Positive Technologies Research Team has discovered multiple privilege escalation vulnerabilities in Trend Micro products. The IOCTL handler in tmactmon.sys uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate buffer data associated with the Irp object, which allows local users to gain SYSTEM privileges.
2b504d8f7d1d15f6e2ef89e0cf695b0cDebian Security Advisory 1760-1 - Two vulnerabilities have been discovered in openswan, an IPSec implementation for linux.
b7b31d12cdf52185ce169f228dd1c204Debian Security Advisory 1759-1 - Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an IPSec implementation for linux, is prone to a denial of service attack via a malicious packet.
0167baa8db6ac6bb278903e604b61b37Secunia Security Advisory - A vulnerability has been reported in strongSwan, which can be exploited by malicious people to cause a DoS (Denial of Service).
4cb006ee279537069391cbbc3cc7720eSecunia Security Advisory - BugsNotHugs has reported some vulnerabilities in Aurora FoodPro, which can be exploited by malicious people to conduct cross-site scripting attacks.
72811a24e505cd3ab34cdcdcc697c61dSecunia Security Advisory - Encrypt3d.M!nd has discovered a vulnerability in Abee Chm eBook Creator, which can be exploited by malicious people to compromise a user's system.
b86232f7cfb983b708dbd29d8d8e3aacSecunia Security Advisory - Gentoo has issued an update for gedit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
e57b7b941bff5d88a76526f1a85d815cSecunia Security Advisory - Some vulnerabilities have been reported in Arcadwy Arcade Script, which can be exploited by malicious people to conduct SQL injection and script insertion attacks.
4fdf629e6046e0d3237a8480bb76f9fcSecunia Security Advisory - A vulnerability has been reported in Openswan, which can be exploited by malicious people to cause a DoS (Denial of Service).
d83f3b4e1fa3f0c865c5453c5f15248cSecunia Security Advisory - Alfons Luja has discovered a vulnerability in Amaya, which can be exploited by malicious people to compromise a user's system.
793bee055ca3bd481c92bbe3d4daf40aSecunia Security Advisory - Red Hat has issued an update for openswan. This fixes a vulnerability and a security issue, which can be exploited by malicious people to cause a DoS (Denial of Service), and by malicious, local users to perform certain actions with escalated privileges.
29841af880d2992b48e4dac7fe72b925Secunia Security Advisory - Debian has issued an update for nss-ldapd. This fixes a security issue, which can be exploited by malicious, local users to disclose potentially sensitive information.
7d9a61f2a6a99b2000cfe06978c25cfbSecunia Security Advisory - Fedora has issued an update for seamonkey. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, or compromise a user's system.
fb8c1330e3a5163dc252b8dc3f5b1366Secunia Security Advisory - Some vulnerabilities have been discovered in Family Connections, which can be exploited by malicious users and people to conduct SQL injection attacks.
4a26f955280c94981e87eb7556934793Secunia Security Advisory - Ubuntu has issued an update for libsndfile. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
463962831da717b73a42f4a2456ee6e3Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
fef5af7009cfeee408107bd0aa3abe53Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
1b63d786348a7abd5570600b0807acb5Secunia Security Advisory - A vulnerability has been discovered in JobHut, which can be exploited by malicious people to conduct SQL injection attacks.
5858defd5b11cb20642cdef09d1fd910Secunia Security Advisory - AnGeL25dZ has reported some vulnerabilities in Diskos CMS, which can be exploited by malicious people to disclose sensitive information or conduct SQL injection attacks.
21eb549cc13231779dafcd656b03a208Secunia Security Advisory - Ubuntu has issued an update for openssl. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
e18ad2a40276305e34ba6e9c5312ef9bSecunia Security Advisory - Debian has issued an update for strongswan. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
9769406bd07382843c67fb3437b65e45Secunia Security Advisory - Debian has issued an update for openswan. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to cause a DoS (Denial of Service).
e23774415023205cea60735425308f04Secunia Security Advisory - Some vulnerabilities have been reported in Ingate Firewall and SIParator, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, or cause a DoS (Denial of Service).
7c7f321741c02615a2d52f4190d4cb2aSecunia Security Advisory - Christian J. Eibl has discovered a security issue in Moodle, which can be exploited by malicious users to disclose sensitive information.
aee7630116dce4b5e2ecc16c1c5ddbfbSecunia Security Advisory - Some vulnerabilities and a weakness have been reported in MapServer, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially to compromise a vulnerable system.
ca59dc15b42263430356e10325149e79
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed