Secunia Security Advisory - A security issue has been reported in TWiki, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
fa29709403ea345e7ff11d9870800ba9cd91c93c39dc0ad64163c47965b9417dSecunia Security Advisory - !R4Q!4N H4CK3R has reported multiple vulnerabilities in NetArt Media Jobs Portal, which can be exploited by malicious people to conduct SQL injection attacks.
f82c2c3cd5c0d2aa85d2f8c10b5e9dfa342e2f53f46891c94ccf0f03d6a51a4fSecunia Security Advisory - Debian has issued an update for twiki. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
f3ce136d82763ff1ed5d98bfef17dc6f02b25b93bdc27229e3207f25d0afaaeaSecunia Security Advisory - Gentoo has issued an update for postfix. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
ec51f648ef76cd1f70c06065099b831fb940396a0b1071d55bcdd77f162cef83Basebuilder versions 2.0.1 and below suffer from a remote file inclusion vulnerability.
a4c1faae5a96ab4190cbaec3b3bf04a7ffd0436b7f233256db6efe36e83a2097Sagem Routers F@ST remote cross site request forgery exploit that uses a DHCP hostname attack.
4176f5519f25ede31d012a976f62096e7bcfdf8545e43a0ccf34d1cc68d053dfSecunia Security Advisory - !R4Q!4N H4CK3R has reported a vulnerability in NetArt Media Real Estate Portal, which can be exploited by malicious people to conduct SQL injection attacks.
18d87b4aa60720c8d960cc1868b4f37f544bd431a0a4b764ae3527d171e23195Secunia Security Advisory - Debian has issued an update for horde3. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
f4f866374225a85e0f53c2ff1646753fc47cadb2e42890d8625f60936f7d07b1Secunia Security Advisory - Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious, local users to conduct cross-site scripting attacks, by malicious users to compromise a vulnerable system, and by malicious people to conduct spoofing and cross-site request forgery attacks.
afadc66c57c5df86673d6fa481af749d7cb75a0010c125ddd97d1390a63086df6rbScript suffers from a remote SQL injection vulnerability in cat.php.
ce8d43c9100a61eada891f897ef44a8a2573263195e65efb9424d1dd220f0fd9Secunia Security Advisory - Gentoo has issued an update for havp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
4a0a22c6f22d71a10861f7b0b852ccc65a2f971d1f2a711cfb02fdacbc4495b3Secunia Security Advisory - A vulnerability has been reported in strongSwan, which can be exploited by malicious people to cause a DoS (Denial of Service).
f4463f099db760afa5f0e478112e45ee383e440731e55d79631058fda2aada98Secunia Security Advisory - Gentoo has issued an update for mantisbt. This fixes some vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and malicious people to conduct cross-site scripting and cross-site request forgery attacks.
2e49e0a336c3caebb4c30a9aa058bc9f4bfd29d2051ad0bf281ef28bba86dea9Fez software versions 1.3 and 2.0 RC1 suffer from a remote SQL injection vulnerability in list.php.
b1aeab1ff9e38812ff958b7471056a24cb898d5cc3925dc890d93bfaf03314ddMandriva Linux Security Advisory - Pavel Polischouk found a boundary error in the PartsBatch class in the Pan newsreader when processing.nzb files, which could allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted.nzb file. The updated packages have been patched to prevent this issue.
85e305b340bf20c5e54ef282c14e02fdefaff36cd0f5b05bbbb3583cf2fed9faSecunia Security Advisory - A vulnerability has been reported in ProFTPD, which can be exploited by malicious people to conduct cross-site request forgery attacks.
29d26366e0236b1083c64fb95da56c9c28c5d94072b3687db0a1b1efab5fe799Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), and by malicious people to cause a DoS (Denial of Service), conduct cross-site scripting attacks, bypass certain security restrictions, disclose sensitive information, or to potentially compromise a user's system.
cfa89f6768cf956ce5fbf16270d0b706bc8c3b7f9cdcef37dcbf4ca654e5379dGentoo Linux Security Advisory GLSA 200809-13 - R is vulnerable to symlink attacks due to an insecure usage of temporary files. Dmitry E. Oboukhov reported that the javareconf script uses temporary files in an insecure manner. Versions less than 2.7.1 are affected.
7a6492d9f03e324b6a848b1b3fe59e88048ee6ac6f8f6d962b263f5af9b5b70fGentoo Linux Security Advisory GLSA 200809-12 - Insufficient input validation in newsbeuter may allow remote attackers to execute arbitrary shell commands. J.H.M. Dassen reported that the open-in-browser command does not properly escape shell metacharacters in the URL before passing it to system(). Versions less than 1.2 are affected.
562acdec40cb15d8ba8e428dae7832337ce71c7e755adf24d69b9c7820ed1fd4Mandriva Linux Security Advisory - A heap-based buffer overflow was found in GNU ed that allowed context-dependent or user-assisted attackers to execute arbitrary code via a long filename. This update provides GNU ed 1.0, which is not vulnerable to this issue.
de708e796cf8394c907a39bc1c5a3f97809b4055f65e1283087d9efc333cbcc4Debian Security Advisory 1619-2 - In DSA-1619-1, an update was announced for DNS response spoofing vulnerabilities in python-dns. The fix introduced a regression in the library breaking the resolution of UTF-8 encoded record names. An updated release is available which corrects this problem.
c623f997c80873561d709ccbf0c8493c98b7460582a70be464629608e1a44d40BuzzyWall versions 1.3.1 and below suffer from a remote SQL injection vulnerability.
86381b50ce3a3ddafcbae71603255fed98b858909be2fcf72ce5a1c60e653c43MyBlog versions 0.9.8 and below suffer from a cookie poisoning vulnerability.
b45a11683b73989ffce188a9b7e87e264d39e057d9b291c80df81c8b3fd76dc4Secunia Security Advisory - A security issue has been reported in McAfee SafeBoot Device Encryption, which can be exploited by malicious, local users to disclose sensitive information.
0da1496283d19a34e2bbe89e5268a535b0c2b42db1e1d2f1f8a3ef5f1644a83cSecunia Security Advisory - 0x90 has reported a vulnerability in MyFWB, which can be exploited by malicious people to conduct SQL injection attacks.
c996bee08acdf28cda4b1a1acc06abccb8a2ed1ea78496a37cbd407e4ebad91f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed