WordPress Mingle Forum plugin versions 1.0.31 and below suffer from a remote SQL injection vulnerability.
c654afe3a55693ffb3374390dd876112a0eb7f3eeba8ef92d756f940cf428205Cisco Security Advisory - The Cisco IOS Software network address translation (NAT) feature contains multiple denial of service (DoS) vulnerabilities in the translation of multiple protocols. Cisco has released free software updates that address these vulnerabilities.
e071e8cf0c9a04c74dd457a5df6b6f75145eca329e618d38d8ba34088be76e8fVUPEN Vulnerability Research Team discovered a critical vulnerability in Novell GroupWise. The vulnerability is caused by a buffer overflow error in the "NgwIRecurByWeekdayParam::bywdaylist()" function within the "gwwww1.dll" component when processing a malformed "RRULE" property in a Calendar, which could be exploited by remote unauthenticated attackers to compromise a vulnerable server via a specially crafted email message. Versions 8.0.2 SP2 Hot Patch 2 and below are affected.
e9739b7f115e53c739cde3bd056999eafde0be533a0e278ee536f5712c2718beVUPEN Vulnerability Research Team discovered a critical vulnerability in Novell GroupWise. The vulnerability is caused by a buffer overflow error in the "NgwiCalVTimeZoneBody::ParseSelf()" function within the "GWWWW1.dll" component when processing an overly long "TZNAME" variable in a Calendar, which could be exploited by remote unauthenticated attackers to compromise a vulnerable server via a specially crafted email message. Versions 8.0.2 SP2 Hot Patch 2 and below are affected.
0fb64ec06cda7f994892c85c8e9e82d31139cb63a4a29b85ddd54be492cda0faBarracuda Backup version 2.0 suffers from multiple input validation vulnerabilities.
74815e080856c41458ab38c7a9600a48cfcdc604c9933d1e018cd3bd6d38d315Cisco Security Advisory - Cisco IOS Software is affected by two vulnerabilities that cause a Cisco IOS device to reload when processing IP version 6 (IPv6) packets over a Multiprotocol Label Switching (MPLS) domain. Workarounds that mitigate these vulnerabilities are available.
4d36bd86f4893e9328e2c85fa20a7e72f6dc6a41ea349b91dabc9c706e9251c7Cisco Security Advisory - Cisco IOS Software contains a vulnerability in the IP version 6 (IPv6) protocol stack implementation that could allow an unauthenticated, remote attacker to cause a reload of an affected device that has IPv6 enabled. The vulnerability may be triggered when the device processes a malformed IPv6 packet. Cisco has released free software updates that address this vulnerability. There are no workarounds to mitigate this vulnerability.
74550bef25d75f770748bb38ce41e79ab4a3cb766433088ce705b8134651d431Cisco Security Advisory - Cisco IOS Software contains a memory leak vulnerability in the Data-Link Switching (DLSw) feature that could result in a device reload when processing crafted IP Protocol 91 packets. Cisco has released free software updates that address this vulnerability.
59dbf91a55e22df3cd1144dfc2469be522334d8fd87eeebb1da1c6ef61183583Cisco Security Advisory - The Cisco 10000 Series Router is affected by a denial of service (DoS) vulnerability that can allow an attacker to cause a device reload by sending a series of ICMP packets. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are also available.
858057723ce7ca1ca4dd27076208f63f0734717b9b27b1d36e76c74eb04c6a76Proof of concept Mac OS X versions prior to 10.6.7 kernel panic exploit.
e05c41cc28b6403f832aa4420992cc0d5315f190a28b8c752465f30ab53163bbTimeLive Time and Expense Tracking version 4.1.1 suffers from directory traversal, database download, and source code disclosure vulnerabilities.
3a0b7e0af95597a6a0c5438152dc88bbecb49e50a7142bdf2bac6a51182c7018Norman Security Suite version 8 nprosec.sys local privilege escalation exploit.
8df0aafe1184c7cf43771d10c41a84e3e72021a993eb8896efc956fdbba50721European Security Services GPS version 1.x suffers from authentication bypass, input validation, and remote SQL injection vulnerabilities.
56f63da45d4480d8d879e32138f87536d879bd29d41aa7c40afb745b850b9244openEngine version 2.0 is vulnerable to a remote blind SQL injection vulnerability.
9986543107be9e358af92e25e9266f589f485c6d46751ab8e7140f02d85ff8ffThe Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Mac OS X, Windows and Linux releases are all included in this file.
318b8a7ac7957abf70378a1b16c1e6d177b97355de8922a2a727da46027d793aHP Security Bulletin HPSBUX02702 SSRT100606 4 - Potential security vulnerabilities have been identified with HP-UX Apache Web Server. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS). Revision 4 of this advisory.
f84390edda2d8182da2df382e01d723deffb2e8beb3db4539121121bcbc2bcf0Debian Linux Security Advisory 2311-1 - Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java SE platform.
bf0335319498382c5ef979918243d2656fd101679f7698e3f2dd3467affb3a9fiDefense Security Advisory 09.26.11 - Remote exploitation of a heap overflow vulnerability in Novell Inc.'s GroupWise could allow an attacker to execute arbitrary code with the privileges of the affected service. This vulnerability is present in the calendar processing code, which resides within the GroupWise Internet Agent (GWIA) process. The vulnerability occurs when parsing a malformed time zone description field (TZNAME). A heap based buffer overflow can be triggered by supplying an excessively long string when copying the time zone name. Novell GroupWise 8.0x up to (and including) 8.02HP2 are vulnerable.
e41ab71e11203562d3548c254ffc04693eed7151c500e97d4f2b72313daa62d2Digital College version 1.1 suffers from a remote file inclusion vulnerability.
11e45d99aae2ccf0c8eb855a06042ef38cb01d51bab4461466fdb1895eb22b26MyNews version 1.2 suffers from a remote file inclusion vulnerability.
98473dea15460cad189a1cb641d82abda2afcb65692491f9e52168e5282a1d7bSecunia Security Advisory - A vulnerability has been reported in the jQuery Colorbox extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
73dd7f7c4d46d21bf8f54aaebf21a338f964c91a82fdb3704336ca5b36a4342cSecunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
f13f2b71c3fb25ecead5c46274485b0b4d30fdd12b412a2d43a99b645f47e84eSecunia Security Advisory - Multiple weaknesses and vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
933e744195dab522a0edb13c4b03aace0f333b09b9182502c664c4d33f2f4555Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
19d931cc43e84972168072890e46b1632ee941781b9adc3006e7ff504a37b75bAffinity New Media suffers from multiple remote SQL injection vulnerabilities.
d64260166d3ee47f93918c6b3a549696fc4d1cc0b44f1806fec6f062a521d859
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed