Alibaba Clone B2B version 3.4 suffers from a remote SQL injection vulnerability.
f220fd94d51c44ed3e56ad54f8c3725c55cd1ab55d77e10af4316f4e30135224J-Integra version 2.11 active-x SetIdentity() buffer overflow exploit.
c1c9cff1a7249c29f6e688268e87d7d65399583312c3c5a2b0c0a67c9841b9c2Dejcom Market CMS suffers from a remote SQL injection vulnerability.
158d215d0e002d3c349717d677b9c8aae78528ade6f8531bc7aa2e66da56bf32Secunia Security Advisory - A vulnerability has been reported in ZyXEL P-660R-T1, which can be exploited by malicious people to conduct cross-site scripting attacks.
908c165e4e57a0e0555874d9aedfc4ab91fc77e4877e12dbb24bf79b9f9e87d1Secunia Security Advisory - A weakness and multiple vulnerabilities have been discovered in Pandora FMS, which can be exploited by malicious users to conduct SQL injection attacks, disclose potentially sensitive information, and compromise a vulnerable system and by malicious people to bypass certain security restrictions and compromise a vulnerable system.
87ba9998c40c91925420cd2075781ef59985e8793659f3a937683493136b318aSecunia Security Advisory - Multiple vulnerabilities have been reported in sh404SEF component for Joomla!, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks
19fa1bea303bb669625398a70c12fe96e4862abaa67691da65c85c9a4003bef5Secunia Security Advisory - Red Hat has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to conduct spoofing attacks and bypass certain security features.
d5f2d1145ff071e4b368fd3fd5e52acf9cfad3f6fe52018f776acbc5469a18f6Secunia Security Advisory - Red Hat has issued an update for dhcp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
74569779b48ca9644104ecb3ac18fe31399161020a66797ca01c305be7dc3e2fSecunia Security Advisory - Fedora has issued an update for kdenetwork. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
21187b396546f02621d14cf0c9ee4e11c0158af49a6f00d9465e02e25594ac0eSecunia Security Advisory - Multiple vulnerabilities have been reported in BugTracker.NET, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
fb5a40eef87a1bb2d3561737e7258bece16dbf65a7304029aeed17441f9e2444Secunia Security Advisory - A vulnerability has been discovered in CA Internet Security Suite Plus, which can be exploited by malicious, local users to gain escalated privileges.
c86e6d61bb0ff1c002c8a233ae26be4d4c27bd99f9f2ec21b4c82b86edb9e21aMandriva Linux Security Advisory 2010-246 - Multiple vulnerabilities were discovered and corrected in krb5. An unauthenticated remote attacker could alter a SAM-2 challenge, affecting the prompt text seen by the user or the kind of response sent to the KDC. An unauthenticated remote attacker has a 1/256 chance of forging KRB-SAFE messages in an application protocol if the targeted pre-existing session uses an RC4 session key. An unauthenticated remote attacker can forge GSS tokens that are intended to be integrity-protected but unencrypted, if the targeted pre-existing application session uses a DES session key. Various other issues have also been addressed. The updated packages have been patched to correct these issues.
100c7557ed59ca637d4f6b0069c888d50046989349e8acc0e9bed9cabffe8976Mandriva Linux Security Advisory 2010-245 - A vulnerability was discovered and corrected in krb5. An unauthenticated remote attacker could alter a SAM-2 challenge, affecting the prompt text seen by the user or the kind of response sent to the KDC. Under some circumstances, this can negate the incremental security benefit of using a single-use authentication mechanism token. An unauthenticated remote attacker has a 1/256 chance of forging KRB-SAFE messages in an application protocol if the targeted pre-existing session uses an RC4 session key. Few application protocols use KRB-SAFE messages.
c1eb3def1ba7ba3f94fbeddefddd6d6b778fe703923015422bedd0977a5d2938Multiple checksum handling vulnerabilities exist in Kerberos. These vulnerabilities are in the MIT implementation of Kerberos (krb5), but because these vulnerabilities arise from flaws in protocol handling logic, other implementations may also be vulnerable.
df6ccc1619d5bc92b3ec89421e803287d181c7ce6fa6677e04ea80150ebc84bbWernhart Guestbook suffers from multiple cross site scripting vulnerabilities.
4820d9b3bbc1b29a329d2216f81ade2abc984e93acdc4cc34737f4b08ff77559HP Data Protector Manager A.06.11 suffers from a denial of service vulnerability.
be229203c280f45cdc3187c53dafc1d73ec5d820477e0c89da0e3856c2a0fdc7Core Security Technologies Advisory - BugTracker.NET version 3.4.4 suffers from cross site scripting and remote SQL injection vulnerabilities.
df62246969e76ce6e41b258ba8e60b03abae844da0cf2cafd62ae743eea6ad45This application is used to get information about SSL usage (protocols and ciphers) at a server. It can also be used for testing and rating ciphers on SSL clients. The code is written for win32 but may easily be ported to Linux.
b23cc0f793e0d90a174b5bad3a33c00ecc667978663284c920705a7845b42879Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
1eb36c171f92f828e83d06f5a34529baec96147738184d46632dac589bd844f1PHP Empeng suffers from a remote SQL injection vulnerability.
27f5402440af363cb2164b5f1cc4d1d780cc3ed616739e4d92cd89bc90f27500PHP Atividades Program suffers from a remote SQL injection vulnerability.
9f9d5894e3c35d5a1d0604014ad3e42ea4b85d9d59313fb60c7b8128283ea6f9CMS Faculty suffers from a remote SQL injection vulnerability.
88fd58146f786199e61075d6421eb8610a4cf6ba22c3a04cfc1b5c9690c5aa4eSecunia Security Advisory - Red Hat has issued an update for wireshark. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
4e73bd4231a2425479576eb589a4f6267813bb58e4c1e9106e44909a31cce1cfSecunia Security Advisory - A vulnerability has been reported in Grani, which can be exploited by malicious people to bypass certain security restrictions.
1690938a3bf859dff64cdcbe58f689dad044bbce6de7049c57d3873b8541afc8Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in the WPtouch plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
9fc08741182aae9ed817490b7c9a7abce62f4753b503412f31f038acf92ac803
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed