Secunia Security Advisory - cOndemned has discovered two vulnerabilities in PHPhotoalbum, which can be exploited by malicious people to conduct SQL injection attacks.
527bd6e27486fc3e5c20e1bef1c5a325ea8e87efb26bc0ad70d88a37284b1c3cSecunia Security Advisory - A vulnerability has been discovered in CA Internet Security Suite, which can be exploited by malicious people to overwrite arbitrary files.
87f7bdb13ab28477b0ebfcf2097f6b481ea56b4aa64968399f1a6c7e7de2a378Secunia Security Advisory - A vulnerability has been reported in various Cisco products, which can be exploited by malicious people to compromise a vulnerable system.
2e0c25195c6499f6ea9b2b15808d11fc6ce09531a9e399e3d72f92de0ecff487Secunia Security Advisory - Fedora has issued an update for stunnel. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
581bacfd4c3ae6b7e4c98eca229089975780aa37876e2f236007d559770f8923Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
0eef0cf848386397c8c911045793583f7eb948926941fe4adb39b7aa8c864667Secunia Security Advisory - Marvin Simkin has discovered a vulnerability in Calcium, which can be exploited by malicious people to conduct cross-site scripting attacks.
1ecb496ef8e28844eb25c1ee456dcec6b2ca78b0c9d5a35c6cbd08cac6b8cc04Secunia Security Advisory - A vulnerability has been reported in Symantec Backup Exec System Recovery Manager, which can be exploited by malicious people to disclose potentially sensitive information and potentially compromise a vulnerable system.
ae229d64489e924857f06a5e2501be0939885fd153f99aea8df942fbd357ea23Secunia Security Advisory - Heise Security has reported a security issue in SteadyBackup Online Backup Manager, which can be exploited by malicious people to conduct spoofing attacks.
e944730d51d8186dbeee4ace2fe0b7938b1c6dfd2edc28d654f4f2c762a230bfSecunia Security Advisory - Heise Security has reported a security issue in Ahsay Online Backup Manager and Ahsay A-Click Backup, which can be exploited by malicious people to conduct spoofing attacks.
4cee11467a13150432d9a699f8c145dc581daadbaaa74789b495112a408143bdSecunia Security Advisory - Fedora has issued an update for cbrpager. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
a422d649235233490b17ce6c1a42466fd783450439223ba57567a28dc177b4c6Secunia Security Advisory - Slackware has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
bfc6eed800be9e9ff6d17e47bb00353b7be3454eae5e4da0b4b7ddff6dad55c0Secunia Security Advisory - A vulnerability has been discovered in Alive MP3 WAV Converter, which can be exploited by malicious people to compromise a user's system.
740aaf110ff29abf1e51a8ae6f107db73dd5d226fe1bef83de6f3bf8f84f2c75CMS from Scratch versions 1.1.3 and below remote shell upload exploit.
990e8e19623db6c4c795620d299a9772169986130f08147e04c8c1585728d2a9This Ruby code will test a specified Host's SSL certificate against the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated during the period where openssl on Debian-based installs suffered from a weakness in random number generation. Note that the blacklist is embedded in the code so the file is about 23 MB.
288124a67c707a0fcf89edfbedf7c4788dd853dd55871cba94ecfe308e0ea1aeSecunia Security Advisory - A vulnerability has been discovered in CinematicMP3, which can be exploited by malicious people to compromise a user's system.
78c1799695ea8596b87fe915e5fbd878f8bb76b56365258c397050eee8912c46Secunia Security Advisory - A vulnerability has been discovered in Power Audio CD Grabber, which can be exploited by malicious people to compromise a user's system.
1da96cbb19c4a5704202428abb8a75544ece1454e6b39996a31ad1977524d968Secunia Security Advisory - A vulnerability has been discovered in Power Audio CD Burner, which can be exploited by malicious people to compromise a user's system.
afa86c5a3698f6acb5929edfa6b5833c8212cf1fbc249bc106f037d1d231f7cbGentoo Linux Security Advisory GLSA 200805-23 - Alin Rad Pop (Secunia Research) reported a vulnerability in Samba within the receive_smb_raw() function in the file lib/util_sock.c when parsing SMB packets, possibly leading to a heap-based buffer overflow via an overly large SMB packet. Versions less than 3.0.28a-r1 are affected.
3f9e9dd3adb60e4eb8140bd18d5033ea15f945efa690a4bd05de80413f537cf0Gentoo Linux Security Advisory GLSA 200805-22 - k'sOSe reported an integer overflow vulnerability in the sdpplin_parse() function in the file stream/realrtsp/sdpplin.c, which can be exploited to overwrite arbitrary memory regions via an overly large StreamCount SDP parameter. Versions less than 1.0_rc2_p26753 are affected.
7a6af3650e7b8a3de24803736de098f1dbea4fdc36917b47eeb035c4ee6e6e1aSecunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "receive_smb_raw()" function in lib/util_sock.c when parsing SMB packets. This can be exploited to cause a heap-based buffer overflow via an overly large SMB packet received in a client context. Successful exploitation allows execution of arbitrary code by tricking a user into connecting to a malicious server (e.g. by clicking an "smb://" link) or by sending specially crafted packets to an "nmbd" server configured as a local or domain master browser. Samba versions 3.0.28a and 3.0.29 are affected.
ace1e3490d62e1305a8527f476f4dc946ef19f53a86ef8ec100f95d0c1a120a2Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. imlib2 version 1.4.0 is affected.
492f91d706882a5fb47f967879cf1859be511b2b1b12b3b2a76195a3a3e14618dvbbs version 8.2 is vulnerable to remote SQL injection attacks via login.asp.
4a6c09aaec3ba57fb79e838c5be800192febb9125858707ec46aa55b5f6ea7f1FlashBlog beta version 0.31 suffers from a remote file upload vulnerability.
d3dadbe81dbd99fc7a194fbf1394504ccfc797c45cf144be6f510b37d6c5bc0bPicoFlat CMS version 0.5.9 suffers from a local file inclusion vulnerability in index.php. This uses the same variable that had a remote file inclusion vulnerability back in October of 2007.
2c10e7ccf5e8093e189b8ea95b4a6be0c6d6ebaf61737cd4024a8481c1a945ffAirvaeCommerce version 3.0 suffers from a SQL injection vulnerability.
764bc06b33cc5c898d2d076bc517ec439c7e887a8094d68542b11fd5eb351af6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed