The Netbeans Jira plugin does not validate HTTPS certificates and is quietly vulnerable to man in the middle attacks.
cd5af61dc35f9c61272fdda124df1363f87c045bfbaf07cd1914b53737b162dbUbuntu Security Notice 1350-1 - Jesse Ruderman and Bob Clary discovered memory safety issues affecting Thunderbird. If the user were tricked into opening a specially crafted page, an attacker could exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Thunderbird. It was discovered that Thunderbird did not properly handle node removal in the DOM. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Thunderbird. Various other issues were also addressed.
3a7babbefbe9cbb03790441cebecf40e07b5710bf32e3a7246c6fd5201f6997eUbuntu Security Notice 1353-1 - Jesse Ruderman and Bob Clary discovered memory safety issues affecting the Gecko Browser engine. If the user were tricked into opening a specially crafted page, an attacker could exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Xulrunner. It was discovered that the Gecko Browser engine did not properly handle node removal in the DOM. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Xulrunner. Various other issues were also addressed.
f7a6b949074bf0235212ff0d3703dbf9cbeb0609ef5ab85127770d38e309ed10Tibetsystem DVRs use the OwnServer 1.0 webserver that suffers from a directory traversal vulnerability.
0528fefede727d710f185434e149a12cf44e5683460a8921a5460b534383ec45AUTON Otomotiv Sanayi suffers from a remote SQL injection vulnerability.
ff948f06d03a26de0e55d3cda550d1e8fe9e34ef4b4980b1e0a48dcecaf101f4PicoWiki suffers from a cross site scripting vulnerability.
2db3290ae0be6fa125ed88ed8f0318a1dc8e786e0e2969c2f3a3f06b127a64c6SeedWiki suffers from a cross site scripting vulnerability.
1a12cad44e82e05238c838bcf67770785d828dbd08995a67cc6ea5e172658144Snipsnap suffers from a cross site scripting vulnerability.
e055f106fc6c8d84ad70256850481de43bd122076cdca720ae9d70aa37cf7b0bHP Security Bulletin HPSBUX02741 SSRT100728 - Potential security vulnerabilities have been identified with HP-UX Apache Running Tomcat Servlet Engine. These vulnerabilities could be exploited remotely to create a Denial of Service (DoS) or to perform an access restriction bypass. The Tomcat-based Servlet Engine is contained in the HP-UX Apache Web Server Suite. Revision 1 of this advisory.
4a4c267d9d541a369ea92c687c9df43f531dfb40dcc39d4aae8a349d0e276192Hire Ground Software suffers from a remote SQL injection vulnerability.
ab95d03af887b50d6fe32da8300465a5b7a9e6f776b042723d5f45bf3df7cfe8Cheshire Web Design suffers from a remote SQL injection vulnerability.
74bdc678424d574306afa0a0eaee00289cf568d7d89ffbd2dc058d2eb6ea5918Mozilla Firefox versions 10.0 and below local null byte bypass file check execution exploit.
a174b8edc7151cb08988e3beb64669d96fed35392c36ee8265516b5437c6cfeeSecunia Security Advisory - HP has acknowledged some vulnerabilities in HP-UX, which can be exploited by malicious people to cause a DoS (Denial of Service).
fad2f6d9c39b9595c63624228e73a18a09c364d69baf9d05296072123c769e71Secunia Security Advisory - Ubuntu has issued an update for linux-ti-omap4. This fixes some vulnerabilities, which can be exploited by malicious, local user to cause a DoS (Denial of Service) and potentially gain escalated privileges and by malicious people to cause a DoS and compromise a vulnerable system.
a79fa3dcab141841d3608992ac5d4ede1a43ee5db93f58adfee838e3a2481891Secunia Security Advisory - Multiple vulnerabilities have been reported in RealPlayer, which can be exploited by malicious people to compromise a user's system.
858dc1d43bb7e62d27ae566370f7d2619ba50bbfc7f18156d10166b339539e36Secunia Security Advisory - A vulnerability has been reported in Mathopd, which can be exploited by malicious people to disclose sensitive information.
a577f4d951978720ea017977b3a94008a0e708fba43112a58a6596924b3baa94Secunia Security Advisory - A vulnerability has been reported in OCaml, which can be exploited by malicious people to cause a DoS (Denial of Service).
e72fa6518578bdc435ab20d1c4fd5806e8bc2a704b1ec39f6375f5998435c4f9Secunia Security Advisory - Multiple vulnerabilities have been reported in Condor, which can be exploited by malicious users to potentially compromise a vulnerable system.
4a4092900a138501ff9c171dd43b4240b77c60118a327e27ebb8c74da67c962fSecunia Security Advisory - A vulnerability has been reported in Apache CXF, which can be exploited by malicious people to bypass certain security restrictions.
67552cd4a695267baab30d37567a3c1a3d37d186fa94356100a3aea923008621Secunia Security Advisory - Red Hat has issued an update for Red Hat Enterprise MRG. This fixes some vulnerabilities, which can be exploited by malicious users to potentially compromise a vulnerable system.
214117323d6c6628692769892e292375c71a8ded6df75e9fdd12a8e3c8cb15eaSecunia Security Advisory - Red Hat has issued an update for Red Hat Network Satellite Server. This fixes a weakness, which can be exploited by malicious users to disclose certain sensitive information.
2bb1a067ce60696f49fa7609319bbb4b3a7264a656adfd9805f0acb265c12c5fSecunia Security Advisory - Red Hat has issued an update for Red Hat Network Proxy. This fixes a weakness, which can be exploited by malicious users to disclose certain sensitive information.
dd5b7e628342e61116eb49a673e516763c751149baee3c3bd7b3e5340c857f9cSecunia Security Advisory - Gjoko Krstic has discovered two vulnerabilities in ManageEngine ADManager Plus, which can be exploited by malicious people to conduct cross-site scripting attacks.
5b093d431574ee301d9ca93ea8012a41453502077bde39e24da1c0e790a9bbbdSecunia Security Advisory - A vulnerability has been reported in IBM Cognos TM1, which can be exploited by malicious people to conduct cross-site scripting attacks.
c07852c89f0ca7dd00181d0e0f208f49a3a6bca6cbcb749e1162538e292c18c7Secunia Security Advisory - Stefan Schurtz has discovered a vulnerability in Simple Groupware, which can be exploited by malicious people to conduct cross-site scripting attacks.
7bf294b5012904c6c7185b2c0b0f59e696694dc62b649a29cfbdbc0f9fa52476
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed