AL-Caricatier version 2.5 suffers from a remote file inclusion vulnerability.
2a61bd4ad8dd1aecb978087fe46957bf5ed621218abdbe5899979dce78002aa2
Windows Calendar (Vista) ICS file handling suffers from a denial of service vulnerability. Toolbar suffers from multiple vulnerabilities. OpenOffice version 2.2 suffers from a denial of service vulnerability when handling multiple file extensions.
318b69fb4e51116ee75ae6cec03826b6139dfd2e43c7e64b83c30d6cd56082cd
Debian Security Advisory 1348-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened.
49e3a70039e6fad984c2f24899acf376b072798479b58d6d44d8f1c198922ac7
Debian Security Advisory 1347-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened.
5e07dd252fbab464131cc77702e9533be9f3101c692721eda821a42aee34eaa7
Debian Security Advisory 1346-1 - Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite. "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
7d8c2ef6cb498a01f05fe869a389a93bbe3f6cf220732c50f166e318bd3fb9e8
Debian Security Advisory 1345-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
af4abfa3d80e22b8e5beb51323cb93d79d2c92e0fc5a3cf28c6d13338a78cc5c
ContentDM appears to suffer from a cross site scripting vulnerability.
6348fcb68dd7a8d407a183b32a932309c39a74f9a7a3b9726291da5625d885ba
Mandriva Linux Security Advisory - GD versions prior to 2.0.35 have a number of bugs which potentially lead to denial of service and possibly other issues.
9b71e11c51ed034a2840a9c503b261abdb6dae6e78d6a53dac32de5e6e56e4d5
BIND 9 DNS cache poisoning exploit version 0.3beta. Affects versions 9.0.0 through 9.4.1.
f023654616fe84f718998c8f4bc85698475a60504f52977740ba5eaffbbce4f5
The Italian ISP Libero.it suffers from cross site scripting vulnerabilities when the p_Query variable is manipulated.
e6cbde62a9176f8bf9a54e0755adf56264e6a2e4167a5ac611814307c7ca7089
The Joomla J! Reactions component suffers from a remote file inclusion vulnerability.
39588476fe651cff66a478ac46397c509c596822da564f95d4076fdc040759fb
Debian Security Advisory 1344-1 - "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
d1fb2f29c2f8e3279dcdeddc998ce07195c774016ac60d19d4fece5890d9bd83
Ubuntu Security Notice 495-1 - Several format string vulnerabilities have been discovered in Qt warning messages. By causing an application to process specially crafted input data which triggered Qt warnings, this could be exploited to execute arbitrary code with the privilege of the user running the application.
3af02e0cb10c6ad4a19ff42552fd333e868c606423b7a9da6c9a09f0fa7b804d
Ubuntu Security Notice 496-1 - Derek Noonburg discovered an integer overflow in the Xpdf function StreamPredictor::StreamPredictor(). By importing a specially crafted PDF file into KWord, this could be exploited to run arbitrary code with the user's privileges.
54058bc668d98e99c59650536e2aa3ed485ea4369952bd5e9daf67aa42c494f9
Next Gen Portfolio Manager suffers from a SQL injection vulnerability.
d2b9888af382da1c903af1ce7ca2910f434a13036ed9538fc306bf7e226dcfe9
This Metasploit module exploits a stack overflow in Borland Interbase 2007 by sending a specially crafted create request.
3e86d3a39bb4d94d658211aedac9393c5ed438275012efe2be5e6a027d43a17a
Gallery In A Box suffers from a SQL injection vulnerability.
d8394da3cca87f3bffef2f4febd3363cea62fcf5380fd7f09a74add45da1936a
Hunkaray Okul Portali version 1.1 suffers from a SQL injection vulnerability.
49d7b4544da9c0c7540e6fc8675588ac027be8b458f74ede870574c5cc03cccf
Tour de France Pool version 1.0.1 suffers from a remote file inclusion vulnerability.
e8dccc047c2e5d2cd8c4f04ac4c01c37c78fbd5667c6c5e81bc2165065508002
Minimo version 0.2 and below and Firefox 2.0.0.6 suffer from an abuse vulnerability in their password manager feature.
66824a1405b5fa19539f80b5fec6c74246edd602ba6fcd16e48b24559704deea
Pluck version 4.3 suffers from a remote file inclusion vulnerability.
c716919a9ae433b4bc5a1a4b239a7b86fe283d82a2303b5a2396f3993a1f1f37
Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
734bd844df4e337cb989ea9700d60ca2d0eae03a5b0e97a5559b3addb2498ec6
arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
0bed9a7234da04b83ad98b374d4215375f476b6db4431ca7896d6129f5cfd80e
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
1083bd4fef643880eb5eaa7deb0bb45a42c9700a1905c6cd2057de97849f067b
NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
b58b4ea733a3833ed045bd4e578cec3f134d1cba691c3cd8b1afd7d732179222