Mandriva Linux Security Advisory 2011-194 - A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application linked against ICU, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. The updated packages have been patched to correct this issue.
80870225471be4dbbc36d3279c7f2721a9e9b3ac1652fc70a93c9453a26b3f68Mandriva Linux Security Advisory 2011-193 - The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause a denial of service via a DNS reply containing a CNAME record that references another CNAME record that contains an empty A record. The updated packages have been patched to correct this issue.
7cc994dd5dc1c1d61d6b7854d62ddbed4330325a505629aa1262a3dfcded25f0VIOCAM Sites software suffers from a remote SQL injection vulnerability.
ced89b283ab801d9c746a2d48d4f54ec74029947e444fb85b609f1bb0a35d110Majalty Group Sites software suffers from a remote SQL injection vulnerability.
85b90b19175266080f1b3d2aa525790ff029ff9b09a0cd6d4d38b5fad15c6860Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules.
475989974d9d0915993570fdc2c42e63acf921adb27049c54b68cda03ec4f225phpMyAdmin versions prior to 3.3.10.2 and 3.4.3.1 Session Serializer arbitrary PHP code execution exploit.
5e7ad567c633e8ad8056175f53ce0b27b0f71ab25dcad559a953f71c06756cc9This is a detailed paper on how to install I2P on BT5 and configure it with some of the features.
b32481af975b18b13b23a5d89d868b4f60f315f108708819668c45a2d01b4ee1Telnetd encrypt_keyid: remote foot function pointer overwrite exploit.
a79590f2aac0ce54aceedc5f329505dde52742a4c94513c31be23b59f1cc011bOpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
0814389008bc36b05491fff85942c7c42d6ce47cf72f9593b0981d82ff560158Debian Linux Security Advisory 2375-1 - It was discovered that the encryption support for BSD telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet port to execute arbitrary code with root privileges.
fd73e5b12a6d4591dd69cdba1166f1b643a3602a7b0d79942b9bf522a6bf82a2Debian Linux Security Advisory 2374-1 - The information security group at ETH Zurich discovered a denial of service vulnerability in the crypto helper handler of the IKE daemon pluto.
2e3b194b94bdc4f7f0091e298a2cc51c679c239928c746db286a6f2f132d600bLynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
fe265965eb1ce8fac352e0bddea1d5ec6508c319bf88a5f63c2edecf2af6de54Debian Linux Security Advisory 2373-1 - It was discovered that the Kerberos support for telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet to execute arbitrary code with root privileges.
717b70e7a6ef1a328de1d72ba01af5596d2d4e3fae9640dc08a8d53c699a0229Debian Linux Security Advisory 2372-1 - It was discovered that the Kerberos support for telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet to execute arbitrary code with root privileges.
f0f6583e9e986815a366da7745916c14e72d8839169dad71c5322effd109c4f6E Kai Builder suffers from a remote SQL injection vulnerability.
293e241e4d540111decf04df7781183c6b279030dd35f993dcfa5860b2c4e0c4Nagios Plugin check_ups local buffer overflow proof of concept exploit.
480e395245d4f2a787ed42a9a1c6f63c6b984d7222841a698055b21a9e6522f2Free Image Hosting suffers from a shell upload vulnerability.
c0449e71cd5d9af01a83b31144a5dd2d0cc975fb16272cae7ebcb8bd28898af5OpenEMR 4 suffers from cross site scripting and remote SQL injection vulnerabilities.
c5472d4657683443d0f1450f9011027988e59ef78f177e8fcb2f435fbdcb01c4This is a brief whitepaper discussing how to exploit a webDAV enabled server.
a83e8be5f3033d52a2124e642c22eef3daba9c97b7e1e1ccfcd667ad9b5499e4MyBB version 1.6.5 suffers from a cross site scripting vulnerability.
afe4036091106e101329b12a40fc799514261911b1ababc195437fb016cb7a66Lighttpd versions before 1.4.30 and 1.5 before SVN revision 2806 out-of-bounds read segmentation fault denial of service exploit.
a78ebddef1ff446f752bc857193d5fc6a7bb8cdaa8a66f37a2fd64a80504bfe7Secunia Security Advisory - FreeBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
805e11221d0425e28be43e4da38ed6862f251741395d35404b4fe80c6d3f5cfeSecunia Security Advisory - A vulnerability has been reported in PukiWiki Plus!, which can be exploited by malicious people to conduct cross-site scripting attacks.
d3251d2dd93f7148e18669fa0f35664c23a19f47f3f77f5da4bda745d0c660c5Secunia Security Advisory - Debian has issued an update for jasper. This fixes two vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
28ab8d93f1409d5501182c1b1c75462ab8083ce3a06d311891b66b2b1206675dSecunia Security Advisory - A security issue has been reported in FreeBSD, which can be exploited by malicious people to bypass certain security restrictions.
d313127919790fc7977dce2c5ce4956a77420edf77a85d79f53d9715cf77ba8b
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed