There is a race condition with the postinstall script for SUNWbindr that if update manager is being used or smpatch while the system is in multi user mode could lead to arbitrary code execution as root.
55f4f7844ec8ab139f894424203bf63b094b9b91024568ca0627ba66f4950a41CodeIgniter version 2.1.1 suffers from a cross site scripting filter bypass vulnerability.
3ef2a27952806217b13309e73061a93a5159c4ffa2318c44e42a0fe6cd29d93dPHP version 6.0 openssl_verify() local buffer overflow proof of concept exploit.
ca7179cfea7e511031571eaf312bb0ce52f952b755fb3d52e7056cff68d72e8aThe PHP-Nuke SPChat module suffers from a remote SQL injection vulnerability.
14d0b239510c309eddbbd0586fe94652664ad4c1fb08378c6106930c7362e0f2NetArt Media Pharmacy System version 2.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
571ede9e0f61702e459089e92ef605c1088c80b80d2c48abf07296d09534e227NetArt Media iBoutique version 4.0 suffers from a remote SQL injection vulnerability.
63f73c7bb565caa378994bb034b6965af92076cb74824b72cfb4912c073f4eb0Oracle Outside-In FPX file parsing suffers from a heap overflow vulnerability. Proof of concept included.
3ffbb6827d9d2382b9a76b9305e37a7d6d37e039b353eabc680e393957f21adaOracle Outside-In LWP file parsing suffers from a stack based buffer overflow vulnerability. Proof of concept included.
953c76d252ea3d1ef9599ded5a1b13cc01db9cce40b4df74f6ac34219722ac04Oracle Outside-IN JP2 file parsing suffers from a heap overflow vulnerability. Proof of concept included.
7c878849d29af52f8ddf17660a63425f5e710c5f84ddfa7cbd6a34ab807ed406Oxide Webserver versions 2.0.4 and below suffer from a remote denial of service vulnerability.
78053e16329204d000b42f631dfb570dbbbb076108666340fe38090874ae6db5The Sun Update Manager suffers from a /tmp clobbering vulnerability.
9ed3d1ea271454d9da6b06fca58387916ec1c5bb71e3b0bd7e332c3cde7b3960Secunia Security Advisory - Oracle has acknowledged multiple vulnerabilities in Oracle JRockit, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service) and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
3ac64dc99ecc224bc6a5a5376e700e70ddec7dad828b895bb660cdd7722e4a7eSecunia Security Advisory - A vulnerability has been reported in Oracle Portal, which can be exploited by malicious people to manipulate certain data.
928114f8b9053db227ebed1159952f58fc357f0c51062df46a310ad4d6b94af2Secunia Security Advisory - A vulnerability has been discovered in the Nmedia Users File Uploader plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
352ac9d5874cd7d9e487f3510547e2fcc0adba46ecca6b6506c21d8313bfb850Secunia Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to compromise an application using the library.
b6adb0f5c2cd0d2db0691a702e6f17a9378fc2a914f74b3fe385735a483cb411Secunia Security Advisory - Slackware has issued an update for libexif. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose certain sensitive information, cause a DoS (Denial of Service), and compromise an application using the library.
010f0bcd1bc3d37e610fd2d9c8d6914706b44accfad2216270a36bb95c327b7bSecunia Security Advisory - SUSE has issued an update for xen. This fixes two vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges.
97230ef74215a99d33f9bbf39b4f422a78a641a4380a2bdd7f0cfc85753de0a0Secunia Security Advisory - A vulnerability has been reported in the Campaign Monitor module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
4cc6d2225fa3b10d157826f31126c15c92831ba5c55771ed210fbcebd5efd142Secunia Security Advisory - A vulnerability has been reported in NSD, which can be exploited by malicious people to cause a DoS (Denial of Service).
3c9b16ec607990ea3b8b12c396d604b28ee681120b68c13fe1f9c2947dc9e1dbSecunia Security Advisory - A vulnerability has been reported in OSIsoft PI OPC DA Interface, which can be exploited by malicious users to compromise a vulnerable system.
cbef78bc998fe79978e70e7acc0a77c7e9bb62cee0569fd9e969c213578d28b3Secunia Security Advisory - Ubuntu has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
e0c9879c29af01ba483bb6625d3602f9e02ee429f8ff10830f64ab9de520931fSecunia Security Advisory - Some vulnerabilities have been reported in Red Hat Certificate System, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks.
5fb7fb8c4d2b8a163707cf7068fe089f56e9d9415eb8da3688b3c0a565d2cb8cSecunia Security Advisory - Debian has issued an update for nsd3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
6c1b167c164ceaa3673c0537322d064d806c2ff08fd1ba726fb3d1a558eb9c67Secunia Security Advisory - A vulnerability has been reported in PHP, which can be exploited by malicious people to bypass certain security restrictions.
f5be010d3f4e7e56e30f632233587e2bb79dfb768613fb9db2602174914c34c2Secunia Security Advisory - Sebas Sujeen has reported a vulnerability in Squashfs, which can be exploited by malicious people to compromise a user's system.
55d348b22da5e5c6721cba66f4b5533fd01d39bb87dd2b976a9a94ff331e234c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed