Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
9e005601a55c4287f7e16925b899022a4ff78e69d9c0d582fc8dc6df25a5b98fSecunia Security Advisory - A vulnerability with an unknown impact has been reported in Skype.
2dbdd3d8579b7d8df339a4ae99f567c75428a74a9eec282fee6fcdbc76b3e0f7Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to potentially gain escalated privileges.
17bce9d3657591feee564d696169d55e3680efd24ad344dd166ed37feecd4dcaSecunia Security Advisory - A vulnerability has been reported in the Forward module for Drupal, which can be exploited by malicious people to bypass certain security restrictions.
137d8d2e35d1df11c35c0ddc7f883e7848b540c5c7435f10575ccd2e946ac65fSecunia Security Advisory - A vulnerability has been reported in PHP, which can be exploited by malicious people to compromise a vulnerable system.
e6872f98e769af039ce090750d94e8dd196302d34a92d1e58c858abb003602e0Secunia Security Advisory - Red Hat has issued an update for ghostscript. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
08703666deaef72bff312af7176839e8e7e9b62f315f6076108d855171064b5bSecunia Security Advisory - Red Hat has issued an update for ghostscript. This fixes a security issue and some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system.
d04712811bd06a07f7f0454b15b14cf8c455dd1a4c569f2bca5329f2352ac4bcSecunia Security Advisory - Red Hat has issued an update for php53. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
ef056c1e0f677c3f88797e329465358ec79fd62af46511d5339689f209291610Secunia Security Advisory - A weakness and two vulnerabilities have been reported in Joomla!, which can be exploited by malicious users and malicious people to disclose sensitive information.
d325627509f00fa9710912b0f3d686630dd4a1ba08eb6bb20b92aa681bc0d25fSecunia Security Advisory - Sony has discovered multiple vulnerabilities in Foswiki, which can be exploited by malicious users to conduct script insertion attacks.
0d9110fd69486bd4612d2eae4a48b3876fb0090f3919382f18726088fb3f1374Secunia Security Advisory - Red Hat has issued an update for php. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
e5fe5fbb34e3a01ab140fb177e01bb8a5f38945a0dee0f468f812ac81481ce5bSecunia Security Advisory - Debian has issued an update for php5. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
fdbf81b14d5744f9c10a49b0212186461ed88fb7a60af19623d5b8dea1b9d97fSecunia Security Advisory - A vulnerability has been discovered in the WP-RecentComments plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
e12675adc1f76ab82acaccd3c1df5d4e3437e520ce0f58b136b5a7aa86f5b5caSecunia Security Advisory - Debian has issued an update for iceweasel. This fixes a weakness and multiple vulnerabilities, which can be exploited by malicious people to disclose certain sensitive information and compromise a user's system.
0270ecdb7adaaff9ed2f79596a292e4b9d8597821ad583f7ffeba301ee6c7cccSecunia Security Advisory - Debian has issued an update for tomcat6. This fixes multiple weakness, two security issues, and multiple vulnerabilities, which can be exploited by malicious, local users and malicious people to disclose sensitive information, bypass certain security restrictions, or cause a DoS (Denial of Service).
1196cb14a095777fb697fa0c155eb60a0f708ac552d9063b588d65fd100d224cMandriva Linux Security Advisory 2012-013 - Security issues were identified and fixed in mozilla firefox and thunderbird. Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 might allow remote attackers to execute arbitrary code via vectors related to incorrect AttributeChildRemoved notifications that affect access to removed nsDOMAttribute child nodes. Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before 3.1.18 and 5.0 through 6.0, and SeaMonkey before 2.4 do not properly enforce the IPv6 literal address syntax, which allows remote attackers to obtain sensitive information by making XMLHttpRequest calls through a proxy and reading the error messages. Various other issues were also addressed.
5c13b7ef97165e75959f465d2ce9e3b748e6c52f37c5fb1421c22c9982237007Ubuntu Security Notice 1355-1 - It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed.
7c86a4200c1cdd5ec495e92bba3e2afcc5e13d73d936f2b664424e9313d4a442Ubuntu Security Notice 1355-2 - USN-1355-1 fixed vulnerabilities in Firefox. This update provides an updated Mozvoikko package for use with the latest Firefox. It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed.
62f3881e6cd502ee7165e7fac91f4e1740fb29a4f3934a23bb74f7d9d7782398Ubuntu Security Notice 1355-3 - USN-1355-1 fixed vulnerabilities in Firefox. This update provides updated ubufox and webfav packages for use with the latest Firefox. It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed.
2a1f3d1aba1379136bb62f0ebddb2710919d4326c73b90769f1c54518649f6b3Conduit Wibiya Login Toolbar suffers from a cross site scripting vulnerability.
2ff5ed3a17441ea69637f78bf1dea7747810174f283fc8dba6918dde7fe92501Conduit Wibiya Password Recovery Toolbar suffers from a cross site scripting vulnerability.
2cd0fd51b59c5e5b3d4e47bfa6cba3c3f7773f46344b205800e726db6175a6ffConduit Image Search Engine suffers from a cross site scripting vulnerability.
f52fbd36d3f1eec17af3fc52414ac907fd64fc4313d3337d13f93d1068f97e46EMC Documentum xPlore contains an information disclosure vulnerability that may allow unauthorized users, under certain circumstances, to see certain information on protected objects in an xPlore search result. They will not, however, be allowed to view the objects themselves, or any associated content. Versions 1.0, 1.1 and 1.2 are affected.
ed4a5781d5c8b83625996faf31b05bf645277e81d6e43c749fdcfe1caf76d22cSimkom suffers from a cross site scripting vulnerability.
767d1206fd8032add6737d8238fbad20ca7c4ee412e11bac9db9655d03c03644Douglass Media suffers from a remote SQL injection vulnerability.
05e03c06f796dac71d4ac13b7c9802c21d527911901e1f2ce843674eb378bafc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed