Multiple products from BullGuard suffer from an arbitrary write privilege escalation vulnerability.
3de0cd39d56a83e5b7735d91f5d387d24d10f7b541d5b7c3473faf66bf1ae8f2Multiple products from AXIS suffer from a remote command execution vulnerability.
5d3626abb1ca74ae36c7f97673ca1ac0fa4274ea3398a978924fd38256827c7bMultiple products from K7 Computing suffer from an arbitrary write privilege escalation vulnerability.
3b836add949010b487a587c34b231c817102bc472d4d5385c4a29825c1137172Secunia Security Advisory - Hitachi has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to cause a DoS (Denial of Service).
a0da1db9b47c414190cab764db59d0be8b281d3fbf51e9f1c249e591901541a1Secunia Security Advisory - Hitachi has acknowledged a weakness in multiple products, which can be exploited by malicious, local users to bypass certain security restrictions.
7899103b1504ff5e6d91017524c3105edbe5bdfdfe4e80a91579dffbf9bdbd91Secunia Security Advisory - Hitachi has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to disclose potentially sensitive information.
d7e4c60dc4e0adb4b2d1e18f1f2c74102a094d13a7597fbf5210f648fdf47cffSecunia Security Advisory - Symantec has acknowledged some vulnerabilities in multiple products, which can be exploited by malicious people to compromise a vulnerable system.
fd631d8103a4e841d239abc9bf12f82160ee5cc33f32ac7baba0395cfac8e382Secunia Security Advisory - Two vulnerabilities have been reported in multiple products, which can be exploited by malicious people to compromise a user's system.
cc3289a47e2115d744bb358ed914b2717153e37997dbe5e3f54eecf07ce7e7c3Secunia Security Advisory - Check Point has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to cause a DoS (Denial of Service).
7b113bef83aa43bd5fcf8852017bcbff3a4df4acf4b619b6c1cf3106e3efcd1cSecunia Security Advisory - IBM has acknowledged some vulnerabilities in multiple products, which can be exploited by malicious people to compromise a vulnerable system.
0de2bfeb69afa0ca45e219ab2591fb6e55ccaf909b5a062e875011562d408d15VSR identified multiple vulnerabilities in VMware Tools, a suite of utilities shipped by VMware with multiple product offerings, as well as by open-source distributions as the open-vm-tools package. The first of these issues results in a minor information disclosure vulnerability, while the second two issues may result in privilege escalation in a VMware guest with VMware Tools installed.
1af05a5d5b02a34bd95ed4566b81d89008382e496b13d51cebc3c4a6458acab9Zero Day Initiative Advisory 10-294 - This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of multiple products from multiple vendors that utilize the Uni RPC protocol. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Uni RPC service (unirpcd.exe) which listens by default on TCP port 31438. The unirpc32.dll module implements an RPC protocol and is used by the Uni RPC service. While parsing a size value from an RPC packet header, an integer can overflow and consequently bypass a signed comparison. This controlled value is then used as the number of bytes to receive into a static heap buffer. By providing a specially crafted request, this heap buffer can overflow leading to arbitrary code execution under the context of the SYSTEM user.
0208958c1064611e6f5ae2711eeae42691474fea4bbf89a18187ab50583f03d9Secunia Security Advisory - Blue Coat has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to manipulate certain data.
3938396a1eb363332a40d9a7082d41f70dd85fed1dd323ccd7d4e6a1d4948fcbMultiple products from Kaspersky suffer from a local privilege escalation vulnerability. Details are provided.
f8e55c74a6c00d50aef47fd678f08c7da644ee06e9533fe933bf7d65008eac78Multiple products from SlySoft suffer from a ElbyCDIO.sys related denial of service vulnerability. These include AnyDVD versions 6.5.2.2 and below, Virtual CloneDrive versions 5.4.2.3 and below, CloneDVD versions 2.9.2.0 and below, and CloneCD versions 5.3.1.3 and below.
0ce75cc8c75a32c60529ae528a90d4590e31aac42ede1863d10a2a91bea510e8iDefense Security Advisory 06.04.08 - Local exploitation of an untrusted library path vulnerability in multiple products distributed by VMware Inc. could allow an attacker to execute arbitrary code with root privileges. The Linux version of VMware products include a program called 'vmware-authd', which is installed set-uid root. When this program is executed, it reads configuration options from the executing user's VMware configuration file. One such option allows the user to specify the directory in which to look for shared library modules needed by the program. By loading a specially crafted library, an attacker can execute arbitrary code with elevated privileges. iDefense confirmed the existence of this vulnerability in the following VMware products: VMware Workstation 6.0.2.59824 for Linux, VMware GSX Server 3.2.1.14497 for Linux, and VMware ESX Server 3.0.1.32039.
a82b3045bcbc7a5650e09e9a047819ec79df3ee1ffa50125706f3b923c1b76ebVulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of multiple Hewlett-Packard (HP) OpenView products, including: Performance Manager, Performance Agent, Reporter, Operations, Operations Manager, Service Quality Manager, Network Node Manager, Business Process Insight, Dashboard and Performance Insight. Authentication is not required to exploit these vulnerabilities. The specific flaws exists within the OpenView Shared Trace Service. A service that is distributed with multiple products as ovtrcsvc.exe and OVTrace.exe. The vulnerable service may be found bound to TCP port 5053 (ovtrcsvc.exe) or TCP port 5051 (OVTrace.exe). Specially crafted data through opcode handlers 0x1a and 0x0f can result in arbitrary code execution under the context of the SYSTEM user.
0f9b632a8194e66912be70699b2b63b542bb327aadc02228f6f4671e2435c7caSecunia Security Advisory - F-Secure has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to cause a DoS (Denial of Service).
56c60ec7e883d9dc2ee969034717481fc37c1782e7e6ffb9373ec5fd19474007Mandriva Linux Security Advisory MDKSA-2006-132 - Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including wv, abiword, freetype, gimp, libgsf, and imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file.
b58dbdb89764f92136ac374c126ea6ab7a62bdb2e179a7cd7c5dc16c266bb99eDebian Security Advisory 1042-1: The Mu Security research team discovered a denial of service condition in the Simple Authentication and Security Layer authentication library (SASL) during DIGEST-MD5 negotiation. This potentially affects multiple products that use SASL DIGEST-MD5 authentication including OpenLDAP, Sendmail, Postfix, etc.
12de993b1a6d9e6f7a87bf9a72f28b90b7bc0329efa63c6860af0bea3f2450a0MU-200604-01: Cyrus SASL DIGEST-MD5 Pre-Authentication Denial of Service - A denial of service condition exists in the SASL authentication library during DIGEST-MD5 negotiation. This potentially affects multiple products that use SASL DIGEST-MD5 authentication including OpenLDAP, Sendmail, Postfix, Apple, etc.
3a2e74c99b10fb7186b0276d863f1e37f31bf044add47a6bcf9ace11369bed1eiDefense Security Advisory 03.23.05 - ISS Multiple Products Local Privilege Escalation Vulnerability
630bbb620548920397a18614c82f61ed6a995aff14c52a078f522999d327b73aInteger overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow. The python packages use a private copy of pcre code.
6c60b8a722eb0465abc8ed758b114123cd720246b7f3268c562345f23dcbf1f9Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.
2913020ff56d435018e11b27ae5ec6f01a906d4696dc0e8e5102cb460d783f2bInteger overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.
e296dc932558876aa03691cc4ba4a8ff742813c8186cbe20bf4bf2e7e1e662baInteger overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.
67dac94f58834ac95814d61aff301273abab4bf7af28c2c919f89dbece0aae80
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed