Secunia Security Advisory - Jacques Copeau has reported a vulnerability in Simple Machines Forum, which can be exploited by malicious users to conduct cross-site scripting attacks.
9815bd2f4924e537eb0ad8d9affb4c37e0732d8d3ed6dbfbad99e42ea26d77d9
Secunia Security Advisory - Fedora has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
8a4ba615fe7f72e2afe39a350614ea93934093ed87d7d84085ab6cbce8cebf73
Secunia Security Advisory - Fedora has issued an update for acpid. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
1657906eb3d5518d9402103033ea13788d6381a303d9d4bc83e85fb7685c884a
Secunia Security Advisory - Fedora has issued an update for libwmf. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
e60b2e41eba4e2f6af542e64615e65c03c91d2deeb53a1ca5d4dbdb58d791d08
Secunia Security Advisory - Avaya has acknowledged two vulnerabilities in Avaya CMS, which can be exploited by malicious people to compromise a vulnerable system.
97749d23ae683e4cd4b367aeefcacfd3fed5454da1ebee0d1c47fc3f78fe2983
Secunia Security Advisory - Fedora has issued an update for freetype1. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise applications using the library.
88896ba8dd623ff13cdde24d81975a48868ec197b28de182a2762ad014a52e1d
Secunia Security Advisory - Russ McRee has discovered a vulnerability in ATutor, which can be exploited by malicious people to conduct phishing attacks.
1c8b034f8c7d058598ff509751c69cad849be1f79e7aff5aec691f9a5e7435bb
Secunia Security Advisory - Red Hat has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and phishing attacks.
15fed742776cce337087c4e50ce9aceacbfe07d975e83c1ca7ae2d1eb30e2c4e
Secunia Security Advisory - HP has issued an update for JRE / JDK. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or potentially compromise a user's system.
dd4dc31adc08186ecaeb280a093cf7dad7cfa991fdeb57272a99d06c8f563c80
Secunia Security Advisory - Gentoo has issued an update for ntp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
2c67d361ff8ad83411cc0e6476a76feb1ab285e53fde625a7a2270947e647a07
Secunia Security Advisory - Some vulnerabilities have been reported in BlackBerry Enterprise Server and BlackBerry Professional Software, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
88995a1b7cc40882afc94632f1d934ac727520d2ce62aefe4fa58c3d2b134c4c
Secunia Security Advisory - Red Hat has issued an update for rhpki-ra. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
31ec5694c8aeefaaa4e00b6888582b609fa818eb583f7360eae893b8d5304b98
Secunia Security Advisory - A vulnerability has been reported in DokuWiki, which can be exploited by malicious people to compromise a vulnerable system.
468144f061f776e470694183ce52dcb900ea9a6b4f962ab1da7bd31fc5d237bc
Secunia Security Advisory - A vulnerability has been reported in Dogtag Certificate System, which can be exploited by malicious users to bypass certain security restrictions.
aecca8e92db3abc37a947941cc51221efd60ae57b70a99ad58935950f5a37e75
Secunia Security Advisory - A vulnerability has been reported in multiple ArcaBit products, which can be exploited by malicious, local users to gain escalated privileges.
e8273d5e7dd2ccf05288cb15802f0ef31c3fce1f5371d7e3adcdc6e3eb941783
Mandriva Linux Security Advisory 2009-123 - src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted. The updated packages fix the issue.
7755490ed17aa91e9865b7bf6b17efa65a870ed74c74f7f9dc10916880b6e040
Whitepaper called Buffer Overflow Exploitation SEH Explained. Written in Arabic.
b176886256e50ed93c85b0f5730e4144eb6ae2112a8d559480a488bd3e759f3d
Whitepaper called Understanding SQL Injection. Written in Portuguese.
af987039e63ecaf10627212cb4cc10fd0b3928911e5862ae152fed93ba43490f
Gentoo Linux Security Advisory GLSA 200905-09 - Multiple heap-based buffer overflow vulnerabilities in libsndfile might allow remote attackers to execute arbitrary code. Versions less than 1.0.20 are affected.
93da091dbd2e5ce946b35c5825e1fc34c873fc0b15d3881bbe1fdf77c416653d
HP Security Bulletin - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, privilege escalation, execution of arbitrary code, and Denial of Service (DoS).
21cffee8fc96ccc19efc5adaec63bae7ffc58b656b9a38a128b04eee39aabdc5
Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data.
d6e2cb1c14364dc2d8db363d72a311d54353f6491970d5cdc0b808d333642d4b
strongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
1d34d793bc7cd109fa7a19486e58341d729f701d4d8736dcde568c94280d972e
AdPeeps version 8.5d1 suffers from cross site scripting and HTML injection vulnerabilities.
3093e37ea794ca14328223f576eed8a81a3ff254bc77417ba5b9655951863885
Evernew Free Joke Script version 1.2 suffers from a remote SQL injection vulnerability.
fa7bb2e533a6e3dc591efa6e1d919e69c6ba264a9afbb539847a9ee3e95d2637
SiteX versions 0.7.4.418 and below suffer from local file inclusion vulnerabilities.
e48986405521947037729d3f633d0930c34dacca715f24b4cf684365d483b673