Mayhemic Labs Public Advisory MHL-2006-004 - MBoard does not check the Post ID for malicious data when replying, allowing an attacker to create blank files on the system wherever the web server has write access. Versions 1.22 and below are affected.
dc3792e64bd8c279e0c5bc8ef1dbd4d1d6abe41cce79d600cbf424d8b5ea242fTiny utility for supplying user defined environmental variables at a defined sized. Used in the Aid of auditing binaries that rely on environmental variables.
bcbf4702c1ce63b703fb72f404ac522f7e5b4577ebf112ca5b2edcd8d57f1b1eDebian Security Advisory 1219-1 - The GNU texinfo package has been found susceptible to insecure file handling and buffer overflow flaws.
4641c059f7cc2e1ddd3c601d1259afa8745596943b067163250cb62775f3a5a0Symantec Vulnerability Research SYMSA-2006-011 - JBoss web server version 1.0.0.GA suffers from a directory traversal flaw.
4d939dbe83ac072089db652ef8ee016cd4030be72fcd99f8260e02f9fe2b6a5eiDefense Security Advisory 11.26.06 - Remote exploitation of a denial of service vulnerability in Qbik IP Management Limited's WinGate allows attackers to cause the application to consume 100% of available CPU cycles. iDefense has confirmed that Qbik Wingate 6.1 is vulnerable. Earlier versions are suspected vulnerable.
340e57a628054d4da0081a87641a3c6df3eecd3869a418e65078ee848c040575iDefense Security Advisory 11.26.06 - Remote exploitation of a format string vulnerability in GNU Radius could allow an attacker to execute code in the context of the running daemon. iDefense has confirmed that this vulnerability is present in version 1.3 and 1.2 of GNU Radius. It is likely that all prior versions are vulnerable.
efe55ee03ea96465eb10d6fe6fe06b65e592f753b28fc7f5ddfd146196ddfff3The Mambo jambook component suffers from a HTML injection vulnerability via the Entry field.
5416201197b11fb036e74529be34deb39680fc40184e5dfa1f06b02e21d1069cA vulnerability has been identified in TFTP server AT-TFTP server version 1.9, which could be exploited by remote or local attackers to execute arbitrary commands or cause a denial of service.
7a9c3ca4782e4a80ae4b38d7eee09dddf9261c91d317985a4f10aed118df81c2Simple scanning script that attempts to find ADSL router modems.
5c85446816efc8e18508b373cd5245ceada8009cb8d824e4f2f38b34bd2acd85Wisi Portal suffers from SQL injection vulnerabilities in multiple asp files.
35e756005211a27cc80f35076b1e91bd2610fa9eadafae1449d3b3357530ebf9Siap CMS suffers from a SQL injection vulnerability in login.asp.
60b246807b223663f55cba97fd0f15e9533cf522444dca01a0bfcd87a2b1d574PHP-Nuke Mermaid module version 1.2 remote file inclusion exploit that makes use of formdisp.php.
9de8b4e27c9936e6db0ca95e8a16c42edf0cee6c46e3d4ad2034345f411cadf9Secunia Security Advisory - Secunia Research has discovered a vulnerability in Borland products, which can be exploited by malicious people to compromise a vulnerable system.
99c8c5ddab8c2db394b0da3cb454eca76e16800f39c1338a91d48dc77d45c662Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in BlazeDVD, which can be exploited by malicious people to compromise a user's system.
d927982aab34469d2c3d8ad2eea8d8ab2d5240b43914d2af69190e1dc993be6eSecunia Security Advisory - rPath has issued an update for ImageMagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
610c2890d7a282f28fc4f944d154d17a6c7d7e137f6b05c9be7e28bb4733eaf0Secunia Security Advisory - A security issue and a vulnerability have been discovered in P-News, which can be exploited by malicious people to disclose sensitive information and malicious users to compromise a vulnerable system.
b58df434d698fa07bdc5bfa79b1f174a55279edb5f629a7292da388a22028d49Secunia Security Advisory - A vulnerability has been discovered in Evince, which can be exploited by malicious people to compromise a user's system.
57c82e2ae5eb5a2976a74cdb3df6a9e8a3e9585e118916f95d6170771f79d881Secunia Security Advisory - Teemu Salmela has reported a security issue in GNU tar, which can be exploited by malicious people to overwrite arbitrary files.
090141a9edf296fb800ab3a86a09310c221ece0b4b065bf10011f9151d0c2d7aSecunia Security Advisory - LMH has reported a vulnerability in Mac OS X, which potentially can be exploited by malicious, local users to gain escalated privileges.
6d0721f9759091e09b336da5441b8b6b155b93f1b7341012ec7c59c079f84cd0Secunia Security Advisory - Paisterist has discovered two vulnerabilities in PHP-Nuke, which can be exploited by malicious people to conduct SQL injection attacks.
73087894d08a7cbd5be696c654b8f47a03fb0bb0ae093907d48657ae0846ec67Secunia Security Advisory - Mayhemic Labs have discovered a weakness in MBoard, which can be exploited by malicious people to manipulate data.
d16bc4247f7b9566f6b275313d6c72bd48690caaad2fb3c62296dd923fdf1abeSecunia Security Advisory - F-Secure has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to cause a DoS (Denial of Service).
56c60ec7e883d9dc2ee969034717481fc37c1782e7e6ffb9373ec5fd19474007Secunia Security Advisory - MWR Infosecurity has reported a security issue in Crystal Reports, which can be exploited by malicious people to hijack user sessions.
aceb6b6453fbe375fc30adbc0eb54e8bb71ea313a94673d7cb25f9490aee91efSecunia Security Advisory - Ubuntu has issued an update for dovecot. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
c7701801c191cc583ee739956bbad1e3c66f52fff210810846863babddeb505dSecunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
8c7020799d91db3fe000324e1f76324bbf417f5fd35f14d8e05fc4b26bda5773
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed