Gentoo Linux Security Advisory GLSA 200805-21 - Philipp Gortan reported that the xml-rpc server in Roundup does not check property permissions (CVE-2008-1475). Furthermore, Roland Meister discovered multiple vulnerabilities caused by unspecified errors, some of which may be related to cross-site scripting (CVE-2008-1474). Versions less than 1.4.4-r1 are affected.
fcd98f05ce6638672ee015b008eee6b6Debian Security Advisory 1587-1 - Adam Zabrocki discovered that under certain circumstances mtr, a full screen ncurses and X11 traceroute tool, could be tricked into executing arbitrary code via overly long reverse DNS records.
f426ed28ca331fc3ed2e887d5d814207Security Objectives Advisory - Lenovo System Update allows arbitrary update executables to be downloaded and installed from a rogue server. The Client DLL does not perform certificate chain verification when initiating an SSL connection with the server. Version 3.13.0005 Build date 2008-1-3 is affected. Other versions may also be affected.
ea869b75c524898156553df7293ac0d5Secunia Security Advisory - Tan Chew Keong has reported a vulnerability in CuteFTP, which can be exploited by malicious people to compromise a user's system.
7e8e6d94b64bc7a6b8f8a7bb1c084393Secunia Security Advisory - Omer Singer has reported some vulnerabilities in Safari Montage, which can be exploited by malicious people to conduct cross-site scripting attacks.
17f9d67ee3d7f0a6367f10a7f71eed86Secunia Security Advisory - A vulnerability has been reported in the kj_imagelightbox2 extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
41f7874f16f4431b94635add036184e1Secunia Security Advisory - CWH Underground has reported a vulnerability in Mini CWB, which can be exploited by malicious people to conduct cross-site scripting attacks.
25a4499e12e89d0b7630575cdc98da98Secunia Security Advisory - unohope has reported two vulnerabilities in phpFix, which can be exploited by malicious people to conduct SQL injection attacks.
a0351de179229027e909178e8cec2fc9Mandriva Linux Security Advisory - Flaws discovered in versions prior to 2.2.4 (stable) and 2.3.10 (development) of GnuTLS allow an attacker to cause denial of service (application crash), and maybe (so far undetermined) execute arbitrary code.
1775f23637b2259cfa9fa2f4bbd1eebaSecunia Security Advisory - A vulnerability with an unknown impact has been reported in the Linux Kernel.
9b27760db3ff996db402dd4bd5350e86Secunia Security Advisory - A vulnerability with an unknown impact has been reported in eMule Plus.
dccd8f3e6a6ce0cb06a2a6567b8b4869Secunia Security Advisory - Tesz has reported a vulnerability in MAXSITE, which can be exploited by malicious people to conduct SQL injection attacks.
f12ee1db6de9d1ca3aaba3a122c10c97Secunia Security Advisory - A vulnerability has been reported in IBM Lotus Sametime, which can be exploited by malicious people to compromise a vulnerable system.
148360c953e138a3e0cc644d0192ba9eSecunia Security Advisory - Two vulnerabilities have been reported in EntertainmentScript (ES), which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
c7c789f8f862850c7c8cc87e1c2edf67Secunia Security Advisory - Red Hat has issued an update for bind. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, and a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
e5bf218ec23ab97cf5bb79706adcb9f9Secunia Security Advisory - cOndemned has reported a vulnerability in MxBB Portal, which can be exploited by malicious people to conduct SQL injection attacks.
10afe9602248503982d1d3dae9abf54aSecunia Security Advisory - CWH Underground has reported a vulnerability in Starsgames Control Panel, which can be exploited by malicious people to conduct cross-site scripting attacks.
1c352d73163c12753006995891188610Secunia Security Advisory - Ubuntu has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
546d518c17dba8ae00826ef7d259b897Secunia Security Advisory - A security issue has been reported in Stunnel, which can be exploited by malicious people to bypass certain security restrictions.
a87538e912e43f8000bce9b9850e5725Secunia Security Advisory - Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
e6586e5b7d43c3925682a5d4e1fe2cc7Secunia Security Advisory - Gentoo has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
e4b98c9d4fe794bb6f4c0147078822c4Secunia Security Advisory - Debian has issued an update for mtr. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
dd81bf94582b2be09a0ef86030e78fb9Secunia Security Advisory - Red Hat has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
57a101745ccca94c1cf4fc912b73d96dSecunia Security Advisory - Some vulnerabilities have been reported in Mambo, which can be exploited by malicious people to conduct SQL injection or HTTP response splitting attacks.
a682782673722253ceea1dc148c9a178Secunia Security Advisory - A security issue has been reported in Cerberus Helpdesk, which can be exploited by malicious people to disclose potentially sensitive information.
b3ca6b954270727c421b7d046fae68df
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed