finetd reads a configuration file to see which TCP/UDP ports to listen on, or which UNIX path names to create and listen on. When a connection is made to one of these ports, finetd launches an application to handle the request. finetd supports IPv4, IPv6, and UNIX domain sockets. Stream, Datagram (dgram), and Seqpacket socket types are supported.
ffbbecd1646f88b6108b6b0e4cbbda75b90f29ca74fedb0e6c0c9bcf6faef62e
Secunia Security Advisory - Debian has issued an update for kernel-2.4.27 and kernel-2.6.8. This fixes some weaknesses, security issues, and vulnerabilities, where one has an unknown impact, and others can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, bypass certain security restrictions, and gain escalated privileges, and by malicious people to cause a DoS.
7bfb45dd7063ed7a90e30a13300436cab7e7190ac3107fda1c0bec21193e8d1c
Secunia Security Advisory - Mandriva has issued an update for nss_ldap. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
a4716871bf22709e296b31e273d4b4b09238d6acc075650ff12dff14398055ba
SurgeFTP versions 2.3a2 and below suffer from a NULL pointer access vulnerability that allows for a denial of service condition. Proof of concept exploit included.
96ba9e5381e592d4d072a44bfec95c6c709a514dfe354bb195848ce5f7acd8cf
SurgeMail Mail Server version 38k4 and below and beta 39a along with Netwin's Webmail versions 3.1s and below are all susceptible to format string and buffer overflow vulnerabilities.
e952fa697baa5cd7cf0a4446ed1145fc6c1002df334d007bd01ff29eac866b6d
Proof of concept exploit for SurgeMail Mail Server version 38k4 and below and beta 39a along with Netwin's Webmail versions 3.1s and below which are all susceptible to format string and buffer overflow vulnerabilities.
3ebc17681f8932c74d7d95a7919503694f0afc2cd52cdc3dfd28a63cb7718bd8
Secunia Security Advisory - Adrian Pastor has reported some vulnerabilities in ZyXEL products, which can be exploited by malicious users to gain escalated privileges and by malicious people to bypass certain security restrictions or to hijack user sessions.
94dfc0a7c9e101b0888926249f413db379c87b0053c5c0f748dc79199a37a285
Secunia Security Advisory - Red Hat has issued an update for cups. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
cbbea23bde26aba989d8dff2534d8510abfe7c75c5e700ff8a16599c19d75ebd
Secunia Security Advisory - Hendrik-Jan Verheij has discovered a vulnerability in Joomla!, which can be exploited by malicious people to compromise a vulnerable system.
39cccfd82ccf0306ee3b2ab5eef2bbe622419bddd49cf025630b1af39fdc505a
Secunia Security Advisory - Two vulnerabilities have been discovered in the XM-Memberstats module for Xoops, which can be exploited by malicious people to conduct SQL injection attacks.
25ef77a6db82044d2d13f669807522a3b28521c77ba072be969710b3b7a67215
Debian Security Advisory 1508-1 - Dan Dennison discovered that Diatheke, a CGI program to make a bible website, performs insufficient sanitising of a parameter, allowing a remote attacker to execute arbitrary shell commands as the web server user.
bb11c3a3ef0a07cb04f25dbc195232a76773ead10aa5bf786069d5aeac14a102
The Wordpress Sniplets plugin version 1.1.2 suffers from remote file inclusion, cross site scripting, and code execution vulnerabilities.
9adad7ef35eb34571b6c41d1c54769b159cb40174e5f1391e454fd1810e93adc
Nukedit version 4.9.x suffers from a SQL injection vulnerability that allows for login bypass.
e06142c71fabd2c0062bc6350a17cd3924e26981a228e83adef65b44fa34f953
Core Security Technologies Advisory - A vulnerability was found in VMware's shared folders mechanism that grants users of a Guest system read and write access to any portion of the Host's file system including the system folder and other security-sensitive files. Exploitation of this vulnerability allows attackers to break out of an isolated Guest system to compromise the underlying Host system that controls it. Proof of concept code included.
68b271fbfbeed0f3bae80dc9ec60d6899f7aca244beef0090f1c0a0c97ce10b8
Mandriva Linux Security Advisory - A race condition in nss_ldap, when used in applications that use pthread and fork after a call to nss_ldap, does not properly handle the LDAP connection, which might cause nss_ldap to return the wrong user data to the wrong process, giving one user access to data belonging to another user, in some cases.
75d112db369f9688f13bfe33d1021ffa3523f0ff6d776022e439f0fd22953ac3
S21Sec Advisory - BEA Weblogic versions 7.0sp6, 8.1sp4, and 9.0sp2 suffer from a flaw where it is possible to launch a credential brute force attack against known users through an internal servlet that permits the bypass of the user locking mechanism.
a5fb6b68cd55bdb29a6f99a3c3665b929686e92efde94604ece0630b44ed64f8
The Joomla com_wines component suffers from a remote SQL injection vulnerability.
a9a000e705758a3d0d9c7ab20272f89e4045cb083fd2b021deff36dab9080c10
RadialNet is a network visualization tool. It consists in a graphical visualization of the networks mapped with Nmap, with some efforts to make it easy to find security problems.
a5ff461fcb356d7a4280b9a001ed3297f8d09469a009d68c8b96b8a0ee94c4eb
PORAR Web Board suffers from a SQL injection vulnerability in question.asp.
ec9e530ac54767178f5a705028b8cc4ff1f58616cad3b955b460d3320b42232e
php Download Manager versions 1.1 and below suffer from a local file inclusion vulnerability.
7576a0b1f5b2c46b6bc4b789ea0671364c7d045ef58266bb49a0863e6cd1650c
The Alkacon OpenCMS suffers from a cross site scripting vulnerability in tree_files.jsp. Version 7.0.3 is susceptible.
504c455e0aaa2ee0309349fcabdc82c71cefa1b12f90b3b4c7867b0d30e92609
Packeteer PacketShaper and PolicyCenter web management interfaces suffer from cross site scripting vulnerabilities. Version 8.2.2 is susceptible.
3a473a89575ca2787873d351a8d7e0e9ca2a79431a64c5d52914570195cf78f9
e-Vision version 2.02 suffers from multiple remote SQL injection vulnerabilities.
a578e83b1d6275daceb7a0f15daaea59b0071399baff562d8aa8d0dc77f70b81
The Aura CMS lihatberita module suffers from a remote SQL injection vulnerability.
de49092bbf2f897a2328fe04013cb9802c2f4681892b2e10f2f1be1582334be4
The PHP-Nuke Gallery module suffers from a remote SQL injection vulnerability.
8479e499fecfce323ee888817b7f31506c1bef1895745d17f4174ff923710559