Gentoo Linux Security Advisory GLSA 200812-13 - Multiple vulnerabilities in OpenOffice.org might allow for user-assisted execution of arbitrary code or symlink attacks. Two heap-based buffer overflows when processing WMF files and EMF files were discovered. Dmitry E. Oboukhov also reported an insecure temporary file usage within the senddoc script. Versions less than 3.0.0 are affected.
5148e74b000770dea6ce22f6704a513e020b91049da895d70a21b00c52cf536b
Gentoo Linux Security Advisory GLSA 200812-12 - An insecure temporary file usage has been reported in Honeyd, possibly leading to symlink attacks. Dmitry E. Oboukhov reported an insecure temporary file usage within the test.sh script. Versions less than 1.5c-r1 are affected.
47870f979765db1c19cfd909962b2b7fecdea250510ae77a97d91f55303b8bee
TmaxSoft JEUS versions below 5:FIX#26 suffer from an alternate data streams vulnerability that allows for remote file disclosure.
de38fc496f3023ab7b9fcba54a363ff9c3887065acf78f6c7ebfd45a2ab274c8
IGUJV - The Infection Guide Using Java/VbScript.
a538f8839bab1ef1109be3133ef023b39a9e09b143ed21b6e0d555959cfb667a
ColdFusion Scripts Red_Reservations suffers from a remote database disclosure vulnerability.
cfbda6db9af67a8919307817939d5e612f8b25c63831e0e0e9e4d35d3e88bb18
Social Groupie suffers from a remote file upload vulnerability in create_album.php.
15e9dd3577d230239d8706161fde60c3ae42b1782bbdcb733b8a11db077efdbb
Social Groupie suffers from a remote SQL injection vulnerability in group_index.php.
287358d5ad75985b2a0e815cd63d702be8d194c6b654c0722abbdd56d7eaac55
Umer Inc Songs Portal Script suffers from a remote SQL injection vulnerability.
7f75d1a6516499536e0756bfd1adba2f9df8b1531b25946c06942010a243e818
Moodle version 1.9.3 suffers from a remote code execution vulnerability. Full details provided.
604fed1136c665e395b41c51641f80c673942dba92e616551632c7f5f1aac44e
VP-ASP Shopping Cart version 6.50 suffers from a remote database disclosure vulnerability.
95d0bfc9fed236a3d3af7acc1eae3daea090862f8d56ecd1138c62bf0f7d1a36
Joomla Live Chat suffers from remote SQL injection and open proxy vulnerabilities.
680e2bd8680e2a7c635d4b94ee0d8a21731f0eefc64fc7a8346ca7cbc080f496
Debian Security Advisory 1685-1 - Two vulnerabilities have been found in uw-imap, an IMAP implementation.
84b627e46f32614c134ce1d28fdce2e2a2a31b0c545cdde1026a6f49f090090b
Wysi Wiki Wyg version 1.0 remote password retrieval exploit.
afad1879bdfb82f7ab7dcf5ece2a00ec7f4898bd2ad90de5959874e709919c66
This article discusses buffer overflow vulnerabilities in Linux kernel's Slab Allocator. All examples presented on this article were developed and executed on a x86 processor-based machine running Slackware Linux 10.2. Previous knowledge of buffer overflows is required.
de9f3af11d7e245892dedad5aacde5562b9c0a81ac458d179d52453f718c6faf
The Net Guys ASPired2Blog suffers from remote SQL injection and database disclosure vulnerabilities.
24063421a864008f0952d88b308ebdfc666bfa31fa69cd0418f20ad5b1496582
XPOZE Pro version 4.10 suffers from a remote blind SQL injection vulnerability in home.html.
436d4ac79907b44b0dafe21a61ac7e32c13297f3dadc27319d9e176974a8718d
SUMON versions 0.7.0 and below suffer from a remote command execution vulnerability in chg.php.
f9955da83ee357014955d5315c304e35ce8fad51dee80fb9440fb5b3dcee9914
The Nokia N70/N73 Bluetooth stack OBEX implementation suffers from a denial of service vulnerability. Proof of concept code included.
53d44f61bf1cfead6383de01459b8edd7b789e80273f7968d8477ba590233237
ASP-CMS version 1.0 suffers from remote SQL injection and database disclosure vulnerabilities.
b3d667514b265b894bae15f62ac9f709896d0de55104ab981e546b3d0eac0849
The Net Guys ASPired2Protect suffers from a remote database disclosure vulnerability.
61d3a34bc185d374903972efd6cc1a6956e6d5a76f39d9cee826791133c4b46f
The Net Guys ASPired2poll suffers from a remote database disclosure vulnerability.
2ac994773b3cd4d2993fae57e8a859e659844fe82ca98d9da8b7a8681f9798fb
Microsoft Visual Basic Active-X Controls buffer overflow proof of concept exploit that leverages mscomct2.ocx.
9e908a95caf95ef805674d900baaa9e609f55f84e306674f7900dde2246a3c2a
Secunia Security Advisory - G4N0K has reported a vulnerability in PayPal eStores, which can be exploited by malicious people to bypass certain security restrictions.
c11c163be30df97d0fa4d23a5f11c90b71620c321ddd8968392134584862fdd0
Secunia Security Advisory - R3d D3v!L has reported a vulnerability in multiple Ad Server Solutions products, which can be exploited by malicious people to conduct SQL injection attacks.
f2ab9dbb8ba52e726ea54a56212b01d05721ce593514ba82f87b8f8de46039a3
Secunia Security Advisory - XaDoS has reported a vulnerability in Xpoze, which can be exploited by malicious people to conduct SQL injection attacks.
f068f337898ad130013bc52fcb4a857ccf8c1f3d765e3f22c6bfac56f0dcfd86