Safari suffers from a type confusion vulnerability in DateTimeFormat.format.
bcbbe721812e3c9844aa096ccd242bccd99e577311663d34b1850a138057a5eaSync Breeze Enterprise version 9.5.16 SEH GET buffer overflow exploit.
bf368bde889dcf902b06ff92a9af6600b8ec55a5ba19e600159382f811b399a3Sync Breeze Enterprise version 9.5.16 suffers from an import command buffer overflow vulnerability.
92904136e8d75735d3fca251e7d6585a845b1133240bfbaf44518eb4a65108b7The built-in JavaScript in the Safari browser allows Function.caller to be used in strict mode.
1884c9b6bc5c81281bf6c6ce0bb8b15f58a86018597a7480f0520481b1474f57EyesOfNetwork (EON) version 5.1 suffers from a remote SQL injection vulnerability.
7e72eff3acc65ef6601181f816f3f0f11a29fd7567dfa6832b7e151b5c40de5b89 bytes small WinExec position independent calc shellcode.
e51e0f27d14fd2d6eb13fde09bc881228c8126c446a729735ae078f6e2a7548a19 bytes small Linux/x86 execve("/bin/sh") shellcode.
0ef982e595c903b414d3503ed50cf46eeea26d98198f382e076edb18eb8d8404RSA Archer Security Operations Management with RSA Unified Collector Framework contains a sensitive information disclosure vulnerability that could potentially be exploited by malicious users to compromise an affected system.
10839de202bb4655a184d8961982e46440c4191ebe1429db50e9ec565998237eOpensource Classified Ads Script suffers from a remote SQL injection vulnerability.
d97168fbcaab9f971a39626b11c9c30f60cd3e99d850c3155d6cf9805e1b00d9Apple Security Advisory 2017-03-28-2 - This advisory provides additional information for APPLE-SA-2017-03-22-1. iTunes for Windows 12.6 addresses multiple vulnerabilities in various included software.
5e917bb7e6f9edc636297d6a5ef7728eaba569232b19fbb441916d312716221aApple Security Advisory 2017-03-28-1 - iCloud for Windows 6.2 is now available and addresses information disclosure, memory corruption, and various other vulnerabilities.
41c78bd843877663508f8fd5d2e712c16049e0e80c8f87fb341a44fd9ae1a3edUbuntu Security Notice 3244-1 - Hanno Boeck discovered that GStreamer Base Plugins did not correctly handle certain malformed media files. If a user were tricked into opening a crafted media file with a GStreamer application, an attacker could cause a denial of service via application crash.
b40cdf288bb3cb69187341104e38e859e49e3de86d008f11c28e0eac8d5f3949Ubuntu Security Notice 3247-1 - St=E9phane Graber discovered that AppArmor incorrectly unloaded some profiles when restarted or upgraded, contrary to expected behavior.
d0eae3b00dcae60fe9aa8124e2ad107cd0b3b65d59464a43c2cf8f02900a89ccDebian Linux Security Advisory 3823-1 - Ilja Van Sprundel discovered that the dmcrypt-get-device helper used to check if a given device is an encrypted device handled by devmapper, and used in eject, does not check return values from setuid() and setgid() when dropping privileges.
11ed3d35497fce0aa8208e337d18906978385a140e9058214a8d178bb172d613Ubuntu Security Notice 3245-1 - Hanno Boeck discovered that GStreamer Good Plugins did not correctly handle certain malformed media files. If a user were tricked into opening a crafted media file with a GStreamer application, an attacker could cause a denial of service via application crash.
f1e77caf8e0a58e2ce6dbed8c4b8e92814ca8f861fb84e128498c06590e8ba2aDebian Linux Security Advisory 3821-1 - Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened.
ac6dce475366bfc8982bb644156baf46b40bb24087037b4f4b84e9339e833d1aGentoo Linux Security Advisory 201703-7 - A vulnerability in Xen's bundled QEMU version might allow privilege escalation. Versions less than 4.7.1-r8 are affected.
d66376b4cac43229f126f16946ea94e52f3eb56174590d8c10f033b8b43c59caGentoo Linux Security Advisory 201703-6 - A vulnerability in Deluge might allow remote attackers to execute arbitrary code. Versions less than 1.3.14 are affected.
2b06a5ceb46b3c39e7d0275991b0275f5a8f9ca669189b8fd4770c725e11603dGentoo Linux Security Advisory 201703-5 - A vulnerability in Libtasn1 allows remote attackers to cause a Denial of Service condition. Versions less than 4.8 are affected.
96423a18f88ebc8917136e21dc92e6a32354b4955e03ff4e9699bfff0c0a954fGentoo Linux Security Advisory 201703-4 - A coding error has been found in cURL, causing the TLS Certificate Status Request extension check to always return true. Versions less than 7.53.0 are affected.
65d1387695268efc77ff50e28352c03c89f45320e5ab3ab76dddae629f504bd3Ubuntu Security Notice 3246-1 - Ilja Van Sprundel discovered that dmcrypt-get-device incorrectly checked setuid and setgid return values. A local attacker could use this issue to execute code as an administrator.
38e9d099be590b4e07920777892cc4dab780f5d5f29c49ed15af521f8533e6dc21 bytes small Linux/x86-64 execve("/bin/sh") shellcode.
2b649fc04268f3a56e68dea6ee6764232b42711822aad0cb807715bd1a143c4dVX Search Enterprise version 9.5.12 suffers from a verify email buffer overflow vulnerability.
571a76eafaa747a6756ed856dc9f0f97b2580d4f3db9b17dec9a3b7e1148619dMicrosoft Outlook suffers from an HTML email denial of service vulnerability.
df536fb9431470d67b63334422b4fe73505842670e63f7d352a00c5db691b38dIntermec PM43 industrial printer suffers from a privilege escalation vulnerability.
ae1b85cfe883429a619d40b84e5f3040ebac2c5c89f555a8ace4bd988c1afbb4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed