Oracle 9R2 has an unpatched, known vulnerability in the CWM2_OLAP_AW_AWUTIL package. A flaw that was reported months ago and was claimed to be fixed in this last release.
4baacbeb7d755cb771ca19159c31c5adc4d70a971c8a33ae6de73c73c76e6667Veritas Netbackup 5.1 suffers from a TIME_STAMP vulnerability that can cause an access violation.
8038375fda61dd8bab4f1e82b344c368ec2edb2ca5230144ad613185491a8ef7CyberSource Business Center suffers from a user privilege escalation vulnerability that allows for theft due to a lack of input validation.
51d1e78d8a660e38cc13a5c2235bfbf089d7aa5d9df48d32efa3fcde701d2014SlimFTPd 3.16 remote proof of concept exploit.
fd39268110becc1ce7adb2f03d24132bc1fd6bb347f4378611a43390faa26c71Secunia Security Advisory - Multiple vulnerabilities have been reported in Xerox WorkCentre and WorkCentre Pro, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or cause a DoS (Denial of Service).
34d40dd05b110dce6af01224c2bbd34c6ca1394bbe9d5cc9234e24391811cae4Secunia Security Advisory - Some vulnerabilities have been reported in MySQL, which can be exploited by malicious users to cause a DoS (Denial of Service), or potentially by malicious people to execute arbitrary code.
14125c115f8583641224ac8897e5013bb19daf457856cd94d24e083bb52fd20dSecunia Security Advisory - Matthias Andree has reported a vulnerability in fetchmail, which can be exploited by malicious people to compromise a vulnerable system.
9f6dea5c59a58af28071f149143ea2314754142099afc1e179de6e4275dd1211Secunia Security Advisory - Raphael Rigo has reported a vulnerability in SlimFTPd, which can be exploited by malicious users to compromise a vulnerable system.
56e61df543d79dd6ffecfcbef7e4e09069e64aab8e03949b4da704d9225576eeSecunia Security Advisory - Georgiadis Filippos has discovered a vulnerability in sendcard, which can be exploited by malicious people to conduct SQL injection attacks.
d2550f2f2d294f48d3f95e93e1edae4746e2d0600358ea175e688e6dbfb119a9Gentoo Linux Security Advisory GLSA 200507-20 - Shorewall fails to enforce security policies if configured with MACLIST_DISPOSITION set to ACCEPT or MACLIST_TTL set to a value greater or equal to 0. Versions less than 2.4.1 are affected.
5930fb17d6edac40cce43bc49a52e399682c0e8bba9558adba8ecfbfa03e7e8bGentoo Linux Security Advisory GLSA 200507-19 - zlib improperly handles invalid data streams which could lead to a buffer overflow. Versions less than 1.2.3 are affected.
25ea1b4cb4f2d4797e3138a8a5262c717106a109bf83ff703afb7458c8e7d92cHardened-PHP Project Security Advisory - Cross site scripting, password hash disclosure, SQL injection, and information disclosure vulnerabilities exist in Contrexx versions below 1.0.5.
985524575ae9eb12bcd0909c15c66b452b539eef3a58d55153bc284f126f0949Mozilla's xpcom is susceptible to a race condition that allows for the browser to be crashed.
53ef1e43dc15cf4c19e8f436c57f833c8bc5a26616db3f21c1362c8117f1a4c8netquery 3.1 allows for remote command execution, cross site scripting, and information disclosure attacks. Detailed exploitation provided.
8b7e5a03a311f1c2c6e28b6ab732cfa98658760038812a4ed3611802cea3f80eUbuntu Security Notice USN-152-1 - Andrea Barisani discovered a flaw in the SSL handling of pam-ldap and libnss-ldap. When a client connected to a slave LDAP server using SSL, the slave server did not use SSL as well when contacting the LDAP master server. This caused passwords and other confident information to be transmitted unencrypted between the slave and the master.
7cd4899c62267a74e9a03bb6d99544b1b9e4c73212466fcde94777b63ec4abaaSlimFTPd version 3.16 allows for arbitrary code execution due to an unchecked string concatenation that allows for a classic stack overflow.
248142956dd1f27265ceec445dcd2c473686f9c9aab7558319b56e8cc7a709e0Debian Security Advisory DSA 764-1 - Several vulnerabilities have been discovered in cacti, a round-robin database (RRD) tool that helps create graphs from database information.
69dc092cd7e61847c23942c14250fbfb01a831aa4311d412d5f135cf98ff1aa4KDE Security Advisory: Kopete contains a copy of libgadu that is used if no compatible version is installed in the system. Several input validation errors have been reported in libgadu that can lead to integer overflows and remote DoS or arbitrary code execution. All versions of Kopete as included in KDE 3.3.x up to including 3.4.1 are affected. KDE 3.2.x and older are not affected.
027346c8598e574fe798a52a6591511bfa26e78e5c41c50df090371a163a0bdeSecunia Security Advisory - Secunia Research has discovered two vulnerabilities in avast!, which can be exploited by malicious people to compromise a vulnerable system.
af2d59c94b24ce0f968cde92e48f4635efd474dbb4f4ab8e034415b495418f24Secunia Security Advisory - Markus Oberhumer has reported a vulnerability in zlib, which can be exploited by malicious people to cause a DoS (Denial of Service) against a vulnerable application.
66240b976b80e861b21ad42e07954409922f836e362c88709cbf3b28ed09b644Secunia Security Advisory - Two vulnerabilities have been reported in DNRD, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
8ef93c2a15e01d00a37b922782d5d156616568fadda1c14ec79f128cd4eb275bSecunia Security Advisory - r_i_t_b_15 has reported a vulnerability in dxxo Count, which can be exploited by malicious people to conduct SQL injection attacks.
0700fab7240a6fd117bca1b530af6f194345f89b3c1d6a66af58b4036f8b4da7Secunia Security Advisory - rgod has discovered some vulnerabilities in Ultimate PHP Board, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
ceff21002e1194c68dbbee8a5b9b93669c41c93fed536d6fb2b7d74bb7e2589fSecunia Security Advisory - Lostmon has reported a vulnerability in CMSimple, which can be exploited by malicious people to conduct cross-site scripting attacks.
cad3dc77c89dacc9e5e5d4181c00a0a260077ae1b09b431c5e870f26e65c061fSecunia Security Advisory - RST/GHC has discovered a vulnerability in PHPNews, which can be exploited by malicious people to conduct SQL injection attacks.
346cc53a57c9c85616ed689426cba660b8ea19b50fa6c77072e227a8c62df02e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed