Secunia Security Advisory - Thomas Wolff has discovered a security issue in xbiff2, which can be exploited by malicious, local users to disclose sensitive information.
0a13b6663c98e2bd1ae19df169738452e8e2de4b557b80bc797edf056b584bdeSecunia Security Advisory - Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious people to cause a DoS (Denial of Service).
711fb4270188a7af4ab1cb4f4a046c0f07ed7575a27de40a902435b88ce39debSecunia Security Advisory - Justin Samuel has reported a security issue in ModernBill, which can be exploited by malicious people to conduct man-in-the-middle (MITM) attacks.
edbb502db1b0acf717f3724b777823b8aaef056a3b8e64121114946e11b0cc72Secunia Security Advisory - Debian has issued an update for libmusicbrainz-2.0. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
be2f7d3566e8c38f192edfd09264e40a922e552011621dbe3352b05c0fcd7ffeSecunia Security Advisory - BoZKuRTSeRDar has discovered a security issue in DUpoll, which can be exploited by malicious people to disclose sensitive information.
f8041ab440a2102cb82817f3f133b81913e35135ed1e9874a1fc2872a72f8101Secunia Security Advisory - s3rv3r_hack3r has reported some vulnerabilities in JS ASP Faq Manager, which can be exploited by malicious people to conduct SQL injection attacks.
529b6ba49e3b299fa9dfc495fb53c7fcc05a1a852938f43cfcc97f1a433063d7Secunia Security Advisory - Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.
f62bab55d13295ebea537fe43fabda729aac79eab05efd80d68a1056b3a8709cSecunia Security Advisory - Some vulnerabilities have been discovered in phpECard, which can be exploited by malicious people to compromise a vulnerable system.
daa4f3bbaa3bf25a96aed8a3870ad2a45c295e774d0a36dfc8d006775ba65a7cSecunia Security Advisory - Oliver Karow has reported a vulnerability in MaxDB, which can be exploited by malicious people to compromise a vulnerable system.
04fca2d58935491520a638a5ec9adae93340a66fa3ca0dea0fe674b3a15422f3Secunia Security Advisory - Mandriva has issued an update for ImageMagick. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.
abc71fc2fb9fa27ec8f7f68c0f22807d561deff576817fda97dfb85f0dc0ed5cSecunia Security Advisory - SHiKaA has discovered a vulnerability in ExBB Italia, which can be exploited by malicious people to compromise a vulnerable system.
8c5cb66f22c934cf25818ae97fb6120ed5eb8dd20e35bc20bd035553a20e0c14Secunia Security Advisory - Gentoo has issued an update for motor. This fixes a vulnerability, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
b0fcae0b69f2daf56e70a5db140a34a1a146a78c4dbfae30e95fc32e81539a9dSecunia Security Advisory - Kacper has discovered a vulnerability in phpGroupWare, which can be exploited by malicious people to disclose sensitive information.
2dde944095400ee73ab0e3eb3df534575759bf8742367333726d1adde0914612Secunia Security Advisory - the master has discovered a vulnerability in MiniBill, which can be exploited by malicious people to compromise a vulnerable system.
048cbdb29486693d043e3e824a1982e91d38fbfa64b313a32b0771420a40cf3aThis document describes a new syscall hooking technique for Linux systems and exposes how it can be implemented as part of a virus or a backdoor in order to take full control over an userland application. Although there are some well- known methods for hooking functions, they are mostly based on the ELF format itself. This technique is focused on those pieces of code that are externally called by the main program and invoke a system call or system service.
30fdbdfab2efb4eab95a25eb94384d63a0a3f4af1470486ff3e9730bb54e262cDebian Security Advisory 1162-1 - Luigi Auriemma discovered several buffer overflows in libmusicbrainz, a CD index library, that allow remote attackers to cause a denial of service or execute arbitrary code.
a063054400baef57bfab0cad98eefcd7f7db72132867f0c07d5344abc01e6b1436 byte shellcode for Linux/x86 that performs chmod("/etc/shadow", 0666) and exits.
daa1d05fcf31e6b915a63ab79d768f3c29c657f453c5f815a1193f8ddb31e26eSecunia Security Advisory - rPath has issued an update for ImageMagick. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.
a6c8b124a76ab97fb6087b038320cb660ff7422ac69bc5dc7949183da0f6fdd6Secunia Security Advisory - Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
402d205f89a4d75a0956d3eea276eb764dcd1ed4c4aa5ef46a1d3ded4438ad45Secunia Security Advisory - Gentoo has issued an update for php. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
3776e3589290f482c66a159c59108252b125bc55655f65868d4bb8bb5653b79aSecunia Security Advisory - rPath has issued an update for mysql. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
9807db647a813be131d49f701120cf0d908297b7048528935f694b0e0bd1c23fRule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
ad3bde38f32450a92f280a3745a2f90eae456aebd5c544bb0b850d38c1ceabb4phpGroupWare versions 0.0.16.010 and below GLOBALS[] remote code execution exploit.
a5834ec6ef7445886e11d8dd2510687075f830a5da2a37043d9ff40b0e9262d4MiniBill version 1.22 Beta suffers from a remote file inclusion vulnerability.
1284a196c807ece27a1bc5047c24fa8b64796300c89c21fba1eda116bafd899a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed