Secunia Security Advisory - A weakness has been reported in Pidgin, which can be exploited by malicious people to cause a DoS (Denial of Service).
cbdcc7117772b4ab84662431643b5982Secunia Security Advisory - A vulnerability has been reported in HP OpenView Network Node Manager, which can be exploited by malicious people to compromise a vulnerable system.
4964975d03b1b0e9f0193ceeb824db06Secunia Security Advisory - A vulnerability has been reported in Cisco Content Delivery System, which can be exploited by malicious people to disclose sensitive information.
e53f6c698e030a13efae6813a8c2db75Secunia Security Advisory - A vulnerability has been reported in the Tagging Module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
627d8c2125073c2451a6a45cb0e026aeSecunia Security Advisory - A vulnerability has been discovered in CodeIgniter, which can be exploited by malicious people to compromise a vulnerable system.
391f854576fc539d1af82bbcb78181e8Secunia Security Advisory - A vulnerability has been discovered in the Advanced Stats on Index/Portal plugin for MyBB, which can be exploited by malicious users to conduct script insertion attacks.
e55f04c4a69084b6dfb9a9b674a162ccSecunia Security Advisory - A vulnerability has been reported in Pre Podcast Portal, which can be exploited by malicious people to conduct SQL injection attacks.
e4a6607d77238e6db61ae40bb47235fbSecunia Security Advisory - Jeremiah Grossman has discovered a weakness in Apple Safari, which can be exploited by malicious people to disclose potentially sensitive information.
05ed3dcec09c53410ac27734d01fe352Secunia Security Advisory - A vulnerability has been reported in Pre Web Host, which can be exploited by malicious people to conduct SQL injection attacks.
57d18488716c1e823f2252f13fedc3acSecunia Security Advisory - A vulnerability has been reported in HP OpenView Network Node Manager, which can be exploited by malicious people to compromise a vulnerable system.
bc3efeb9928082903f0b51ed2510a543Secunia Security Advisory - Some weaknesses and vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, conduct spoofing attacks, and compromise a user's system.
3f26937ddfd7e0b949a4523a2669b81cSecunia Security Advisory - A security issue has been reported in the Intel Math Kernel Library, which can be exploited by malicious, local users to gain escalated privileges.
a9c368a3d04fb8c86555476090f57a3dSecunia Security Advisory - Luigi Auriemma has reported a vulnerability in F.E.A.R and F.E.A.R. 2: Project Origin, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
3c8872e8ddb819ab14107a92f8d3e617Secunia Security Advisory - Fedora has issued an update for libpng10. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
b1b30a82ed3c672aa15dddc9dcc260ffSecunia Security Advisory - A vulnerability has been reported in Intel Software Development Tools for Intel Active Management Technology (AMT), which can be exploited by malicious people to cause a DoS (Denial of Service).
abeef1a0d8895ec662315ca5209ad3b3Secunia Security Advisory - Some weaknesses and vulnerabilities have been reported in Mozilla Thunderbird, which can be exploited by malicious people to disclose potentially sensitive information, potentially conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system.
3a1ae126c4cf8d65c69f8e32495931fcSecunia Security Advisory - Red Hat has issued an update for openldap. This fixes two vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks or to cause a DoS (Denial of Service).
e3a3494a948300c6f0656490c0e44093Secunia Security Advisory - Red Hat has issued an update for openldap. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
3b821e9ad59f1094922c562726df7d9cSecunia Security Advisory - A vulnerability has been discovered in the PHP Chat module for 123 Flash Chat, which can be exploited by malicious people to disclose sensitive information.
cfeec06ad30c79eadaa2ec6f217eccb3Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, and potentially gain escalated privileges, and by malicious people to cause a DoS.
8059deeefd7ba924aaafd41976aa32fcSecunia Security Advisory - A vulnerability has been discovered in Qt, which can be exploited by malicious people to potentially compromise an application using the library.
dc137f6a281f3153f36b4612f7b09ffbSecunia Security Advisory - A vulnerability has been reported in Arora, which can be exploited by malicious people to potentially compromise a user's system.
526ab034c193bd2d617ce18b85acea35Secunia Security Advisory - A vulnerability has been reported in OpenTTD, which can be exploited by malicious people to cause a DoS (Denial of Service).
6ebea7180f6bea4145dc9d66fddd12daZero Day Initiative Advisory 10-137 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard OpenView Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ov.dll module which is loaded by the webappmon.exe CGI program. This DLL defines a function execvp_nc which unsafely concatenates a controllable command string into a statically allocated stack buffer. By supplying overly large values to variables passed through an HTTP request a strcat_new can be made to overflow this buffer. An attacker can leverage this to execute arbitrary code under the context of the user running the webserver.
8e35a02eb798212081089b29dd3734beZero Day Initiative Advisory 10-136 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Teaming. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Tomcat server installed by default with Teaming. The server exposes an AJAX request handler which allows a remote user to upload an image via the upload_image_file operation. By crafting a specially formatted filename an attacker can bypass a name-mangling mechanism and traverse outside the intended temporary directory. By uploading a malicious JSP document to the web directory, an attacker can abuse this functionality to execute arbitrary code under the context of the SYSTEM user.
542610dde673af95d2ee4fdae0cfc9c8
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed