W-Agora version 4.20 is susceptible to cross site scripting attacks.
537ec81ac86fd2a483ed0ffe12bc2cd0TextFileBB is susceptible to three cross site scripting vulnerabilities.
dc38b40236d1084fcd97edac17ed6b3bLand Down Under 802 and below suffer from a path disclosure vulnerability.
cf438c534aa71ec36ac81b7aaa160ceaDescription of a Yahoo! Mail XSS vulnerability that has been patched silently by Yahoo.
3ef71a9ee64288891dd09692c33d1a05Secunia Research 28/04/2006 - Servant Salamander unacev2.dll Buffer Overflow Vulnerability - Secunia Research has discovered a vulnerability in Servant Salamander, which can be exploited by malicious people to compromise a user's system.
6756d93d5103a222cef27135b7cfd662[ECHO_ADV_31$2006] Sws Web Server 0.1.7 Strcpy() & Syslog() Format String Vulnerability. A format string vulnerability in Sws Web Server allows remote attackers to cause the program to execute arbitrary. The format string vulnerability and buffer overflow can be found in sws_web_server.c ayardosyasi.h file.
95a30061d7337115db1d1840d78a8877Neomail suffers from XSS in Neomail.pl.
5f9db4e6cb3d969328a835193af94fc3Cireos Portal from SirceOS suffers from XSS in buscar.php.
aaa2e8f30230a77ae0ca80e20399f370There is a vulnerability exists in WinISO and UltraISO, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability has been confirmed in version WinISO 5.3,UltraISO V8.0.0.1392, PowerISO v2.9,Magic ISO 5.0 Build 0166
f774737162f3f7718e685159e8d2adddMicrosoft Internet Explorer suffers from a potential user interaction race in its handling of security dialogs. As a result, it may be possible for a malicious web site to install software on a visiting system or take other actions that may compromise the privacy or the security of the visitor.
6eaac5db57a5b06689dc6f14bcce938eeEye Digital Security has discovered a critical vulnerability in Juniper Networks SSL-VPN Client ActiveX Control. JuniperSetup.ocx ActiveX control is automatically loaded through the web interface of Juniper Networks SSL-VPN. There is an exploitable buffer overflow in the handling a parameter of ActiveX control that will allow a remote attacker to reliably overwrite the stack with arbitrary data and execute arbitrary code though the web browser.
acbdd272cf9a87bfaa3c00f312ca0440Open Bulletin Board suffers from multiple XSS and SQL injection vulnerabilities.
9d2b6aecb7e49650e8a770fc8564c014Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack. A malicious user may be able to send crafted packets to a concentrator which may cause the device to halt and/or drop user connections. The power must then be reset on the device to recover.
da29984048b1834dceeaa6299ad0ceaaMySmartBB v1.1.x suffers from SQL injection and XSS.
ff425bd76f857fd8b3610536b665f564DevBB versions less than or equal to 1.0.0 suffer from XSS.
99ee68e89602af03815e2ede19284aa3Secunia Research 26/04/2006 - SpeedProject Products ACE Archive Handling Buffer Overflow: Secunia Research has discovered a vulnerability in various SpeedProject products, which can be exploited by malicious people to compromise a user's system.
71ab68726c4ce180e48b726ad86e0a15eVuln ID: EV0125 - warforge.NEWS SQL Injection and Multiple XSS Vulnerabilities.
eb25b5b1645cb206f4c5d24728f2703fHPSBMA02113 SSRT061148 rev.1 - HP Oracle for OpenView (OfO) Critical Patch Update April 2006: Oracle(R) has issued a Critical Patch Update which contains solutions for a number of potential security vulnerabilities. These vulnerabilities may be exploited locally or remotely to compromise the confidentiality, availability or integrity of Oracle for OpenView (OfO).
8d18e73b7da99433a37969f6c0814671HPSBUX02075 SSRT051074 rev.4 - HP-UX Running xterm Local Unauthorized Access: A potential security vulnerability has been identified with HP-UX running xterm. The vulnerability could be exploited by a local user to gain unauthorized access.
ecbeda06feed5582c535d393f5be5281HPSBUX02108 SSRT061133 rev.9 - HP-UX running Sendmail, Remote Execution of Arbitrary Code
c2ea59897237b1015a5d3f5ea829a86dZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability. This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail.
e7653be784ba9888857807b479e13c12ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail.
8d2dba6bbe612172ec200cfd83e7a0e0Gentoo Linux Security Advisory GLSA 200604-18 - Several vulnerabilities were found in Mozilla Suite. Version 1.7.13 was released to fix them. Versions less than 1.7.13 are affected.
95005cf1fb52e3c3eb4d5ad375a5e2d0Ubuntu Security Notice 275-1: multiple vulnerabilities in mozilla.
ac004322e7c051a3f99c46605444723dUbuntu Security Notice 274-1: A logging bypass was discovered in the MySQL query parser. A local attacker could exploit this by inserting NUL characters into query strings (even into comments), which would cause the query to be logged incompletely.
fc12df206692e97ce1d4ceca1655a86c
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed