CA Technologies Support is alerting customers to two potential risks in CA License (also known as CA Licensing). Vulnerabilities exist that can allow a local attacker to execute arbitrary commands or gain elevated access. CA Technologies has issued patches to address the vulnerabilities.
a686e05a8022e290ebcb8cb2967e730ff4895e66d56870e96471d0865e095807
CarolinaCon is now accepting speaker/paper/demo submissions for its 9th annual conference. This event will be held March 15th through the 17th, 2013 in Raleigh, NC, USA.
765a1b18f7f4765b5ce557599d349a3b45751255c6133102939ddc2f92425c1a
Soapbox version 0.3.1 suffer from a local root code execution vulnerability.
fa6111f3bfe8c24bb8bf372dad0c191f2ae37919333b768bc405657c4799c826
Mandriva Linux Security Advisory 2012-154 - Multiple vulnerabilities has been found and corrected in apache. Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory. Possible XSS for sites which use mod_negotiation and allow untrusted uploads to locations which have MultiViews enabled. The updated packages have been upgraded to the latest 2.2.23 version which is not vulnerable to these issues.
5a1742252a9584a52acf4fe80af2e67a76d0ef2a0f171b83cfe17bd5855503b2
IBM Lotus Notes Traveler versions 8.5.3 and below suffer from cross site request forgery, cross site scripting, brute force, and redirection vulnerabilities.
95514a5e1a4429bebd982e1837c3801ea2f7ce55bc98c72e1145cda686b8a99e
Sites designed by Whereincity.com suffer from a cross site scripting vulnerability. Note that these findings house site-specific data.
b7661ae029838ae5eb7093c71b0d7e534f4fb21e65fbb39f179385cc36701e22
WordPress Themesbook suffers from a cross site scripting vulnerability. Note that these findings house site-specific data.
a7dcad7b98ba078521025645176f9d8e558f872854ce2d53553e6196e64b72a0
Secunia Security Advisory - Ubuntu has issued an update for software-properties. This fixes a security issue, which can be exploited by malicious people to conduct spoofing attacks.
68f91b6a515ae34ef6abe6140108b9999b6a1fa93df92d0e9923c1df3e9d7ce3
Secunia Security Advisory - Citrix has acknowledged some vulnerabilities in Citrix NetScaler SDX, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and gain escalated privileges.
688b21968696f5e8a71dd7e9251d8a1007a7f0f2185e0f5c2bb4f28ab366e7ca
Secunia Security Advisory - A vulnerability has been reported in HP IBRIX X9000 Network Storage, which can be exploited by malicious people to disclose potentially sensitive information.
189ceb95a992eeb02d154f94b9d90644440e6acbb36d31840e63c94f0c7859af
Secunia Security Advisory - Some vulnerabilities with an unknown impact have been reported in the CSS Plus plugin for WordPress.
b58d83ebbd2f213fbe0486d2a16c05e48e3852a58ea01617fd13a608b23160ae
Secunia Security Advisory - A vulnerability has been discovered in Frei-Chat, which can be exploited by malicious people to compromise a vulnerable system.
d39d4ea19a8144c7e91ddac285bb723a4af66bd5e1a1509eb09043d2c2ac4944
Secunia Security Advisory - Ubuntu has issued an update for eglibc and glibc. This fixes some weaknesses, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
2e018454b5f813bf7f9259cf986e7e24c180c07d18cf54df9aef07d7c6dd5135
Secunia Security Advisory - Two vulnerabilities have been reported in multiple CA products, which can be exploited by malicious, local users to gain escalated privileges.
ad1a7ae5fb66ecdcad2c9f18996765d8c5c8191b8bbc35cdbc77e020b045f5c9