Debian Linux Security Advisory 1982-1 - Julien Cristau discovered that hybserv, a daemon running IRC services for IRCD-Hybrid, is prone to a denial of service attack via the commands option.
9c2f653b73ef77e17d494bb4c5b981c71f6b192b0586cd48d934e38e8bba073f
PHPUnity.NewsManager suffers from a local file inclusion vulnerability.
e11c6ed19a232f9cd0cdd70ff9057e70492914b0b5f2cd9206a737749f395f3e
The Joomla DMS component suffers from a remote SQL injection vulnerability.
7fc63248dd2bf8ddaf9a7f17a586504d9a8041ba5f7a59dbd89c70a5a2dfa031
Wireshark version 1.2.5 LWRES getaddrbyname stack-based buffer overflow proof of concept exploit.
7ad364b5847170c15656fe62c93d52685d25110d3c8e28a58d169735c98aae09
OCS Inventory NG server versions 1.3b3 and below suffer from a remote authentication bypass vulnerability.
f71175ab1b0ee95ff7fe87301de9b98f2c7b80c8b50d209148dddfacf0aa2489
AOLShare YGPWz.dll Active-X control version 9.1.6.24 denial of service exploit.
69652588fc6b8a828ef105932e263daccd85b5969609e38c6cbe7dd700b73617
Mandriva Linux Security Advisory 2010-029 - The rootcerts package was added in Mandriva in 2005 and was meant to be updated when necessary. The provided rootcerts packages has been upgraded using the latest certdata.txt file from the mozilla cvs repdata.txt file. The rootcerts package provides the /etc/pki/tls/certs/ca-bundle.crt file which most softwares in Mandriva, and where applicable is sharing such as KDE, curl, pidgin, neon, and more. The mozilla nss library has consequently been rebuilt to pickup these changes and are also being provided.
fe4f69e4cf5d8f466afd9e550b827caed5f184a7e160183569930c71d2868dda
Tutorial Basico de Assembly Para Linux/i386 na sintaxe AT&T.Written in Portuguese.
c19222a813615c72735949fda3663f3a1be000f0e190d818a828ea53acd3b008
Small whitepaper detailing simple methodologies surrounding PHP trojans.
6af6687dfb6f63aecb232c3f8a37be1090352507eda4e8000e630ee071dcc16c
Debian Linux Security Advisory 1968-2 - It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data (CVE-2009-4010).
93b6b97cd2634967ebb166c497f5c1a22c83bd152b29b000215698efced07d33
CemaListe version 2.3 suffers from a database disclosure vulnerability.
b8f476942015811c66175820d0a874067ef719cab7d74de5eb8eafde41bdbb06
AIC Audio Player version 1.4.1.587 local crash denial of service proof of concept exploit.
df91cc1caa418503b13875a547bbf58abed9b4e04aab9a8a481c8f3325956c8d
Ubuntu Security Notice 892-1 - Ronald Volgers discovered that FUSE did not correctly check mount locations. A local attacker, with access to use FUSE, could unmount arbitrary locations, leading to a denial of service.
5581a265cff9e48cb846db4f05ccabfbf475feae6e20f5fcdcf3c5431ea5d7f9
PHP Product Catalog suffers from a cross site request forgery vulnerability.
9769bffb52f222f91f048681493b1c29d48568c80a898eed4abdfaae45f40e72
Debian Linux Security Advisory 1981-2 - The latest DSA for maildrop introduced two regressions. The maildrop program stopped working when invoked as a non-root user, such as with postfix. Also, the lenny version dropped a dependency on the courier-authlib package.
dc9c10eff52a098653f18750b581e99e43503d6ad0570f552ec380e620ccc7c0
The Joomla JE Quiz component suffers from a remote blind SQL injection vulnerability.
80bd3f60d046c4a4da88ad8aa2880ad5021d1446ea22572ed29077acb22ef4ee
XAMPP versions 1.6.8 and below suffer from cross site request forgery, cross site scripting, path disclosure, remote SQL injection and directory traversal vulnerabilities.
98714ff1d8ab1f70017793ae6fa8f89b89eaac83f325a07dcb0b841989499dc1
The Joomla CCNewsLetter component suffers from a local file inclusion vulnerability.
8205aafae6fb9908758492ca1682ef185cf657044b9c44bc6bc25c92ad159ac2
Ubuntu Security Notice 893-1 - Ronald Volgers discovered that the mount.cifs utility, when installed as a setuid program, suffered from a race condition when verifying user permissions. A local attacker could trick samba into mounting over arbitrary locations, leading to a root privilege escalation.
8d54a9e51f6d12da9bd39ed796b2aaa76b4912fadf7decc1dd8b8445217bea71
The Joomla CCNewsLetter component suffers from a directory traversal vulnerability.
1d80a9f391adbef7da3c5f3e510bd73fa389fe51777bbfa87a607fbf301da5a9
Rising AntiVirus 2008 through 2010 local privilege escalation proof of concept exploit.
04d2f1d6930f5971e2ae3032f9012bb0aeb7a4fc678e4f2504cd8ea513cb394d
CommonSpot Server suffers from a cross site scripting vulnerability.
df67dfe5debcbb27e0fef223695bfa6598ccdaa78f99196c76f1ec8693d28f42
Debian Linux Security Advisory 1981-1 - Christoph Anton Mitterer discovered that maildrop, a mail delivery agent with filtering abilities, is prone to a privilege escalation issue that grants a user root group privileges.
686b60a76e096bbcfb68030abfcf145851da868baad7fac2177dd1c60e8131f0
Arraid version 1. suffers from an insecure cookie handling vulnerability.
cd96dc8355a696490e8c079a19c7618886a205c4398efcd4cc36f41cb623e81e
The Joomla jVideoDirect component version 1.1 RC3b suffers from a remote blind SQL injection vulnerability.
e24db250aa34f2166086725ee102a72db226d14eed35d975837e36ac0f66fae9