HP Security Bulletin - A potential security vulnerability has been identified with HP-UX mkdir(1). The vulnerability could be exploited by a local user to gain unauthorized access.
5885a248ecdb685fddcc37cea9d22638All versions under the 4.2 release of Hobbit prior to 2006-Jun-30 suffer from a flaw where the logfetch utility can be used to read any file on the filesystem.
00c7b00d096a6972d0ad00603d75d045Apple iTunes suffers from an integer overflow vulnerability when performing AAC file parsing.
9568b00e86eab1b60b7eea9bb878f07eGentoo Linux Security Advisory GLSA 200606-30 - The iax_net_read function in the iaxclient library fails to properly handle IAX2 packets with truncated full frames or mini-frames. These frames are detected in a length check but processed anyway, leading to buffer overflows. Versions less than 0.8.5_p1 are affected.
0b29c20b7b202f3b37f4a87c7fe4b7aeThe NCP VPN/PKI client version 8.30 suffers from a UDP bypass vulnerability in its provided firewall functionality.
5df2469e5bfef853ca32a7099d5d83adlibwmf version 0.2.8.4 has been found susceptible to an integer overflow in memory allocation that leads to a heap overflow.
544d8a84acef4d5a6afade28d5179290Debian Security Advisory 1104-1 - Several vulnerabilities have been discovered in OpenOffice.org, a free office suite. It turned out to be possible to embed arbitrary BASIC macros in documents in a way that OpenOffice.org does not see them but executes them anyway without any user interaction. It is possible to evade the Java sandbox with specially crafted Java applets. Loading malformed XML documents can cause buffer overflows and cause a denial of service or execute arbitrary code.
cefc0ae21542ef25d3f254cf1cf7e8faHP Security Bulletin - Potential security vulnerabilities have been identified in Perl 5.8.2 and earlier running on HP Tru64 UNIX. These vulnerabilities could be exploited by a local user to execute unauthorized code.
56aa368efda8e86f8a33699326515563Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or to compromise a vulnerable system. Versions 3.0.4, 3.0.5, and 3.0.6 are affected.
567128c57aa78ea2aa4c30399cb721f7Speedstream routers have UPnP/1.0 support. An attacker can access protected files and bypass the password protection without logging in using the UPnP part of the tree.
5b78c72d204a6b19edd46049d9575a56Gentoo Linux Security Advisory GLSA 200606-29 - Tikiwiki fails to properly sanitize user input before processing it, including in SQL statements. Versions less than 1.9.4 are affected.
950ff506d1204d1b7e7e871c41d677b9Gentoo Linux Security Advisory GLSA 200606-28 - Michael Marek discovered that the Horde Web Application Framework performs insufficient input sanitizing. Versions less than 3.1.1-r1 are affected.
136a990b21ed079ea1a0d1d47561133cMac OS X versions 10.4.6 and below are susceptible to a vulnerability in launchd's syslog() function.
ad69e3d958c1f799b80962decacc872fSecunia Security Advisory - Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or compromise a vulnerable system.
84057e142c83b4e6a2639adf0ec13097Secunia Security Advisory - Bartek Ryniec has discovered a vulnerability in MyBB, which can be exploited by malicious people to conduct cross-site request forgery attacks.
8d4b2c8a37958090e2c4aa158b45a4f6Secunia Security Advisory - Persian-Defacer has reported a vulnerability in phpMySms, which can be exploited by malicious people to compromise a vulnerable system.
b5a41763882ba443dcf005d8b655af93Secunia Security Advisory - Gentoo has issued an update for horde. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
2cc1396c81b13af37f13c585236fb590Secunia Security Advisory - Gentoo has issued an update for tikiwiki. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
c11bdfc9c39f956d0d1ed2965366d2c5Secunia Security Advisory - Gentoo has issued an update for mutt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
26b21267c3e3fc63d9526fe3a286b489Secunia Security Advisory - rgod has discovered a vulnerability in BLOG:CMS, which can be exploited by malicious people to conduct SQL injection attacks.
d30e20a8b683af2e3e31a319a69e4520Secunia Security Advisory - A vulnerability has been reported in Cisco Wireless Access Point, which can be exploited by malicious people to bypass certain security restrictions.
d634d47a0e5726453368c9646f7e2e01Secunia Security Advisory - Claus Berghammer has discovered a vulnerability in QuickZip, which potentially can be exploited by malicious people to compromise a user's system.
f61ef99eb2c743dc37166beffe2f9be9Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in phpRaid, which can be exploited by malicious people to conduct SQL injection attacks or compromise a vulnerable system.
9db6d32c4e47212ef292a1b9b21ae9e4Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in Cisco Wireless Control System (WCS), which can be exploited by malicious, local users to gain knowledge of sensitive information, and by malicious people to gain knowledge of sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions and potentially compromise a vulnerable system.
dfcc7ecf6c95a5d5470c591e29efa5f8Secunia Security Advisory - Some vulnerabilities have been reported in MyBB, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, and manipulate certain information.
3fd6deac2faa2f30143c4de4a5568ff1
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed