Secunia Security Advisory - Multiple vulnerabilities have been reported in SRWare Iron, where some have an unknown impact and others can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
a74b542a683a1fb565a472128f4fe9b7ef872d97c87512ec093e2e7068f0528eThis javascript triggers a denial of service condition on Safari for iPod Touch version 4.2 that causes the application to crash.
45e8470be0c976e23409c9de4417dcd3aeebb92bda36d9480b4b3700f5b40794Zero Day Initiative Advisory 11-088 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Security Agent Management Console. Authentication is not required to exploit this vulnerability. The flaw exists within the webagent.exe component which is handed requests by an Apache instance that listens by default on TCP port 443. When handling an st_upload request the process does not properly validate POST parameters used for a file creation. The contents of this newly created file are controllable via another POST variable. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
afbe55b3e564da923681dad32e0726e55ac683aee2d12b50ef9cf2d3abb1b9a3Zero Day Initiative Advisory 11-087 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Server. Authentication is not required to exploit this vulnerability. The flaw exists within the '/opt/novell/iprint/bin/ipsmd' component this component communicates with 'ilprsrvd' which listens on TCP port 515. When handling multiple LPR opcodes the process blindly copies user supplied data into a fixed-length buffer on the stack. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the iprint user.
d7e0117a956cd472bee18fe8352467a732e437b089cf3146bcd59c8a6c723556Debian Linux Security Advisory 2168-1 - Two vulnerabilities were discovered the distributed filesystem AFS. Andrew Deason discovered that a double free in the Rx server process could lead to denial of service or the execution of arbitrary code. It was discovered that insufficient error handling in the kernel module could lead to denial of service.
2851ebec291b8b1441546e98bdb9fc1d229c895084c4ab1c0adf2820fc3432cbDebian Linux Security Advisory 2167-1 - It was discovered that phpMyAdmin, a tool to administer MySQL over the web, suffers from an arbitrary query execution vulnerability.
34e352b971430e15f0cf88ee127f8fa67f1806585d70f91210a7f2fb7bd221b2Cisco Security Advisory - The Management Center for Cisco Security Agent is affected by a vulnerability that may allow an unauthenticated attacker to perform remote code execution on the affected device. Cisco has released free software updates that address this vulnerability. A workaround is available to mitigate this vulnerability.
8a30271766ef9217b8676a1167d5ca59656931fa55e196a9c9e122a70d3f9355
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed