NetSurf version 1.2 width remote integer overflow proof of concept exploit.
1f38a66ba78f005f7670e9ba7ce59edab49a64c191fd1088fd5f21bfd16df1ee
NetSurf version 1.2 hspace remote integer overflow proof of concept exploit.
975569aa5388a2a13c78de5c0cd649c6876628bc97c1e88f3864d2c02c3c7dab
The NetSurf web browser version 1.2 suffers from integer overflows and memory leaks.
255be4475049790276b3f94b3ab54a4b1e0f80dad6dc21db35acfc31b63ebb0a
Gentoo Linux Security Advisory GLSA 200901-11 - A Denial of Service vulnerability has been discovered in Avahi. Hugo Dias reported a failed assertion in the originates_from_local_legacy_unicast_socket() function in avahi-core/server.c when processing mDNS packets with a source port of 0. Versions less than 0.6.24 are affected.
728f3a014d0f773b7ef89d5f2678653b123b208673730d5a49f1b6610dea17be
Gentoo Linux Security Advisory GLSA 200901-10 - A certificate validation error in GnuTLS might allow for spoofing attacks. Martin von Gagern reported that the _gnutls_x509_verify_certificate() function in lib/x509/verify.c trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate. Versions less than 2.4.1-r2 are affected.
546a34c942ac770823964c45d53398b233b2efafe5e1b7e29d324f13c99ef895
Zero Day Initiative Advisory 09-004 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle TimesTen. User interaction is not required to exploit this vulnerability. The specific flaw exists in the evtdump CGI module, which is used to write to an internal log file. The parameter 'msg' does not properly sanitize format string tokens and can be exploited to execute arbitrary code.
70598af4752bed89d8e6d52e31dd0e3248333dc9c700f0bf2805dd31cef415a6
Zero Day Initiative Advisory 09-003 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Secure Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the routine exec_qr() defined in the web script login.php. The user-supplied variable $rbtool is improperly sanitized and later passed through a call to popen(), this can result in remote pre-authentication command injection.
d4cd07bc743ecebda2d3c06bd6512358d54e624bcb8559f431c37c5b49682626
Debian Security Advisory 1704 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
9e3e36a4fa485680c7a4bd74e51761da2d1644c64d0801e1cec00e1a9bab5952
Avira Antivirus suffers from division by zero / null pointer dereferencing vulnerabilities when handling a malformed RAR archive.
3e074bda1d6c4131f956074250da30e305fd5f819946441e5497bdd2e6b9a43e
Cisco Security Advisory - The IronPort PXE Encryption solution is affected by two vulnerabilities that could allow unauthorized individuals to view the contents of secure e-mail messages. To exploit the vulnerabilities, attackers must first intercept secure e-mail messages on the network or via a compromised e-mail account.
d14c7c842a9fa4c4ef16913bd857ba57a212d8117696108b49a89e32373a454d
Cisco Security Advisory - The Cisco ONS 15300 series Edge Optical Transport Platform, the Cisco ONS 15454 Optical Transport Platform, the Cisco ONS 15454 SDH Multiservice Platform, and the Cisco ONS 15600 Multiservice Switching Platform contains a vulnerability when processing TCP traffic streams that may result in a reload of the device control card.
841a5186013359e3c9165b3020de065e23861d5123cf1cf16bbbc4a5d1ae7471
Cisco Security Advisory - Two separate Cisco IOS Hypertext Transfer Protocol (HTTP) cross-site scripting (XSS) vulnerabilities have been reported to Cisco by two independent researchers.
a2bee618606c9dd7a67a873a8f1cb844c5e6661564a26c811408b6bc35bc3e1b
The Cisco Unified IP Phone 7960G and 7940G (SIP) do not correctly parse some malformed RTP headers leading to a deterministic denial of service.
00372e28c3e7b41b85a1d67580955f2b158b3cbd709e06747aa677141b355c44
Whitepaper called Linux on Power/Cell BE Architecture Buffer Overflow Vulnerabilities.
6f0f5225518ea3a48a4c06600fde8fd3ac3600d92bcdf768072d926d39dc8060
The Cisco IOS HTTP server is vulnerable to cross site scripting within invalid parameters processed by the "/ping" server-side binary/script.
9ae67732eb54093c6544c63e2953cba56031df7cd73a205c4ce458b69783a88a
Call For Papers - The Cooperative Cyber Defence Centre of Excellence is hosting a Conference on Cyber Warfare in 2009. It will be held June 17th through the 19th in Tallinn, Estonia.
780a40ca4787a7a09b275aaffd7c45af46a97adab664bb1667eda6ef8dc5f81e
phpList version 2.10.8 suffers from a local file inclusion vulnerability.
1eb55150b3a06e1d12a2efbf61d6588802763badec0178d47fe489fdc179b69f
WowWee Rovio suffers from insufficient access control vulnerabilities that allow for snooping.
7717e09060d2782859b3fb4ceecaf9c5e847e585570e53a710199dd78a6562a7
DMXReady Blog Manager suffers from cross site scripting and remote SQL injection vulnerabilities. DMXReady has stated that the following release addresses this security issue.
9c0b7b9e37ad9fecf817603c2803d49c43fb3e02acaee982d5d2057d366055a6
DMXReady Members Area Manager versions 1.2 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
14d1ad609b58147b308f036720f2649613d1be7af578c0bded0453dc83628acf
DMXReady Member Directory Manager versions 1.1 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
7065feb42146ce778714da163ee6d85b0131a3394994a9114e366412f0c055d7
DMXReady Classified Listings Manager versions 1.1 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
9e6d500e5e3a32db5f3b820c967bb93050f1da60c10a729709e9bb12f58310a4
DMXReady Faqs Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
a44276872e9be6ee758bbaace1c222ba8d33d039a6e04b4f84978d313d8bc204
DMXReady Document Library Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
23cf09925fdac3b46d8ae4f897c46a2afa9aaf0b5c77e3a75444034114891918
DMXReady Contact Us Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
6ad0e65439954062e5159de9e2b0f9e14e3b58bf9b43792bf5ca73cba7c12f6c