Junos Pulse Secure Meeting version 8.0.5 allows an attacker to enter "secure" meetings without knowledge of the password and the invitation link using the java fat client (meetingAppSun.jar).
72d0987702534e4b644e0f7014857caa8cdf81f311cef5ea5fd171580871e68d4images versions 1.7.11 and below suffer from a persistent cross site scripting vulnerability.
09e7891c4a718461553424bee020d999e8f3b300137a5d41b358f57adf5a4e6bApache Cordova Android File Transfer plugin versions 1.2.1 and below suffer from an HTTP header injection vulnerability.
1c678a1c4f57462b9c536f091f42eac61d776820a65cd8bd687da721e960449aFortiManager version 5.2.2 suffers from multiple cross site scripting vulnerabilities.
b71a9650569b9edc2d13b4e02474212f0456beb9b05798f1f01f8a68e014b2b7Ubuntu Security Notice 2745-1 - Lian Yihan discovered that QEMU incorrectly handled certain payload messages in the VNC display driver. A malicious guest could use this issue to cause the QEMU process to hang, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. Qinghao Tang discovered that QEMU incorrectly handled receiving certain packets in the NE2000 network driver. A malicious guest could use this issue to cause the QEMU process to hang, resulting in a denial of service. Various other issues were also addressed.
10d84d56be340b435ae90a54578f4d46671992f41d69ef51bbda5a96fc7195c1Gentoo Linux Security Advisory 201509-6 - An attacker could execute arbitrary commands via Git repositories in a case-insensitive or case-normalizing filesystem. Versions less than 2.0.5 are affected.
f5c875abddf16229107d11e985b0b6283b6e21ef181d91bc716e8c756b6d3cbaGentoo Linux Security Advisory 201509-5 - Improper handling of Router Advertisements in NetworkManager could cause a Denial of Service condition in IPv6 network stacks. Versions less than 1.0.2 are affected.
9ea586c90a77433be74d0183681c6a777f13a7219f8a16e512c2ebc1c4f2b69dGentoo Linux Security Advisory 201509-4 - Multiple vulnerabilities have been found in libtasn1, the worst of which could lead to arbitrary code execution. Versions less than 1.4.5 are affected.
7409f641de00682e65c15ff139158d68c60b58fefecad508e0f36dd168033008Gentoo Linux Security Advisory 201509-3 - Multiple vulnerabilities have been found in Cacti, the worst of which could lead to arbitrary code execution. Versions less than 0.8.8d are affected.
7a4f1dbc306cb7046c88c372fc9d48510bfe0a35ebb5b4a0471b6a480296dc83Gentoo Linux Security Advisory 201509-2 - Multiple vulnerabilities have been found in cURL, the worst of which can allow remote attackers to cause Denial of Service condition. Versions less than 7.43.0 are affected.
f5b5b9e3238bd4c9cdd7e927d7530352831a5a3d3d388eaff85cf3fbcee5d92eGentoo Linux Security Advisory 201509-1 - Multiple vulnerabilities have been found in NTP, the worst of which could lead to arbitrary code execution. Versions less than 4.2.8_p3 are affected.
655635fa6995896fdb8eeaae23aa01b3be957c61de9b5732755b0250e88c45edUbuntu Security Notice 2746-1 - It was discovered that Simple Streams did not properly perform gpg verification in some situations. A remote attacker could use this to perform a man-in-the-middle attack and inject malicious content into the stream.
48fb30d17da30955a2d3d15555d69d08f3c8dc61ae3a3794395df8798e23d3f1Red Hat Security Advisory 2015-1834-02 - Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. Two information leak flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to disclose sensitive information or, in certain cases, crash.
b4094aaec45328ec88bd778806c0553e4b43fcf067ab45f0f86192283435c8f9Debian Linux Security Advisory 3367-1 - Multiple vulnerabilities were discovered in the dissectors/parsers for ZigBee, GSM RLC/MAC, WaveAgent, ptvcursor, OpenFlow, WCCP and in internal functions which could result in denial of service.
e50e19d610e227017d0193e73b3efddd4ee08aa437c684c64dfbd872faa698d1Ubuntu Security Notice 2743-3 - USN-2743-1 fixed vulnerabilities in Firefox. Future Firefox updates will require all addons be signed and unity-firefox-extension, webapps-greasemonkey and webaccounts-browser-extension will not go through the signing process. Because these addons currently break search engine installations (LP: #1069793), this update permanently disables the addons by removing them from the system. We apologize for any inconvenience. Various other issues were also addressed.
564fc19466fc9d259864b3e1262550162910ed750aeccda7e3fcc69fab9bd8b9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed