862ce39b53286b17baSecunia Security Advisory - Marc Schoenefeld has reported a weakness in JBoss, which can be exploited by malicious people to disclose system information.
a502672871e6340d6f76cfe508c5d314fd400c8c85125a3c23052e01955952d0Secunia Security Advisory - Dedi Dwianto has discovered two vulnerabilities in Ublog Reload, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
269757a1d946d91dc65a52bfa5e79b221011876d4458f6651d978231c3872e72Secunia Security Advisory - A vulnerability has been reported in Sun ONE Messaging Server, which may be exploited by malicious people to conduct script insertion attacks.
017111278d7cd84b077248848dc7477a9a693ad5b1ad43bf07285a8c4cdb339eSecunia Security Advisory - Slackware has issued an update for sun-jdk/sun-jre. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system.
4085b5c231618cbb3a96dba7cb93b73e5e86ebd6bbbee86a32e6f6c3167422a5Secunia Security Advisory - Gentoo has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause files to be unpacked to arbitrary locations on a user's system.
264a8e649bcc3563271eca017b15305946c2195b3752fc53d5def8fdf3a0d69fSecunia Security Advisory - Stefan Esser has reported a vulnerability in Trac, which can be exploited by malicious users to disclose sensitive information and potentially compromise a vulnerable system.
d54a0d586496195eb0e74a7cde3f709c0ddfd9be5fb5115c816de3f7f279da35Secunia Security Advisory - Gentoo has issued an update for peercast. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
6d792582df489bf4b5b0c9112357f8bc958d340e329951e834d06a95ae4754ccSecunia Security Advisory - Gentoo has issued updates for sun-jdk, sun-jre-bin, blackdown-jdk, and blackdown-jre. These fix a vulnerability, which can be exploited by malicious people to compromise a user's system.
bac7855b99affb735317ce20b71691c6bdfed4587235874a309af60fb3bf67b8Singapore version 0.9.11 suffers from cross site scripting and path disclosure vulnerabilities.
36784dc54de9b06deb45e6f0b40bb5855e342b42740afd92d3f1ee86a92d9203Gentoo Linux Security Advisory GLSA 200506-11 - Jacopo Ottaviani discovered a vulnerability in the Yahoo! file transfer code when being offered files with names containing non-ASCII characters (CVE-2005-1269). Versions less than 1.3.1 are affected.
ef83b62afe70d184f14d49faef7168278ed4b58c909a163337b708a2dd4db6b1Gentoo Linux Security Advisory GLSA 200506-10 - Eric Romang has discovered that the new_version_check() function in LutelWall insecurely creates a temporary file when updating to a new version. Versions less than 0.98 are affected.
5b6e4c966471d21a6ea5c989af0f6cd393fc39d3c2a82f8dd17fe2abf902ca9bPico Server (pServ) versions 3.3 and below suffer from directory traversal, remote command execution, and heap overflow vulnerabilities.
1f225e2a45a655bfcf6ac51525c62d4428411528be7b9522b0bdf479cf38f65d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed