ServerView 04.60.07 suffers from a buffer overflow vulnerability in SnmpGetMibValues.exe.
51c065c642db0f5667e29c82dea956dbCA ARCserve Backup versions 12.0.5454.0 and below suffer from a denial of service vulnerability.
65077fb7acdd3b42527ffe88b95fe8efA security vulnerability has been discovered in versions prior to 2.2.3.5 of Akamai Download Manager. For successful exploitation, this vulnerability requires a user to be convinced to visit a malicious URL put into place by an attacker. This may then lead to an unauthorized download and automatic execution of arbitrary code run within the context of the victim user.
b705edaeedc6bd7e8536506f8e8c9491Debian Security Advisory 1563-1 - Joel R. Voss discovered that the IAX2 module of Asterisk, a free software PBX and telephony toolkit performs insufficient validation of IAX2 protocol messages, which may lead to denial of service.
d3c0c0afebf4599c391e9e1d197a3ac5HP Security Bulletin - Potential security vulnerabilities have been identified with HP-UX running WBEM Services. These vulnerabilities could be exploited remotely to execute arbitrary code or to gain extended privileges.
e06432718809d3e5fcaa0f82bc13921fWade Alcorn and John Heasman of NGSSoftware have discovered a stack overflow vulnerability in Castle Rock Computing SNMPc Network Manager. Versions 7.1 and below are affected.
16818ba4cc13453bab9e6d7c99b36067Mandriva Linux Security Advisory - A vulnerability in the Speex library was found where it did not properly validate input values read from the Speex files headers. An attacker could create a malicious Speex file that would crash an application or potentially allow the execution of arbitrary code with the privileges of the application calling the Speex library.
c3058a0c68a5329507b9199eb2357374Mandriva Linux Security Advisory - A vulnerability in the Speex library was found where it did not properly validate input values read from the Speex files headers. An attacker could create a malicious Speex file that would crash an application or potentially allow the execution of arbitrary code with the privileges of the application calling the Speex library. The ogg123 application in vorbis-tools is similarly affected by this issue.
c6dba30f19bdce266467d0eb81876aebMandriva Linux Security Advisory - A vulnerability in the Speex library was found where it did not properly validate input values read from the Speex files headers. An attacker could create a malicious Speex file that would crash an application or potentially allow the execution of arbitrary code with the privileges of the application calling the Speex library. The speex plugin in the gstreamer-plugins-good package is similarly affected by this issue.
a7927b2bc291db5b5346c884eaa8ee12Gentoo Linux Security Advisory GLSA 200804-30 - Vulnerabilities have been reported in the processing of user-controlled data by start_kdeinit, which is setuid root by default. Versions less than 4.0 are affected.
7cb96af75e50047c4cb88e232efaed5aSecunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in Prozilla Hosting Index, which can be exploited by malicious people to conduct SQL injection attacks.
ad8f54ddd13a4caeefc1b60f6863d38fSecunia Security Advisory - Debian has issued an update for kronolith. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
88c733b42d0ef07c7961ab18bc779d14Secunia Security Advisory - Debian has issued an update for ldm. This fixes a security issue, which can be exploited by malicious people to disclose sensitive information.
7e3baa1921d29ce1ce69b2416262857bSecunia Security Advisory - Gentoo has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
580531e29204701e575c18574d7af347Secunia Security Advisory - ProgenTR has reported a vulnerability in Jokes Site Script, which can be exploited by malicious people to conduct SQL injection attacks.
05912028228da7948377af7964b48eb5Secunia Security Advisory - A vulnerability has been reported in PhpGedView, which can be exploited by malicious people to compromise a vulnerable system.
26603ec05dc915352dd821b0cda79881Secunia Security Advisory - HaCkeR-EgY has reported a vulnerability in Joovili, which can be exploited by malicious people to conduct SQL injection attacks.
55e17b9581bb3e3e4fa9d77b088bd8c4Secunia Security Advisory - Core Security Technologies has reported a vulnerability in Sophos Anti-Virus, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
7448ca3a9c6eb6ed486d8c8fdf84a4bdSecunia Security Advisory - Roberto Suggi Liverani has reported a vulnerability in Sugar Community Edition, which can be exploited by malicious users to disclose sensitive information.
e79491cc2d7cfc2b625e550d62322d3dSecunia Security Advisory - IRCRASH has discovered a vulnerability in miniBB, which can be exploited by malicious people to conduct cross-site scripting attacks.
2151e18ab838645e24a31be17d162528Secunia Security Advisory - Core Security Technologies has reported a vulnerability in BitDefender Antivirus 2008, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
223b4bd35423ccef51c58f60b25c4c43Secunia Security Advisory - Slackware has issued an update for libpng. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library.
b3702b1b7cb4cccab69d456049938618Secunia Security Advisory - A vulnerability has been reported in Imager, which potentially can be exploited by malicious people to compromise an application using the library.
c6cab7886f68705ee233dd0293921bf2Secunia Security Advisory - Debian has issued an update for iceape. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
fde52baf453024d9cd8fb877a2d0bf84Secunia Security Advisory - A weakness has been reported in util-linux-ng, which can be exploited by malicious people to manipulate certain data.
a1d607f6c7cd844b6b356f9b1a09f45c
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed