Mandriva Linux Security Advisory - Kees Cook of Ubuntu security found a flaw in how poppler prior to version 0.6 displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause applications using poppler to crash, or possibly execute arbitrary code when opened. This vulnerability also affected KOffice, so the updated packages have been patched to correct this issue.
2c2f5d437212325f501d1d8e343de0b61cc5b52ff949dfe7bce05e9e6ab81604Mandriva Linux Security Advisory - Rob Holland found several programming errors in WordNet which could lead to the execution or arbitrary code when used with untrusted input. The previous patch had a typo that caused incorrect behaviour in WordNet. This update uses an update patch that corrects the issue and also notes the additional assigned CVE name for these issues.
74e06ba98550a678c3fb64f9a348550975806181cd83d7d500db56731a314bc7Mandriva Linux Security Advisory - Uncontrolled array index in the sdpplin_parse function in stream/realrtsp/sdpplin.c in MPlayer 1.0 rc2 allows remote attackers to overwrite memory and execute arbitrary code via a large streamid SDP parameter. The updated packages have been patched to fix this issue.
288b39aeb0256411875670bf5f2a1055a07b8cfcc4444c1fe4f369c2e347e08dLink Bid Script version 1.5 suffers from multiple remote SQL injection vulnerabilities.
87f0bfcc646e931f31be0cbac436a0a0d81cb2e03e6ba3f4c408cdd1ac2cee82Pre Real Estate Listings suffers from a remote SQL injection vulnerability in search.php.
8755ad2b270718bd49963aee8cb42ae11adff7bb6fa02fbd03ea7aa825c0cba9Secunia Security Advisory - Marc Ruef has reported a vulnerability in StingRay FTS, which can be exploited by malicious people to conduct cross-site scripting attacks.
ede43e3bd07873307a6394e60ef0800438fd8d4c01f5d90c399bc0a5af7e3421Secunia Security Advisory - Xylitol has discovered two vulnerabilities in ParaNews, which can be exploited by malicious people to conduct cross-site scripting attacks.
b80d372afbf1ed1f1886e318f8bcfb7a43cc741ff454d210358277cd534b0d64Secunia Security Advisory - A vulnerability with unknown impact has been reported in SPAW Editor PHP Edition.
ed5789e0e0f1a6d09ce4d999a29d5f9349f9f5f8fb6b3279e4d016e784e12044Secunia Security Advisory - Khashayar Fereidani has discovered a vulnerability in phsBlog, which can be exploited by malicious people to conduct SQL injection attacks.
18f500e926a5636c8ca450dab6ac2720658bf6fa8524f7dc4867d893b49720f8Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
55a69be934e0dfdf8ffc6221fa3cd951db74ea802df8be34edef3e8b4edbfe4dSecunia Security Advisory - Tec-n0x has reported a vulnerability in YourOwnBux, which can be exploited by malicious people to bypass certain security restrictions.
3e5f3ed0247673625ae8f292817e5ea7cbf7dd027a8dca03256815a20b0bc534Secunia Security Advisory - Some vulnerabilities have been reported in Ruby on Rails, which can be exploited by malicious people to conduct SQL injection attacks.
11e83d260028c948db3ff4dc57b97439595ab7ad7f6c00dbd556d51d521169f4Secunia Security Advisory - Sun has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
ac0529dccf873bdb910f6c0a011572651fa3627929a04bfcd618966c65034541Secunia Security Advisory - SirGod has discovered a vulnerability in TalkBack, which can be exploited by malicious people to disclose sensitive information.
3daafbd619d010a21bef66adaf1e5069c0c4eff219bc1c7654e03da8e98f2e7dSecunia Security Advisory - Multiple vulnerabilities have been reported in Apple iPhone, which can be exploited by malicious applications to bypass certain security features, and by malicious people to poison the DNS cache, spoof TCP connections, or potentially compromise a user's device.
7291003599819241f92168ea6ebca0b5d7b230d9f07eb5f1e017239d7272664aSecunia Security Advisory - A vulnerability has been reported in Kolab Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
6b6d59bac8985153e58ec207295e9a2cef0332f5219634e40c14f42ba625e346Secunia Security Advisory - Some vulnerabilities have been reported in Ruby on Rails, which can be exploited by malicious people to conduct SQL injection attacks.
c01242dcc14ae8ea59e3487881cba1adaaae1edf021bd89469b68c707a31c771Secunia Security Advisory - Some vulnerabilities have been reported in Ruby on Rails, which can be exploited by malicious people to conduct SQL injection attacks.
62a12e988fe63cfbdbc1d9e75b919ec9f72f42f7ae030e46c516760215aa2d50
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed