iDEFENSE Security Advisory 09.30.05 - Remote exploitation of a format string vulnerability in RealPix (.rp) file format parser within various versions of RealNetworks Inc.'s RealPlayer could allow attackers to execute arbitrary code. The vendor has indicated that the following versions are vulnerable: Linux RealPlayer 10 (10.0.0 - 10.0.5), Helix Player (10.0.0 - 10.0.5).
b427dd61f037dbd1b7a2060198fe601eThe FileZilla client versions 2.2.15 and below suffer from a local credential compromise vulnerability due to improper storage.
8c515bacc84756bdd906aad6f4e9083aDebian Security Advisory DSA 821-1 - An integer overflow with a subsequent buffer overflow has been detected in PCRE, the Perl Compatible Regular Expressions library, which allows an attacker to execute arbitrary code, and is also present in Python. Exploiting this vulnerability requires an attacker to specify the used regular expression.
2d1f872bc231692ce300fc1af73795f7SEO-Board version 1.02 suffers from SQL injection via the cookie.
51bc99b60ebafaadc635fa86a3247062Secunia Security Advisory - Debian has issued an update for python2.3. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
d5cc41147778b38a5debf9a5ccf66bd8Secunia Security Advisory - A vulnerability has been reported in TWiki, which can be exploited by malicious people to compromise a vulnerable system.
7b0b81c4603448b68fa69e837ce5c1ceSecunia Security Advisory - Red Hat has issued an update for wget. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
8640341fd449acae3a4ea2bd570cef46Secunia Security Advisory - SGI has issued a patch for SGI Advanced Linux Environment. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
9c09ca97474fc5d6ae7192411c51a19dSecunia Security Advisory - A vulnerability has been reported in Polipo, which can be exploited by malicious people to disclose potentially sensitive information.
f3ee233c41b49867fe9d3d4b3272cb87Secunia Security Advisory - Two vulnerabilities have been reported in PostNuke, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
60c36acf363465db98b9fecd143b7acfSecunia Security Advisory - Fedora has issued an update for HelixPlayer. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
3806dc441c0eb343d32f46e07c11bbffGentoo Linux Security Advisory GLSA 200509-19 - PHP makes use of a private copy of libpcre which is subject to an integer overflow leading to a heap overflow (see GLSA 200508-17). It also ships with an XML-RPC library affected by a script injection vulnerability (see GLSA 200508-13). Versions less than 4.4.0-r1 are affected.
1e425a048d8eef89b012f26d39a9aab7Mandriva Linux Security Update Advisory - A number of vulnerabilities have been discovered in Mozilla Firefox that have been corrected in version 1.0.7
2e267d14f3fa66565279f98b5f53d3dcThe client in Novell GroupWise version 6.5.3 is susceptible to an integer overflow. Previous versions are also believed vulnerable.
61f8c4709bdc942339b70db6d4ea3701Nokia models 7610 and 3210 suffer from a denial of service flaw in the OBEX implementation.
f53c4510b2973443ab6e58be24b95b60Secunia Security Advisory - Mandriva has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, manipulate certain data, bypass certain security restrictions, and compromise a user's system.
60a169a04d1c4da87488ba6339d221b3Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in httpd/mod_ssl included in some products, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially bypass certain security restrictions.
32c41495339ad7c6664983ad0b21154aSecunia Security Advisory - Psymera has discovered some vulnerabilities in CJ Web2Mail, which can be exploited by malicious people to conduct cross-site scripting attacks.
bff5c05bd7f63a6611aa371e4cf3b192Secunia Security Advisory - Psymera has discovered some vulnerabilities in CJ Tag Board, which can be exploited by malicious people to conduct cross-site scripting attacks.
c75e76f1e4265ad78c74d18345c63da3Secunia Security Advisory - A vulnerability and a security issue have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
f802027204bee1914177e15b502a5679Secunia Security Advisory - Psymera has discovered a vulnerability in CJ LinkOut, which can be exploited by malicious people to conduct cross-site scripting attacks.
d303dbfe1d3a893c9a00aabcef8284adSecunia Security Advisory - rgod has discovered some vulnerabilities in phpMyFAQ, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, disclose system and sensitive information, and compromise a vulnerable system.
61ad24d7b562de3533f724fc2545f326Secunia Security Advisory - kcope has discovered a vulnerability in wzdftpd, which can be exploited by malicious users to compromise a vulnerable system.
f05b62f862e5a66b3f85c24a2b4dc901Secunia Security Advisory - rgod has reported a vulnerability in Mailgust, which can be exploited by malicious people to conduct SQL injection attacks.
5f49d219d648fca733fbc6c6c1cfbdacSecunia Security Advisory - Kurdish Hackers Clan has reported a vulnerability in AlstraSoft E-Friends, which can be exploited by malicious people to compromise a vulnerable system.
ddea7cb7fc6c745212e1052934823ba0
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed