Secunia Security Advisory - Red Hat has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, conduct phishing attacks, manipulate certain data and compromise a user's system.
3c27da1056bd78165d3ee9d19dfbb838ec4c23c7f4a3622b0117ad4a47d8f1dbSecunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges, and by malicious people to conduct spoofing attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
0ea570ad228a4bc008492b2391947cf86ce8f555c6043afeeefd6b34f1cf7cf7Secunia Security Advisory - Red Hat has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
fc516ef977da6adf86c18f7b2a31167b5dc22e7835f56105caa787546040b621Secunia Security Advisory - A vulnerability has been reported in Nagios, which can be exploited by malicious people to conduct cross-site scripting attacks.
829c41092b177370dfb0912c581b01f4034184e5243e0657c812c076b8c3cf40Secunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
ffc9a8fe92daa7e860903e1f92da463287d9bdd7b5c053f4fefb8505560f7096Secunia Security Advisory - Debian has issued an update for icedove. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
8c7c5cb3974b07ed619ce3a00f560e10204c614da7c466f37806a15e6f542536Secunia Security Advisory - Aria-Security has reported a vulnerability in ASP Site Search SearchSimon Lite, which can be exploited by malicious people to conduct cross-site scripting attacks.
ebe44cfd69bd92739298b752afbe1abc48c32665f51573cad59df80abb838f65Secunia Security Advisory - Michael Brooks has reported some vulnerabilities in Simple Machines Forum, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.
eb876d16fd2e98c156ca90f9edda6b0bc57c03d2a5762d574b903dffbfa4e84eDebian Security Advisory 1391-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client.
0fd2dac5b0f1f89683b32b5407978d38835cbcbb2a326d49cd11d7daf010f237SocketMail versions 2.2.1 and below suffer from cross site scripting vulnerabilities.
42dfab9313f856d4432146f04f234d81fd6dacaa018f7055aefa7da54a4d2c96SocketKB versions 1.1.5 and below suffer from cross site scripting vulnerabilities.
0684c0084d3fb8aae4fe1a04af9378e18f090376164aca236928951d2b9497e6CA Host-Based Intrusion Prevention System (CA HIPS) contains a vulnerability in the Server installation that can allow a remote attacker to take unauthorized administrative action. The vulnerability occurs due to raw request data being displayed in the log when viewed by a browser. The client installation is not vulnerable.
c85539d8e715bc4393459fcd55868d6547302d34f075669e2c00d0567ee58f18Three videos from IRM demonstrating the execution of Cisco IOS shellcode in action.
93c7f98117fdb0b7167ce322d9e58a85e7122ab9bf6ed05607e7ccdee8f9b13cipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.
6489d7bc87666fece8f873dc2c634e79d37baaedebb62bc38d96a78aa5d2e4b8LiteSpeed web server versions 3.2.3 and below suffers from a remote source code disclosure vulnerability.
10f706a81bb0241c74ca93f5df3344a25ac69a97da71e3836c744c71264ece91Apache Tomcat with WEBDAV remote file disclosure exploit that has SSL support.
c8197e01da4f8f5ec83aec7a08aed8290e4c514153bf573a492020ff2651cd93PHP 5.x COM functions safe_mode and disable_function bypass proof of concept exploit.
b03ac80b09e54ac916c4d3025603b3e755263fb91b18652cbbf3c08f9f5b9e1cWeather for PHP version 1.0 suffers from a local file inclusion vulnerability.
93c726ea73bde73582798d1a0d6ea71e40db9889d9fb99c500d9b2df5af28359Simple PHP Blog versions 0.5.1 and below suffer from multiple vulnerabilities including cross site scripting, local file inclusion, and code execution flaws.
55a5a9c2c79638a9c0edde9067c02a342d88b6cce70587c7758addd7add2c95dSocketMail version 2.2.8 suffers from a remote file inclusion vulnerability in fnc-readmail3.php.
93e33d275db5107725169ad118193fc03cb4456e79d8777efd5e98a0a06dde1cTOWeLS version 0.1 suffers from a remote file inclusion vulnerability in scripture.php.
7d125dfc2030a6dfa49e17259ccd57c079ab005b2128702089b4adc4ee854e0dPHP Project Management versions 0.8.10 and below suffer from multiple remote and local file inclusion vulnerabilities.
7db8c61d144355b8d04ae0d1981db5b49f399e526bce59f98e1228180f570d9aVanilla versions 1.1.3 and below remote blind SQL injection exploit.
8fd99afa29242b9435a4b28c55b7a733d5e69860fc93d3084bc57d087d509db1Simple Machines Forum versions 1.1.3 remote blind SQL injection exploit.
ae7d767ab1ec0d118e94ce183c5703b9bb8bc55baa12a09028641fcc49b7d402ZZ:FlashChat version 3.1 suffers from a local file inclusion vulnerability in help.php.
cb88f0cba476054ddde623138af7dc4e527e116cb5e62e2e8cf2a1d9c4cb2edd
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed