tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information.
bcf06bdf16ff903821e33fc1ce6219d6429971aa5acd70f4e8a35b4332442812Watchguard Server Center version 11.7.4 suffers from multiple reflective cross site scripting vulnerabilities.
21a7488291867114eeb368131b1bd0f179b36af50dd69fe04235cd15e9d10e81A stack-based buffer overflow and a kernel memory disclosure vulnerability have been discovered in the system call handlers of the camera driver for Android.
5e4baafc3b719ae7fddd0675ed808b960988f0436701a0308d0d5005f17017a3Debian Linux Security Advisory 2783-1 - Several vulnerabilities were discovered in Rack, a modular Ruby webserver interface.
3c392a1375e3aa987daddb2c193f9928f448bd6e8ece3459581735e59e24c6f5Debian Linux Security Advisory 2781-1 - A cryptographic vulnerability was discovered in the pseudo random number generator in python-crypto.
6695a6576586dea915a7c65e935fc8c86b16417e40a9f3b27fa899ac2231fddfRed Hat Security Advisory 2013-1448-01 - Red Hat JBoss Operations Network is a middleware management solution that provides a single point of control to deploy, manage, and monitor JBoss Enterprise Middleware, applications, and services. A flaw was found in the way the DiskFileItem class handled NULL characters in file names. A remote attacker able to supply a serialized instance of the DiskFileItem class, which will be deserialized on a server, could use this flaw to write arbitrary content to any location on the server that is accessible to the user running the application server process.
03fa7e52d5b3150d12a62cd92687cd74e25829acb9a583514ad4089323ece6f9Red Hat Security Advisory 2013-1447-01 - These packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Software Development Kit. Multiple input checking flaws were found in the 2D component native image parsing code. A specially crafted image file could trigger a Java Virtual Machine memory corruption and, possibly, lead to arbitrary code execution with the privileges of the user running the Java Virtual Machine. The class loader did not properly check the package access for non-public proxy classes. A remote attacker could possibly use this flaw to execute arbitrary code with the privileges of the user running the Java Virtual Machine.
a4a9467ade7fa361d330fec6175a9960c1af594161dadf75c30566556438330aUbuntu Security Notice 1991-1 - It was discovered that the GNU C Library incorrectly handled the strcoll() function. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code. It was discovered that the GNU C Library incorrectly handled multibyte characters in the regular expression matcher. An attacker could use this issue to cause a denial of service. It was discovered that the GNU C Library incorrectly handled large numbers of domain conversion results in the getaddrinfo() function. An attacker could use this issue to cause a denial of service. Various other issues were also addressed.
9a3faf4d014c0ecc32760724cade9dbcc4a41d949e21274c41bba46d64866b9fDebian Linux Security Advisory 2782-1 - Multiple security issues have been discovered in PolarSSL, a lightweight crypto and SSL/TLS library.
97680e92d317bf31d647c5abadc604617e0328ccc9f37594fbd9fec713ac66a5Slackware Security Advisory - New hplip packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues. Related CVE Numbers: CVE-2013-4325.
d51789595e74cd6d927413448faf207d8b136de73fc3d59e6680590ccc5769c8Slackware Security Advisory - New libtiff packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Related CVE Numbers: CVE-2012-2088,CVE-2012-2113,CVE-2012-4447,CVE-2012-4564,CVE-2013-1960,CVE-2013-1961,CVE-2013-4231,CVE-2013-4232,CVE-2013-4244.
8efbfdf677fa9982c5f47aeec194dfc0fddb0fe6852beca1661e63d8b3687b4bApache Sling versions 1.1.2 and below suffer from an open redirect vulnerability.
ee270abce05743ee02362386f6d83b6a0c357df5e869edb7ce72edc6ced89f5bFiberHome Modem Router HG-110 suffers from an authentication bypass vulnerability that allows the remote changing of DNS servers.
972d616c28086f2b3f10a8ca5c80a965c307fe54834e9cd0d9ecabca6979c7e9The Quest One Password Manager simply fails to check the CAPTCHA submitted if the values do not accompany the payload.
313d269064ddfbfb5e73fe5e9e030996a25bafd0370abddea445ea7aa3963b9aThis brief article explains the process of .text section's relocation after passing the link_map object.
a5f963a9dcb408cc957d47bf57c12f5f9de416ea728b132bc68ab35f7d718857glibc version 2.5 suffers from a crash bug due to relocation types.
163fcff7cbfeb2e0da5ae7c5f567ee8309c8399af6b50ef32484366325637dfc
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed