HP Security Bulletin HPSBUX02755 SSRT100667 - A potential security vulnerability has been identified with certain HP-UX WBEM components. The vulnerability could be exploited remotely in HP-UX 11.11 and HP-UX 11.23 to gain unauthorized access to diagnostic data. The vulnerability could be exploited locally in HP-UX 11.31 to gain unauthorized access to diagnostic data. Revision 1 of this advisory.
9fd07bfa8869f71cca9fb93250c1b9fbc51d1386af49bf4fc333d3853b6b9890Secunia Security Advisory - Two vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
7ed32517a0705a72c3c5d840a416f48a6fc2d6f6f23a9d398de5495bea4a557dFirewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
452514a1ec0be1416bfca93603e6c89deb91d1a3a19671c64b5a8868a3743dafThe Drupal Node Limit Number module version 6.x suffers from a cross site request forgery vulnerability.
6805b4ae6f65fa98f5f3777e6d21416e40462b6e4a34e82bda701ca122f54e18Barracuda Cloud CC version 3.04.015 suffers from multiple cross site scripting vulnerabilities.
3d894641f952933d046f223fd8fb4aebe6253ddb0a607b16a3f9ef069b6def0fQuest InTrust version 10.4.x with Annotation Objects active-x control ANNOTATEX.DLL suffers from a remote code execution vulnerability. Proof of concept code included.
f434df904932a8864ea9998ff353e34532f5d8a789fcad5b7ac3fbfc4f65fc1bThe TRENDnet SecurView TV-IP121WN wireless internet camera UltraMJCam active-x control suffers from an OpenFileDlg() WideCharToMultiByte remote buffer overflow. Proof of concept code included.
a1448bcd0d8740d3db37283f486bc15f2158a7b7818ccafbfc0569b5d3cb8984Cisco Security Advisory - The Cisco IOS Software Internet Key Exchange (IKE) feature contains a denial of service (DoS) vulnerability. Cisco has released free software updates that address this vulnerability.
fa3fff97691020951e5f7756ce74f71c8b311fbe51096d2d5765371fb8a6d8edCisco Security Advisory - Cisco IOS Software contains a vulnerability in the Smart Install feature that could allow an unauthenticated, remote attacker to cause a reload of an affected device if the Smart Install feature is enabled. The vulnerability is triggered when an affected device processes a malformed Smart Install message on TCP port 4786. Cisco has released free software updates that address this vulnerability. There are no workarounds to mitigate this vulnerability.
c06f577fae4b43b9285492688c906f793f98c7b4ebd7e6f6ae73078b576a2bbeHP Security Bulletin HPSBMU02744 SSRT100776 2 - A potential security vulnerability has been identified with HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows. The vulnerability could be remotely exploited resulting in unauthorized disclosure of information. Revision 2 of this advisory.
d546841af595f20c64584d8a77b3c385731c03fb00e0ef67145a3a2be3c752e7The Drupal Activity module version 6.x suffers from cross site request forgery and cross site scripting vulnerabilities.
f1ab2c8be7c64f4cde5f3e2584e0aee9dc6e731a37c01a7814e015f86d05663eThe Drupal CDN2 Video version 6.x suffers from cross site request forgery and cross site scripting vulnerabilities.
b14e348d6a46c47dca28df0e56d0c958c435da23181eee43b81ba8f5638a1b53Secunia Security Advisory - Gentoo has issued an update for libzip. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
d2a6d5d0f677edd47dc62eb923271600914c224ed789c931490f1845bbb67015Secunia Security Advisory - A vulnerability has been reported in the Chaos tool suite module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
49e701723581bf59d80e6e2bc2301b8889e2441bdfaea8466813adf1eee68f9cSecunia Security Advisory - A vulnerability has been reported in the Realty Manager extension for TYPO3, which can be exploited by malicious people to disclose potentially sensitive information.
f861842c483d27fc0cdfd12208e2fb97278459ce85eef355a06b557dbe3694d9Secunia Security Advisory - Yann Michard has reported a vulnerability in eZ Publish, which can be exploited by malicious people to conduct cross-site scripting attacks.
2b292ccbefc48c18f483ba689993fa0a599323907b2ebb172be19478ea55367dSecunia Security Advisory - A vulnerability has been reported in Cisco IOS, which can be exploited by malicious users to bypass certain security restrictions.
0622865b4ed64a464c337230697f3eebd4845fcfeefabe6f5173cb0f91fcf7e2Secunia Security Advisory - Some vulnerabilities have been reported in TYPO3, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to disclose certain sensitive information.
e6402e216bb50c128f0afeeeb9732217d82ce15b344eef665b6045f9adafc174Secunia Security Advisory - Multiple vulnerabilities have been reported in IrfanView, which can be exploited by malicious people to compromise a user's system.
7882522a6b7e678051422106268225b9b71cb26c89f9aef09f874e4d1f268cabSecunia Security Advisory - Debian has issued an update for tryton-server. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
a092fdc6eb7faff345afb9977caab6d88fd705b28d12f523fd75a0238ebef455Secunia Security Advisory - Two vulnerabilities have been reported in the Activity module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
ba05514b3984fea3fda5c625217b2d623d291463ec8921d39cd2fbcf815ad97bSecunia Security Advisory - SensePost has reported a security issue and a vulnerability in Cyberoam UTM, which can be exploited by malicious users to disclose sensitive information and compromise a vulnerable system.
fcad67d91d06574bd8a9fd7350fda15bbefb52b97d2316c1cbc4b22cb8de0913Skype versions 5.8x and 5.5x suffer from a pointer corruption vulnerability.
e5384fb5b0c5817b014acd806ac061e94435784e3600d78f67023ccf553f165dThe Drupal ShareThis module version 7.x suffers from cross site scripting and cross site request forgery vulnerabilities.
6f1fc921aa8dbaf987fc49f4d907a7c41b0bea13d50a8253caba9f9ef13db7c8netsniff-ng is is a free, performant Linux network sniffer for packet inspection. The gain of performance is reached by 'zero-copy' mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace. For this purpose netsniff-ng is libpcap independent, but nevertheless supports the pcap file format for capturing, replaying and performing offline-analysis of pcap dumps. netsniff-ng can be used for protocol analysis, reverse engineering and network debugging.
64b06725a19d2103aeefa1b60d166657ed3008f8a94691a6ec883708348de227
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed