WeBid version 1.0.6 suffers from a remote SQL injection vulnerability.
ef41b2d6bc97d34ca048f725d9b129c4675df101d0c695328fc8a1ead4856ed3Cisco Security Advisory - Cisco Unified IP Phones 7900 Series versions 9.3(1)SR1 and prior contain an arbitrary code execution vulnerability that could allow a local attacker to execute code or modify arbitrary memory with elevated privileges. This vulnerability is due to a failure to properly validate input passed to kernel system calls from applications running in userspace. An attacker could exploit this issue by gaining local access to the device using physical access or authenticated access using SSH and executing an attacker-controlled binary that is designed to exploit the issue. Such an attack would originate from an unprivileged context. Ang Cui initially reported the issue to the Cisco Product Security Incident Response Team (PSIRT). On November 6, 2012, the Cisco PSIRT disclosed this issue in Cisco bug ID CSCuc83860 (registered customers only) Release Note Enclosure. Subsequently, Mr. Cui has spoken at several public conferences and has performed public demonstrations of a device being compromised and used as a listening device. Mitigations are available to help reduce the attack surface of affected devices.
f99e7a7a0c7cd53dfe29806d43adcf386ecd249b2021cfd253f606765567fa44Cisco Security Advisory - Cisco Prime LAN Management Solution (LMS) Virtual Appliance contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary commands with the privileges of the root user. The vulnerability is due to improper validation of authentication and authorization commands sent to certain TCP ports. An attacker could exploit this vulnerability by connecting to the affected system and sending arbitrary commands. Cisco has released free software updates that address this vulnerability. There are no workarounds that mitigate this vulnerability.
26ee6e6655f83538488de55096742253bc19d7d6132b494a693ed5e826a8264fThis is a whitepaper called Introduction to ARM Linux Exploiting. This version of the paper is the English release.
44884c3396952fc4aca39c6fc6d734795eecf9d1c2b2d9bdfb6249c7caae1c1bRed Hat Security Advisory 2013-0149-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes one vulnerability in Adobe Flash Player. This vulnerability is detailed in the Adobe Security bulletin APSB13-01, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.261.
aad95e20731fb2366bf34315480ae406779eb477177c7698db0333d69d3cc3efFree Blog version 1.0 suffers from remote shell upload and arbitrary file deletion vulnerabilities.
046160c2bebcad5524fa1b471bdd14084971b0c1484eb63472002891c5138a53Watson Management Console version 4.11.2.G suffers from a directory traversal vulnerability.
cd68cebca871fa857fd92a06863d08fe109c6863e7c6ae3cb2dcf499712269e4Exploit for Colloquy versions 1.3.5 and 1.3.6 that triggers a denial of service condition.
4636db7755d6aeed2ca9f21829f1a721a8ce8c1a886f99cc24ff2e213292c663Secunia Security Advisory - A vulnerability has been reported in EMC Networker, which can be exploited by malicious people to compromise a vulnerable system.
eb1beb023c3aa89e7c5f50dd7ca58f9acee7d5a9961c6e44a04617edb3c7001fSecunia Security Advisory - Gentoo has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
d643e7994c35e66edd693843e295d15147c9c32acdbe8cd5a51fc65ce8cc2c0dSecunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, disclose sensitive information, and compromise a user's system.
a4cc3856a63a8cdbf382f62a6da5be8fb1f4d8d4de8c8016c020dcb953597f75Secunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, disclose sensitive information, and compromise a user's system.
a4cc3856a63a8cdbf382f62a6da5be8fb1f4d8d4de8c8016c020dcb953597f75Secunia Security Advisory - Red Hat has issued an update for hplip3. This fixes a weakness, which can be exploited by malicious, local users to manipulate certain data.
592d1f6a2fa99471421324dd3ab57994654ab166221387c6486cbf124183f443Secunia Security Advisory - Red Hat has issued an update for quota. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
a5615d9d1641480f99b5a5eb61460db4fecc746a425acdb9fa95994c6f636c25Secunia Security Advisory - Two vulnerabilities have been reported in Astium, which can be exploited by malicious people to conduct SQL injection attacks and cause a Denial of Service (DoS).
73862ad0b1338855af1d9491c71f02501fc6448d163e3a852bbf9246594265b9Secunia Security Advisory - Gentoo has issued an update for dhcp. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
44b30f26cbea4b9210e17660cb1b6e8202b9b570e33a1ef3cb295326797a1ba4Secunia Security Advisory - Debian has issued an update for zendframework. This fixes a vulnerability, which can be exploited by malicious people to disclose certain sensitive information.
c55047871105de959998829bbd337a75b0178e32c3446576692530177e7fbfe0Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
485e5d01fef60ae6f9adb5f0947d9bbc9ba3611800793c931f1af736ea58479bSecunia Security Advisory - Gentoo has issued an update for tor. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
f29fbed58bcadd3b025b7e1ec73dcd719ca9bfbdeac2617eedc8964d56ec2bf4Secunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, disclose sensitive information, and compromise a user's system.
f8f9467a0548e2a9d3fb6ba39a309105b3648c5a6991fafa77febd04082880abSecunia Security Advisory - Gentoo has issued an update for dokuwiki. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery, cross-site scripting, and script insertion attacks, disclose sensitive information, and bypass certain security restrictions.
f3785fac29b13eaa8b3e25d5f62abbac0fc657d1017197cc0ac2a65b73e1aa6cSecunia Security Advisory - Red Hat has issued an update for firefox. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, disclose sensitive information, and compromise a user's system.
f44f17cad49c80d907972284727feef1e7470afdd29c2d80e701cee094518990Secunia Security Advisory - A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to compromise a vulnerable system.
55f20c69619adf36b15f57190f7725ddea8d2c74ecb9d33a04dc168c3d7d6b36Secunia Security Advisory - A security issue has been reported in MotoCMS, which can be exploited by malicious people to disclose sensitive information.
8534be4310fb2133906e1460197f5edf2d6d63372c881844a6daa88c48bf829cSecunia Security Advisory - Red Hat has issued an update for flash-plugin. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
0749c792f65a5ce0a9cd47a2f36a0690719b0ce2bba4dd66b8c25e22ae07e8b0
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed