Debian Linux Security Advisory 1942-1 - Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to the execution of arbitrary code or denial of service.
aaec69629e4af17984ae9d4966878d216bc3c00d7cdde81901ac2bb020fcc6a0Mandriva Linux Security Advisory 2009-306 - Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the base_dir directory, and possibly the base_dir directory itself. The updated packages have been patched to correct these issues.
d9571c3961fd47c956899a4032f0b9a1cf3398e9d0bebaf5ba4b56b9ba832758Mandriva Linux Security Advisory 2009-305 - PHP 5.2.11, and 5.3.x before 5.3.1, does not restrict the number of temporary files created when handling a multipart/form-data POST request, which allows remote attackers to cause a denial of service (resource exhaustion), and makes it easier for remote attackers to exploit local file inclusion vulnerabilities, via multiple requests, related to lack of support for the max_file_uploads directive. The updated packages have been patched to correct these issues.
8588d381d2abb27d9725664cce93b232f3fae39d7e26be16675a82809f1bcc9fElxis CMS suffers from a local file disclosure vulnerability.
487987ab0b7cc4735c71bb9329c7870c89a23ef7e01c401143372c084829a48cMandriva Linux Security Advisory 2009-303 - Some vulnerabilities were discovered and corrected in php-5.2.11.
844464288de02b7df255dd47353061c269f2ec0291cd09a19dade3c22d33c267Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. The package contains one shell script, a few text-based databases, and optional Perl modules. It should run on almost every Unix variety except Solaris and NetBSD.
e3f5e21307e4876da4bc4a1521a86f1cda93ad22d4c77366876d7c170dcefc10Harald Scan is a Bluetooth discovery scanner. It determines Major and Minor device classes according to the Bluetooth SIG specification and attempts to resolve a device's MAC address to the largest known vendor/MAC address list. Written in Python.
339dde2f9af4e33bd285ca05bffe95f97e3935c6d8e989ada01fcdea73f95a11Oracle SYS.LT.MERGEWORKSPACE exploit that grants DBA permissions to an unprivileged user.
b5f65c3b64621f1fbfa980d979a3128fdf9f7c890ed9639577adc336e76c847bOracle SYS.LT.REMOVEWORKSPACE exploit that grants DBA permissions to an unprivileged user.
07b2d913a409e84fed4e6008b1954a5cbc7ab0c5010d444cca67e58f320bb38eOracle SYS.LT.COMPRESSWORKSPACETREE exploit that grants DBA permissions to an unprivileged user.
c4934ec56ac73f45c009b54ec261c44817e099a901e8085b4d1459cdc1924e9bOracle ctxsys.drvxtabc.create_tables exploit that grants DBA permissions to an unprivileged user. This version uses an evil cursor technique.
8d39a9c0f8690e63871668b6fd563b4fdbd4f753c9719adb00a3640742109bd3Oracle ctxsys.drvxtabc.create_tables exploit that grants DBA permissions to an unprivileged user.
e21120b8e89846075db130caf29552833db3e64fe9ee8b455ea2ba6ace4336dfSweetRice versions 0.5.3 and below suffer from remote and local file inclusion vulnerabilities.
529a5da49d0b6735fd6024195c512d6d1c1fe7308164187db46fa70472b8ee78MuPDF and SumatraPDF suffer from a buffer overflow vulnerability. Proof of concept pdf included.
d1b2e1f9b65330d9953cb0fb733379c0749b72d89292a81f9cfa895e81086553SweetRice versions 0.5.0 and below suffer from a remote file inclusion vulnerability.
99bab9000ea3b8689459c7dfa2626db2668846a038c55a42f502f4bbdcda7f2eHP Security Bulletin - A potential security vulnerability has been identified with HP-UX OpenSSL. The vulnerability could be exploited remotely to inject unauthorized data or to create a Denial of Service (DoS).
cd73e680643ad55bacc1b844331635889880e335ca49e558ebed8d627b969708Secunia Security Advisory - Debian has issued an update for wireshark. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
1ef4844dde32a8c1c1ea5be60e0a77b57842c17512e89b292758678529ab0234Secunia Security Advisory - A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to conduct cross-site scripting attacks.
ae89725a5d18f5f1300dd5f878717d782a267f4930f1fd8334df749ad2cb3a3bSecunia Security Advisory - Fedora has issued an update for tomcat6. This fixes some vulnerabilities, which can be exploited by malicious users to disclose sensitive information or manipulate certain data and by malicious people to cause a DoS (Denial of Service) or disclose sensitive information.
dbb33008c8a17393e0dfedbadb1496ecbd8e90a05410479d6cb0174ba76684a6Secunia Security Advisory - Fedora has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
d21534021a29180dc2c2e9021a5f37b31b8e9de152c340ecbd4d4b8faa88df05Secunia Security Advisory - shinnai has discovered a vulnerability in Haihaisoft Universal Player, which can be exploited by malicious people to compromise a user's system.
18a6132ef33a501603ce6118ac21acde37a72f0f00fe9893e13441e34c46ebefSecunia Security Advisory - Christophe Devine has reported some vulnerabilities in SumatraPDF, which can be exploited by malicious people to compromise a user's system.
57b01ccab30976d284b06a160518fc5587ab5dddd8b4c8a0ea8f4152a15e5d3eSecunia Security Advisory - Christophe Devine has reported some vulnerabilities in MuPDF, which can be exploited by malicious people to compromise an application using the library.
1a4b674837e4cf7f6434211f7f97e23216a74d70f16af1cde8c6d961f091846a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed