Secunia Security Advisory - A security issue has been reported in Apache HTTP Server, which can be exploited by malicious, local users to bypass certain security restrictions.
312dd5e764644b547f41174ca734334c90c55bff165992da59b71a50d59cecefSecunia Security Advisory - Red Hat has issued an update for httpd. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service).
a2503b683f72ca8f3691e85b81491cf06baa1c362d0607eb826e5f4a9260dceaSEC Consult Security Advisory 20090525-4 - A format string vulnerability exists in the logfile parsing function of SonicOS. An attacker could crash the system or execute arbitrary code by injecting format string metacharacters into the logfile, if an administrator subsequently uses the SonicOS GUI to view the log.
6c7085cdc53507695204c983a9fba14a2a3502a8197d9696636f43a53f125f2bSEC Consult Security Advisory 20090525-3 - The SonicWALL Global VPN Client versions 4.0.0.835 and below suffer from a local privilege escalation vulnerability.
697d26db1d1f4652470fb4f8020fe9df446a0fa526453fe1e008c228a820ddc3SEC Consult Security Advisory 20090525-2 - The SonicWALL Global Security Client version 1.0.0.15 suffers from a local privilege escalation vulnerability.
a249f7b5b6c96e7e73537b527e46de221df15b9ac124b216b83d675ced67349bSEC Consult Security Advisory 20090525-1 - The Nortel Contact Center Manager server version 6.0 suffers from a password disclosure vulnerability.
bac6e60c36d211176326d66db94bf9e89951039cf254351e8c0aba6df234e565SEC Consult Security Advisory 20090525-0 - The Nortel Contact Center Manager server version 6.0 suffers from an authentication bypass vulnerability.
983ea312515d8fc13a674dd0481967d73dbc7ab8781412dcd68339905b846a46Gentoo Linux Security Advisory GLSA 200905-08 - Multiple errors in the NTP client and server programs might allow for the remote execution of arbitrary code. Versions less than 4.2.4_p7 are affected.
b20efb12e4e9d42824f528bbe9078a33ce48b4de072e33d361e0a7b25cdd7029Mozilla Firefox 3.x suffers from a remote denial of service vulnerability.
6d915b4fa8b3b70bdca7951a40dc0558ec127c9f1f83c8070f46b77b85da1bacDokuwiki version 2009-02-14 suffers from a remote temporary file inclusion vulnerability.
325797fcaa798d398eff7aace204be01243d3c306797a3ab4010456a4fc404fbThe Joomla Agora component version 3.0.0 RC1 suffers from a remote file upload vulnerability.
3aa45302d86c2a1cacd722aad1864a1e33e530d27b297e1fdc45f6640841f3eeWebMember version 1.0 suffers from a remote SQL injection vulnerability.
6d97c551bd2b2d22a330e8cfeda54566c60358348df8f11d0e3aecebb5d15867WebTuff is a tool to test for the IIS 6.0 WebDAV authentication bypass vulnerability.
962b69de61490a46ff34f5d84021349fb8293ca003948bee1457d57d305ba85dSoulseek versions 157 NS and 156 suffer from a remote distributed search code execution vulnerability.
0d11d3312310612caef722fa39eccf0bd1f7d3ea3dd0c509b80de2bbe1813d8fWhitepaper called Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs.
3f05f130e949b1a5fbd06be19a49f90f6ff2127726c983f09433195a7f4d92adQuick write up discussing how you can harden OS X to protect yourself from the recent Java vulnerability.
36bfdf78c6bf5ae2dde784a8130e4b9a24a88e86824fa590483c0cd9490d32e0AMember version 3.1.7 suffers from cross site scripting and SQL injection vulnerabilities.
d3aec521b2fb9160493285c79033e06dfae7694ee3f9dc5b641ec8bf59f0176bArcaVir 2009 Antivirus Protection versions 9.4.3201.9 and below, Internet Security versions 9.4.3202.9 and below, System Protection versions 9.4.3203.9 and below, and Home Protection versions 9.4.3204.9 and below local privilege escalation exploit that leverages ps_drv.sys.
42d125a1310ac0e1408bb9aa4bb1fa85596ab121eeea6a57d2fc4dc19c51f9c4ZeeCareers version 2.0 add administrator exploit that leverages addadminmembercode.php.
dedb295fd4503233f1c5ecc894b66dd3c73b3272ede83fbba1ccaa8071376e7ephpBugTracker version 1.0.3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
85e6bca2d6d2966734f413e3ed05de1a29efef2a35af1745df5af842230d459bShaadiClone version 2.0 add administrator exploit that leverages addadminmembercode.php.
d54a551257139117810a24dd100d68ee1f576bfb787540ba3e3eb87c5a28c29cFlash Image Gallery version 1.1 suffers from an arbitrary configuration file disclosure vulnerability.
40bc647847f63f149420f7e87efbc09ac4a8a0e36802e9447640ab0d7c8aad0cMyForum version 1.3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
553fc40a0fd13974a53e0ce2fd72e934333aace91eef504fd894ad4059cb1959Kensei Board versions 2.0.0b and below suffer from multiple remote SQL injection vulnerabilities.
5c417238ef8e48494aa9f7110abcce88e21738455bd422b46b4b4acc8edfed01The RSGallery2 component versions 1.14.x and 2.x for Joomla have a backdoor embedded in them.
9cae569a242131944c0f96ed7d35c00a85909392418205a9af4a7a6e1210358a
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed