Debian Linux Security Advisory 2286-1 - Several vulnerabilities were discovered in phpMyAdmin, a tool to administrate MySQL over the web.
5232eb39ec45ec2a9658885191e2c8d369d735ac029588b312fe47f2a4e013ed
Ubuntu Security Notice 1175-1 - Frank Busse discovered that libpng did not properly handle certain malformed PNG images. If a user or automated system were tricked into opening a crafted PNG file, an attacker could cause libpng to crash, resulting in a denial of service. This issue only affected Ubuntu 10.04 LTS, 10.10, and 11.04. It was discovered that libpng did not properly handle certain malformed PNG images. If a user or automated system were tricked into opening a crafted PNG file, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Various other issues were also addressed.
92daf6ee43c8d5622ba23054cf71dfca5352ef48f121ff986c1c69679c68938f
This file contains slides for the "Hacking IPv6 Networks" training provided at Hack in Paris 2011. They contain quite a few insights about IPv6 security, along with a number of practical examples.
0af18cc2f54ae7ea48274dedc1287d62ed07d9b755e212983a06fd390b67eb47
SLP (Service Location Protocol) remote denial of service proof of concept exploit that can trigger the condition via unicast, broadcast, or multicast.
c9ad95fc494bae9d2eb2c0be708f1ac0e9a1c10697cc75ee4e041e68f87945b2
Support Incident Tracker versions 3.63p1 and below suffer from remote SQL injection vulnerabilities.
d4a6bc7e2ac349f7d736bc6594644fbdd8e54b6274d0fda98363192261310ca1
The Dlink DPH 150SE/E/F1 IP phone suffers from denial of service and various unauthenticated access and modification vulnerabilities.
26fccaa5ce6123c970ad586f47c5d8a6c4dd0e9765aa221bc691efade5b1b759
Koha Library Software versions 3.2.9 and below and 3.4.1 and below suffer from multiple cross site scripting vulnerabilities.
3ceab4b96a6e70ac2828230fc031ec16996a0e7cd103f65c472c879271d1a2f8
ICQ.com suffers from a cross site scripting vulnerability due to a lack of input validation and output sanitization of the feeds entry.
e673c9765f4e32f91e0d8407606fc5b8601cfc4f2f9fbfe3988f0be19164a4a6
ICQ versions 7.5 and below suffer from a cross site scripting vulnerability.
31d83c74f94445f24399187764dee9ca50087a3f3e58258be59ecbd5143e257d
DotComEgypt suffers from a remote SQL injection vulnerability.
391745199af58e1f603c41b6120fd69e8c7f5f57a8071e62fc39defdf27a2ca6
Polymedia Ltd. suffers from multiple remote SQL injection vulnerabilities.
fa8d0a9d18122ff15741b84e85ed273fee83243872968a9fd4f4dca574ac49f4
PlanetComnet suffers from a remote SQL injection vulnerability that allows for authentication bypass.
2f4db3c2c0b9f021c546a543b9aa1ede950b9f3fa436cb4eeaa1b1adeeb7d626
CA ARCserve D2D r15 GWT RPC request authentication bypass, credential disclosure, and command execution exploit.
ba437467db2d0ae23ae1583f986c67fb9286a047550ea40e3d8174f579d96061
Lava suffers from a remote SQL injection vulnerability in news_item.php, album.php, and basket.php.
ca455bae22c08a2def4b87882405127bfed3a0a4f8e0a66f5d22e734d387e2d1
Precision suffers from a remote SQL injection vulnerability.
ffef167e82f95dc3c6b4dd6c34995c88dcdf8f27c819bf4c0dd1f6cb02b797ce
Indonesia Web Design suffers from multiple remote SQL injection vulnerabilities in link-directory.php.
865f07024d6bda4d62634c46f92f4a4964db62187d0def944767833349ddc6d2
Concept Medya suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c30c22bff3358d55ea9bb9a1e6521bde60e29737d60cb37e4152ea08efd4c9c7
Virtual Consultant suffers from a remote SQL injection vulnerability in newsDetail.asp.
c37350298291e367d7412d0538e7bd62ac93df043ed87b050d2a227f04ee1f20
Zones Web Solution suffers from a remote SQL injection vulnerability in index.php.
19d98d65b7d8229fbd2dd753ae69940026d4694a05f36f5105046e8d11c03acf
Funnel Web suffers from a remote SQL injection vulnerability in items.php, directory.php, selected_product.php, and pages.php.
4f15041334a69a4d4cc45017bc53fd96b0554672760942e417efeaf692c5b123
WebKit as used in Apple Safari versions prior to 5.0.6 memory corruption exploit with DEP bypass.
16a041c37b31ede793a60e292d6bfca2a8af34db4883b9ac92c3e4c061829c85
Secunia Security Advisory - Red Hat has issued an update for systemtap. This fixes two security issues, which can be exploited by malicious, local users to gain escalated privileges.
cfc6e7c5420890d659bac96abff61045821c515fea7db9106296445651cc3723
Secunia Security Advisory - A vulnerability has been reported in Apple iOS, which can be exploited by malicious people to conduct spoofing attacks.
45ec3af650067901b5318c2e99eddda5fa303536567fc9dbedadd4e3606cef53
Secunia Security Advisory - Multiple vulnerabilities have been reported in Apple iWork, which can be exploited by malicious people to compromise a user's system.
b60860eaafebc982f92ef84fac1de1bb031bc657b32960a5583f252ce114403d
Secunia Security Advisory - A vulnerability has been discovered in OpenX, which can be exploited by malicious people to conduct cross-site request forgery attacks.
72f0509ef87bf0ba1b9873a9ea72c678340e648b5ee5fb5b917e97ad2013ba2b