Secunia Security Advisory - A vulnerability has been reported in OpenAthens SP, which can be exploited by malicious people to bypass certain security restrictions.
01bb833a2f80b4ad5b0db26d74aeb3250d8d57f6a3d5431428a18e35c515673eSecunia Security Advisory - Some vulnerabilities have been reported in TIBCO Formvine, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service).
2877709ffc318bf6f6062fb7d0f0415eb4b8e92f70a18f4a8fbcec816b97f45cSecunia Security Advisory - Oracle has acknowledged a vulnerability with an unknown impact in 7-zip included in Solaris.
b799f06a8f8824f7a59b51101642014c624833b31c34e3508be3deec6da4fcd6Secunia Security Advisory - Ubuntu has issued an update for python3.2. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to potentially disclose sensitive information and by malicious people to cause a DoS (Denial of Service).
7d71cb1d159d47815bf3f019c0c2b2e9d204960536a53a106b9b2ec8b058b6c3Secunia Security Advisory - Han Lee has discovered a vulnerability in the Spider Calendar plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
17a54a1b249b2f44525ef452ac91b3ca098c3c6c75946ef40d62cb3080688942Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose system information, cause a DoS (Denial of Service), and potentially gain escalated privileges and malicious people to cause a DoS.
1c149f83ece491f9aa9f95f099dde4d73bc33ab7d40cce8d6fceffcb9dcc801fSecunia Security Advisory - Zhao Liang has discovered some vulnerabilities in Winmail Server, which can be exploited by malicious users and malicious people to conduct script insertion attacks.
8274356a2b285a0d1b5e884a16e43a2517e5e4453613e993397ce7e2a400bd72Secunia Security Advisory - A vulnerability has been reported in the Commedia component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
c03c25d0551f42129f7ff3504f964836fec9b42552595e1547ef4c0d28e735eeSecunia Security Advisory - Charlie Eriksen has discovered two vulnerabilities in the FireStorm Professional Real Estate plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.
8a1df00db5cc7cfda05cdae7eaf0866b5095dd31bd7c9da7d02f259ada1fb39cSecunia Security Advisory - Ubuntu has issued an update for python3.1. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to potentially disclose sensitive information and malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
5112cfc44b4bdc2b72f4863a0f28ee8ad41af5e1146bb6b8ff43d1d5909413d9Errors thrown from manipulated SQL queries in Contao version 2.11.6 leak full path disclosure information.
7e6b48191d1b037c49db3bb5bf91ac674378024ef6feaf084e613f9089ca9decSites designed by Zomorrod Web Design suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
efbf318f4c7cb5cfedb51d243ed1d7fb0cbbe9a86253985411d3408497f25171The VUPEN Vulnerability Research Team has discovered a critical vulnerability in Microsoft Internet Explorer versions 8 and 9. The vulnerability is caused by a use-after-free error in the "mshtml.dll" component when processing certain "onMove" events, which could allow remote attackers the ability to execute arbitrary code via a specially crafted web page.
85f55c391fa51f8db9e2ea2e5872c2b57c06a40ec881bb2bd591e58f9ae0baadThe VUPEN Vulnerability Research Team has discovered a critical vulnerability in Microsoft Internet Explorer versions 8 and 9. The vulnerability is caused by a use-after-free error in the "mshtml.dll" component when processing certain "scrollIntoView" events, which could allow remote attackers the ability to execute arbitrary code via a specially crafted web page.
f1a197c1783c02ee319890a13237b275d13b69b33b95c58bfe6caca575473a2cVaM Shop version 1.69 suffers from cross site scripting and remote blind SQL injection vulnerabilities.
e7be6a349fb7fa475b190dbd576c798458ed565900ce8576d69bc1978a55c97eMicrosoft Office Picture Manager 2010 suffers from a memory corruption vulnerability. Proof of concept exploit included.
59e2da8fc426307586dc012cb58ef77cd9f3f38ce3648cadce0a6cce64d31281Debian Linux Security Advisory 2564-1 - gpernot discovered that Tinyproxy, a HTTP proxy, is vulnerable to a denial of service by remote attackers by sending crafted request headers.
f8b52a6c1fbccca041bc74642d02a10c8223947969343b9bc0b948dd15e669b9Debian Linux Security Advisory 2563-1 - Several vulnerabilities were found in ViewVC, a web interface for CVS and Subversion repositories.
e4bd0ae005283900714ca58befbcec7bd36c373213fee04cdcb1465faaad36bcDebian Linux Security Advisory 2562-1 - cups-pk-helper, a PolicyKit helper to configure cups with fine-grained privileges, wraps CUPS function calls in an insecure way. This could lead to uploading sensitive data to a cups resource, or overwriting specific files with the content of a cups resource. The user would have to explicitly approve the action.
a07205eca2f1e437c1a0f904153e8780529e54a7663a98b1a3ddc4991221fec7360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
d9fb0acb155f64254f747054284f388236ebe887cd473089b6502874ce95d0d0HP Security Bulletin HPSBHF02819 SSRT100920 - Potential security vulnerabilities have been identified with HP, 3COM, and H3C routers and switches. The vulnerabilities could be remotely exploited resulting in disclosure of information. Revision 1 of this advisory.
0d362168a978d021c1ea55ad09ee267e01eb9e8af90e327f4301737cf6d80279Whitepaper called Facing Facts - Best Practices for Common Uses of Facial Recognition Technologies.
26081d7cc28821e503db773ab10ada01a3c074fd9c51537d4cda5644ac737bb0Apple QuickTime Player version 7.7.2 division by zero crash proof of concept exploit.
ba375ec556d1cd6f889aebee23677f184509045a7fe8fbc2f585850d1cd9743cMicrosoft Office Word 2010 stack overflow / resource exhaustion proof of concept crash exploit.
b46919f3f0419af51d5685e4b2654d4f86a5968c5a626f444383d5263b197e56Debian Linux Security Advisory 2565-1 - Multiple vulnerabilities have been discovered in Iceweasel, Debian's version of the Mozilla Firefox web browser.
0b8b43e40ef3698963f4dc163d37bd38a108d72f12cbfd9b187e01c4c977cfdc
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed