NetSurf version 1.2 width remote integer overflow proof of concept exploit.
1f38a66ba78f005f7670e9ba7ce59edab49a64c191fd1088fd5f21bfd16df1eeNetSurf version 1.2 hspace remote integer overflow proof of concept exploit.
975569aa5388a2a13c78de5c0cd649c6876628bc97c1e88f3864d2c02c3c7dabThe NetSurf web browser version 1.2 suffers from integer overflows and memory leaks.
255be4475049790276b3f94b3ab54a4b1e0f80dad6dc21db35acfc31b63ebb0aGentoo Linux Security Advisory GLSA 200901-11 - A Denial of Service vulnerability has been discovered in Avahi. Hugo Dias reported a failed assertion in the originates_from_local_legacy_unicast_socket() function in avahi-core/server.c when processing mDNS packets with a source port of 0. Versions less than 0.6.24 are affected.
728f3a014d0f773b7ef89d5f2678653b123b208673730d5a49f1b6610dea17beGentoo Linux Security Advisory GLSA 200901-10 - A certificate validation error in GnuTLS might allow for spoofing attacks. Martin von Gagern reported that the _gnutls_x509_verify_certificate() function in lib/x509/verify.c trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate. Versions less than 2.4.1-r2 are affected.
546a34c942ac770823964c45d53398b233b2efafe5e1b7e29d324f13c99ef895Zero Day Initiative Advisory 09-004 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle TimesTen. User interaction is not required to exploit this vulnerability. The specific flaw exists in the evtdump CGI module, which is used to write to an internal log file. The parameter 'msg' does not properly sanitize format string tokens and can be exploited to execute arbitrary code.
70598af4752bed89d8e6d52e31dd0e3248333dc9c700f0bf2805dd31cef415a6Zero Day Initiative Advisory 09-003 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Secure Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the routine exec_qr() defined in the web script login.php. The user-supplied variable $rbtool is improperly sanitized and later passed through a call to popen(), this can result in remote pre-authentication command injection.
d4cd07bc743ecebda2d3c06bd6512358d54e624bcb8559f431c37c5b49682626Debian Security Advisory 1704 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
9e3e36a4fa485680c7a4bd74e51761da2d1644c64d0801e1cec00e1a9bab5952Avira Antivirus suffers from division by zero / null pointer dereferencing vulnerabilities when handling a malformed RAR archive.
3e074bda1d6c4131f956074250da30e305fd5f819946441e5497bdd2e6b9a43eCisco Security Advisory - The IronPort PXE Encryption solution is affected by two vulnerabilities that could allow unauthorized individuals to view the contents of secure e-mail messages. To exploit the vulnerabilities, attackers must first intercept secure e-mail messages on the network or via a compromised e-mail account.
d14c7c842a9fa4c4ef16913bd857ba57a212d8117696108b49a89e32373a454dCisco Security Advisory - The Cisco ONS 15300 series Edge Optical Transport Platform, the Cisco ONS 15454 Optical Transport Platform, the Cisco ONS 15454 SDH Multiservice Platform, and the Cisco ONS 15600 Multiservice Switching Platform contains a vulnerability when processing TCP traffic streams that may result in a reload of the device control card.
841a5186013359e3c9165b3020de065e23861d5123cf1cf16bbbc4a5d1ae7471Cisco Security Advisory - Two separate Cisco IOS Hypertext Transfer Protocol (HTTP) cross-site scripting (XSS) vulnerabilities have been reported to Cisco by two independent researchers.
a2bee618606c9dd7a67a873a8f1cb844c5e6661564a26c811408b6bc35bc3e1bThe Cisco Unified IP Phone 7960G and 7940G (SIP) do not correctly parse some malformed RTP headers leading to a deterministic denial of service.
00372e28c3e7b41b85a1d67580955f2b158b3cbd709e06747aa677141b355c44Whitepaper called Linux on Power/Cell BE Architecture Buffer Overflow Vulnerabilities.
6f0f5225518ea3a48a4c06600fde8fd3ac3600d92bcdf768072d926d39dc8060The Cisco IOS HTTP server is vulnerable to cross site scripting within invalid parameters processed by the "/ping" server-side binary/script.
9ae67732eb54093c6544c63e2953cba56031df7cd73a205c4ce458b69783a88aCall For Papers - The Cooperative Cyber Defence Centre of Excellence is hosting a Conference on Cyber Warfare in 2009. It will be held June 17th through the 19th in Tallinn, Estonia.
780a40ca4787a7a09b275aaffd7c45af46a97adab664bb1667eda6ef8dc5f81ephpList version 2.10.8 suffers from a local file inclusion vulnerability.
1eb55150b3a06e1d12a2efbf61d6588802763badec0178d47fe489fdc179b69fWowWee Rovio suffers from insufficient access control vulnerabilities that allow for snooping.
7717e09060d2782859b3fb4ceecaf9c5e847e585570e53a710199dd78a6562a7DMXReady Blog Manager suffers from cross site scripting and remote SQL injection vulnerabilities. DMXReady has stated that the following release addresses this security issue.
9c0b7b9e37ad9fecf817603c2803d49c43fb3e02acaee982d5d2057d366055a6DMXReady Members Area Manager versions 1.2 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
14d1ad609b58147b308f036720f2649613d1be7af578c0bded0453dc83628acfDMXReady Member Directory Manager versions 1.1 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
7065feb42146ce778714da163ee6d85b0131a3394994a9114e366412f0c055d7DMXReady Classified Listings Manager versions 1.1 and below suffer from a remote SQL injection vulnerability. DMXReady has stated that the following release addresses this security issue.
9e6d500e5e3a32db5f3b820c967bb93050f1da60c10a729709e9bb12f58310a4DMXReady Faqs Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
a44276872e9be6ee758bbaace1c222ba8d33d039a6e04b4f84978d313d8bc204DMXReady Document Library Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
23cf09925fdac3b46d8ae4f897c46a2afa9aaf0b5c77e3a75444034114891918DMXReady Contact Us Manager versions 1.1 and below suffer from a remote contents change vulnerability. DMXReady has stated that the following release addresses this security issue.
6ad0e65439954062e5159de9e2b0f9e14e3b58bf9b43792bf5ca73cba7c12f6c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed