Ubuntu Security Notice USN-822-1 - It was discovered that KDE-Libs did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only affected Ubuntu 9.04. It was discovered that the KDE JavaScript garbage collector did not properly handle memory allocation failures. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that KDE-Libs did not properly handle HTML content in the head element. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that KDE-Libs did not properly handle the Cascading Style Sheets (CSS) attr function call. If a user were tricked into viewing a malicious website, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
e04d87eb0947023e41cabcb09990834aafcabc0d2554fb17c2ab973da27d010dMandriva Linux Security Advisory 2009-218 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
940574ed34e91952ce7c4208a6ef290ecd054124708ad5e6e7a4b5377e08e20bDebian Security Advisory 1872-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation or a leak of sensitive memory.
cf39db21b853f2de19fa7441b737a0a470a70d17a10d2adf60f45715f7040e1eMoa Gallery version 1.1.0 suffers from a remote SQL injection vulnerability.
ba38265c2912f787ce21bf424d24e1ec7bb1c9d4a3506de4d28170f1a0ed5423humanCMS suffers from a remote SQL injection vulnerability that allows for authentication bypass.
98c38a3e81304f1aba2677eb6ac2bd0089fa2b33d8e716cb40e98bff4347d87cEd Charkow's Supercharged Linking remote blind SQL injection exploit.
9970c4840b479e3cd4353633f853273c925f8c37ce745cd8a88919ec6bc97ca0Joomla Ninja component version 1.x suffers from a remote SQL injection vulnerability.
1489c68189bf87a95cd03d6913828f0ec8fec8be82f717e7d45c091406366a50New5starRating version 1.0 suffers from a remote SQL injection vulnerability in rating.php.
1aafbc3fd0046c91ef8650dceca13a553433abe6ac5199374fb8e5bfce5f61b1Uebimiau Webmail version 3.2.0-2.0 suffers from a database disclosure vulnerability.
00d83a2ef4d707bff417f0b966c127089a1c34a70089b7ac97eb81520f026f00Lanai Core version 0.6 suffers form a remote file disclosure vulnerability.
56c6fed757c68b6901b8e100de8c38158a00d15e2203536feeda43b166e1e1acWAR-FTPD version 1.65 mkd/cd request denial of service exploit.
63b27405f3d2f0cc2d9d1e21d49f58acfa74cc6ffbbed76c92891477451e7166Fazlo Player version 7.0 local buffer overflow proof of concept exploit.
d67dccbb28139875a907bfc855e7480d6fa7b473f5edc6f8a3786319b271a1a0Hyenae is a highly flexible and platform independent network packet generator. It allows you to reproduce low level Ethernet attack scenarios (such as MITM, DoS, and DDoS) to reveal potential security vulnerabilities of your network. Besides smart wildcard-based address randomization, a highly customizable packet generation control, and an interactive attack assistant, Hyenae comes with a clusterable remote daemon for setting up distributed attack networks.
2389a66440d5635d196fccc4471fe836efc0c4f571071145d2159d57cd276797Ksplice is practical technology for updating the Linux kernel without rebooting. It enables you to avoid the disruptive process of rebooting for kernel security updates and bugfixes. By making it easy to keep your systems up to date, Ksplice helps you avoid the security and stability risks of running out-of-date software.
bc32f50c9eea674ab92af5e22d57a64e87b472548f0dd0b88880ed6fa84caaccRadvision's Scopia version 5.7 suffers from a cross site scripting vulnerability.
b12e4a3bdda500ff53f019e1e8009e33e5ab0307de536d27f492557383ca3ab5The D-Link 500G suffers from an authentication bypass vulnerability when a Host: directive is not passed.
3b3982d76d54b390c3929411d1a82138df3bd8a69b219baa7885951f75c820b1BlazeDVD version 5.1 Professional universal local buffer overflow exploit that works on XP and Vista.
0ce9ab13f9a018014586f8f6afb52072d6f7d4d38d7a089499d7322de9d0f830WM Downloader local buffer overflow exploit that creates a malicious .smi file.
6958a23f5ab6e2fc8ec970f1a139585572f126c4d70a83e9cf895d393af89d4eMandriva Linux Security Advisory 2009-217 - A number of security vulnerabilities have been discovered in Mozilla Thunderbird. Security issues in thunderbird could lead to a man-in-the-middle attack via a spoofed X.509 certificate. A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
9d01bf4018ef272796f802e7b69bf36d94eabb3f0d7d7fb3c6e573ebfc24366aMandriva Linux Security Advisory 2009-216 - A number of security vulnerabilities have been discovered in the NSS and NSPR libraries and in Mozilla Thunderbird.
e8e619c27abfa1ea866f6d756a974aa55669f6f2b6b85c33173163bb95017751Mandriva Linux Security Advisory 2009-215 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
ce2329ccd328b819f4a1a50965d05b35b19115fd980af077c798363ee77ad560Mandriva Linux Security Advisory 2009-214 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
8baa30d1ae51b2aee60f255fb0bd84170f9ca0c145d62c2ac452aed9110c5983Mandriva Linux Security Advisory 2009-213 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
111fda230c0d060c1db1fe458067d6dcf3b80aa0be55bee39174cc106791fe7dMandriva Linux Security Advisory 2009-212 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
72b925d3e0a240c46928b20b6fc7e1e32e82593cc0b1fa34698fc90cb3e7167cMandriva Linux Security Advisory 2009-211 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
5b61601e33e11594211de303a61c8e1b2463eb8687e98e63a81dd0577061bd5d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed