iSelect version 1.4 suffers from a local buffer overflow vulnerability.
cf34712ed32232f431ce9dd905147bc26b8d7a0bfac0c598d30e89a9a9aeb57cRed Hat Security Advisory 2017-0064-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND handled a query response containing inconsistent DNSSEC information. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
e2774344dae73a0082a496340632584a7a1d9c4a4591d03c5f96328c0f8f865dRed Hat Security Advisory 2017-0063-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND handled a query response containing inconsistent DNSSEC information. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
cc6588ac4b7cda54c1d714072e8765446eb3d641719134a4fc00057919ddd9dfRed Hat Security Advisory 2017-0062-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: A denial of service flaw was found in the way BIND processed a response to an ANY query. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.
d0a6d68d832b96a099701144e523f5f2713f65a35db5c6b5d584358317eb20c7Image Sharing Script version 4.13 suffers from cross site scripting and remote SQL injection vulnerabilities.
47e1b4d3816af7290fde39a9bf34865d6e7a116395a846fc33ec590d308ef02bDebian Linux Security Advisory 3743-2 - The update for python-bottle issued as DSA-3743-1 would cause a crash if a unicode string was used as a header. Updated packages are now available to correct this issue.
58d2e4d2e946f3c518c23f900c61df1ce9cb99f2e694185419b37def110e3aebGentoo Linux Security Advisory 201701-36 - Multiple vulnerabilities have been found in Apache, the worst of which could lead to a Denial of Service condition. Versions less than 2.4.25 are affected.
1292b9a5dc4a22a3a1e118a36945f470a06cc815f7880cb1f257c44072e7af03Debian Linux Security Advisory 3765-1 - Several programming errors in the wrestool tool of icoutils, a suite of tools to create and extract MS Windows icons and cursors, allow denial of service or the execution of arbitrary code if a malformed binary is parsed.
1f26fb9b131348aede1ae8da7986f8419a814fe3b67a2f3fed73bff40f468e62HP Security Bulletin HPSBGN03689 1 - Potential vulnerabilities have been identified in HPE Diagnostics. The vulnerabilities could be exploited remotely to allow Cross-Site Scripting and Click Jacking. Revision 1 of this advisory.
ed88ca7db613054ab5271fa9ef07330e4f7c7297e53ec4ee2aa2c73105df5c8aHassium CMS version 0.10 suffers from a cross site scripting vulnerability.
8a17add7c446d837fdbf6cf34be017fcdd515511e431018f607d83d46a27a7baHuawei Flybox B660 suffers from a cross site request forgery vulnerability.
192c2711c26b7fb211180a8a58404d0bfc541fc11783eb574bf8058886787538WinaXe Plus version 8.7 suffers from a buffer overflow vulnerability.
b3690e25347767352e8d98650332001dccc4aebbb446b9bb9aca201f6e0f8f63Salesforce event registration functionality allows for malicious script code to be inserted.
f7561a519d811358bfe02595127a518873396dc50c1e9abcea14877111247704Apple iTunes suffers from a malicious script insertion vulnerability.
fb247880f08a8bd28b94a85e88833c57c264ecaa21d838a3d97019731f90b7feMillion Pixels version 3 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
fb6186323dc7bde990876fa3eb88ac790879687f2707dc465038980dd2eba0ffBusiness Networking Script version 8.11 suffers from cross site scripting and remote SQL injection vulnerabilities.
36e2deb3815023e40fa8aec4583a08e48c02ed04d0311a76521be073ebf33b0aopenWYSIWYG Insert Image version 1.4.7 suffers from a remote arbitrary unauthenticated file upload vulnerability.
486d08d7047d70992df4de7429f634aecb35220ee3db8fe012173dae8733cacb
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed