SC version 7.16 suffers from a stack-based buffer overflow vulnerability.
40e606ae5848c8a18afcea6e187fa8b744256b579867bdeaeb23ecddd85f175dSecunia Security Advisory - A vulnerability has been reported in RoundCube Webmail, which can be exploited by malicious people to conduct script insertion attacks.
6206f9b456f976185dfbf29eddaa5d17c527e68d821d2ca6e7f9c489dbbe2901Secunia Security Advisory - Some vulnerabilities have been reported in VMware Workstation and VMware Player, which can be exploited by malicious, local users in a guest virtual machine to gain escalated privileges.
6ffe6033f160b2c177e7a564b82737c3dfec5d3db1607d2bc7da877361b0b4ffSecunia Security Advisory - Two vulnerabilities have been reported in PostgreSQL, which can be exploited by malicious people to disclose certain sensitive information and compromise a user's system.
5f6689ccbd14a11663edb78085fd876cc43a1e16c7541f749a3e943476d61261Secunia Security Advisory - Some vulnerabilities have been reported in TYPO3, which can be exploited by malicious users to conduct script insertion attacks, disclose sensitive information, and compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.
a8da39ec795d458b751baf8f596c08c5b8787657117a6a3448e652865893bd96Secunia Security Advisory - SUSE has issued an update for opera. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user's system.
4a0a1b4903894469bff498da1a1de032a7ea6158e3482a326613ddf0ff53b8a1Secunia Security Advisory - Justin C. Klein Keane has reported two vulnerabilities in the HotBlocks module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and cause a DoS (Denial of Service).
fd66d289c29962cfb58bf6dff524d5a580cb93c94046532983e4247cd4e04963Secunia Security Advisory - High-Tech Bridge has discovered a vulnerability in Jease, which can be exploited by malicious people to conduct cross-site scripting attacks.
5f4d5743028f542ee686cdc1ac604ca3c51831169ece42241f8efba41f6b1867Secunia Security Advisory - A vulnerability has been reported in the Elegant theme for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
d2854560cddfa61cfe86ceecb80c48718450d1c7f41c5dd9b2a5bee6ad23de4bSecunia Security Advisory - A vulnerability has been reported in the RSVPMaker plugin for WordPress, which can be exploited by malicious people to conduct script insertion attacks.
1308c5365a8a6322182004b702e1cffdb5aa396feec096ae18a853239f2a9478Secunia Security Advisory - Justin C. Klein Keane has reported a vulnerability in the Custom Publishing Options module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
cc35b5266f1d0b8ceb2030857739c796b62542e3b08fdf9ae6beacedabc27687Secunia Security Advisory - High-Tech Bridge has discovered two vulnerabilities in Jease, which can be exploited by malicious people to conduct cross-site scripting attacks.
144c35ba8c91be8c7efe883052c59629094be2e6cc6832f36e74ed09cced6c95Secunia Security Advisory - A vulnerability has been reported in IBM Lotus Sametime, which can be exploited by malicious users to conduct script insertion attacks.
4a6db069761d8663aef5f77c93d75b1227ef014fa08b0e34c2a48a57816cc4fdSecunia Security Advisory - A vulnerability has been reported in IBM Hardware Management Console (HMC) and IBM Systems Director Management Console (SDMC), which can be exploited by malicious, local users to gain escalated privileges.
ad291daf2f590e8e133fc0ae3133eb5a7bee2aea4dfa2c0a92ce907b62295500Secunia Security Advisory - Reaction Information Security has discovered a vulnerability in Total Shop UK eCommerce, which can be exploited by malicious people to conduct cross-site scripting attacks.
54a1c2c18a8dfaba92348a1f51fd327b03d8d1ed64c4d66c3807bb7eca1e7163Secunia Security Advisory - Jason A. Donenfeld has reported multiple vulnerabilities in Tunnelblick, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges.
8c9d1893a644faab21ac7ba697bdfaaca3106fa8b9f3d7ec8c26978fde1b9178Sphpforum version 0.4 suffers from cross site scripting and remote SQL injection vulnerabilities.
7502224f9e635dc27202e748cdf5015178a6e1641cbf8304333b802649a8903cDrupal version 6.22 with Hotblocks 6.x suffers from cross site scripting and denial of service vulnerabilities. Proof of concept information included.
17fd7caf06fdac8c5a9e14bc764b6c00c9303d84f1395974dc92767ed9a8a7f2Drupal version 6.22 with Custom Publishing Options version 6.x-1.4 suffers from a cross site scripting vulnerability. Proof of concept information included.
48dd91f8b89ca979ca8e11af83723a4ee087f9e15fcaa581b8d6f6470708cf67Cisco Security Advisory - Cisco IOS XR Software contains a vulnerability when handling crafted packets that may result in a denial of service condition. The vulnerability only exists on Cisco 9000 Series Aggregation Services Routers (ASR) Route Switch Processor (RSP-4G and RSP-8G), Route Switch Processor 440 (RSP440), and Cisco Carrier Routing System (CRS) Performance Route Processor (PRP). The vulnerability is a result of improper handling of crafted packets and could cause the route processor, which processes the packets, to be unable to transmit packets to the fabric. Cisco has released free software updates that address this vulnerability.
bc07f2e416a80379a131e30d960f750f093f1907368c5841670468346b98ce8eDrupal Elegant Theme third party module version 7.x suffers from a cross site scripting vulnerability.
5cd009a2b5bb39d8473e502fc09119a2302b0d2363ca9167442d0a9f58ad5ea2Drupal Custom Publishing Options third party module version 6.x suffers from a cross site scripting vulnerability.
5c0dec500b232cd3c340e97fe90d0022a5f7a7cae9406845e963e1c4492c9de0Drupal Hotblocks third party module version 6.x suffers from cross site scripting and denial of service vulnerabilities.
3a4741a9e059e7fcb96a3197a8a6b543be251afe504d362ea481cb4229600a6bMandriva Linux Security Advisory 2012-132 - Multiple cross-site request forgery and cross-site scripting flaws has been found and corrected in GLPI. This advisory provides the latest version of GLPI which are not vulnerable to these issues. Additionally the latest versions of the corresponding plugins are also being provided.
278fcab2d1ab2e4d4ef8819f221aff25448777d5df0d2fe452abe0b3a7049feaThe ZeroNights 2012 Call For Papers has been announced. It will be held in Moscow, Russia November 19th through the 20th, 2012.
edba79f5df7aeaf759abda55a8568cb43e0427755b1fe12827b65931c2dd9375Debian Linux Security Advisory 2530-1 - Henrik Erkkonen discovered that rssh, a restricted shell for SSH, does not properly restrict shell access.
0d9bc3525aeb950d987b4c43ac3fdffeb95324914c2925e4c0a684a30e340450
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed