EnCase Forensic Imager versions 7.10 and below suffer from denial of service and heap-based buffer overflow vulnerabilities.
7843ed94a73178cbbad1a3abd757df71b39cbeea28ef32b9271d33b5a8956fe1
SEC Consult Security Advisory 20071204-0 - SonicWALL Global VPN Client suffers from a format string vulnerability that can be triggered by supplying a specially crafted configuration file. Versions below 4.0.0.830 are vulnerable.
b97b54d87bbc935b01eccf81c297be574aecaedace6de6a4b4127979150d7bba
SEC Consult Security Advisory 20071101-0 - The SonicWALL SSL-VPN solution comes with various ActiveX Controls which allows users to access the VPN with Internet Explorer. These controls contain various vulnerabilities. Some details provided. Vulnerable versions include SonicWALL SSL-VPN 1.3.0.3, WebCacheCleaner ActiveX Control 1.3.0.3, and NeLaunchCtrl ActiveX Control 2.1.0.49.
b43c0aec3d769dbce9e0724d5a99830b17f328ef1c8aa8f7aaea4b93f308d5cd
SEC Consult Security Advisory 20071031-0 - The Perdition Mail Retrieval Proxy versions 1.17 and below suffer from a format string vulnerability.
4efe9018c77b580c8c0bdf7897b14f170b94aec142d3cc6dc57eb1e1f9e4d1f1
SEC Consult Security Advisory 20071012-0 - A specially crafted beacon frame can cause MadWifi to crash and cause a kernel panic on the affected machine. Versions 0.9.3.2 and below are affected.
2883ff9ab631d2d6a0fab31e709208bd4004c0c1c42c5cdd645102b1ba2f8088
Secunia Security Advisory - Aria-Security Team have reported a vulnerability in ImageRacer, which can be exploited by malicious people to conduct SQL injection attacks.
524108a247e98a12ccce7a0ed16ddb56aa286bddec95ae2d8264bef0ab3e1fa4
SEC Consult Security Advisory - SEC Consult has discovered an arbitrary code execution flaw in Joomla! version 1.5 beta 2.
27257772ee84bdb082f3c8d0b36b605e8ca0215067cd5b2505a0b873391955c4
SEC Consult Security Advisory 20070509-0 - The Nokia Intellisync Mobile Suite is susceptible to cross site scripting, source code disclosure, and denial of service vulnerabilities. Details provided. Versions known vulnerable include 6.4.31.2, 6.6.0.107, and 6.6.2.2.
51a25ba5752d84a5e2041a75ccb577608b5f1dc5ff208d33097a57a267d97907
Secunia Security Advisory - A vulnerability has been reported in Imager, which potentially can be exploited by malicious people to compromise an application using the library.
0d3d0195562767bb83dee70163191c5d71fcbb1323ce1bf95adc870f16e49cf4
SEC Consult Security Advisory 20070314-0 - If the Apache HTTP Server and Tomcat are configured to interoperate with the common proxy modules (mod_proxy, mod_rewrite, mod_jk), an attacker might be able to break out of the intended destination path up to the webroot in Tomcat.
ae0accd7dd41279f8531f981d7995776526f842a5d6e404b34ae2a7019a86a97
SEC-CONSULT Security Advisory 20070309-0 - Starting with version 5, MySQL provides access to the database metadata. When using functions that operate on strings in combination with subselects on information_schema tables and additional sorting of the results with the ORDER BY clause, a null-pointer dereferencation takes place causing a segmentation fault. This allows an attacker to crash the MySQL database. Versions below 5.0.37 are affected.
d00c6845f154920b81fdf6e0a349fb00b0670947308e18f0a2d4970997894dbb
SEC Consult Security Advisory 20070226-0 - The 3rd party module Pagesetter for PostNuke is susceptible to a local file inclusion vulnerability. Versions 6.2.0 and 6.3.0 beta 5 are affected.
575fbb65bb1e067007269f53fe512d45d47ee97dd535d2999d2ace632822781a
Secunia Security Advisory - GR has reported a security issue in various Canon imageRUNNER products, which can be exploited by certain malicious users to disclose sensitive information.
8875687a0dd363f6a7a2af1bb88652d6bc1f26b7e1608c1de20aa59a302e0a11
The Canon ImageRunner remote UI web interface software will reveal username and password pairs contained in address book entries when the address book is exported. Tested and verified on Canon iR C3220, iR 5020, iR9070, iR C6800, iR C6870, and iR 8500.
aaf3626f07dba31cc2373a96b075a9874d4650995009783d0bc2f6360209c404
Microsoft Outlook Web Access is vulnerable to an HTML code injection/cross site scripting attack. A malicous user could craft a mail containing HTML and Javascript code. Such code could be used to steal session information from the victims cookies, and thus enable the attacker to get access to the victim's emails.
dccfbc946917b8c4d45a7217924d48a440d871a4d69d0cbdf997231cd6903b20
An example of a return into libc exploit that possibly works though grsecurity patch protection.
3d52d2bc3578ca63d91d157654640485e25d9bb02f962aa6d3f5f5cfb99a6f01
SEC-CONSULT Security Advisory 20060413-0 title: Opera Browser versions less than or equal to 8.52 CSS Attribute Integer Wrap and buffer overflow
dcd897dcb4d39d9b5637377385db693ba270ea31b7ef988a7b4ecf1ccb586ecb
Debian Security Advisory 1028-1: Kjetil Kjernsmo discovered a bug in libimager-perl, a Perl extension for generating 24 bit images, which can lead to a segmentation fault if it operates on 4-channel JPEG images.
69a1a1ee0374027a88e4803b36b30b958787b0459ebd84d516391443159521b0
Secunia Security Advisory - Ole Kasper Olsen and Kjetil Kjernsmo have reported a vulnerability in Imager, which can be exploited by malicious people to crash certain applications on a vulnerable system.
da7f96ee9d90b270ac5732188c9851c2202a4077c724fc0038ba8763d6a7d931
Secunia Security Advisory - Debian has issued an update for libimager-perl. This fixes a vulnerability, which can be exploited by malicious people to crash certain applications on a vulnerable system.
5a9053854bac2970ab24ebd728aebcc13151a1b1e8b21a5e9fb45bbb34369a1b
PTnet IRCD v1.5 and 1.6 contain a heap overflow which can crash the IRC server.
a67d409ce4af132e56bbc17ae8518e16d584382d15ed3e1b1d192cd4d5877019
SEC Consult Security Advisory 20051223-1 - It is possible to read arbitrary files of the system such as the WEB-INF directory through the OracleAS discussion forum portlet. An attacker needs to know the file names.
775697c50859caa89bbb921a8a51d9bd892979eb7a28b8ba315d443a6c2d066a
SEC Consult Security Advisory 20051223-0 - OracleAS Discussion Forum Portlet suffers from multiple Cross Site Scripting vulnerabilities. E.g. it is possible to create relogin trojans, steal session cookies, alter the content of the site or hide articles which don't show up in the overview page.
d04346051912499b9c28f07d881f6390328e316d05d29a873a9d1b5b4f88b1a6
A denial of service vulnerability exists in GnuTLS versions prior to 1.0.17. The flaw lies in a failure to handle overly long RSA keys.
ba19a812a7cc901aba7111f7eaffd6b809286bc9e0333cbf2a17e986bcd6ceec
MyClassifieds SQL Versions below 2.13 are vulnerable to a SQL injection attack. The problem is due to improper sanitization of user input for the email variable. A remote attacker could insert arbitrary SQL code in the email variable. The passwords of the users can be written into a file and made world readable.
04c3f8142c6f5e430a1e163f919eff03fe8721fc45a531812584a2ec6b4a31ca
slocate package version 2.6 has a heap overflow that can be used to escalate privileges.
6ba8b2301f291c7b2a07530eefefa4b0453357391429f5eb3cd5ef3de679a744