iDEFENSE Security Advisory 02.28.05 - Local exploitation of a privileged file descriptor leak in KPPP can allow attackers to hijack a system's domain name resolution function. The vulnerability specifically exists due to kppp's failure to properly close privileged file descriptors.
7c9635bd682b9738fcdd47a45ee64f06iDEFENSE Security Advisory 02.28.05 - Remote exploitation of a design error in Mozilla 1.7.3 and Firefox 1.0 may allow an attacker to cause heap corruption, resulting in execution of arbitrary code.
eac26605c759004ed6f1bbe6fb8e05f8Secunia Security Advisory - A security issue has been reported in FreeNX, which can be exploited by malicious, local users to bypass certain security restrictions.
61fc0e57bc0cc3e65b629a2603a66438Secunia Security Advisory - Adam Zabrocki has reported a vulnerability in WU-FTPD, which can be exploited by malicious users to cause a DoS (Denial of Service).
29d0586f63cc9e090609421108ef0bb4Secunia Security Advisory - Randall Perry has reported a weakness in Gaim, which can be exploited by malicious people to cause a DoS (Denial of Service).
21270720cd83d1e1a4defd5cc919d4baSecunia Security Advisory - Kevin Masterson has reported a vulnerability in the WebMod plugin for Half-Life Dedicated Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
77153511165c97882a42da3944756f47Secunia Security Advisory - A weakness has been reported in Gaim, which can be exploited by malicious people to cause a DoS (Denial of Service).
1fcb287f77e778ae2f94903b2702e468phpBB version 2.0.12 is susceptible a full path disclosure flaw.
7ff927eed0720c6ca65b73d4124b6eaeA minor security vulnerability exists in the way that Firefox handles cross-domain image dragging. Versions 1.0.0 and 1.0.1 are affected.
e69c09bb958643390aa2585b90789ea5SIA has discovered a buffer overflow in EXT.DLL, a module that handles HTTP requests in BadBlue versions below 2.6.
2430d6f3674e77544e7ba18d6c6ac2eeGentoo Linux Security Advisory GLSA 200502-30 - cmd5checkpw contains a flaw allowing local users to access other users cmd5checkpw passwords. Versions 0.22-r1 and below are affected.
2cb4c1e153482f5a6eca56dfafbf4131iDEFENSE Security Advisory 02.25.05 - Remote exploitation of an input validation vulnerability in version 2.6.2 of WU-FPTD could allow for a denial of service of the system by resource exhaustion.
f08aa952a396e70cea5386b8192c48acSecunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to overwrite or delete arbitrary files on a vulnerable system.
333eef80fb7ee7cbdc7f04282f08f3daDebian Security Advisory 690-1 - Bastian Blank found a vulnerability in bsmtpd, a batched SMTP mailer for sendmail and postfix. Unsanitized addresses can cause the execution of arbitrary commands during alleged mail delivery.
eec60ae3c6b9908ff74e3d5e7bf88b76By sending a file with parenthesis in it to another GAIM user, you can cause their client to crash and completely close GAIM down.
556a80dc034826230c0915d330eb7e17Sun Security Advisory - A security vulnerability in the STSF Font Server Daemon (stfontserverd) may allow a local unprivileged user the ability to overwrite or remove any file on the system which could result in a Denial of Service (DoS).
a07ae83c40e91c95aada8d00b7b5d9abSecunia Security Advisory - Some vulnerabilities have been reported in PunBB, which potentially can be exploited by malicious users to disclose sensitive information, and by malicious people to bypass certain security restrictions and conduct SQL injection attacks.
76b992bb6ff5735fa4bc5c64a1a2c78bSecunia Security Advisory - nst has reported a vulnerability in phpWebSite, which potentially can be exploited by malicious people to compromise a vulnerable system.
061b4a4c3c4a6e1e9f6a865755d31e01Soldier of Fortune II versions 1.03 and below suffer from a remote denial of service flaw.
0be2e9452ed557c6e927edaaaeaaec2dHP Security Bulletin - A potential vulnerability has been identified with HP-UX running ftpd where the vulnerability could be exploited to allow a remote authorized user unauthorized access to files.
251f98cf75240c6b1d14e836a782dbb5Google appears to be correlating searches on Google's site with Gmail accounts, potentially creating privacy concerns for Gmail users.
2fd87e1c9e463e762ace88d5b79a8072The open source guestbook script from CoolServlets.com is susceptible to input validation and logic flaws.
a40706ee231fd13245a8def71142291fCisco Security Advisory - Devices running Cisco Application and Content Networking System (ACNS) software may be vulnerable to Denial of Service (DoS) attacks and may contain a default password for the administrative account. Devices running ACNS software may be vulnerable to the DoS attacks while configured as a transparent proxy server, forward proxy server, or reverse proxy server.
8ca74b7782a803053d82096613a4a313iDEFENSE Security Advisory 02.23.05 - Local exploitation of a race condition in the Kodak Color Management System's kcms_configure script packaged with Sun Microsystems Inc. Solaris operating system can allow for the corruption of arbitrary files on the system.
1b52525dbee365f9950a9e38dc271905Secunia Security Advisory - A vulnerability has been reported in HP-UX, which can be exploited by malicious users to gain knowledge of potentially sensitive information.
e0e520e08bbe87fe5da084ffa9a79222
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed