Apple QuickTime versions prior to 7.5 suffer from a heap overflow vulnerability when handling PICT images.
d724e9e6944eff30016b9426e445cdaca7b49bfdefc5bb06d255042b549b2043
The F-Prot Anti-Virus engine versions below 4.4.4 suffer form an out-of-bounds memory access denial of service vulnerability.
d918f9e89f9fe8868e89c10640916fe2470d61015aeccf9885cca0618046a693
Debian Security Advisory 1544-2 - Thomas Biege discovered that the upstream fix for the weak random number randomization did still not use difficult-to-predict random numbers. This is corrected in this security update.
786389ef31e587d5656cdffdd2ffe831943fdd6fa20bae122c93ef1d71d1e342
Secunia Security Advisory - StAkeR has discovered two vulnerabilities in Galatolo WebManager (GWM), which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
c8e335b8c08b0fcb64c8903e3d86ec80ef867fddf8a8638330ccb4f973e37cfa
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, disclose potentially sensitive information, and gain escalated privileges, and malicious people to cause a DoS and potentially compromise a vulnerable system.
a75aa30d7e2a3e4a53c3f2f9c9361dcb5c99d6cb86a6cd02d10686269ced1d0c
Secunia Security Advisory - A vulnerability has been reported in Firefox 2, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
c63dc88c1c729d34c909f1429d679a2012b978c77eeeffb5c5279d3d690a6351
Secunia Security Advisory - Red Hat has issued an update for seamonkey. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
1d52fa53b3bb0013d76a75ebe639a82b22ea845b8256be963e28eed9d4fa3c52
HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access.
1a31812ca82aa80ac997bdcb278bc58f2b4ee6f0cefa785892168585c190ba11
Lack of sanitization throughout Netrw can lead to arbitrary code execution upon opening a directory with a crafted name.
f50311e256266d8d203d3885b3448de80d94b947a9e036abe3e56dcfaf147b16
Vim versions greater than and equal to 7.2.a.013 suffer from an arbitrary code execution vulnerability using the shellescape() function.
6adfab1ef22a58322cefeb82ac51d3173e70797770814479bc878db14994e3b5
AlstraSoft Affiliate Network Pro suffers from a remote SQL injection vulnerability.
7ebeb85c55258e5b339e3fe0d8173c01192419bee896b863298913f490188b72
tplSoccerSite version 1.0 suffers from multiple remote SQL injection vulnerabilities.
879ccd9b8188b95b6e8297f53e16d2b019e01083144c833a0d684dab0b6bb28a
The Joomla DT Register component suffers from a remote SQL injection vulnerability.
44653f02bd4d682c029f3264b8be8750a465e9bd9bce67f1b6674fa31acd2e2c
PHPizabi version 0.858b C1 HFP1 remote code execution exploit.
46856d0a6b7114a73e0557806e30169dd94dce5d1e1d8ae22b27380b87535e8e
Mandriva Linux Security Advisory - Tavis Ormandy of the Google Security Team discovered a heap-based buffer overflow when compiling certain regular expression patterns. This could be used by a malicious attacker by sending a specially crafted regular expression to an application using the PCRE library, resulting in the possible execution of arbitrary code or a denial of service. The updated packages have been patched to correct this issue.
90af6b4f2837c16c44dd246b1175a40dd0effece45f132077dde70f78db33eca
Ubuntu Security Notice 625-1 - A massive slew of Linux kernel related vulnerabilities have been addressed for the linux-source-2.6.15/20/22 packages.
e309dbb8ed4824d0ba3a0db45465a00498514fe1765827e95617f7fc118a59dc
vBulletin PhotoPost vBGallery version 2.4.2 suffers from an arbitrary file upload vulnerability.
190dfae7539e75d585afb4983945f39a9b8f4cb6a44c171f1119522afe5a2852
HockeySTATS Online version 2.0 suffers from multiple remote SQL injection vulnerabilities.
c0169e1beeadf1b7a3350bfdbdd5b64f73edc302abab1a535dc766fbf204a63c
Galatolo Web manager version 1.3a suffers from an insecure cookie handling vulnerability.
a072871f2f91710d78dcffa99a995e3d282aa9d3483830e8d064ed3c8d52d4e8
Document Imaging SDK version 10.95 ActiveX related buffer overflow proof of concept denial of service exploit.
98b2060ffe1998eee18523cdf6d9f3487930c87967a0cd3264e19147115da5fc
Mandriva Linux Security Advisory - A memory management issue was found in libpoppler by Felipe Andres Manzano that could allow for the execution of arbitrary code with the privileges of the user running a poppler-based application, if they opened a specially crafted PDF file. The updated packages have been patched to correct this issue.
411aacd9fb69d58366d38e486720a5ae91a43dfafe9d392cce5d436502257020
secure rm (srm) is a command-line compatible rm(1) which completely destroys file contents before unlinking. The goal is to provide drop in security for users who wish to prevent command line recovery of deleted information, even if the machine is compromised.
ecb942cc52f0895783d3c8290aeac694e086ba298fb346261fc1339fe991dd7d
Secunia Security Advisory - Red Hat has issued an update for bluez-libs and bluez-utils. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
dab1a46f2376a56f58bb47f6beca7e7a6cf0fd5ff9f0b70984351eb4a0f8af79
Secunia Security Advisory - Red Hat has issued an update for java-1.4.2-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, or compromise a vulnerable system.
6fceb01610d0d11c472f7d6c32830e3ef8a10eb6f49920785bd27775eaf95700
iDefense Security Advisory 07.15.08 - Local exploitation of an untrusted library path vulnerability in Oracle Corp.'s Oracle Database product allows attackers to gain elevated privileges. This vulnerability specifically exists in a set-uid root program distributed with Oracle Database for Linux and Unix platforms. By replacing a module owned by the oracle user, which is loaded by this program, an attacker can execute arbitrary code as root. iDefense confirmed the existence of this vulnerability in Oracle 11g R1 version 11.1.0.6.0 on 32-bit Linux platform. Previous versions may also be affected.
01a615097a77c6303f3b770b31f3e4481133f468b5bad9ffbcfaea23ea933114