Poldi is a PAM module that implements authentication through the OpenPGP smart card. It uses the smart card daemon from the GnuPG project for smart card access.
f080c3ae8317d6c7099499f40c0aedc7e0ea67eebc788aac662824bf1d9cae19VMware Security Advisory - Updated ESX packages for OpenSSL, net-snmp, and perl have been released to address multiple vulnerabilities.
b9fc79fc6d73c8635a227013728cb6e8490b89d0d62d24c585fa37fd7cbfa221VMware Security Advisory - An information disclosure vulnerability is present in VirtualCenter. Exploitation of this flaw might result in disclosure of the user names of system accounts. VirtualCenter versions 2.5 previous to update 2 and VirtualCenter versions 2.0.2 previous to update 5 are vulnerable.
f01d6babcec1ce01eeef99846eca4c77269f9ab6e83233a3e8a58f435f4beac3hMailServer version 4.4.1 is vulnerable to resource exhaustion attacks that can lead to a denial of service.
df8e62b98bc0d6e172ac35d89b852eb297c68fa84db745d55a7b5761515ec875iDefense Security Advisory 08.04.08 - Remote exploitation of multiple format string vulnerabilities in Sun Microsystems Inc.'s snoop could allow an attacker to execute arbitrary code with the privileges of the nobody user. Multiple format string vulnerabilities exist within the code that parses and displays SMB traffic. All of the vulnerabilities are present due to unsanitized user input being passed to printf-style formatting function. This allows an attacker to overwrite arbitrary addresses with arbitrary data, which can result in the execution of arbitrary code. iDefense has confirmed the existence of these vulnerabilities in snoop for Solaris 10 8/07. Other versions may also be affected.
86a629216fb461e13eaaf00def47aaea7455872dfc3360b326c676d8ff366859iDefense Security Advisory 08.04.08 - Remote exploitation of multiple stack-based buffer overflow vulnerabilities in Sun Microsystems Inc.'s snoop could allow an attacker to execute arbitrary code with the privileges of the nobody user. Multiple buffer overflow vulnerabilities exist within the code that parses and displays SMB traffic. In most cases, exploitation is trivial as an attacker has full control of the data copied. iDefense has confirmed the existence of these vulnerabilities in snoop for Solaris 10 8/07. Other versions may also be affected.
44c95b7eafa3c1684d3258e1f4f590cc2c4fe2a3c61f9cf0ababd05d2179e75cPpim versions 1.0 and below suffer from upload and password change vulnerabilities.
132e0eea5712ec99ad10ea042a571d6cf331590f457539dd0b17542fa05c0813Layered Defense Research Advisory - A stack based buffer overflow was discovered within Alcatel OmniSwitch product line.
7990682cd4bcbd2b3f2495a6713625e60c4b87f4bffbdfcb203ecad33dac8594Pardus Linux Security Advisory - Two overflow issues were discovered in Php which might possibly allow for arbitrary code execution.
4417694c5b2a2faf02c87e054d34967fb5e89e6106a90ce2194f6858d079b678Pardus Linux Security Advisory - Multiple vulnerabilities have been discovered in Ruby: several vulnerabilities in safe level, DoS vulnerability in WEBrick, Lack of taintness check in dl and DNS spoofing vulnerability in resolv.rb.
a3485348dd6752076c34dc92849c09f1be4a2d7a218d600345b59342a9ee3ca2Mandriva Linux Security Advisory - An incomplete fix for CVE-2008-2713 resulted in remote attackers being able to cause a denial of service via a malformed Petite file that triggered an out-of-bounds memory access.
f279139437586cfcc7ad19c35f158be4eb5f5ba74ff4b2d8f5a4c2f3548d21d5Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel package.
a22bc116b2abbe7adc279c9653623c50268cacda2c1139b16c87517248f69822Mandriva Linux Security Advisory - The rmtree function in lib/File/Path.pm in Perl 5.10 does not properly check permissions before performing a chmod, which allows local users to modify the permissions of arbitrary files via a symlink attack. The updated packages have been patched to fix this.
10b076b5e50248be914741d1113a80b1bf984236f35ec1e60e67c49db31536dcZeeBuddy version 2.1 suffers from a remote SQL injection vulnerability in bannerclick.php.
fb96304aa067725c902ede07aacb360b6c81025e548540fd83438f3a860f4bceIntelliTamper version 2.07 HTTP header remote code execution exploit.
b028e80d5b859d3e60d3dbb0b896b69519e20b075e9b4b0e87344c6cb660a605Gentoo Linux Security Advisory GLSA 200808-11 - UUdeview makes insecure usage of the tempnam() function when creating temporary files. NZBGet includes a copy of the vulnerable code. Versions less than 0.5.20-r1 are affected.
05057434756ef0073d463e6ea74a34c1f85809b90c7ea2ba8ecb65a98edf7a20ExoPHPDesk version 1.2 Final suffers from a remote file inclusion vulnerability in common.php.
147792f2d1c6b1677502b505673abfb31dfc28c06f483ef59e78d8e3aea6ba5cInguma is a free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler.
e5c56aed374969acc0d9b93fac8849bb83482705761f98a010ffad11047b6ca6OpenImpro version 1.1 suffers from a remote SQL injection vulnerability in image.php.
12c55fe67d2c47f11604bd14df35ec327aa5d0588d2072b7e5d76246993430bcsurfjack is a tool that allows you to hijack HTTP connection to steal cookies.
65a1c73679412a460412df6144fbf8de78ac5c5048437c0211b5eee605f5abbdApache Tomcat versions prior to 6.0.18 suffer from a directory traversal vulnerability.
a4627d264413d5c228e2b45310a653f9683c2975d1a995ec77da67395ba2d871The RMSOFT MiniShop module version 1.0 suffers from multiple cross site scripting vulnerabilities.
0ea07099b4d0d32c46e581f5b0da64e0af6e9435c397e086f8dac8481eeb7859Cisco WebEx Meeting Manager Active-X related buffer overflow exploit that leverages atucfobj.dll.
b8bad26b2db68e69d638bc3a99a42064adac6bc1c33043457baa95edc60f61f1PHP Realty suffers from a remote SQL injection vulnerability.
5b06a83e1817fda29075ca654c085f1dc6f84e1a8896bea1432262065bd54800psipuss version 1.0 suffers from multiple remote SQL injection vulnerabilities.
bf73d5857fe1f2ff7a7285d4aeff6d3925aed89d6f90f5feacf5ea9495f36218
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed