Secunia Security Advisory - Jacques Copeau has reported a vulnerability in Simple Machines Forum, which can be exploited by malicious users to conduct cross-site scripting attacks.
9815bd2f4924e537eb0ad8d9affb4c37e0732d8d3ed6dbfbad99e42ea26d77d9Secunia Security Advisory - Fedora has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
8a4ba615fe7f72e2afe39a350614ea93934093ed87d7d84085ab6cbce8cebf73Secunia Security Advisory - Fedora has issued an update for acpid. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
1657906eb3d5518d9402103033ea13788d6381a303d9d4bc83e85fb7685c884aSecunia Security Advisory - Fedora has issued an update for libwmf. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
e60b2e41eba4e2f6af542e64615e65c03c91d2deeb53a1ca5d4dbdb58d791d08Secunia Security Advisory - Avaya has acknowledged two vulnerabilities in Avaya CMS, which can be exploited by malicious people to compromise a vulnerable system.
97749d23ae683e4cd4b367aeefcacfd3fed5454da1ebee0d1c47fc3f78fe2983Secunia Security Advisory - Fedora has issued an update for freetype1. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise applications using the library.
88896ba8dd623ff13cdde24d81975a48868ec197b28de182a2762ad014a52e1dSecunia Security Advisory - Russ McRee has discovered a vulnerability in ATutor, which can be exploited by malicious people to conduct phishing attacks.
1c8b034f8c7d058598ff509751c69cad849be1f79e7aff5aec691f9a5e7435bbSecunia Security Advisory - Red Hat has issued an update for squirrelmail. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and phishing attacks.
15fed742776cce337087c4e50ce9aceacbfe07d975e83c1ca7ae2d1eb30e2c4eSecunia Security Advisory - HP has issued an update for JRE / JDK. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or potentially compromise a user's system.
dd4dc31adc08186ecaeb280a093cf7dad7cfa991fdeb57272a99d06c8f563c80Secunia Security Advisory - Gentoo has issued an update for ntp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
2c67d361ff8ad83411cc0e6476a76feb1ab285e53fde625a7a2270947e647a07Secunia Security Advisory - Some vulnerabilities have been reported in BlackBerry Enterprise Server and BlackBerry Professional Software, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
88995a1b7cc40882afc94632f1d934ac727520d2ce62aefe4fa58c3d2b134c4cSecunia Security Advisory - Red Hat has issued an update for rhpki-ra. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
31ec5694c8aeefaaa4e00b6888582b609fa818eb583f7360eae893b8d5304b98Secunia Security Advisory - A vulnerability has been reported in DokuWiki, which can be exploited by malicious people to compromise a vulnerable system.
468144f061f776e470694183ce52dcb900ea9a6b4f962ab1da7bd31fc5d237bcSecunia Security Advisory - A vulnerability has been reported in Dogtag Certificate System, which can be exploited by malicious users to bypass certain security restrictions.
aecca8e92db3abc37a947941cc51221efd60ae57b70a99ad58935950f5a37e75Secunia Security Advisory - A vulnerability has been reported in multiple ArcaBit products, which can be exploited by malicious, local users to gain escalated privileges.
e8273d5e7dd2ccf05288cb15802f0ef31c3fce1f5371d7e3adcdc6e3eb941783Mandriva Linux Security Advisory 2009-123 - src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted. The updated packages fix the issue.
7755490ed17aa91e9865b7bf6b17efa65a870ed74c74f7f9dc10916880b6e040Whitepaper called Buffer Overflow Exploitation SEH Explained. Written in Arabic.
b176886256e50ed93c85b0f5730e4144eb6ae2112a8d559480a488bd3e759f3dWhitepaper called Understanding SQL Injection. Written in Portuguese.
af987039e63ecaf10627212cb4cc10fd0b3928911e5862ae152fed93ba43490fGentoo Linux Security Advisory GLSA 200905-09 - Multiple heap-based buffer overflow vulnerabilities in libsndfile might allow remote attackers to execute arbitrary code. Versions less than 1.0.20 are affected.
93da091dbd2e5ce946b35c5825e1fc34c873fc0b15d3881bbe1fdf77c416653dHP Security Bulletin - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, privilege escalation, execution of arbitrary code, and Denial of Service (DoS).
21cffee8fc96ccc19efc5adaec63bae7ffc58b656b9a38a128b04eee39aabdc5Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data.
d6e2cb1c14364dc2d8db363d72a311d54353f6491970d5cdc0b808d333642d4bstrongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
1d34d793bc7cd109fa7a19486e58341d729f701d4d8736dcde568c94280d972eAdPeeps version 8.5d1 suffers from cross site scripting and HTML injection vulnerabilities.
3093e37ea794ca14328223f576eed8a81a3ff254bc77417ba5b9655951863885Evernew Free Joke Script version 1.2 suffers from a remote SQL injection vulnerability.
fa7bb2e533a6e3dc591efa6e1d919e69c6ba264a9afbb539847a9ee3e95d2637SiteX versions 0.7.4.418 and below suffer from local file inclusion vulnerabilities.
e48986405521947037729d3f633d0930c34dacca715f24b4cf684365d483b673
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed