GrrCON is an information security and hacking conference held annually in the Midwest. This conference was put together to provide the information security community with a venue to come together and share ideas, information, solutions, forge relationships, and most importantly engage with like minded people in a fun atmosphere. It will take place September 27th through the 28th, 2012 in Grand Rapids, MI, USA.
c10fc8f54afc04f8551c1bdf5575e9141c59fce332c5fa9a6dd487d0543e2719The ZyXel GS1510 web frontend suffers from cross site scripting and password submission over HTTP vulnerabilities.
7bf039aa909839bc91b9955ca5263119afc35507902d82b8af6626a2ab2bd5f9This bulletin summary lists a re-released MS10-058 Microsoft security bulletin for March, 2012.
039fc14e323510b6c9a961f11bb2cc328ff04d4f7bf8462ae57de8142ad065e4EMC Documentum eRoom versions prior to 7.4.4 suffer from multiple cross site scripting vulnerabilities.
6de937902c35d494f2c737d15c5405e6e0f7cdecd24f8733f79ee51fa271ba9cThe Hackademic Call For Papers has been announced. Hackademic is a three day security conference that aims to bring together the hacking community and members from the academic community in order to learn from each others successes and failures. Hosted by the IEEE Reliability Society, this innagural event will be held in the Clayton Hall conference facility at the University of Delaware in Newark DE. Everything about the conference, from the venue to the speakers to the schedule, is structured to facilitate collaboration and information sharing between attendees.
5a88ec9adde7999975d27221f31798ffdcfa01d28f4b5c830356377cb44f8332PBLang version 4.67.16.a suffers from a local file inclusion vulnerability.
55dc191c4b41ee9d5c176b09d071d85df2acdfd2d242b0744bc3e4131b18acf6Yealink VOIP Phone suffers from a persistent cross site scripting vulnerability.
594dab55fa06525eeb25a234672469d458221c09b400c782310c5903d307c318This bulletin summary lists 6 Microsoft security bulletins released for March, 2012.
2fc87b0379f848fe784413433c5a93cd6ee778f6af0b5fcfea8a3766d7892a52PrivaWall Antivirus suffers from an Office XML format evasion / bypass vulnerability. Versions 5.6 and below are affected.
57c9ab5ac6dd39653d293a5937b5378a8b03f2696525cb2d336fa349b059e84bNetwork Instrument Observer suffers from an SNMP SetRequest denial of service vulnerability.
948eca9f21b284f006806098d957897aad100eefb7bef7b5ac8bf7042c20d318XnView FlashPix suffers from an image processing heap overflow vulnerability. Proof of concept file included.
97c5fd589baeaf814316e7cce4504bc6ee68880801787c1bf145adc3a4300494VLC Media Player versions 1.1.11 and below denial of service exploit that makes a malicious .flv file.
0eca42f600feb65e6a323e108ff5b1100d57ba6652c470f72002fe4d1c68fa73Max's Photo Gallery version 1.0 suffers from a local file inclusion vulnerability.
c29e086711461caf700a0cb9b6614a3127c0a18809e32ce91ef6f67523f514c0ClubHACK Magazine Issue 26 - Topics covered include Network Security, Who wants to be a Millionaire, Section 66A - Sending offensive or false messages, and more.
7ceafe2b3bd11254736e2c21df31c977f90ad111dcd99960dfd45c1036e487804Images version 1.7.7 suffers from a cross site request forgery vulnerability.
65d7f74b87cb61f7ac3275ba66b3af53fd623ca283345f4fe62030f2b0ce3924BBShop suffers from a remote SQL injection vulnerability.
387557c45e37ab0a0224639f21c146e9d126b1864680837ea872886de01d48e5Cycade Gallery suffers from a remote SQL injection vulnerability.
8fbe9b17f90ea0ab55aa7d02a9d566c64be91d882f70efdaf802314a3d02de6ae-Rapido version 3.3.2 suffers from a cross site scripting vulnerability.
547a7d9b3392533531e7498a23d65aa3e1503d23b13f582084e9f8cb110337f3An integer overflow was found in the iputils/ping_common.c main_loop() function. This issue can lead to a denial of service condition.
bcacc8a29465d117a35c8296adb71bf234370fa89930a6345a30c4ab42c642d9Simple Posting System version 1.0 Final suffers from a local file inclusion vulnerability.
d73abe8631ff8d9a2ed2661dce68ae64f4fa4453d6808dd87777087f0e7b3e0bMax's Guestbook version 1.0 suffers from path disclosure and local file inclusion vulnerabilities.
b9b523de9c2261e48feaa347895bf53bf393e2e05b6eb7a951fd4ee84dd02834Modx version 2.2.0 suffers from local file inclusion and path disclosure vulnerabilities.
f3bea47c3f6391d62661a0662104383661b59816b1cca6df581ba2aeb6ff8d3aSecunia Security Advisory - Ubuntu has issued an update for mysql. This fixes multiple security issues and vulnerabilities, where one has unknown impacts while others can be exploited by malicious, local users to gain knowledge of sensitive information, bypass certain security restrictions, manipulate certain data, and cause a DoS (Denial of Service), by malicious users to gain knowledge of sensitive information, bypass certain security restrictions, manipulate certain data, gain escalated privileges, cause a DoS (Denial of Service), and potentially compromise a vulnerable system, and by malicious people to conduct cross-site scripting attacks, script insertion attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.
a1558313b0404f4de626d14560de751b4af55264b6966370de010d41bf9bc4d6Secunia Security Advisory - Multiple vulnerabilities have been reported in HP Data Protector Express, which can be exploited by malicious people to compromise a vulnerable system.
2138afb80d6e6700ae8f69ad93a2bc2907fabae1a27d8dc0791fc1d528742f65Secunia Security Advisory - Two vulnerabilities have been discovered in osFileManager, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
5a6a0dc821289cbf512fdc366ce2e97e6a6480a36ce4a4c8f33e33c497de89a8
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed