CA ARCserve Backup for Laptops and Desktops contains multiple vulnerabilities that can allow a remote attacker to cause a denial of service condition or execute arbitrary code.
6bb11018996839ab3d337dab5aaa7d0aA vulnerability allows remote attackers to extract IP addresses visited through the SOCKS4 Proxy on vulnerable ISA Server installations. Authentication is not required to exploit this vulnerability. This specific flaw exists when an empty packet is sent to the SOCKS4. The server will return a packet containing the last IP address it proxied to.
ac0f7602768ad8686a6dab1d8f433dfdThe NetSupport Manager client that listens on TCP port 5405 does not properly handle authentication sessions. It is possible to pose as the NetSupport Manager, associate to a client, and then issue commands without performing the authentication sequence. Both the basic and advanced authentication schemes can be bypassed in the same manner. When properly exploited, this flaw will results in a complete compromise of the target system. Version 10.20 is susceptible.
4dee000df98b5afe03e2e7605156220fDebian Security Advisory 1377-2 - Matthias Andree discovered that fetchmail, an SSL enabled POP3, APOP and IMAP mail gatherer/forwarder, can under certain circumstances attempt to dereference a NULL pointer and crash.
8677ba6eb258cf94983d6e38b149edb3Debian Security Advisory 1377-1 - Matthias Andree discovered that fetchmail, an SSL enabled POP3, APOP and IMAP mail gatherer/forwarder, can under certain circumstances attempt to dereference a NULL pointer and crash.
4e0d56b9efe48730352e38c5035f7915Debian Security Advisory 1376-1 - iKees Huijgen discovered that under certain circumstances KDM, an X session manage for KDE, it is possible for KDM to be tricked into allowing user logins without a password.
c49bea5391596d92bf13342e932b53ecSecunia Security Advisory - Krystian Kloskowski has discovered a vulnerability in Xitami, which can be exploited by malicious people to compromise a vulnerable system.
b44bdc5f979bab22ea84dc28a713c75dSecunia Security Advisory - A vulnerability has been reported in Webmin, which can be exploited by malicious users to gain escalated privileges.
99a44cbb7cec49256b7e1d9f57d0ea84Secunia Security Advisory - EP_X0FF has reported some vulnerabilities in Kasperky AntiVirus, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
ce8cc6c63b995976bd60988edf8848beSecunia Security Advisory - Mandriva has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious, local users to bypass certain security restrictions, malicious users to bypass certain security restrictions, gain escalated privileges, disclose potentially sensitive information, or cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions and cause a DoS.
80144b4d69a02686c61cbacfcd97850fSecunia Security Advisory - Mahmood_ali has discovered a vulnerability in Helplink, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
24bb867d48397ee05266a443d7d43c18Secunia Security Advisory - BiNgZa has discovered some vulnerabilities in DFD Cart, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
c15acc441c7833b937b8396779b898d8Secunia Security Advisory - BorN To K!LL has discovered a vulnerability in the Nuke Mobile Entertainment module for PHP-Nuke, which can be exploited by malicious people to disclose sensitive information.
63f293e96332582a64e792543b4aff85Secunia Security Advisory - ShockShadow has reported a vulnerability in Wordsmith, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
f466c7f0924812f81901fbd358899dc2Secunia Security Advisory - HP has acknowledged a vulnerability in HP OpenVMS, which can be exploited by malicious people to poison the DNS cache.
4c9038d88803d6cd927a2cc4c01cd975Secunia Security Advisory - Some vulnerabilities have been reported in ImageMagick, which can be exploited by malicious people to conduct DoS (Denial of Service) attacks or compromise a user's system.
208782b8813861ccaa44a89b67c4ca23Secunia Security Advisory - A vulnerability has been reported in NetSupport Manager, which can be exploited by malicious people to bypass certain security restrictions.
a6294d4fc47f3ab2bfedd53440303107Secunia Security Advisory - irk4z has discovered a vulnerability in CMS Made Simple, which can be exploited by malicious people to compromise a vulnerable system.
457057d47dfd6687d52ad5f627e9c12dSecunia Security Advisory - irk4 has discovered some vulnerabilities in iziContents, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
153a9a9241318b96c7d7369aed0ec6c5Secunia Security Advisory - Gentoo has issued an update for jrockit-jdk-bin. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, to cause a DoS (Denial of Service), or to compromise a vulnerable system.
5ff9b1235ffb595f7b80ec5e8d5e76a5Secunia Security Advisory - Wojciech Purczynski has reported a vulnerability in the Linux kernel, which can be exploited by malicious, local users to gain escalated privileges.
16b3187552fa26faca54114eb4a7a452Secunia Security Advisory - x0kster has reported a vulnerability in Xcms, which can be exploited by malicious people to bypass certain security restrictions.
614db02a0f47f51e42613b51a55750f0Secunia Security Advisory - A vulnerability has been reported in ChironFS, which can be exploited by malicious, local users to gain escalated privileges.
5850a386617d0f4d0cad4c0893d1c46eSecunia Security Advisory - nights shadow has discovered a vulnerability in bcoos, which can be exploited by malicious users or malicious people to conduct SQL injection attacks.
5caaed13a98d2c22fa17f74db9cc3ba9Secunia Security Advisory - A vulnerability has been reported in Balsa, which potentially can be exploited by malicious people to compromise a user's system.
9a44344990f4d33541d4584fe3da8153
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed