Debian Linux Security Advisory 2308-1 - Several vulnerabilities were found in Mantis, a web-based bug tracking system. The issues include local file inclusion and cross site scripting.
c1649cdff5e3fb33299bd8607f98ec1fc07c1cb35ee2179287f45d71bdcdad63Red Hat Security Advisory 2011-1253-01 - Updated kernel-rt packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise MRG 2.0. The Red Hat Security Response Team has rated this update as having important security impact.
5d74eae8a478f1639bcefe4abf0a381df1d68b77824da152d114e20cc673b84aEMC Avamar software contains a potential privilege enforcement bypass vulnerability. This could allow a domain administrator or operator to restore data from and/or to clients in another domain to which the administrator or operator is not intended to have access rights. This flaw may also allow domain administrators or operators to view information about backup, restore and replication activities associated within another domain. Versions 4.x, 5.0.x, and 6.0.x are affected.
bec2f9616acbde29cd08864bc01d38660afb753f221e06efd26259818e4f716aCall for papers for NTMS 2012. NTMS 2012 is the Fifth International Conference on New Technologies, Mobility and Security that will be held from 7 to 10 May 2012 in Istanbul, Turkey.
e7d7981a1b49d531931df9e3f83aad982b623aeae13172540e6a11f74674e59bOrion SolarWinds version 10.1.2-SP1 suffers from a cross site scripting vulnerability.
fdd0399b1492e10c58ab627852ef2be1e2971ed2b7f7f0375473bf6d303e2deeCMS Papoo Light version 4.0 suffers from multiple cross site scripting vulnerabilities.
a11c7832c0d025fff937b67dac614eb4aba890f27402151d3844faf0fcba9ceeDebian Linux Security Advisory 2307-1 - Several vulnerabilities were discovered in the Chromium browser.
aec951d79ca621a582d7edfb05421e33cbad09ba51b39fc28ddb0b5e21266267Debian Linux Security Advisory 2304-1 - Ben Hawkes discovered that squid3, a full featured Web Proxy cache (HTTP proxy), is vulnerable to a buffer overflow when processing gopher server replies. An attacker can exploit this flaw by connecting to a gopher server that returns lines longer than 4096 bytes. This may result in denial of service conditions (daemon crash) or the possibly the execution of arbitrary code with rights of the squid daemon.
d12e9e5264cc5c0d43a122aee60efae5e71d32773d9be898243e6624918f8fa9Debian Linux Security Advisory 2306-1 - Several vulnerabilities have been discovered in ffmpeg, a multimedia player, server and encoder.
676ce5d49d1c7f5b5de00794b0a6d51d6f17cb7e729b9a3e627584fc51928f6fAstroCMS suffers from remote SQL injection and file disclosure vulnerabilities.
d15d829b90d108a141e674c3d4632f3f024e3037bd51bd87087c074655b12930Slaed CMS suffers from remote code execution vulnerabilities. OpenSlaed version 1.2 and Slaed CMS versions 4.x and below are affected.
60fed3b05ec97637ccc2352accc1d71142b4a7d67845e30cdb90cdd1fc5dd758NetCat CMS suffers from code execution and remote SQL injection vulnerabilities.
d69067d061f79f3e2e198323b4f2e877fbf6e5904336a2db3b1ceb373eb50146TomatoCart version 1.1 suffers from a post authentication local file inclusion vulnerability.
2d3ab536888c122c3eb2b9cdbf19a3f9db6e13f627cc77e9a5df15d8497e0f43PHP Support Tickets version 2.2 suffers from a code execution vulnerability.
c77d06a3deca3b926f3a4de07413f99486fd82097dd3b6871f01f09a0b93d3a1WAV Player version 1.1.3.6 buffer overflow exploit that creates a malicious .pll file that will spawn calc.exe.
3823d72a665da26d9a593dab4b40c2e9a6a1bc12b149c8225e513404b5163556Aika version 0.2 colladaconverter XML parsing buffer overflow exploit.
a7a17f1f548e492db73c5689f2ece765a34e3dcc5f59cd06d8259bf3bf35ba9eScadaTEC ModbusTagServer and ScadaPhone .zip buffer overflow exploit.
cbbeba00551a7acf00290f33c40296471b59c8afa1c855d3463416b5e09e01f3KnFTP server buffer overflow exploit that spawns calc.exe.
269031e41b681d1ddfd8ffb9bf66594087bd9a5295fd9be264a638510214b35fBulletlink Newspaper Template Software suffers from a remote blind SQL injection vulnerability.
527bb82149fa2030ec271de2c72a2f14ca5303161e6ee49e8b2c97cf661c157aIntellasoft suffers from a remote SQL injection vulnerability.
51ad7fd75bd0663639fdd1c025e6f9fb459a937017d2df68e01c5296b5d97791
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed