Secunia Security Advisory - A vulnerability has been reported in Apache Tomcat, which can be exploited by malicious people to cause a DoS (Denial of Service).
aa313e5e729fbd028d3d183a71ff1276Secunia Security Advisory - A vulnerability has been reported in Oracle GlassFish Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
2cdd9c16c9ff875c11b14405d4e5c29fSecunia Security Advisory - Four vulnerabilities have been reported in Microsoft .NET Framework, which can be exploited by malicious people to cause a DoS (Denial of Service), conduct spoofing attacks, or bypass certain security restrictions.
af30363fe8855055fea2b7b1550a516dSecunia Security Advisory - A vulnerability has been reported in PHP, which can be exploited by malicious people to cause a DoS (Denial of Service).
88245e88eb970eaf5ea239ec9bb8d075Secunia Security Advisory - A vulnerability has been reported in JRuby, which can be exploited by malicious people to cause a DoS (Denial of Service).
55326708cd21d51ee3d72de48d17259fSecunia Security Advisory - A vulnerability has been reported in Jetty, which can be exploited by malicious people to cause a DoS (Denial of Service).
2f882496db8fc34c66527068d46923eeSecunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
b7c81b56786a5e60be5e8383dc4ced5eSecunia Security Advisory - A vulnerability has been reported in Ruby, which can be exploited by malicious people to cause a DoS (Denial of Service).
ae4a837d56756e1c5a4d60000a8713a5Microsoft ASP.NET Forms suffers from a null byte termination authentication bypass vulnerability that exists in the CopyStringToUnAlingnedBuffer() function of the webengine4.dll library used by the .NET framework. The unicode string length is determined using the lstrlenW function. The lstrlenW function returns the length of the string, in characters not including the terminating null character. If the unicode string containing a null byte is passed, its length is incorrectly calculated, so only characters before the null byte are copied into the buffer.
63981257663cd145e7371de1db9fbfbeMandriva Linux Security Advisory 2011-197 - Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708. PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service by sending many crafted parameters. The updated packages have been patched to correct this issue.
5179d8a626ca4088fe479cf3b48be141Debian Linux Security Advisory 2263-2 - Advisory DSA 2363-1 did not include a package for the Debian 5.0 'Lenny' suite at that time. This update adds that package.
a0bbab53f114dafaae68a795a8a7fcddDebian Linux Security Advisory 2376-1 - It was discovered that OpenIPMI, the Intelligent Platform Management Interface library and tools, used too wide permissions PID file, which allows local users to kill arbitrary processes by writing to this file.
eea94fc0a18aacd063e5aa41244a2d8dSecunia Security Advisory - Multiple vulnerabilities have been discovered in the Blog module for DiY-CMS, which can be exploited by malicious people to conduct SQL injection attacks.
39f1d3fc31217898dae3c365cf011d83Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
faa220a2bb8e07ab81d18067338167baSecunia Security Advisory - A vulnerability has been reported in Plone, which can be exploited by malicious people to cause a DoS (Denial of Service).
5e36d4ef4885d6c60ea99777521ff235Secunia Security Advisory - A vulnerability with unknown impact has been reported in the Connections plugin for WordPress.
1c7a4492884e9816e78c4be088f72b6fSecunia Security Advisory - Two vulnerabilities have been reported in op5 Monitor, where one has an unknown impact and the other can be exploited by malicious users to disclose certain sensitive information.
66563c083e6550a4ecba92f45cc702c2Secunia Security Advisory - A weakness and two vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to bypass certain security restrictions and conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks.
623350a25eac56ca059c088f7e784c86Secunia Security Advisory - Two vulnerabilities have been reported in op5 Appliance, which can be exploited by malicious people to compromise a vulnerable system.
b14940ab7e3299125550c4045c415783Secunia Security Advisory - Oracle has acknowledged a weakness in Oracle iPlanet Web Server, which can be exploited by malicious people to disclose potentially sensitive information and hijack a user's session.
2981548a9f1f11849a992480cdf4de86Secunia Security Advisory - A vulnerability has been reported in Neturf eCommerce Shopping Cart, which can be exploited by malicious people to conduct cross-site scripting attacks.
6e5b21804fea99aedcc113ff4f216a3fSecunia Security Advisory - Alexander Fuchs has reported a vulnerability in Akiva WebBoard, which can be exploited by malicious people to conduct SQL injection attacks.
f4da28a78d39e8c6e5ac5b7c58d5f708Secunia Security Advisory - A vulnerability has been discovered in Winn Guestbook, which can be exploited by malicious people to conduct script insertion attacks.
851e981fdcdd3434832188510b2e71c7Secunia Security Advisory - Multiple vulnerabilities have been discovered in the Blog module for DiY-CMS, which can be exploited by malicious people to conduct SQL injection attacks.
39f1d3fc31217898dae3c365cf011d83Secunia Security Advisory - A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
faa220a2bb8e07ab81d18067338167ba
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed