Secunia Security Advisory - SUSE has issued an update for opie. This fixes two vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
e7ae15bbac85536dc25729621a3561c489d6152ba4d534fe515eac56591a1269Secunia Security Advisory - SUSE has issued an update for compat-openssl097g. This fixes multiple vulnerabilities, where one has unknown impacts and others can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and cause a DoS (Denial of Service).
bf6054c712df78f3c8014d5f5bf1b09c2eab8c9eb918f64006bfa34f6716823cSecunia Security Advisory - A vulnerability has been discovered in MinaliC, which can be exploited by malicious people to disclose sensitive information.
8f41dd9abece3a5d3401e86190413546c90ea8539df91dba2549249592cc10cdSecunia Security Advisory - A vulnerability has been reported in CobraScripts Trading Marketplace Script, which can be exploited by malicious people to conduct SQL injection attacks.
68cff488e425f2303508d0175d5554de7ec85dce9227cbf328e19f1c0c050745Secunia Security Advisory - Ubuntu has issued an update for qemu-kvm. This fixes a weakness, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
7e14a984b7ef96599162f7a55269a8d278b22dcb2dae1c23d95277bef2d30dc7Secunia Security Advisory - Red Hat has issued an update for icedtea-web. This fixes two security issues, which can be exploited by malicious people to disclose sensitive information and bypass certain security restrictions.
b5fe1234ac2b1d9944842b6c79665c7f1f0b13df0fa867c20fe12de775310591Secunia Security Advisory - Ubuntu has issued an update for openjdk-6. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information.
f27d98856a7cc54531ddc48d6aea0b5edafd54d589ccc2d0cbd2df6e47712cb4Secunia Security Advisory - A vulnerability has been reported in Drupal, which can be exploited by malicious users to bypass certain security restrictions.
11f6a3e3455a62108c8799b9f26708528a31971b6b72850f40621a27c75c26c1Secunia Security Advisory - A vulnerability has been reported in the Taxonomy Filter module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
7f687877a14dc91dc3ad78f5a0f758a2987077e26202238d36fe8600e0e67116Secunia Security Advisory - Patrick Webster has reported multiple vulnerabilities in Cyberoam UTM, which can be exploited by malicious people to conduct cross-site scripting attacks.
32255f8e70373d5c954099c13ea5e70e03f3587a8c848a1dae4a1e7e9f175518EMC Captiva eInput version 2.1.1 contains two vulnerabilities which can be exploited for conducting cross site scripting attacks, retrieving files on an affected system, or causing a denial of service.
bc92b2d9a013285c1928bead886ff5ec03c3d95c922ae8fad6f32a84f344df43Ubuntu Security Notice 1177-1 - Andrew Griffiths discovered that QEMU did not correctly drop privileges when using the 'runas' argument. Under certain circumstances a local attacker could exploit this to escalate privileges.
2db2352dca97c03e93a4de8cf6727155b5bccf0dc86d6436fc53e270444efcddZero Day Initiative Advisory 11-241 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Webkit Library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the NamedNodeMap::setAttributes method defined within the NamedNodeMap.cpp file distributed with WebKit. The code responsible for copying attributes between DOM nodes does not verify that a mutation may have occurred when an attribute's attributeChanged method is called. By crafting a page that deletes instances of that attribute when the above mentioned method is called the code within setAttributes can be made to operate on freed objects. An attacker can take advantage of this by spraying the heap in a way that will not result in null pointers being referenced. This can lead to arbitrary code execution under the context of the user running the browser.
0748db6d4ee6bfe2651ddbd36ffb116881c9658edb8f896d05ac0dd5e8b67fdbZero Day Initiative Advisory 11-240 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the library's support of SVG markers. When updating a marker, the application will duplicate the reference of an object without updating its reference count. When freeing this object, a use-after-free vulnerability can be made to occur. This can be leveraged by a remote attacker to execute code under the context of the user running the application.
9955e1a0118de7587b35cc2341eb06299e4d3ea9f28954c95c79d4b5a540588dStunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code.
21a2bf0337773fa1b7824e556bc80a5730e673c537c9392fd477199d866c6b99This tool was originally written to demonstrate and exploit IE's vulnerability to a specific "basicConstraints" man-in-the-middle attack. While Microsoft has since fixed the vulnerability that allowed leaf certificates to act as signing certificates, this tool is still occasionally useful for other purposes. It is designed to MITM all SSL connections on a LAN and dynamically generates certs for the domains that are being accessed on the fly. The new certificates are constructed in a certificate chain that is signed by any certificate that you provide.
50b4283a3e80fa4b4f3f684c4e76348aba8e257cbaa85e4f4cb7a4062cf091d5Zero Day Initiative Advisory 11-239 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the library's implementation of a FrameOwner element. When building this tree, the application will create a duplicate reference of an element. By freeing the referenced element, a use-after-free condition can be made to occur which can lead to code execution under the context of the application.
9a566a7f048a2f671ae362db0c36d2bb1dc429098ed33eb23dac590c45aba40aRed Hat Security Advisory 2011-1100-01 - The IcedTea-Web project provides a Java web browser plug-in and an implementation of Java Web Start, which is based on the Netx project. It also contains a configuration tool for managing deployment settings for the plug-in and Web Start implementations. A flaw was discovered in the JNLP implementation in IcedTea-Web. An unsigned Java Web Start application could use this flaw to manipulate the content of a Security Warning dialog box, to trick a user into granting the application unintended access permissions to local files.
1aa0fc44e9203cd83f9e35c5f4c37ec5b68f33d5745644ea51197952cea44e7dMandriva Linux Security Advisory 2011-121 - All current released versions of Samba are vulnerable to a cross-site request forgery in the Samba Web Administration Tool (SWAT). By tricking a user who is authenticated with SWAT into clicking a manipulated URL on a different web page, it is possible to manipulate SWAT. All current released versions of Samba are vulnerable to a cross-site scripting issue in the Samba Web Administration Tool (SWAT). On the Change Password field, it is possible to insert arbitrary content into the user field.
b75ce3ace75fea8d22a279188ef3184449337cf90f4fe3d331c11300c3a6a118SWAT (Samba Web Administration Tool) in Samba versions 3.0.x through 3.5.9 suffers from a cross site request forgery vulnerability.
d475476bb91d90ae8126882c28a969539769386b49ecf8a69ad974db8e791de9Mandriva Linux Security Advisory 2011-120 - Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, allows remote attackers to execute arbitrary code or cause a denial of service via a crafted Type 1 font in a PDF document, as exploited in the wild in July 2011.
c6327c04cc1f8a878340ba858f3e80a09236c75996f3bfb90d9d1f2b2d6c3befRed Hat Security Advisory 2011-1090-01 - The rhev-hypervisor package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. A flaw was found that allowed napi_reuse_skb() to be called on VLAN packets. An attacker on the local network could trigger this flaw by sending specially-crafted packets to a target system, possibly causing a denial of service.
423b948c96708d1e061b86fbda73740a65a22df850c2554883aadb161b574ff5MinaliC Webserver version 2.0 suffers from a remote source disclosure vulnerability. This is the same issue that was previously discovered in version 1.0.
4cd2e2d5f428953b64047a57af7e3483a0f17db0463847ae0b5095258ad1f9aeSagem 3304 router PPPOE password retrieval shell script exploit that leverages quickconfname_ADSL.html being unprotected.
5f5818a853ad8493bddc99600f04261d0ba53e9df28b02a4a9f29df6634cbd9dChrome Web Solutions suffers from multiple remote SQL injection vulnerabilities.
ab546c65b6b94292215917956d607c8bc1fd250ded586cf97824fc168dd9f86d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed