Mandriva Linux Security Advisory 2011-194 - A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application linked against ICU, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. The updated packages have been patched to correct this issue.
80870225471be4dbbc36d3279c7f2721a9e9b3ac1652fc70a93c9453a26b3f68
Mandriva Linux Security Advisory 2011-193 - The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause a denial of service via a DNS reply containing a CNAME record that references another CNAME record that contains an empty A record. The updated packages have been patched to correct this issue.
7cc994dd5dc1c1d61d6b7854d62ddbed4330325a505629aa1262a3dfcded25f0
VIOCAM Sites software suffers from a remote SQL injection vulnerability.
ced89b283ab801d9c746a2d48d4f54ec74029947e444fb85b609f1bb0a35d110
Majalty Group Sites software suffers from a remote SQL injection vulnerability.
85b90b19175266080f1b3d2aa525790ff029ff9b09a0cd6d4d38b5fad15c6860
Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules.
475989974d9d0915993570fdc2c42e63acf921adb27049c54b68cda03ec4f225
phpMyAdmin versions prior to 3.3.10.2 and 3.4.3.1 Session Serializer arbitrary PHP code execution exploit.
5e7ad567c633e8ad8056175f53ce0b27b0f71ab25dcad559a953f71c06756cc9
This is a detailed paper on how to install I2P on BT5 and configure it with some of the features.
b32481af975b18b13b23a5d89d868b4f60f315f108708819668c45a2d01b4ee1
Telnetd encrypt_keyid: remote foot function pointer overwrite exploit.
a79590f2aac0ce54aceedc5f329505dde52742a4c94513c31be23b59f1cc011b
OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
0814389008bc36b05491fff85942c7c42d6ce47cf72f9593b0981d82ff560158
Debian Linux Security Advisory 2375-1 - It was discovered that the encryption support for BSD telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet port to execute arbitrary code with root privileges.
fd73e5b12a6d4591dd69cdba1166f1b643a3602a7b0d79942b9bf522a6bf82a2
Debian Linux Security Advisory 2374-1 - The information security group at ETH Zurich discovered a denial of service vulnerability in the crypto helper handler of the IKE daemon pluto.
2e3b194b94bdc4f7f0091e298a2cc51c679c239928c746db286a6f2f132d600b
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
fe265965eb1ce8fac352e0bddea1d5ec6508c319bf88a5f63c2edecf2af6de54
Debian Linux Security Advisory 2373-1 - It was discovered that the Kerberos support for telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet to execute arbitrary code with root privileges.
717b70e7a6ef1a328de1d72ba01af5596d2d4e3fae9640dc08a8d53c699a0229
Debian Linux Security Advisory 2372-1 - It was discovered that the Kerberos support for telnetd contains a pre-authentication buffer overflow, which may enable remote attackers who can connect to the Telnet to execute arbitrary code with root privileges.
f0f6583e9e986815a366da7745916c14e72d8839169dad71c5322effd109c4f6
E Kai Builder suffers from a remote SQL injection vulnerability.
293e241e4d540111decf04df7781183c6b279030dd35f993dcfa5860b2c4e0c4
Nagios Plugin check_ups local buffer overflow proof of concept exploit.
480e395245d4f2a787ed42a9a1c6f63c6b984d7222841a698055b21a9e6522f2
Free Image Hosting suffers from a shell upload vulnerability.
c0449e71cd5d9af01a83b31144a5dd2d0cc975fb16272cae7ebcb8bd28898af5
OpenEMR 4 suffers from cross site scripting and remote SQL injection vulnerabilities.
c5472d4657683443d0f1450f9011027988e59ef78f177e8fcb2f435fbdcb01c4
This is a brief whitepaper discussing how to exploit a webDAV enabled server.
a83e8be5f3033d52a2124e642c22eef3daba9c97b7e1e1ccfcd667ad9b5499e4
MyBB version 1.6.5 suffers from a cross site scripting vulnerability.
afe4036091106e101329b12a40fc799514261911b1ababc195437fb016cb7a66
Lighttpd versions before 1.4.30 and 1.5 before SVN revision 2806 out-of-bounds read segmentation fault denial of service exploit.
a78ebddef1ff446f752bc857193d5fc6a7bb8cdaa8a66f37a2fd64a80504bfe7
Secunia Security Advisory - FreeBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
805e11221d0425e28be43e4da38ed6862f251741395d35404b4fe80c6d3f5cfe
Secunia Security Advisory - A vulnerability has been reported in PukiWiki Plus!, which can be exploited by malicious people to conduct cross-site scripting attacks.
d3251d2dd93f7148e18669fa0f35664c23a19f47f3f77f5da4bda745d0c660c5
Secunia Security Advisory - Debian has issued an update for jasper. This fixes two vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
28ab8d93f1409d5501182c1b1c75462ab8083ce3a06d311891b66b2b1206675d
Secunia Security Advisory - A security issue has been reported in FreeBSD, which can be exploited by malicious people to bypass certain security restrictions.
d313127919790fc7977dce2c5ce4956a77420edf77a85d79f53d9715cf77ba8b