E107 suffers from a referer header cross site scripting vulnerability.
bc15dba228664889a433738765ce808c046107fd905482adc8d3771ab1e526ceMindSculpt's CMS system suffers from a remote SQL injection vulnerability.
0ccd4c3efd5af0cd8c2b6e4b1ece71765ab74462bce3e7a96f3e2cce2f899883html2ps versions 1.0 beta5 and below suffer from an arbitrary file disclosure vulnerability.
292202f9d9e1695f142300704c73c5153fd9c7ff82be8c2d01a7f4d3deddffe8The Black Hat Briefings DC Call for Papers is now open. It will be held February 2nd through the 3rd, 2010 at the Hyatt Regency Crystal City in Washington D.C.
d0be1d1c758602121aae4a197c5143a5a6bc79a65fb8913a61a2b3d2f1293b65Mandriva Linux Security Advisory 2009-245 - The g_file_copy function in glib 2.0 sets the permissions of a target file to the permissions of a symbolic link (777), which allows user-assisted local users to modify files of other users, as demonstrated by using Nautilus to modify the permissions of the user home directory. This update provides a solution to this vulnerability.
b7303f77179201e87765e107657cd61646d6660cc3ab11a9bd0f445dc8c4fed0Debian Security Advisory 1894-1 - Miroslav Lichvar discovered that newt, a windowing toolkit, is prone to a buffer overflow in the content processing code, which can lead to the execution of arbitrary code.
96323d6582be083e70c7ddf004194f5155a8cf56bd6df2b1cad95f09f821ffb1Ubuntu Security Notice USN-837-1 - Miroslav Lichvar discovered that Newt incorrectly handled rendering in a text box. An attacker could exploit this and cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.
ceb74117bb882a05caa0cd032d138bd04bde11aa8d88d8b0405db872f9ecdc9dSecunia Security Advisory - Some vulnerabilities have been reported in OSSIM, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to disclose potentially sensitive information and conduct cross-site scripting attacks.
5f44d10f7cf0304f0e94ea335445404bb4eac854e2e5e171c77329247ff6ad01Secunia Security Advisory - Red hat has issued an update for cyrus-imapd. This fixes some vulnerabilities which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
3aee9a1e99723bf2cad103956e4e6d91bb557e2473e587c5aa4c6e282444c1a4Secunia Security Advisory - Debian has issued an update for cyrus-imapd-2.2 and kolab-cyrus-imapd. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
2b55590eeb0da0ab45db7327bdc9ed197866aa54d656b646de7bf07d7a6913ffSecunia Security Advisory - Debian has issued an update for dovecot. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system.
c6b4f5cb4c21e536f72b9acedb0b7fded13a1738a38796532cedb0f1740e7abbSecunia Security Advisory - A vulnerability has been reported in IBM Lotus Connections, which can be exploited by malicious people to conduct cross-site scripting attacks.
09c0b3bfcb7bd3d4851b4195b7f710e74414a4044d752be7304674c4013a08eeSecunia Security Advisory - A vulnerability has been reported in the Tupinambis component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
859beaebb56bf64e68eab8622ee6cade3a96b21b897f6c23d8754bad7f6829a4Secunia Security Advisory - Fedora has issued an update for xmp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
61cb798eb01ad574bc8edf32afb76982ded250ecec475df6053e84500ca4a9a4Secunia Security Advisory - Giuseppe Bonfa has discovered a vulnerability in avast! Home/Professional, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
6239b504eebe4080baef97f828354a7cabb94e68eb8ed29dffdff9370d9d0d68Secunia Security Advisory - A vulnerability has been reported in the Meta tags module for Drupal, which can be exploited by malicious people to bypass certain security restrictions.
90629bc904789f5880ab100c43ab74d6374f07187d0c10ac6cc377b5a802a5caSecunia Security Advisory - A vulnerability has been reported in the Devel module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
8356117fa9cf1594e06ef9eafe5ce7230aa6dc9f1a40f723f8656fd9db72f8b3Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges.
a79177da9a6ee833b623decd754dd917c109660ea7ea51490ba4f5469b552940Secunia Security Advisory - kaMtiEz has discovered a vulnerability in the Survey Manger Component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
96c6214858b2872849bb0c546232cac74ccb4d5ff1b534b2575625200e7215d7Secunia Security Advisory - kaMtiEz has discovered a vulnerability in the SportFusion component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
eee46ebd9175f37a2ea3b804d615bf6f35277cfd8260b08db7934b637e1bf1ecSecunia Security Advisory - reza masouri has reported a vulnerability in HBcms, which can be exploited by malicious people to conduct SQL injection attacks.
a7c6d9af15ad34d6d492c9003b2667f63485d022fa938ca526687f270d994b10Secunia Security Advisory - A vulnerability has been reported in Vastal I-Tech Agent Zone, which can be exploited by malicious people to conduct SQL injection attacks.
bacf34900bec90956c3dff4fd48956a0c3ac454ce445ab893437bb50cbdddff3Secunia Security Advisory - Check Point has acknowledged some vulnerabilities in various Check Point products, which can be exploited by malicious people to cause a DoS (Denial of Service).
556b4e6e354415bfe496472f3fb45143de887133292a8811ffc3d67891cc2505Cisco Security Advisory - Cisco devices running affected versions of Cisco IOS Software are vulnerable to a denial of service (DoS) attack if configured for IP tunnels and Cisco Express Forwarding.
9e326ad4235077e196ba35b36642b5446a77b16443666083c36c9916f9d78bf5Cisco Security Advisory - Cisco IOS Software configured with Authentication Proxy for HTTP(S), Web Authentication or the consent feature, contains a vulnerability that may allow an unauthenticated session to bypass the authentication proxy server or bypass the consent webpage.
4002d01a35771ade6caa02a688d26d25aebc7170ff471379b3985e35296e1c62
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed