Debian Security Advisory DSA 1661-1 - Several vulnerabilities have been discovered in the OpenOffice.org office suite.
1e787385480adb40244cb6a92b3bec80049192a21433483c2b7f36158cfef478
Secunia Research has discovered two vulnerabilities in Adobe PageMaker, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused due to boundary errors when processing certain structures in a .PMD file. These can be exploited to cause stack-based and heap-based buffer overflows via e.g. a .PMD file with a specially crafted font structure. Successful exploitation allows execution of arbitrary code. Adobe PageMaker version 7.0.1 is affected.
ca5c436539810787d11d095e28a6c31cc163ff119138bc4d2d425b9c91693b1d
ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.
a000be1cd760a5ca3ce687c4ee20fd925de3e78ddb59ea3742761a9d6d15f26b
DjVu Active-X Control version 3.0 ImageURL property overflow exploit.
2d202aea26e136bc9b6a95fe616e54593e44ed8810f2d9850e0defcb7b4a62b4
Visagesoft eXPert PDF ViewerX insecure method file overwrite exploit that leverages VSPDFViewerX.ocx.
a0c583ef33e13603c4aeff40fc5b655a024b03105b4e969016aa225fd0e584fb
MyPHP Forum (Final) versions 3.0 and below suffer from multiple remote blind SQL injection vulnerabilities. One of these is an known issue from December of 2007.
03c5b48174bab46ef5522444104b749c2e5237a9bcb3e89b75f4c8a8b0b9be2a
Pro Traffic One suffers from a remote SQL injection vulnerability in poll_results.php.
dd2dbb157cd49dc03304c92790348876644fe8996f614b8a16a9e2c2e63bafec
MW6 PDF417 Active-X related remote insecure method exploit that takes advantage of MW6PDF417.dll.
c65647a19c403d47b3af4c31a608542b4a181fc1ff4e38b5ae13b2f7e5f8c8a2
MW6 DataMatrix Active-X related insecure method exploit that takes advantage of DataMatrix.dll.
c01a3aa8e25fd8c8ba390d7256c5cda3648a39e00594e390a4f958bf6c4d6072
MW6 Barcode Active-X related insecure method exploit that takes advantage of Barcode.dll.
44fc488555a8bc28c6f7e15fd988b39d7512c4d7f39c3901c8e2cea16d871fa4
MW6 Aztec Active-X related remote insecure method exploit that takes advantage of Aztec.dll.
21bae5ac45f7fc5edcc1b11ea6fb76ddf0a39aa6d419d9aaa61366eab9198c5d
Venalsur Online Booking System for Hotels group suffers from cross site scripting and SQL injection vulnerabilities.
f3229280b5c7bc377b5432aa08e60106863215b35a71b2ebf989d6954f38f94f
Secunia Security Advisory - Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
5cb991f73f3633aa9ed35f5ff0431a46b7cb85ba557982b924ecf0ebf09b2e9b
Secunia Security Advisory - rPath has issued an update for lighttpd. This fixes a weakness and two vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, or cause a DoS (Denial of Service).
61f0e95f5936d926220aa2e68fd41fa3e4f91976dd4bf1e252ddd9c5596b21b8
Secunia Security Advisory - Thomas Pollet has discovered some vulnerabilities in Atlassian JIRA, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks, and by malicious users to conduct script insertion attacks.
ed08b1d162f5fcb1023dce090b225ec9c74af07cece71de9c244e95619ddca62
Secunia Security Advisory - Some vulnerabilities have been reported in SiteEngine, which can be exploited by malicious people to disclose system information and conduct SQL injection attacks.
4242671b28dcd35602551e1a880a296ca76cba1ec24033ecaca6b6ad19a8dbaa
Secunia Security Advisory - 0xFFFFFF has discovered some vulnerabilities in PHP-Daily, which can be exploited by malicious people to disclose sensitive information and conduct SQL injection attacks.
ab81fb5ea04e396ea232095e26e3657e147e44da13f9e3dccc8544fa63094848
Secunia Security Advisory - yassine_enp has reported a vulnerability in Aj Square RSS Reader, which can be exploited by malicious people to conduct SQL injection attacks.
2749218134eecad13276968524c920012a234fb05f2de4e3c5ee5830ebe2baf7
Secunia Security Advisory - AmnPardaz Security Research Team have reported a vulnerability in Persia BME E-Catalogue, which can be exploited by malicious people to conduct SQL injection attacks.
6c90db06c8e3527fc35fd5ad65ed0fde74f8330f978b22b92d2e93f1779133f5
Secunia Security Advisory - Some vulnerabilities have been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
7242eb04094b06d79750b404a5b80b12ce19a1abb37bcb2a01eed81aaf920ad5
Secunia Security Advisory - d3v1l has reported a vulnerability in H&H WebSoccer, which can be exploited by malicious people to conduct SQL injection attacks.
6a9cf94cf2c338cf50aca7b6560ceb4ca26879cfddd6168a23a83b5e366457fd
Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges, and by malicious people to cause a DoS.
59b5189c78026cf88ebfe8b25c1353bdcd3c3a2a81c8b9ef7fd368177a189098
Secunia Security Advisory - cize0f has reported some vulnerabilities in Kmita Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks.
b9ab932b26b480a682463c0d3b1941e874508592d4824355467ecdbd9c007b85
Secunia Security Advisory - Some vulnerabilities have been reported in KTorrent, which can be exploited by malicious users to compromise a vulnerable system and malicious people to bypass certain security restrictions.
ea36ea570c8dad58c89e43845afe1b9fd9993858b8f6fb8fac94113679ef4cbd
Secunia Security Advisory - Red Hat has issued an update for flash-plugin. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, and manipulate certain data.
4e2c3baebde62fd1acf170ea9d64a2bb633d49a0c84d5134361cb85d4c9dccfc