Secunia Security Advisory - A vulnerability has been reported in DIC shop_v50 and shop_v52, which can be exploited by malicious people to conduct cross-site scripting attacks.
fc51f693c748e3c0fd1c66139b3a31af42470fd67441818e872c3eb3188c46d1Ubuntu Security Notice 640-1 - Andreas Solberg discovered that libxml2 did not handle recursive entities safely. If an application linked against libxml2 were made to process a specially crafted XML document, a remote attacker could exhaust the system's CPU resources, leading to a denial of service.
fd2bd1a56a00f0337d2ecf51a4155529229f544423d9c53fd71025bcbabe33b9XRMS suffers from multiple cross site scripting and SQL injection vulnerabilities.
0bdef0ca481ae19458dda409c2fc4ab97493d63d05ac6fccbf3c16f2f3b41027FreeBSD Security Advisory - In case of an incoming ICMPv6 'Packet Too Big Message', there is an insufficient check on the proposed new MTU for a path to the destination. When the kernel is configured to process IPv6 packets and has active IPv6 TCP sockets, a specifically crafted ICMPv6 'Packet Too Big Message' could cause the TCP stack of the kernel to panic.
8d935b0a4c11d0b8d9e04f2031c6eabb363df15b37837728e7cfbdcb0d15d3acFreeBSD Security Advisory - Various user defined input such as mount points, devices, and mount options are prepared and passed as arguments to nmount(2) into the kernel. Under certain error conditions, user defined data will be copied into a stack allocated buffer stored in the kernel without sufficient bounds checking. If the system is configured to allow unprivileged users to mount file systems, it is possible for a local adversary to exploit this vulnerability and execute code in the context of the kernel.
8265017f0c4b0022d978e1e3604993352ecac41efc8b787596bf55e18a09b5bbFreeBSD Security Advisory - If a General Protection Fault happens on a FreeBSD/amd64 system while it is returning from an interrupt, trap or system call, the swapgs CPU instruction may be called one extra time when it should not resulting in userland and kernel state being mixed. A local attacker can by causing a General Protection Fault while the kernel is returning from an interrupt, trap or system call while manipulating stack frames and, run arbitrary code with kernel privileges.
fda35491c2c94c4696a474ad75a3cae114fe88a1cb3728114f08df8c752a8facSecunia Security Advisory - Secunia Research has discovered a vulnerability in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system.
b1d314044b1e4905ad027a266ae01aee2f4911560eefa86d5a34602fac50806eSecunia Security Advisory - Citrix has acknowledged a vulnerability in Access Gateway, which can be exploited by malicious people to poison the DNS cache.
668b88ed36ab6f1705ac21a40f4a6e325adb1476686e45e3376fa4f49e8dd2f1Secunia Security Advisory - Cyb3r-1sT has reported a vulnerability in Spice Classifieds, which can be exploited by malicious people to conduct SQL injection attacks.
ec5b9d2b1332b3860bddd395ade71a31eee5427ff85531a2539726e715e2a973Secunia Security Advisory - Some vulnerabilities have been reported in HP OpenView Network Node Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
b4c2187bead7ebe21de5eb0dc985d4b3a26f824bd6f1e54a1d219d796c0f70e8Secunia Security Advisory - Ubuntu has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
6a7f95eaaed970fadd54e99ffa92d3580713d9621db62bf5c511b2479bc2c335Secunia Security Advisory - Hussin X has reported a vulnerability in PHP Coupon Script, which can be exploited by malicious people to conduct SQL injection attacks.
d81332c56560164514bffb5fc38914a39e28ee824d04aea28cb76bcfaab4118bSecunia Security Advisory - Jo
485b9e666a5726f59e4239b5444641267ae716dc40b973257e832637a7d35c3eSecunia Security Advisory - A security issue has been reported in Postfix, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
5232c9d40f96da985c9def82a1fea5a40260c1959e4d1540e035924ae4e13dd3Secunia Security Advisory - e.wiZz! has discovered a vulnerability in eliteCMS, which can be exploited by malicious people to conduct SQL injection attacks.
ce545be065dbe1bcf95ed97d86081c74491f69b4d491ea44150605ec85a847b8Secunia Security Advisory - C1c4Tr1Z has discovered some vulnerabilities in @Mail WebMail, which can be exploited by malicious people to conduct cross-site scripting attacks.
36b99e246ec540a10e5deaf5e04d7adda569a0a144a80bea4f4c9550036f4d7b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed