Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in GIGABYTE Dldrv2 ActiveX Control, which can be exploited by malicious people to compromise a user's system.
f288b6e8f46236fbf7d7434724c6601beecf835f16b8aa08fe666a82f9c6d481Secunia Security Advisory - Richard Brain has reported a vulnerability in Juniper IVE, which can be exploited by malicious people to conduct cross-site scripting attacks.
7ee3aa86aac36fb85624d366661203467e364b82b6efdf7bcc3e68396ff7cd7bSecunia Security Advisory - Some vulnerabilities have been reported in Edge PHP CBQuick, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
a851e10824f3ef08d9b66147f2d8a2a437f9a472e04c316687c9121506c59aa7Secunia Security Advisory - Red Hat has issued an update for pcsc-lite. This fixes a some vulnerabilities, which can potentially be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.
21e8129f440060847966cc87f284567d2b32824cda3e4fe674bd9ead22f1781bSecunia Security Advisory - Debian has issued an update for freetype. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
79a4c1efe0148c7fb6bdc98109ea019bd2ed443ac39ec87366001500138659c4Secunia Security Advisory - Red Hat has issued an update for libpng. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.
495a716a326409814f9dbab945057d9a0a80d30ad6f1fe2b54dd62c5e4a68da1Secunia Security Advisory - A vulnerability has been reported in the Drupad module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.
65817d0847caa10ef5e054dc01d5e5427becc06023505915c9d5c9a70283a491Secunia Security Advisory - A vulnerability has been discovered in XMB, which can be exploited by malicious people to conduct cross-site request forgery attacks.
c6e696598106c201ef17f1bb82012ebcd962aa39919b7509642680633b6d599bSecunia Security Advisory - Debian has issued an update for libmikmod. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
1c5e21f3a07c21535317afeea358ab13611ae4b714e956e0cd00db9daaad8a63Drupal version 6.16 with OG Menu version 6.x-2.0 suffers from a cross site scripting vulnerability.
90ba50652c68e07d46bed384d999ee9ffe0b6ebe74a4d3578bb1841d6fd8f9faDebian Linux Security Advisory 2071-1 - Dyon Balding discovered buffer overflows in the MikMod sound library, which could lead to the execution of arbitrary code if a user is tricked into opening malformed Impulse Tracker or Ultratracker sound files.
6d330af0279241bc195a2da88e6f46b37d34a7ffed24274f3805d23946031c64Debian Linux Security Advisory 2070-1 - Robert Swiecki discovered several vulnerabilities in the FreeType font library, which could lead to the execution of arbitrary code if a malformed font file is processed.
07a9d0abfec10cf4e763c242a9b4933a2f44395c0fb697b08fdb20b446862e54Ad Network Script suffers from a cross site scripting vulnerability.
53e1cba9e383c137d5e2d4d634886888ce06e181f512fb11bb833e8411c9d614Conpresso CMS version 4.1.1 suffers from a cross site scripting vulnerability.
7c0977c0adad6de76620d1d93c77ecb2bc784517716393efc9a7cdfdd10737c2SimpGB versions 1.37.3 and below suffer from a cross site scripting vulnerability.
cba3f11163e763768792f4183974d5e1a7228906e813ba400436e0f500c87902It has been discovered that certain e-mail messages cause Outlook to create Windows shortcut-like attachments or messages within Outlook. Through specially crafted TNEF streams with certain MAPI attachment properties, it is possible to set a path name to files to be executed.
550e736caba1e689e23530aec9809ac9c94ae8f0d154b391fe20a8e454287817Mandriva Linux Security Advisory 2010-132 - Multiple integer overflows in audioop.c in the audioop module in Ptthon allow context-dependent attackers to cause a denial of service (application crash) via a large fragment, as demonstrated by a call to audioop.lin2lin with a long string in the first argument, leading to a buffer overflow. The audioop module in Python does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.
e9e1a86c719f1ef874c01c3ca18ca975feec3df77970303af5fb6c2539510eb9Microsoft Excel 0x5D record stack overflow exploit.
663a8f6c7c8c3ffa90aea8fb5d6529116f428e29f3dbb8e5e8939cc3d1fba554Zenphoto CMS version 1.3 suffers from multiple cross site request forgery vulnerabilities.
b74089ba04e3c968adc00af589e73571163c53ce215c2b8d4932f11d7ffd4541Procheckup has found by making a malformed request to the Juniper IVE Web interface without authentication, that a vanilla cross site scripting (XSS) attack is possible.
b19b3cf027c13feb0c9453befa1a1695ad3c71996e2d1625b3489dfef480afba87 bytes small standard system beep polymorphic Linux shellcode.
d7a7ffdac945fb198434c4c9ebb81e55f156999af8cd5cd77cfaa1f7c58f7669A buffer overflow condition can be triggered on the D-Link DAP-1160 by setting URL filtering for an overly long URL, leading to possible arbitrary code execution or denial of service. Successful authentication is required in order to exploit the vulnerability, but attackers can leverage other vulnerabilities for achieving unauthenticated remote exploitation.
bd3ea2fdf1b138ba8150e58e89eabdecdbbee7ee5b621500a372f19db8a7f8682daybiz Businesscard Script suffers from a remote SQL injection vulnerability that allows for authentication bypass.
d68b18ba195b5c9a5d14026b580f1fdf6ac3e255a69f7db8fd3feda02aee1336
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed