Fullasprite Shop suffers from cross site scripting and SQL injection vulnerabilities.
8b4d6c7d3207f56842ddc881b543ce27ae0c485daacf664de9dfdcd194b7c26fTechnical Cyber Security Alert TA07-044A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Internet Explorer, Office, Works, Malware Protection Engine, Visual Studio, and Step-by-Step Interactive Training. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
cf415a3508007074dfa269e1582bd75127487b1b84a1de17d15cb8e2bb7113ae@Mail suffers from cross site scripting flaws in search.pl.
cdf13de4e84068e74d685d8467c21e617c726c0f6d643e8f86bb79615577b91dGentoo Linux Security Advisory GLSA 200611-05:02 - The original fix for Netkit FTP server introduced a new vulnerability allowing the listing of any arbitrary directory with root group permissions due to a typo in the setgid() call. New fixed packages are available. Also, this update adds a second CVE reference which was not originally mentioned while it was covered by the original fix. Versions less than 0.17-r5 are affected.
67fd8e0046ba330ab4a4490a40167c059b22d287ab6505f1baffca55105ec92bCisco Security Advisory - The Intrusion Prevention System (IPS) feature set of Cisco IOS contains several vulnerabilities. These include a flaw where fragmented IP packets may be used to evade signature inspection and another flaw where IPS signatures utilizing the regular expression feature of the ATOMIC.TCP signature engine may cause a router to crash resulting in a denial of service.
4a50e4260f251217e7c720a2384b15bce37a4aa787b02acf8329075517c15ae0Mandriva Security Advisory - Kees Cook performed an audit on the Smb4K program and discovered a number of vulnerabilities and security weaknesses that have been addressed and corrected in Smb4K 0.8.0 which is being provided with this update.
79736ec9fafb691f24dc5df8c07ac35af8869875e5b7e553577dda875830b1edBoth the command line based and the web based management interface of the Aruba Mobility Controller are vulnerable to a heap based buffer overflow when overly long strings are passed as credentials. This can potentially lead to remote code execution, resulting in a system compromise.
2765a8733591e6cc8a10571d0eddc6946cf3800a1474c9f2a49ef8364eeb7b9eA flaw in an authorization component allows for unauthorized access to the Wireless LAN through a Captive Portal, VPN, and administrative access using either the web-based administration or the command line interface. This vulnerability affects all versions of the Aruba Controller beginning with version 2.3.
d9f59c55b587f3d9ff9b8404f4cfc3a3b9b30d8abd4bcf3ae2558f4dc03841d6Inertia News version 0.02 beta suffers from a remote file inclusion flaw.
86b4496ff2beecf1499ff97f3f99f09b4c03c0f04e5f9a01294ebd744318d8abeWay suffers from a cross site scripting flaw.
68e5cef611ac34292088eae37b7bbb98b404977121d26f4011f8db918b457bd4Secunia Security Advisory - Yag Kohha has reported a vulnerability in Microsoft Data Access Components, which potentially can be exploited by malicious people to compromise a user's system.
8f9f276686f38f0a88cac3dca6316c26feb41b73bb5caf1ebbb12fa43b9a9224Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in MailEnable Web Mail Client, which can be exploited by malicious people to conduct cross-site request forgery attacks, cross-site scripting attacks, and script insertion attacks.
c1413cffaa0e139822bc70a7d3360596e46c431fd08e0c0063dc0cee3114825bSecunia Security Advisory - Parvez Anwar has discovered a vulnerability in Total Video Player, which can be exploited by malicious people to compromise a user's system.
e0dfe92a051491d099652d7e98fe08fc4c6c17d19065f36908645e2c5ea709e7Secunia Security Advisory - Some vulnerabilities have been reported in web-app.org WebAPP. Some have unknown impact, while others can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
0908be0d5dde6851f143425978728d5c7ec0096e24f621bc52e2af3996e3b962Secunia Security Advisory - Hamed Bazargani has reported a vulnerability in eXtreme File Hosting, which can be exploited by malicious people to compromise a vulnerable system.
c73bb7530465132f754dc98236b50d3a11c26568397be72ec159e969b611cfa4Secunia Security Advisory - A vulnerability has been reported in Adobe JRun, which can be exploited by malicious people to conduct cross-site scripting attacks.
e55e39a0529da7aa7e915c4d74e6f0b79e1938823015b3e6ac923ea5fabb4c3bSecunia Security Advisory - s3rv3r_hack3r has reported a vulnerability in cPanel, which can be exploited by malicious people to conduct cross-site scripting attacks.
21d9901113912ca64eab82b1e7ba00895557f25b72b9430a84552fe74111c477Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Mozilla 1.7 for Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions or potentially compromise a user's system.
8276f8cc40b1a2d18bdb8c87a678d7d32c264627fc6f9bf17ae1c535303fef35Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
4ec774f8dd0b4b50cfd0409080cf3420fe21d1d41e3b2413952c63b258e7b692Secunia Security Advisory - Mandriva has issued an update for smb4k. This fixes some vulnerabilities, which can be exploited by malicious, local users to kill arbitrary processes, disclose potentially sensitive information, and gain escalated privileges.
3400ec32b1f66d87f6336b40cca64a76bb4a6eb6550344c05fdfaacb66d637ddSecunia Security Advisory - BLacK ZeRo has reported a vulnerability in eWay, which can be exploited by malicious people to conduct cross-site scripting attacks.
d494fe00c40ff648802f63a758d94e42a0c1a5b178cce585a529fea0cd8652f1Secunia Security Advisory - Two vulnerabilities have been reported in Adobe ColdFusion MX, which can be exploited by malicious people to conduct cross-site scripting attacks.
1978f457866c2a7178b56fc767961f64ff651f25b68613e30a504c4f253564b5Secunia Security Advisory - A vulnerability has been reported in Microsoft Step-by-Step Interactive Training, which can be exploited by malicious people to compromise a vulnerable system.
5105f22015958824e1fc7f77b7da45b25ed68dcdc4d7927e4b496da9b45ea274Secunia Security Advisory - Spiked has discovered a vulnerability in TaskFreak, which can be exploited by malicious people to conduct cross-site scripting attacks.
3e6f39901d7cecddc843be0ce14bc608622990e9c4880afd92c96f6c148d8235Secunia Security Advisory - Some vulnerabilities and a security issue have been discovered in Virtual Calendar, which can be exploited by malicious people to gain knowledge of sensitive information and conduct cross-site scripting attacks.
08eea4bec183de34409cefc44ded6bb3fc3ec314edab73badeea45f67233a095
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed