Mandriva Linux Security Advisory 2012-155 - builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1. The updated packages have been patched to correct this issue.
863af03c72dbb69168b28f12a6929adb4f37f3a4d72987ae371a07dc35323ba5Mandriva Linux Security Advisory 2012-154 - Multiple vulnerabilities has been found and corrected in apache. Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory. Possible XSS for sites which use mod_negotiation and allow untrusted uploads to locations which have MultiViews enabled. The updated packages have been upgraded to the latest 2.2.23 version which is not vulnerable to these issues.
bfb99130026e154f55b5d6d82315ea76e366608f40dc662375702575689be258Gentoo Linux Security Advisory 201209-24 - Multiple vulnerabilities have been found in PostgreSQL which may allow a remote attacker to conduct several attacks. Versions less than 9.1.5 are affected.
aadd0a998d1f2db81a1c115cf7617428cb68b328b2051e91f2e2de0940ce8305Ubuntu Security Notice 1551-2 - USN-1551-1 fixed vulnerabilities in Thunderbird. The new package caused a regression in the message editor and certain performance regressions as well. This update fixes the problems.
1602967884ed018b65f06beb0b383b585f12b939f434d554e8f41f7ebbb61865Gentoo Linux Security Advisory 201209-23 - Multiple vulnerabilities have been found in GIMP, the worst of which allow execution of arbitrary code or Denial of Service. Versions less than 2.6.12-r2 are affected.
926d432f20f636e85ac0519408b8e94f610b43cc70f07d0dd06875097611ddadGentoo Linux Security Advisory 201209-22 - A vulnerability in libgssglue may allow a local attacker to gain escalated privileges. Versions less than 0.4 are affected.
0d3d0000d184d912cc4e1048613d398e249e31801e65d26a33f4721fa15ec5fdGentoo Linux Security Advisory 201209-21 - Two directory traversal vulnerabilities have been found in fastjar, allowing remote attackers to create or overwrite arbitrary files. Versions less than 0.98-r1 are affected.
e022f028e4ef4c5107668a4131cb86d99c9e544d46e31e5cbe4ca059d16246b7360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
73a58198a8995d01eb38a8a4e8e298fc639af8d7e3d23ed6ebffa7cdcd081379Secunia Security Advisory - Two security issues have been reported in the Organic groups module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
12f11cc5ca502afde4ce72af59bb4c30e0c9247caf064d88d6d2200e62bb0c76Secunia Security Advisory - A vulnerability has been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
f72d920ba0aa2ce12d27d19877fc09ba6878f99e6113240ac363b173e14aa86aSecunia Security Advisory - A vulnerability has been reported in Catalyst 4500E Series Switch, which can be exploited by malicious people to cause a DoS (Denial of Service).
fa14e9d026d1aff5f61f9d606eac9c2b3d91f9bb6432415384513be96d4868ffSecunia Security Advisory - Ubuntu has issued an update for transmission. This fixes two vulnerabilities, which can be exploited by malicious people to conduct script insertion attacks.
26d7993f42b6148010a73e358fc6c61d6cc5ab7ab640f0abb2f35e3a6c9af908Secunia Security Advisory - A vulnerability has been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
0fe8e6588d12ed5162b32b7a2a4ff911497521c1dd2f23867e07c746553cf07eSecunia Security Advisory - Ubuntu has issued an update for emacs23. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system.
b891f4edbb9fb710c7f3bbcccc54bdbb4ee2ffb8beaa06d9089000c85a88e94dSecunia Security Advisory - Two vulnerabilities have been reported in OpenStack Keystone, which can be exploited by malicious people to bypass certain security restrictions.
fba670eabd0bf51c788cd92d51df562939ba035d208fb24219518c94bde4e615Secunia Security Advisory - Ubuntu has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
e077f4eda742c6d406ad3331181b55affd42b1fc70279cc5a4f2261f0bf80afdSecunia Security Advisory - Gentoo has issued an update for mod_rpaf. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) in an application using the module.
86084d8ba5b700bc7efc5f13fc87cb10ed08c1b8c1aa7d3f51b956716c9f20a2Secunia Security Advisory - Gentoo has issued an update for postgresql-server. This fixes a weakness and multiple vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct brute force and spoofing attacks, manipulate certain data, disclose certain sensitive information, and compromise a user's system.
576cda83081fcc94808432a06fd3b32b57d53a9995093a2b28188dfc1b96a050Secunia Security Advisory - Gentoo has issued an update for libgssglue. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
381e672ea4358d6aa46972a8b3c485533a406404a3b43b65b0bd12bffc9ef6c4Secunia Security Advisory - Gentoo has issued an update for nut. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
ed91fb42445195f8af0155a684f2c20a48ae2c2027f9dd0afb11f0778e820558Secunia Security Advisory - Ubuntu has issued an update for fastjar. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
1bd1382af765f66c1f4b383ee35c7d14ba912b74a1b8242a6e76ec8901644845Secunia Security Advisory - A security issue has been reported in openCryptoki, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
b99f23905a917122ff259dbcde4da95c9940d18e05882fb0a2f1b077afa8892bSecunia Security Advisory - IBM has acknowledged some vulnerabilities in IBM Rational Synergy, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
8ffac87adecb59e7d563e311323066d583f135d2a036705080df338b51948b9dSecunia Security Advisory - Two vulnerabilities have been discovered in the Multisite Plugin Manager plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
45d7a9bfe860c94a677afc9153979df25082a113f2d7c739a1f7023590668346Secunia Security Advisory - Gentoo has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
9c77f20ff7c38647495732a0fc12eb8896bd092c83fb32b5af7c9502f1c94762
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed