Showing 1 - 4 of 4

Files Date: 2009-10-09

Ubuntu Security Notice 847-1: Posted Oct 9, 2009; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 847-1 - Raphael Geissert discovered that uscan, a part of devscripts, did not properly sanitize its input when processing pathnames. If uscan processed a crafted filename for a file on a remote server, an attacker could execute arbitrary code with the privileges of the user invoking the program.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2009-2946; SHA-256 | 7ed4a6c1e2cddbb5b85f7a815082364b1f7f0a2316a0eeb7cd11fb4de4b7caf4; Download | Favorite | View

vBulletin 3.8.4 / 3.7.6 / 3.6.12 Cross Site Scripting: Posted Oct 9, 2009; Authored by MaXe; vBulletin versions 3.8.4, 3.7.6, and 3.6.12 suffer from a cross site scripting vulnerability.; tags | advisory, xss; SHA-256 | 1b61667e510d019e6f38d7e057103628d655313defd1bccbb4e8f8580992d045; Download | Favorite | View

QuickCart XSS / XSRF / LFI: Posted Oct 9, 2009; Authored by kl3ryk; QuickCart suffers from cross site scripting, cross site request forgery, and local file inclusion vulnerabilities.; tags | exploit, local, vulnerability, xss, file inclusion, csrf; SHA-256 | 931a91b835fb5cf26189c93ec147cebe81a758e4c66ec6a3aa0c49fc43afd864; Download | Favorite | View

Ubuntu Security Notice 846-1: Posted Oct 9, 2009; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 846-1 - It was discovered that ICU did not properly handle invalid byte sequences during Unicode conversion. If an application using ICU processed crafted data, content security mechanisms could be bypassed, potentially leading to cross-site scripting (XSS) attacks.; tags | advisory, xss; systems | linux, ubuntu; advisories | CVE-2009-0153; SHA-256 | 9dc9721d17a4b5f766ae1766ebd9da0b6c32a9640953dec8efdb6126a34ff18b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days