The pdf in this tgz causes a denial of service crash in Adobe Acrobat Reader versions 8.1.2 and below.
12200238b8359ada70a0d29bdcef65ccef3ee15246ac78b1564f624138cae416Syntax CMS versions 1.3 and below arbitrary file upload exploit.
e51c2e9a4314386f5198af3a8636d4debb3412d35274587f947d98f4e0f33dd0FlashBlog suffers from a SQL injection vulnerability.
2215f3aa82d91ddf2937f260145ea953eb5b9c2091f91a65bbbe13ca0ec4d439Creative Software AutoUpdate engine ActiveX related stack overflow exploit.
6990fd41f1f1ad345942041721803846ff3207019c1c126f5c61fb226ef08533Mandriva Linux Security Advisory - Although they forgot to put the problem description in this advisory, it appears that Mandriva has patched a code execution vulnerability in smbd from Samba.
21b686bd634e77933c5f1e0116a026535e27dd376f6a34224ced1eab451679ceMandriva Linux Security Advisory - Testing using the Codenomicon TLS test suite discovered a flaw in the handling of server name extension data in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If OpenSSL has been compiled using the non-default TLS server name extensions, a remote attacker could send a carefully crafted packet to a server application using OpenSSL and cause a crash. Testing using the Codenomicon TLS test suite discovered a flaw if the 'Server Key exchange message' is omitted from a TLS handshake in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If a client connects to a malicious server with particular cipher suites, the server could cause the client to crash.
f38d910dc5c5925111a882ed8ce3f03bfbf1fe2151199af18fec14ecacb6b3f0Brown Bear Software's Calcium Web Calendar suffers from a reflected cross site scripting vulnerability.
6750c04ba4c03e44279ee84fce70a9d515f62dc26ee3ac4d1d34113661a4bd16Whitepaper called Bypassing URL Authentication and Authorization with HTTP Verb Tampering.
89c79276bb60d2a827a2b05125ffbdfb1c71292138a852beeb9e94a711e853bbThe Joomla Artist component suffers from a remote SQL injection vulnerability in index.php.
90e8685d57dd3af9ed0ef7f4fb696787b9206d16d574423667a7821a4364597bSecunia Security Advisory - Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system.
8e8b64309a9d6f7a50398b3f4d98a9a4c77ce4ca419880ebc00dddc0f6f3dd69Secunia Security Advisory - Gentoo has issued an update for roundup. This fixes some vulnerabilities and a security issue, where some have unknown impacts, while others can be exploited by malicious users to bypass certain security restrictions.
28802192ace65a4bf7ea88a90edf06f609b55d1aee2dacdbe8f893dc29829f3aSecunia Security Advisory - Some vulnerabilities have been reported in eMule X-Ray, which have unknown impacts.
1a3d6ece61c982cad962947b6cea35cf85414a4fc8835db0ced71cb7fad18cf3Secunia Security Advisory - gmda has discovered a vulnerability in AjaXplorer, which can be exploited by malicious people to conduct cross-site request forgery attacks.
a01f526e42b9d3a711c4a28970ca14eb5ed961509ab933e486f70c144ae6af36Secunia Security Advisory - Red Hat has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
8766d885c47c54736f1085b8d86c8eec0e89cc97191bc1b265817dfa9c24be4dSecunia Security Advisory - A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.
ebdbe06f96bfdff59d43ca8eb8c49d627aa15670c03a6377527cb7f87f635d6cSecunia Security Advisory - Two vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
db710b12abc3e2f52b5c6a030f9bae4f7e4ec7a9e37f8a850fff8b20e44422daSecunia Security Advisory - rPath has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious users to bypass certain security restrictions.
7e2da3bd0b860c686341b5d551e5ed1f941470c51842656923c4e7ed9b624895Secunia Security Advisory - Will Dormann has reported some vulnerabilities in NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
e3e142badb832abbd1ebb016088a98809da212dd0f012b2a23609dee7f8d3b70Secunia Security Advisory - Will Dormann has reported some vulnerabilities in NCTAudioStudio and NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
c28dcb9648c7f8b5938350f430951b4d27c54b5bd8875ea76c1e7ef6175dec3eHP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ftp. The vulnerability could be exploited remotely to create a Denial of Service (DoS). The Denial of Service (DoS) affects the ftp server application only.
616ca2c7be0f2605808e8c31ff8b936f5028ac51c040f280bc4c5f1226c62bc7Cisco Security Advisory - CiscoWorks Common Services contains a vulnerability that could allow a remote attacker to execute arbitrary code.
d72477b54c731199f5d8a816dd315f36ada6a253cc3a498551627cc5f13b0c59Secunia Research reported a vulnerability that allows for the execution of arbitrary code in smbd. This defect is is a result of an incorrect buffer size when parsing SMB replies in the routine receive_smb_raw(). Samba versions 3.0.0 through 3.0.29 are affected.
d7003f1c28c2ad87af590b45027e0424a9db86f02438797d09885e024d61f3e7CA Internet Security Suite 2008 UmxEventCli.dll/SaveToFile() remote file corruption proof of concept exploit.
0e0f7f36e859a5e86b850b821abda0786424278f27b7e96025d105ea8433d854PHPhotoalbum version 0.5 suffers from multiple remote SQL injection vulnerabilities.
721077397f84e8e69167f5ef354777f2e9fa8b4733e0b7d39c565c4fef78a9cdOtomiGen.X version 2.2 suffers from local file inclusion vulnerabilities.
fa7c1a59ef6bd0557d669bb4afb407d16fa0c6593befbcc6a9eeb29d2b25e955
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed