Kaspersky antivirus 6 suffers from an error in the POP3 state machine POP3 monitor thus allowing any malicious software on the local computer to bypass the POP3 monitor.
cfde53847ca7073a5d51de21e6afc60d7fa884300a01ec532fa94d49cbd67449
Easy-Content Forums 1.0 suffers from multiple SQL injection and XSS vulnerabilities
3bf738d19a9fe8737fc3614544223ab3927e298027d59ae459e33ffe91ac8a8e
Assetman versions less than or equal to 2.4a suffer from XSS
dc337d0124896458c62eeb557f6ebb2f3ed02cb07f2cb395117163b9a5e531c0
ByteHoard versions less than or equal to 2.1 suffers from directory transversal and XSS vulnerabilities.
0002e3c4b7f265a67c5420f1a9b72b52d513da2420e371bbea1d51b6e6090af1
PHP AGTC-Membership system versions less than or equal to v1.1a suffers from XSS.
dba3b6e85133aaf5882ee89ba151530f3896b4db1b67139964335eff2dcd0dda
PHPResidence versions less than or equal to 0.6 does not sanitize any of its input leading to many XSS vulnerabilities.
2607ed6e0b911413d8a9bba2b4f87d9f310b44162d746c1f3979dcadae22d24a
Logcleaner-ng is based on Liblogclean. Has plenty of nice features.
96963cf7747a9c8f3366588d44b7b9c9c8b63504a5d4f5030f9363ae4420f6c7
Easy C library for cleaning logs with some useful utilities included. This library provides functions to clean utmp, wtmp, lastlog, acct logs and text logs. Moreover there are functions to modify the timestamp of files, to wipe files, for encrypted logging, and some more.
9b8f3408ed6361902e8cbd21a0415a58bdc9252e95427b168c6e0052776f57c6
Ping Rootkit executes a root shell by simply executing the well known and "trusted" command with a special argument and a password. Includes the full source code for ping as well as the patch.
c7acdb96649bef8bef829b8576e58a4b7fd44ac4f648b44e4b5698740849a301
rPath Security Advisory: 2006-0082-1: In previous versions of the vixie-cron package, when the /etc/security/limits.conf file has been set up with limits for any user, and that user has permission to use the cron facility, that user can use vixie-cron to run arbitrary programs as root by exceeding the limits set in /etc/security/limits.conf.
dcb6a72ad24369cff4454324fccd875aa7a0ddda3c1a9efdcda0877f90da49e8
WordPress versions less than or equal to 2.0.2 'cache' shell injection exploit.
f362a8ac6581d9d86031a4f27ac493ed0896ad35c36a3994cef95e98f78deaa8
rPath Security Advisory: 2006-0080-1- Previous versions of postgresql server and client libraries contain weaknesses parsing certain character encodings (UTF-8, SJIS, BIG5, GBK, GB18030, or UHC, but not ASCII) which, when using the vulnerable encodings, can enable SQL injection attacks against applications (particularly web applications) which use non-standard escaping of quote characters.
4d0de4deaffe6dd8bdae55e83f62258d0948c4ba75fe90bc7fba5fffb7d35e3d
A vulnerability in PGP Virtual Disks & PGP SDA , PGP 8.x, 9.x and Truecrypt has been discovered. Affected Products include: PGP 8.x, PGP 9.x (possibly earlier versions), Truecrypt 4.2 (and possibly earlier versions), Secure Email Attachments (SEA) V1.0
c130e5be2b4659e747cff3dd819b158c28d723ace50163f1d08f8048d071f24c
Cisco Security Advisory: Windows VPN Client Local Privilege Escalation Vulnerability - The Cisco VPN Client for Windows is affected by a local privilege escalation vulnerability that allows non-privileged users to gain administrative privileges. A user needs to authenticate and start an interactive Windows session to be able to exploit this vulnerability.
31ec69bd3450add7ac00d03056cfb082861e932701266877c4a3c878040f2141
Unix log cleaner that has all kinds of interesting features like a ptrace_attach of syslogd to stop the log writing when it happens in real time.
e23a952fae1ae4b0b3f9b17d8afd8f77b93ee77029afa43ceca820e71b514374