Secunia Security Advisory - Some vulnerabilities have been reported in Sybase M-Business Anywhere, which can be exploited by malicious people to compromise a vulnerable system.
c43fd2a59f4f86a8d16f3bf0ee7f68b75f4d70c4fd305484154cde2d3d3c07e9Secunia Security Advisory - A security issue has been reported in OpenID4Java, which can be exploited by malicious people to manipulate certain data.
7fa0b346c40d46b03161f600f7957e5765b13d2efc351ca9964522f560977d40Ubuntu Security Notice 1130-1 - It was discovered that the Exim daemon did not correctly handle format strings in DKIM headers. An unauthenticated remote attacker could send specially crafted email to run arbitrary code as the Exim user. The default compiler options for affected releases reduces the vulnerability to a denial of service under most conditions.
3037bb70653b99b21255af3b8be8ffae564bb7e2b421a31e267cae2653998bbbCA Technologies support is alerting customers to a security risk with CA eHealth. A vulnerability exists that may potentially allow an attacker to compromise web user security. The vulnerability occurs due to insufficient validation of sent request parameters. An attacker, who can convince a user to follow a carefully constructed link or view a malicious web page, can conduct various cross-site scripting attacks. Versions 6.0.x, 6.1.x, 6.2.1, and 6.2.2 are affected.
59491a8e54f0e3980dff181e854aac91f5f99b5bc0eb81ce1a280219f8dbd3daDebian Linux Security Advisory 2235-1 - Several vulnerabilities have been discovered in Icedove, an unbranded version of the Thunderbird mail/news client.
004f26951b64ddf5048affa53c3e4860e72e310acb89923d1677e2def604574dZero Day Initiative Advisory 11-167 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows Internet Name Service (WINS). Authentication is not required to exploit this vulnerability. The specific flaw exists within the wins.exe service distributed with Microsoft Windows 2003 Server. This service is designed to resolve NetBIOS requests and accepts connections on port 42. Due to a logic error when handling a socket send exception, certain user-supplied values remain within a stack frame and are re-used in another context. A remote attacker can abuse this flaw to cause a call to LeaveCriticalSection to operate upon a controlled location in memory. Such a condition could lead to remote code execution under the context of the SYSTEM user.
8be80069f255351a71cf8ca5ebe064fff7d59fc464797d42b25bb2ed516ff43bFirewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
ceef3fda46199cfd94b6b6ba291f8719c9c4bf83151412d144b0169f59845202seoPanel version 2.2.1 suffers from cross site request forgery vulnerabilities.
1bed8389ea592df8c17d9c3bcc85c68e8aef3fbaeaaeeaca216e29edbb9b5bcdTraidnt UP version 2.0 suffers from a remote SQL injection vulnerability in view.php.
55e4fc4fba5a5c91849847bdbdf61511a6725be7cbafc2fe43ab2b576755826aDebian Linux Security Advisory 2234-1 - Several remote vulnerabilities have been discovered in python-zodb, a set of tools for using ZODB, that could lead to arbitrary code execution in the worst case.
e1c674480269535565c59f8ea537f28890fa119606378e5ba8ba65832a690d5eTechnical Cyber Security Alert 2011-130A - There are multiple vulnerabilities in Microsoft Windows and Office. Microsoft has released updates to address these vulnerabilities.
83ba055dab0b0801c84d8643569cf71b1a7f6c01feeb1cfed26099f0dca22b08GuppY version 4.6.14 suffers from a cross site request forgery vulnerability.
7ccb420bb1f4447bcf4487357e3c968e8e942284e4a3d9e3fd407b8321ccba4cCalendarix version 0.8.20080808 suffers from cross site scripting and remote SQL injection vulnerabilities.
1d815b057c9a7c2b09ca1663df321ea2706807263001c64a0ad2f687b71e373c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed