Mandriva Linux Security Advisory 2009-075 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 3.x, version 3.0.7. This update provides the latest Mozilla Firefox 3.x to correct these issues. As Mozilla Firefox 2.x has been phased out, version 3.x is also being provided for Mandriva Linux 2008 Spring. Additionally some software has also been rebuilt against Mozilla Firefox 3.0.7 which should take care of upgrade problems.
6987be114011225d9a1bb7a9e1e2d6874e8225afa2e231184c2bdf3df29cf10cA.CMS versions 1.x prior to 1.23 suffer from a cross site scripting vulnerability.
e777478a3d3cd78c3d456ec61bbfe90e90d7b050c15858e531b7556fde03082cLiving CMS versions 1.x prior to 1.5 suffer from a cross site scripting vulnerability.
48038b0bf9431c88946b8977ed1897a01d95bbe42325a1d3a39664ee04f5ec81BLOG:CMS versions 4.x prior to 4.2.0 suffer from a cross site scripting vulnerability.
5899bbcbfb00a9d5fb52f5a762d7a030ea697d2306c3238f6063eb826614c778YAP version 1.1 suffers from local and remote file inclusion vulnerabilities.
e279491c937d164b69e0734b4616c66901e6de2de504f960b1ed1806d36248ddApple iTunes version 8 suffers from a denial of service vulnerability when handling DAAP messages.
b798a417ed56868681a7f2e30853db4800effafc6ea3a5782d569f07e5a8cf2eDebian Security Advisory 1739-1 - It has been discovered that mldonkey, a client for several P2P networks, allows attackers to download arbitrary files using crafted requests to the HTTP console.
66676662acc2a12b201caa1346638e1e7b096f1a686c2f0d9defc2541a04a2f8Kim Websites version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
2bb6a6fa2593fc8e7757990721bd708c517348b3a26254d11581bbae78f8d964Morovia Barcode MrvBarCd.dll Active-X control version 3.0 insecure method exploit.
2865f2171b9fbd9aa72ebc7ab73c6159b02d62878fdbdc0c9ed831c3e79b6b27GeoVision LiveAudio GetAudioPlayingTime() Active-X control remote freed-memory access exploit.
1e56e0f385f0433ae8f52b18f89640bc0e9625d7e3a85748f3bd7e80ab96fb8cSecunia Security Advisory - Gentoo has issued an update for proftpd. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.
cec4c6acf9055302a8179fa1a541ff7a8879ea2f8507c531b949c7ae0758f77bSecunia Security Advisory - A vulnerability has been reported in CloneCD, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
098edb0dcb84911ea85a033e613149e3dc0ff7a4d1c53d6a36941d03522e3556Secunia Security Advisory - A vulnerability has been reported in Evolution, which can be exploited by malicious people to disclose potentially sensitive information.
658b7fc53327f2d46a2f6b783b63f7f0dd77693ff6771be67b4445ddc8bf4b78Secunia Security Advisory - A vulnerability has been reported in CloneDVD, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
d227f4fda1ed1d007f3e0f10cfb327fc222876b2b417dace89183a5eece55f89Secunia Security Advisory - A vulnerability has been reported in AnyDVD, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
3bec5659c911de8568101d28f926820dfa2f979571b6dd601ba5ab1df745d59bSecunia Security Advisory - rPath has issued an update for curl. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
b2eca935d1dc502053e8e18492f03e1385eb0bfc246201027731eade48b88b76Secunia Security Advisory - A vulnerability has been reported in the Drupal Forward Module, which can be exploited by malicious people to bypass certain security restrictions.
b9f87d183f832c69c73a6860293e480c6b359977e331375b18488752eff084abSecunia Security Advisory - A vulnerability has been reported in WebSphere Application Server, which can be exploited by malicious people to disclose potentially sensitive information.
39eb7be5eae10dbdda10dc04aac7376ccfbac2bf5d21e03b5ff64c3c76115f04Secunia Security Advisory - Some vulnerabilities have been discovered in TikiWiki CMS/Groupware, which can be exploited by malicious people to conduct cross-site scripting attacks.
705965e005ece3065d33d43110f4dd3254ac08318f8042af7d1d710af118c0deSecunia Security Advisory - rPath has issued an update for dhclient, dhcp, and libdhcp4client. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
dcd8fd0c2c43e5094cd2f9677e5e4631023a4f5eb167aa8179e73005d66d58adSecunia Security Advisory - Some vulnerabilities have been discovered in PhpMySport, which can be exploited by malicious users to conduct SQL injection attacks or malicious people to conduct cross-site scripting attacks.
396617e22b8edaf137bef348090a587dd359db09c752d906283e35f8575529b8Secunia Security Advisory - A vulnerability has been reported in WMI Mapper for Windows Server 2003 and Windows Server 2008 for Itanium-based servers, which can be exploited by malicious, local users to perform certain actions with escalated privileges and malicious people to disclose potentially sensitive information.
69fe9c81cc1b493e6377ee04a71054cd3a2aac3933a416237e6b3adfc26e7c71Secunia Security Advisory - A vulnerability has been reported in Wesnoth, which can be exploited by malicious people to conduct DoS (Denial of Service) attacks.
da731c310311f0c0c42dbde2e6d76dac912540d089f530c7560ccfc846b366e6Secunia Security Advisory - Debian has issued an update for wesnoth. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
586a98c184d443d66406b7759fe6d749517c9c72b5dcb8e17482e53ea87b2c43Secunia Security Advisory - A vulnerability has been reported in Bricolage, which can be exploited by malicious people to conduct SQL injection attacks.
c4e2b21308eefe1243550198a32d987b0fc6e7e926c792f6e069233439dde9b8
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed