Gentoo Linux Security Advisory GLSA 200812-13 - Multiple vulnerabilities in OpenOffice.org might allow for user-assisted execution of arbitrary code or symlink attacks. Two heap-based buffer overflows when processing WMF files and EMF files were discovered. Dmitry E. Oboukhov also reported an insecure temporary file usage within the senddoc script. Versions less than 3.0.0 are affected.
5148e74b000770dea6ce22f6704a513e020b91049da895d70a21b00c52cf536bGentoo Linux Security Advisory GLSA 200812-12 - An insecure temporary file usage has been reported in Honeyd, possibly leading to symlink attacks. Dmitry E. Oboukhov reported an insecure temporary file usage within the test.sh script. Versions less than 1.5c-r1 are affected.
47870f979765db1c19cfd909962b2b7fecdea250510ae77a97d91f55303b8beeTmaxSoft JEUS versions below 5:FIX#26 suffer from an alternate data streams vulnerability that allows for remote file disclosure.
de38fc496f3023ab7b9fcba54a363ff9c3887065acf78f6c7ebfd45a2ab274c8IGUJV - The Infection Guide Using Java/VbScript.
a538f8839bab1ef1109be3133ef023b39a9e09b143ed21b6e0d555959cfb667aColdFusion Scripts Red_Reservations suffers from a remote database disclosure vulnerability.
cfbda6db9af67a8919307817939d5e612f8b25c63831e0e0e9e4d35d3e88bb18Social Groupie suffers from a remote file upload vulnerability in create_album.php.
15e9dd3577d230239d8706161fde60c3ae42b1782bbdcb733b8a11db077efdbbSocial Groupie suffers from a remote SQL injection vulnerability in group_index.php.
287358d5ad75985b2a0e815cd63d702be8d194c6b654c0722abbdd56d7eaac55Umer Inc Songs Portal Script suffers from a remote SQL injection vulnerability.
7f75d1a6516499536e0756bfd1adba2f9df8b1531b25946c06942010a243e818Moodle version 1.9.3 suffers from a remote code execution vulnerability. Full details provided.
604fed1136c665e395b41c51641f80c673942dba92e616551632c7f5f1aac44eVP-ASP Shopping Cart version 6.50 suffers from a remote database disclosure vulnerability.
95d0bfc9fed236a3d3af7acc1eae3daea090862f8d56ecd1138c62bf0f7d1a36Joomla Live Chat suffers from remote SQL injection and open proxy vulnerabilities.
680e2bd8680e2a7c635d4b94ee0d8a21731f0eefc64fc7a8346ca7cbc080f496Debian Security Advisory 1685-1 - Two vulnerabilities have been found in uw-imap, an IMAP implementation.
84b627e46f32614c134ce1d28fdce2e2a2a31b0c545cdde1026a6f49f090090bWysi Wiki Wyg version 1.0 remote password retrieval exploit.
afad1879bdfb82f7ab7dcf5ece2a00ec7f4898bd2ad90de5959874e709919c66This article discusses buffer overflow vulnerabilities in Linux kernel's Slab Allocator. All examples presented on this article were developed and executed on a x86 processor-based machine running Slackware Linux 10.2. Previous knowledge of buffer overflows is required.
de9f3af11d7e245892dedad5aacde5562b9c0a81ac458d179d52453f718c6fafThe Net Guys ASPired2Blog suffers from remote SQL injection and database disclosure vulnerabilities.
24063421a864008f0952d88b308ebdfc666bfa31fa69cd0418f20ad5b1496582XPOZE Pro version 4.10 suffers from a remote blind SQL injection vulnerability in home.html.
436d4ac79907b44b0dafe21a61ac7e32c13297f3dadc27319d9e176974a8718dSUMON versions 0.7.0 and below suffer from a remote command execution vulnerability in chg.php.
f9955da83ee357014955d5315c304e35ce8fad51dee80fb9440fb5b3dcee9914The Nokia N70/N73 Bluetooth stack OBEX implementation suffers from a denial of service vulnerability. Proof of concept code included.
53d44f61bf1cfead6383de01459b8edd7b789e80273f7968d8477ba590233237ASP-CMS version 1.0 suffers from remote SQL injection and database disclosure vulnerabilities.
b3d667514b265b894bae15f62ac9f709896d0de55104ab981e546b3d0eac0849The Net Guys ASPired2Protect suffers from a remote database disclosure vulnerability.
61d3a34bc185d374903972efd6cc1a6956e6d5a76f39d9cee826791133c4b46fThe Net Guys ASPired2poll suffers from a remote database disclosure vulnerability.
2ac994773b3cd4d2993fae57e8a859e659844fe82ca98d9da8b7a8681f9798fbMicrosoft Visual Basic Active-X Controls buffer overflow proof of concept exploit that leverages mscomct2.ocx.
9e908a95caf95ef805674d900baaa9e609f55f84e306674f7900dde2246a3c2aSecunia Security Advisory - G4N0K has reported a vulnerability in PayPal eStores, which can be exploited by malicious people to bypass certain security restrictions.
c11c163be30df97d0fa4d23a5f11c90b71620c321ddd8968392134584862fdd0Secunia Security Advisory - R3d D3v!L has reported a vulnerability in multiple Ad Server Solutions products, which can be exploited by malicious people to conduct SQL injection attacks.
f2ab9dbb8ba52e726ea54a56212b01d05721ce593514ba82f87b8f8de46039a3Secunia Security Advisory - XaDoS has reported a vulnerability in Xpoze, which can be exploited by malicious people to conduct SQL injection attacks.
f068f337898ad130013bc52fcb4a857ccf8c1f3d765e3f22c6bfac56f0dcfd86
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed