Secunia Security Advisory - A security issue and a vulnerability have been reported in IBM Scale Out Network Attached Storage, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system.
612ae804f58501d41c14fe6eae7544dc15aba0521ddaf657ff4f2aa08f3279a4Secunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
93f985ca145939716df202f79a58bb5ebc662295122d2159d1ad610a1d2fc0e9Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
00ab85bf37b7204bd7e370f3dc8242daee4b81fde5c36bee33fb8ab631bb497bSecunia Security Advisory - A vulnerability has been reported in IBM AIX and IBM Virtual I/O Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
05db2f194fac4186b61b0697f82fa748125ca84a804683f97d042e75ea82a31aSecunia Security Advisory - Justin C. Klein Keane has discovered two vulnerabilities in Transmission, which can be exploited by malicious people to conduct script insertion attacks.
4b6d6aee454fd0db779a266bd84d34add725b93908d2d349708b61274a626fafSecunia Security Advisory - IBM has acknowledged a vulnerability in IBM WebSphere DataPower SOA Appliances, which can be exploited by malicious people to potentially compromise a vulnerable system.
17cbef896fca04580b6f564fd63c9176795cf37920d71602358744012253b898Secunia Security Advisory - Ubuntu has issued an update for isc-dhcp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
99ea89a3b66646066036db57d55bd3f73a6dd48b7d89561501166b54e3f98b2dSecunia Security Advisory - Debian has issued an update for isc-dhcp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
7c537b9263b2ef07c9244bbc6dcabc6539b2e8f5efd3f10a7f26ab17d564636aSecunia Security Advisory - A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to cause a DoS (Denial of Service).
7b66b4443e66c3a81fa3859f0d0b198b56152a05192d8a0b392421aecb13b00eSecunia Security Advisory - A vulnerability has been reported in Ganglia, which can be exploited by malicious people to compromise a vulnerable system.
8f1c5dcd0c3c88331e5c0f337c0ba0000d6281d7bef24b4569d159be9cbb66bbSecunia Security Advisory - SUSE has issued an update for MozillaThunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, disclose certain sensitive information, bypass certain security restrictions, and compromise a user's system.
87561362d0ba22674b96b0bf47bad970349edf63dc04dcc4c128235089f44a6bSecunia Security Advisory - Two security issues have been reported in Bugzilla, which can be exploited by malicious people to disclose potentially sensitive information.
d96cbc0a4f6aea200f65e32c16b2aebdc5ca8e04a32a6dc584f082e4633e88d2Secunia Security Advisory - Two vulnerabilities have been reported in Caucho Resin, where one has an unknown impact and the other can be exploited by malicious people to disclose potentially sensitive information.
a1e4a045832ec9edebf3b9f9669bcebfc6701a9648d071839fee2e3f242b8173eNdonesia katalog module version 8.5 suffers from a cross site scripting vulnerability.
aa87de6d3861fc8e0e457c276446c4b1de520503f1eaac7f766e6852cb512158This Metasploit module exploits a stack buffer overflow in the create folder function in Sysax Multi Server 5.64. This issue was fixed in 5.66. You must have valid credentials to trigger the vulnerability. Your credentials must also have the create folder permission and the HTTP option has to be enabled. This Metasploit module will log into the server, get your a SID token and then proceed to exploit the server. Successful exploits result in LOCALSYSTEM access. This exploit works on XP SP3, and Server 2003 SP1-SP2.
121e5304fc0c68efcbe91a4bd17f067fad4fef74c609ee089fb5929981de2e57phpBB3 version 3.0.10 appears to suffer from remote SQL injection vulnerabilities.
9376898c3f8c9323188f7425ea004eae96bc735daba1b4f20ceac24ede2d816cMandriva Linux Security Advisory 2012-118 - A vulnerability has been discovered and corrected in ModSecurity before 2.6.6, when used with PHP, does not properly handle single quotes not at the beginning of a request parameter value in the Content-Disposition field of a request with a multipart/form-data Content-Type header, which allows remote attackers to bypass filtering rules and perform other attacks such as cross-site scripting attacks. NOTE: this vulnerability exists because of an incomplete fix for CVE-2009-5031. The updated packages have been patched to correct this issue.
5d1ed50858951c79497ef1650fc6a7b1c640f77f054e6d9d388ab3d95f9188ebMandriva Linux Security Advisory 2012-117 - PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers to conduct brute force attacks to obtain the private key. The updated packages have been patched to correct this issue.
a257bef09bc054b9c2ddf00af72cb709c6daf86ed9863e285ba7b71a0ed7c536Bugzilla Security Advisory - Bugzilla versions 4.1.1 to 4.2.1, 4.3.1 suffer from a permission trust vulnerability. Bugzilla versions 2.17.5 to 3.6.9, 3.7.1 to 4.0.6, 4.1.1 to 4.2.1, 4.3.1 leak the description of a private attachment.
ccbe41f39c39d46f4dd678d5b50b50f6b23d74222a0aadab053e8ce5c1e2b4dbThis is a php script that takes a list of sites and password possibilities and runs as a cracker against Joomla administrative panels.
974b9077b4f38d6b7f57f47c692af49a1e15451c3a0e96836e451c9e45bcb875Chapcrack is a tool for parsing MS-CHAPv2 handshakes, which can then be submitted to CloudCracker for cracking.
ff9720e841128269952f9459353d4052432bb7c937b940b8ed65d9d9451495f5Transmission BitTorrent client versions prior to 2.61 suffer from a cross site scripting vulnerability.
818ec13f1f8cc75dec858bf1a430235ca3eb87f12cf8abc296ca9d260ec5fb0bmeetOne, a populate iTunes application, suffers from information disclosure and transport of credentials in the clear.
f1b6167b0f9adb1d2ae657c5d3a9d3aa57bc983cdcb2a5b4eab69f77c76dd946Slackware Security Advisory - New bind packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues.
1ba2e94bb1e5401f71c58f1dd3f7ace6e580f5c9b79933a21cb76fba9c37e34drdtax.myeg.com.my suffers from a cross site scripting vulnerability.
c2fc1cd70037cca8df2b3733c820778cf56f07e5af2d9f51862f9ebb904b6e77
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed