Airscanner Mobile Security Advisory - FlexiSpy.com's user administration web application contains a critical bug that allows anyone to view anyone else's captured voice, SMS, email, or location.
74fb23ba69e3f83513553654b75d2f0bDebian Security Advisory 1325-1 - Ulf Harnhammer discovered that a format string vulnerability in the handling of shared calendars may allow the execution of arbitrary code. It was discovered that the IMAP code in the Evolution Data Server performs insufficient sanitizing of a value later used an array index, which can lead to the execution of arbitrary code.
94a262ab5007fe2d9720a0ad3ddfeb4dUbuntu Security Notice 479-1 - Multiple flaws in the MadWifi driver were discovered that could lead to a system crash. A physically near-by attacker could generate specially crafted wireless network traffic and cause a denial of service. A flaw was discovered in the MadWifi driver that would allow unencrypted network traffic to be sent prior to finishing WPA authentication. A physically near-by attacker could capture this, leading to a loss of privacy, denial of service, or network spoofing. A flaw was discovered in the MadWifi driver's ioctl handling. A local attacker could read kernel memory, or crash the system, leading to a denial of service.
7f1f06c23808577845fca734298e7cccflac123 version 0.0.9, also known as flac-tools, is vulnerable to a buffer overflow in vorbis comment parsing. This allows for the execution of arbitrary code.
3f267591db23c699112102a030ecc7b4SAP NetWeaver Nw04 versions SP15 to SP 19 and SAP NetWeaver Nw04s versions SP7 to SP 11 suffer from a cross site scripting flaw.
1c8f8688095063d6c14dff218b31a3d8Mandriva Linux Security Advisory - David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. A remote unauthenticated attacker who could access kadmind could trigger the flaw causing kadmind to crash or possibly execute arbitrary code. David Coffey also discovered an overflow flaw in the same RPC library. A remote unauthenticated attacker who could access kadmind could trigger the flaw causing kadmind to crash or possibly execute arbitrary code. Finally, a stack buffer overflow vulnerability was found in kadmind that allowed an unauthenticated user able to access kadmind the ability to trigger the vulnerability and possibly execute arbitrary code.
2e1a3145902e2c36d59b1688739cdf10Secunia Security Advisory - A vulnerability has been reported in Sun JavaDoc, which can be exploited by malicious people to conduct cross-site scripting attacks.
fb5b5471fecd4b59a0fac110c88a184dSecunia Security Advisory - A vulnerability has been reported in Sun Java Web Start, which can be exploited by malicious people to bypass certain security restrictions.
1acf78093e63d31cb34e1b485f407794Secunia Security Advisory - Two vulnerabilities have been reported in Coppermine Photo Gallery, which can be exploited by malicious people and malicious users to conduct SQL injection attacks.
b6a7c5dd71359122128de876522ce1daSecunia Security Advisory - Ubuntu has issued an update for MadWifi. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to gain knowledge of potentially sensitive information or to cause a DoS.
da032572388de223d731a6a1a82defdfSecunia Security Advisory - SUSE has issued an update for OpenOffice_org. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
db767e1849950178086b6549c09a0da0Secunia Security Advisory - Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
367ebdb5460922eb9f286bac6aa5eb82Secunia Security Advisory - Debian has issued an update for hiki. This fixes a vulnerability, which can be exploited by malicious people to delete arbitrary files.
30d8110f2530324ed7af5f546c415309Secunia Security Advisory - r0t has reported a vulnerability in DirectAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks.
a8b0a4b9d73a6824f76c193514926cf4Secunia Security Advisory - A vulnerability has been reported in 3Com IntelliJack Switch NJ220, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
e5c3e846959e9827d473615ef33a514cSecunia Security Advisory - A vulnerability has been reported in FreeType, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
e9bdcd8db2d556d09b92e962c2ab6469Secunia Security Advisory - A security issue has been reported in IBM OS/400, which potentially can be exploited by malicious people to bypass certain security restrictions.
fcea0545cebaafc5688cec9739deaa46Secunia Security Advisory - Trustix has issued an update for kerberos5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
6173edfb30528efd7b6a1b2c6f501776Secunia Security Advisory - Some vulnerabilities have been reported in Xerox ESS/ Network Controller, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
12283233635216213628fca9fee6d72eSecunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
0ca6870fbe9d1524a3d758542496777fSecunia Security Advisory - rgod has discovered some vulnerabilities in AMX VNC ActiveX Control, which can be exploited by malicious people to compromise a user's system.
7f29a2f3224a640cba8d4490cf877de8Secunia Security Advisory - R00T[ATI] has discovered a vulnerability in WebChat, which can be exploited by malicious people to conduct SQL injection attacks.
a5be7debc28bdcd65ae5aa7b9de14042Secunia Security Advisory - Katatafish has discovered two vulnerabilities in GL-SH Deaf Forum, which can be exploited by malicious people to disclose sensitive information.
66a7259ef513c68fa6a9151be3cadb8cSecunia Security Advisory - SGI has issued multiple updates for SGI Advanced Linux Environment. These fix some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or to perform certain actions with escalated privileges, by malicious users to bypass certain security restrictions or to compromise a vulnerable system, and by malicious people to disclose potentially sensitive information, to cause a DoS (Denial of Service), or to compromise a vulnerable system.
1aa58daedc145566bdce3042b39eca1dSecunia Security Advisory - Avaya has acknowledged a security issue in various Avaya products, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
36f545a59edde3a94ea4c10166626c02
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed