Secunia Security Advisory - Ubuntu has issued an update for libvorbis. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
dd5d482966126d99945480a6175b92a237f0ab3167c0e8f11188d6bfd1b2eaaaSecunia Security Advisory - A vulnerability has been reported in Xerox WorkCentre, which can be exploited by malicious people to cause a DoS (Denial of Service).
2ae9fb0438f7aa248cf8119fe62d484a9f1b6f5a353dd69434794137c2eead68Secunia Security Advisory - Ubuntu has issued an update for kdegraphics. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system.
9ee474ff3834c4aa0d81c62d73329f58932a1038972a2b3e3b76853635172082Secunia Security Advisory - Ubuntu has issued updates for kde4libs and kdelibs. These fix some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
b765faf43c5d1273fc2ccd89633c4d1cdfde06f392cfd1698517ac37a42c49e2Secunia Security Advisory - A vulnerability has been reported in Lotus Notes, which can be exploited by malicious people to compromise a user's system.
faf974b36b905bb6a5748698aa05f232542dd065f34548c31a14e6f1c9b5eff4Secunia Security Advisory - A vulnerability has been reported in Lotus Notes, which can be exploited by malicious people to compromise a user's system.
05472c83c5da81b7364fe55b20b130a39ffd47517c77a99233cc327c8ed9a9e4Secunia Security Advisory - Inj3ct0r has discovered a vulnerability in the WP-Syntax plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
f59cef6c34f1c7440cf42ff95c57fa679071ceb200695bed0834b4da5f8fdd04Secunia Security Advisory - A vulnerability has been reported in the ZTE ZXDSL 831 II Modem, which can be exploited by malicious people bypass certain security restrictions.
4a31233648550a8697a6a110b3a49638c591c318b440d4501bf0229473bc0798Secunia Security Advisory - A vulnerability has been reported in Expat XML Parser, which can be exploited by malicious people to cause a DoS (Denial of Service).
d56b40e0d450e2902c0f4da0454661fd57b9fd5303026b93ef8cc6d1f96bab62Secunia Security Advisory - A vulnerability has been discovered in the CoolPreviews extension for Firefox, which can be exploited by malicious people to compromise a user's system.
ee7767db0e8c441daaa6490e1200092135aa8419821dac5b35a2a8fa64e4855aMandriva Linux Security Advisory 2009-221 - neon before 0.28.6, when expat is used, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, a similar issue to CVE-2003-1564. neon before 0.28.6, when OpenSSL is used, does not properly handle a '\\0' (NUL) character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. This update provides a solution to these vulnerabilities.
9c69a4d5d28eca9ad7cdf86e2548ac0e74bdb4c9de533e87983d8f755e77ec0aMandriva Linux Security Advisory 2009-220 - A vulnerability was found in xmltok_impl.c (expat) that with specially crafted XML could be exploited and lead to a denial of service attack.
62f8f56d89a553e41588d5db5b6e8c8c6bedd5ba9eb955c6afe0df7daf55c476Update Scanner Firefox extension versions 3.0.3 and 3.0.2 suffer from a code injection vulnerability.
a84cea7dcca8c8129f0476869c42bf49f5faf21e8ed4c9dc9b68f23483dd9f82The CoolPreviews Mozilla Firefox extension versions 2.7.2 and 2.7 suffer from a code injection vulnerability.
4f2706bad6a05c9cdd2540149bff931f39721d5ed60c8ef6695a3e216f3e75b8Arcade Trade Script version 1.0b suffers from an authentication bypass vulnerability due to an insecure cookie issue.
e1127a1055dd8221256b2a446059fc24b7e7e6d68ae157be7ddf197ecea7ccddUbuntu Security Notice USN-825-1 - It was discovered that libvorbis did not correctly handle certain malformed ogg files. If a user were tricked into opening a specially crafted ogg file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges. USN-682-1 provided updated libvorbis packages to fix multiple security vulnerabilities. The upstream security patch to fix CVE-2008-1420 introduced a regression when reading sound files encoded with libvorbis 1.0beta1. This update corrects the problem. It was discovered that libvorbis did not correctly handle certain malformed sound files. If a user were tricked into opening a specially crafted sound file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges.
8bef4480933a4d21cc6a8770649ffc4e16083884235f172f738cc95a2f1421f3Adobe Reader version 8.0.0 denial of service exploit that leverages AcroPDF.dll.
24c6000d9e58ad91143ea05863078685eba471819360302ef4d8c54836fab778PDFZilla version 1.0.8 Active-X related buffer overflow exploit.
85faf008d8bc0583e5f3fbb269ec65f55c211ce6e9be2c57e863248efafe3ac5NaviCopa Web Server version 3.01 remote buffer overflow exploit.
038ee52ab25d2b0fa80e2112950039b27704f29bb5177b9354dbabde2ad881c6Ubuntu Security Notice USN-824-1 - It was discovered that PHP did not properly handle certain malformed JPEG images when being parsed by the Exif module. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service.
195c0917b3abed3aff85bd3d440817381c52c2259560eb04cae7aa6dfcf973d2Netgear WNR2000 FW version 1.2.0.8 suffers from information disclosure vulnerabilities.
21f42b8f9f7d1723e867baeb640c7d73e6f239d183fa98f6fb5e926320d4cef6Audacity versions 1.2 and below universal buffer overflow exploit that creates a malicious .gro file.
856995d0f2d66adf31277f2ea6683a5947cf07adfde8a997ed67e94dd9c8f86bITechBids version 8.0 remote blind SQL injection exploit that leverages itechd.php.
17834758af083afa6d4378cf049b73b90a0d55a1680b1439ff37932f97d7ff7fRM Downloader local stack overflow exploit.
11fdd926c8b809e97026e03a29ea4c30c9fd1bea57f373d6ec8395ba3acb5092This is a quick and simple TCP port scanning utility written in PHP.
c0fbd6b658908af4cb4a3272dc3c7b366d57256efceaaa57640c208b9bea5c0c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed