Month Of Abysssec Undisclosed Bugs - FestOS CMS versions 2.3b and below suffer from cross site scripting, local file inclusion and remote SQL injection vulnerabilities.
fd2471afa9bad5101909d1ea3dac9d4a97f545e345d8962067e7aa07a74acd48Month Of Abysssec Undisclosed Bugs - Mozilla Firefox version 3.6.3 suffers from a XSLT sort remote code execution vulnerability.
eb42dd328be235c0c1e1d451f5ba274093a1ef0e8562d4db5dc88eebd775f2ecFCMS version 2.2.3 suffers from a remote file inclusion vulnerability.
9debb82582d01f8ab008b1a178c773b1dce99ebc08476a9dafadc060f2218024HP Security Bulletin - A potential security vulnerability has been identified with HP Data Protector Express 3.x and 4.x and HP Data Protector Express Single Server Edition (SSE) 3.x and 4.x running on supported Microsoft Windows versions. The vulnerability could be exploited locally to create a Denial of Service (DoS) or to execute arbitrary code.
31654deea827fe479d5b459a742c2dbaa99b80fcec9d890033df9d6255266370Month Of Abysssec Undisclosed Bugs - ASP Nuke version 0.80 suffers from a remote SQL injection vulnerability.
9f158f41d7b0304ed2f70c4f53a52c54e7cde9eedaca0ae635a94e0ee1e05cdaMonth Of Abysssec Undisclosed Bugs - Excel RTD suffers from a memory corruption vulnerability.
d5a1fb1aa7be71a03e0226d0d5c33432f2dc68fad06326d31d84c870d6b5adb4Month Of Abysssec Undisclosed Bugs - Microsoft Office Word 2007 suffers from a sprmCMajority related buffer overflow vulnerability.
a676299e1ce35ec6adfdf1ca08f36e5597b2f986903f5dc23140cb5d9566e512Month Of Abysssec Undisclosed Bugs - aradBlog versions 1.2.8 and below suffer from shell upload and remote administrative access vulnerabilities.
6506ab9d0b19606892317f127d09eae986d1f48fad94fc1d86d510017de34e12Month Of Abysssec Undisclosed Bugs - FestOS CMS versions 2.3b and below suffer from cross site scripting, local file inclusion and remote SQL injection vulnerabilities.
7dd7b52859c2a5ba895ddc73413f5ef5a718336ddb94869564ad760014b52033Month Of Abysssec Undisclosed Bugs - Mozilla Firefox version 3.6.3 suffers from a XSLT sort remote code execution vulnerability.
b9c1e228f8e0bf0a1978d1441e28f54511e60e075c0501feba2b904885ecc4aaThe Joomla Jphone component suffers from a local file inclusion vulnerability.
3fc8914ea1ddd9c4319aca9d29b3fc3e67a5b36169442c38e3802ee62746131bACROS Security Problem Report #2010-09-08-1 - A binary planting vulnerability in Apple Safari for Windows allows local or remote (even Internet-based) attackers to deploy and execute malicious code on Windows machines in the context of logged-on users.
32cb665d6f322c391a6a1c38cae156abee997050ebc2bc06e5fd56f4d9b5541cThe Apache Traffic Server versions 2.1.1 and 2.0.0 suffer from a DNS cache poisoning vulnerability.
1dc0e9378f377c2bbcc492f5d1dc879dd8fb8b702f63ec2c802e48c3bdc43d67CS Cart version 1.3.3 suffers from a cross site scripting vulnerability.
e61daa2dc2a6cf4b8b8e570bf560ef65826dc0105437141ac6e41a03ab0c6905ES Simple Download version 1.0 suffers from a local file inclusion vulnerability.
b4aaa927e0c4be0691377751cb0754622025e86e6857ef33ebeef4b16d34513fVisitors Google Map version 1.0.1 suffers from a remote SQL injection vulnerability.
2ea54a4694ff1e6328d04af9fb4f13c6138f406271fbf5af56f08f057b9284b6Audiotran version 1.4.2.4 SEH overflow exploit that creates a malicious .pls file.
a8efcb5fcc49be35efdf9318bdd949f6bda467a450080a58d1399f333afd7fe9This Metasploit module exploits a stack buffer overflow in Race river's Integard Home/Pro internet content filter HTTP Server. Versions prior to 2.0.0.9037 and 2.2.0.9037 are vulnerable. The administration web page on port 18881 is vulnerable to a remote buffer overflow attack. By sending an long character string in the password field, both the structured exception handler and the saved extended instruction pointer are over written, allowing an attacker to gain control of the application and the underlying operating system remotely. The administration website service runs with SYSTEM privileges, and automatically restarts when it crashes.
39c01041cd7a953eb8e64486e1f5865273ee4d2db2d0b6b1cfb86aad1711e782Secunia Security Advisory - Red Hat has issued an update for sudo. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
9bfb2512e01bac4be5b90016a1b32f32bc4e7a58f440956899a50d226cde62feSecunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges.
99ff3a194962898d8e318b3ce8dae11714c0f42fe92f46308b84101b959f48beSecunia Security Advisory - Ubuntu has issued an update for sudo. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
1dd46551fbc6251600eb18fe0e790879696892742413c83784068b63331653deSecunia Security Advisory - Multiple vulnerabilities have been discovered in the Events Manager Extended plugin for WordPress, which can be exploited by malicious people to conduct script insertion attacks.
daaf9a78d9c447307190ce381ae2b322fd91dfc7b099ef96d2728ecad9ddc6a1Secunia Security Advisory - Gentoo has issued an update for clamav. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass the scanning functionality, or potentially compromise a vulnerable system.
fda6d3df26c018c4b3c60a6cfa8d0df9a4faec164188b394547e483fd734dce0Secunia Security Advisory - Ubuntu has issued an update for LFTP. This fixes a weakness, which can be exploited by malicious people to bypass certain security features.
1b1e44ab3a8cf19dc5895c9498a2d4def36f5fe64fce9101ff09bc2325f02487Secunia Security Advisory - A vulnerability has been reported in Integard Home and Pro, which can be exploited by malicious people to compromise a user's system.
588b46f08a3630f7bb5fcc936a62a7dd9da050060f2f64dbd3eca6978d96f3bf
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed