This is a patch for THC Hydra that fixes a status code parsing error for the HTTP protocol.
9f8bbdd611cf293292e197b96cc9bc52d77927cf395d6b5e00bc56cdf3233cc4Webmin version 1.390 suffers from a cross site scripting vulnerability.
c450bd3d09d7f21c613a13caf883400dd48a8da4a244ea4e1cc7965dbbb7a2feJaPCrypt stands for Javascript and PHP Encryption. It is a PHP/JavaScript suite that allows data encryption over HTTP.
96ba103d25f01e3d3c3d1a105d6cf5244df6bf93d4e42122e8a5d08c1b8e06ffOpenSiteAdmin versions 0.9.1.1 and below suffer from multiple remote file inclusion vulnerabilities.
40bbe74570d048d429056d0c1a17fda85bc1e944fbaa129886682ca5af5ac6f4CYBSEC Security Advisory - An arbitrary file overwrite vulnerability exists in Documentum Administrator version 5.3.0.313 and Documentum Webtop version 5.3.0.317.
6a7edaff25163bf5c8ba2f9a8295f93135c7d9b176a6b44472697e278f40a5dcSecunia Security Advisory - mu-b has reported a vulnerability in SafeNet products, which can be exploited by malicious, local users to gain escalated privileges.
376a5dae6691da63afa118e62ea41de07e1446fc4c6aaf1b0d9c1828539568c3Secunia Security Advisory - Ubuntu has issued an update for apache2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct cross-site scripting attacks.
a0dc630aef2c54b5858815993484b7853644f748e9343044dbeffd41070eacbdSecunia Security Advisory - A vulnerability has been reported in RaidenHTTPD, which can be exploited by malicious people to conduct cross-site scripting attacks.
da8ac656cff68f73a24d799c26ba17b0b8d1d5990bccf06eba215b17c7c838fdDebian Security Advisory 1482-1 - It was discovered that malformed cache update replies against the Squid WWW proxy cache could lead to the exhaustion of system memory, resulting in potential denial of service.
2c51495f26c004770d1c059d6fbb090b1039026ad891e5815331d2be6be51742Debian Security Advisory 1481-1 - It was discovered that a directory traversal vulnerability in CherryPy, a pythonic, object-oriented web development framework may lead to denial of service by deleting files through malicious session IDs in cookies.
2d5292a88121aef527bffd7b0ee0ec142d4f5920d873bdf8bb0b39d09f0df0f6Debian Security Advisory 1480-1 - Alin Rad Pop discovered several buffer overflows in the Poppler PDF library, which could allow the execution of arbitrary code if a malformed PDF file is opened.
351f35d4a89cf79f04f78425068edefe418915d70daa17fd52690d59d2bf1972Debian Security Advisory 1486-1 - "r0t" discovered that gnatsweb, a web interface to GNU GNATS, did not correctly sanitize the database parameter in the main CGI script. This could allow the injection of arbitrary HTML, or javascript code.
9ddea4aef7c77083962882bd870e592448662806878b24939fc986855efe1276Titan FTP server version 6.05 Build 550 heap overflow denial of service exploit written in Python.
655e3bd21682f5919b38572e699c056b7f3e453bfc145174c61681149f483cd6ActiveX - Active Exploitation. A simple white paper discussing the basic elements of hacking ActiveX.
ce1f2b94c26dc95fe4e0ce9dcba7adcb316b6611961de9a52812991efd50cdf2Wordpress MU versions below 1.3.2 active_plugins option code execution exploit.
7a3a21235d51bdc42e6c0752a58a8406a9a623dc11f99413787468d3da4d605cPhotokorn Gallery version 1.543 suffers from a SQL injection vulnerability.
2a380c0b9ac0085a9dd740d146f8371094fe525197b9dc314df7e761db5291adAll Club CMS versions 0.0.1f and below suffer from a remote SQL injection vulnerability in index.php.
2a3ccc3f238f132e87f7620c383b70107da32ac6a02e64553b4d966c51a57d71RMSOFT Gallery System version 2.0 suffers from a SQL injection vulnerability in images.php.
642c6b6b03346e959b4fbfb2fb25c4f211fff0e0221aac67b77d30052d9694baAzucar CMS version 1.3 suffers from a local file inclusion vulnerability.
76d67bb1ad5cdee81c2affe6bbd951d58ba0d73bfc54904bf400489904bb7656HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to create a Denial of Service (DoS).
d7e55f41d0df6daf8cdcd012ba76422e306853c3736291a2eff50bd0e367d0caAll Club CMS versions 0.0.1f and below suffer from a local file inclusion vulnerability in index.php.
7b484d9c53345d3a9f9556d695fc6149c1573cb91ba442195bac31775e0d697fdBpowerAMP Audio Player release 2 remote buffer overflow proof of concept denial of service exploit.
1ce10d693a440f9dc1e8d383b59ea575028760e6510c906caaceb65b90179704NERO Media Player versions 1.4.0.35b and below M3U file buffer overflow proof of concept denial of service exploit.
a97a33b09322cbad75583fb79c61778781c1d02d178c7506c9bf1ef402732509Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
50435a4804e9d77bcb7cc77de984f44efb9292e75af1e40104e74f3d1d79d022Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
32d9794c00c4a6afa9bb98fff43e97dae6fb37e7681049aefd9735ba471b887d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed