Secunia Security Advisory - bolivar has reported a vulnerability in Basic Forum, which can be exploited by malicious people to conduct SQL injection attacks.
fcd7da2d00375d71e550f0ebbcb17cadb0061af1351c5a2babc051f3201c9359Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions, expose sensitive information, and manipulate data.
395dca194f8e14bbe83479a5b94c0a5dfd91198737956f23b8efd191a73793b9Active PHP Bookmarks version 1.1.02 suffers from a remote file inclusion flaw in apb.php.
562d5f36a0c1bd8997400a8490dc46e6ab7b2cebdb0163d553a3a8be4304e364Whitepaper entitled Cracking String Encrypting in Java Obfuscated Bytecode.
b3a054932b76ff48af0039a46178eecf584bc4eb5e4ead1c864b310c0394d2cbWoltlab Burning Board Lite version 1.0.2 Zend_Hash_Del_Key_Or_Index / blind SQL injection exploit.
e295471bd99cd36e304cd10cd62404b9cf790413f6c6c2cb855454e1081f5daemmgallery suffers from a cross site scripting flaw.
9071003c6c8c1532702c2c247b28c4daeac7626488b311cb717aa5891fb9d8e1Simple PHP Gallery version 1.1 suffers from a cross site scripting flaw.
88944544a16e9dac6f26da14d3579629367896361d5b17fc7edc2343e17c0520Gentoo Linux Security Advisory GLSA 200611-20 - GNU gv does not properly boundary check user-supplied data before copying it into process buffers. Versions less than 3.6.2-r1 are affected.
cba70d2adfa77dcfee4ffb28520f3196f74302f716f95d1c81f203f31885df44Gentoo Linux Security Advisory GLSA 200611-19 - M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage() function of coders/dcm.c, causing the improper handling of DCM images. Pihlaja also reported that there are several boundary errors in the ReadPALMImage() function of coders/palm.c, similarly causing the improper handling of PALM images. Versions less than 6.3.0.5 are affected.
eb03626dd75b41e22a1dd7f7a4714a958ea8b46bf360b20cc7dd3bc65b5c01c3Gentoo Linux Security Advisory GLSA 200611-18 - Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflow. Versions less than 1.8.2 are affected.
54a3d42518a6830f76d715e26380c993a23bf54dd68182b9f2c763505bd6af74Utility that sniffs HTTP Basic Authentication information and prints the base64 decoded form.
d1f498ffeccaf405d1c5eee02b9059c9c967af99640fa813e9ef92cb76640102The Seventh National Computer and Information Security Conference ACIS 2006 (NCIS 2006) invites all researchers and practitioners to submit research papers in security topics.
09c5aa8aba24e5120087a319fd1f2bb90073b2247fc71df14537ec118f6c09f4The Google Crawler could be leveraged as an anonymizer for launching remote file inclusion attacks.
1d9ac034caee1ce402b242faeef52d03b033b705d33d2a8ceee4d07f61800070NVIDIA nView suffers from a local denial of service condition in keystone.exe.
7d22bcb7b9a88dbe9a3472b1ef5dd826c7ed3ca88845ae22ac72ae2da4defc87Mandriva Linux Security Advisory MDKSA-2006-218-1 - An off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote attackers to cause a denial of service (crash) via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array.
0c1995f891f62c93e82e5908e9f4bed81d74128b3655271258f0fd6d3aae1a46Gentoo Linux Security Advisory GLSA 200611-17 - Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that fvwm-menu-directory does not sufficiently sanitise directory names prior to generating menus. Versions less than 2.5.18-r1 are affected.
a29fbbf065020f67e0cb941dece13bd9270433aa7c319d93804e113250a8c44ca-ConMan versions 3.2beta and below suffer from a remote file inclusion vulnerability.
f2f33d994fb8037fec0cf26a435839baad586e6b8bc79ad45b8903cf389f4922InverseFlow Help Desk version 2.31 is susceptible to multiple cross site scripting flaws.
c08a060f103f26ab6d295cf63923f15878ff996977a02b623f4ee05bbd07eb90Call for papers for the 3rd edition of the best Polish IT security conference, CONFIDENCE 2007, which is taking place on May 12 and May 13, 2007.
c50cc19809dd09df77eec2315f1b8f91c5e09015007d5559a93fe2cc50f5f35bSecunia Research has discovered a security issue in PassGo SSO Plus version 2.1.0.32, which can be exploited by malicious, local users to gain escalated privileges.
55aae3eff1047ad72eec9e6d3d4305f55fa93d17b367dcf51e780830d77ce244Mozilla has made public bug #360493 that discusses a flaw where Firefox's Password manager is exposed to public sites.
2d4ce343138dc4c7ae6a7ab1eb1432e4851b920bda267470684e6bd3bdd8a75bHTTP proxy checking utility.
eec08c60dfe292551451ec91226d1e4a99c355b1e7cef9e6bfac347439032c2fGoogle Site Indexer (GSI) is a program designed to create a directory listing when a site has turned directory listing off. It sends requests to google using the site operator. Also it gets the sites robots.txt file.
ff1c4129776bb482f9d57c28d911fdf7853b9b621596cdea8bd543ec3b16845dSnort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
01e21432ec5a60a3965ce3e3ebf9cdb4125c9dd5d218da22688857a6357e2a94The mod_securid Apache module implements RSA SecurID authentication for the Apache Web server. It allows administrators to restrict access to Web sites (or parts of Web sites) to users authenticated using a SecurID token and an ACE server.
87c2643540d71c6fdf5c119067c34b61e9d37872340eca467bdb8ec2afb42713
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed