IBM WebSphere suffers from arbitrary file retrieval vulnerabilities.
de8dc2b772ab07ee4cd4c5c0720677050407868ec9368f5cf31cdc98f583d590Mandriva Linux Security Advisory 2011-001 - ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520. The updated packages have been patched to correct this issue.
c2141092948c86ef862a3e1fcdb11cce897c38c6811c0f4388e471310bbffbcaGNU libc/regcomp(3) suffers from overflow and stack exhaustion vulnerabilities. proftpd.gnu.c exploit included.
43e26bde432a5e50b401382b8c5f29be36e9aef9c061f0a6cff7b5f6cc7132b4BS.Player version 2.57 SEH buffer overflow exploit.
57926dee37a9116fa9d751003d25f546ed529794643bfcdc2555ad61c151e91bMcAfee Virusscan Command Line version 6.0 suffers from a symlink attack vulnerability.
2982d0bd574a2e9f74f1a3b7856c4cfdfb8451c7b3e920ec3829b6dbace0a944openSite version 0.2.2 Beta suffers from a local file inclusion vulnerability.
98a98c4e344b2bfa632586a731e9300989b18a5c25834eb245b6cf245bebd599Ariana CMS suffers from a remote SQL injection vulnerability.
3147655eb1ea8d36410bdc7e030b892163909fa4fdff0444503427061697afcfSecunia Security Advisory - A security issue has been discovered in BlogEngine.NET, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
73250ae39473364c3666e3cd0884716a23b020ae92ee46a0b71d6374a2bb1b8dSecunia Security Advisory - A vulnerability has been discovered in Enzip, which can be exploited by malicious people to compromise a user's system.
d9e0f60a51027e7fd808333f0db1c05a24c25b7eb382efd81edcd568a77f1593Secunia Security Advisory - A vulnerability has been discovered in StageTracker, which can be exploited by malicious people to potentially compromise a user's system.
069604cf497fee1adcd64b762e3d7de04b473e4dc9815141a64501c43cca578fSecunia Security Advisory - Debian has issued an update for dpkg. This fixes two vulnerabilities, which can be exploited by malicious people to manipulate certain data or compromise a vulnerable system.
6750a57c70a35838e59cf8bd85f785fc910620752e511a914f3f3778cff251cfSecunia Security Advisory - Multiple vulnerabilities have been discovered in Openfire, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
9dde258053114d793ac060bb5709b3f4c3ffcbb64ab72340a6d2f55d85ab9232Ubuntu Security Notice 1040-1 - Adam Baldwin discovered that Django did not properly validate query string lookups. This could be exploited to provide an information leak to an attacker with admin privileges. Paul McMillan discovered that Django did not validate the length of the token used when generating a password reset. An attacker could exploit this to cause a denial of service via resource exhaustion.
380e6e5bf43c96aadf5739aaae8af09bf90d5a3e03bd88223ce714c1a51cbbb9Ubuntu Security Notice 1039-1 - It was discovered that if AppArmor was misconfigured, under certain circumstances the parser could generate policy using an unconfined fallback execute transition when one was not specified.
05e2bc57fe46e16acb7cff83630db4854b2138dfd45973aefbecefa02b9de672Ubuntu Security Notice 1037-1 - Under certain circumstances, the DHCP client could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before DHCP client starts.
9d2a5737effe32aca135f028dd567113ae4b3fb3a8511ac78419e945f9c17a40Ubuntu Security Notice 1036-1 - Under certain circumstances, CUPS could start before its AppArmor profile was loaded and therefore run unconfined. This update ensures the AppArmor profile is loaded before CUPS starts.
9447d6a94fd12a12071ab5caebae626694b3f2f722da58d966118930f91ef4dfSecunia Security Advisory - Some vulnerabilities have been discovered in WonderCMS, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
500c414eec5f1334c8d92ba4bc56af28ddc7eb1223a6a1dab5aaa436da15548fSecunia Security Advisory - Red Hat has issued an update for evince. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
2a0b6bb1937f1f49c115ebc3729571bb12be56125f5a7e4599816662453b40bbSecunia Security Advisory - Ubuntu has issued an update for dpkg. This fixes two vulnerabilities, which can be exploited by malicious people to manipulate certain data or compromise a vulnerable system.
c833ba506284b5f7fdba2e951c6286bb0af4b6d5bef30b816e2173ec6abf113aSecunia Security Advisory - Some vulnerabilities have been reported in Piwik, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
0087d038797fd54d92ad91a6deba050dc386a5b6aa4a376772ea56c604f39b8fSecunia Security Advisory - Ubuntu has issued an update for apparmor. This fixes a weakness, which can be exploited to bypass certain security restrictions.
c63167fb00d7caf4d604f3314a467ea29a8cab7b9bd8ae31db2a709402385d0fSecunia Security Advisory - A vulnerability has been discovered in ApPHP PHP MicroCMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
bbd7da01eb1b3e902708a2e460065500f7ce2ee61f8cd1d3c80d855ac90e2014
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed