Deimos Kasa versions 2.58 and below suffer from a local integer overflow vulnerability.
80ab77904eacba3dc8c30ad3a714933a70e7c038b12b93dbb3f71e6b1bc649d4Opera versions 10.10 through 10.50 integer overflow exploit.
9a1f1a9cf0bfc1ba896452fd1ab726e986267ff92d738bef82fa08ecdf80215aCisco Security Advisory - A vulnerability exists in the Cisco Digital Media Player that could allow an unauthenticated attacker to inject video or data content into a remote display.
3fa4dc43817fe2c4c515203f2c9eb609e2d9fd348282f7612c4e9c7cc49657b6Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco Digital Media Manager (DMM). These issues relate to default credentials, privilege escalation, and information leakage.
52ae925f5052e20be33ce56ba6c459e54689386676e0972797edae57e1eb3405Smart Plugs version 1.3 suffers from a remote SQL injection vulnerability.
87b7b06d9a1e6448d4189dd2c98a5a514063e9add7bcb97671677927feb2b58eMicronation Banking System suffers from a remote command execution vulnerability.
407668deff1186ab965cf07cb067b72497244f5169ddfd50c8567f06ce38beb6Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
078e7d4a4b1a184fe4f4312abb1cf17a03675a6c42301154c0325f24212cabcaCisco Security Advisory - Cisco Unified Communications Manager (formerly Cisco CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption of voice services. The Session Initiation Protocol (SIP), Skinny Client Control Protocol (SCCP) and Computer Telephony Integration (CTI) Manager services are affected by these vulnerabilities.
d6ba069f2d158011c9680e4c386b9aa7a7108a1310a92709c0c29c08bcc704bcUbuntu Security Notice 906-1 - It was discovered that the CUPS scheduler did not properly handle certain network operations. A remote attacker could exploit this flaw and cause the CUPS server to crash, resulting in a denial of service. Ronald Volgers discovered that the CUPS lppasswd tool could be made to load localized message strings from arbitrary files by setting an environment variable. A local attacker could exploit this with a format-string vulnerability leading to a root privilege escalation. The default compiler options for Ubuntu 8.10, 9.04 and 9.10 should reduce this vulnerability to a denial of service.
783975e6aa85cde70e4595b4adf640e8da102064338a4cfbdd88092e933eebb3Dosya Yukle Scripti version 1.0 suffers from a remote shell upload vulnerability.
04d8bd308497774bb2ee53a18e1d7803887797f335aa9ea624d21c2b207b5f1cGentoo Linux Security Advisory 201003-1 - Two vulnerabilities in sudo might allow local users to escalate privileges and execute arbitrary code with root privileges. Versions less than 1.7.2_p4 are affected.
393266db70023763a97f465facf2fdf5e2ad2164c17cefe8ab9e4d0d20f65e9bThis Metasploit module exploits a buffer overflow in Microsoft's Office Web Components. When passing an overly long string as the "HTMLURL" parameter an attacker can execute arbitrary code.
62af271be942f6f55dcf24ea35dcb2372b11bd7391f408ea6ae7a854ad04f5f7This is a whitepaper called Google Gears for Attackers, Data Theft and Backdoor Placement Attacks on Google Gears' Users.
0899d0aed5b31915bdfd739e61e03b795f20e69f79db11a3ff3585a354994390This is a whitepaper called Flash + IE = Prison Break, Stealing Local Files through the Flash Plugin in IE.
49ec16758a2de5b1797b315197bc0afb258e9cd3525e46a159669dc3ff323c1eGnat-TGP versions 1.2.20 and below suffer from a remote file inclusion vulnerability.
4058428efafb67cfcb91ddcdcb2929f5a495167564afa99e1f29031e089a37baCore Security Technologies Advisory - Luxology Modo 401 suffers from an integer overflow vulnerability when parsing .LXO files.
51b9cf82b285e0e429b33854d143984df2fb806fbb892adaa88ca3f6cc587050The SEC-T 2010 Call For Papers has been announced. It will be held from September 9th through the 10th in Stockholm, Sweden.
bba867c4b4fc3bcf2f0996e730a36c85739130d541259d3ec22f0a0b6db61c33Todd Miller sudo 'sudoedit' local root exploit that affects 1.6.x versions before 1.6.9p21 and 1.7.x versions before 1.7.2p4.
0bc5ddb8c9f78020b6fdf754af735e0f64922f9795dab864f38f4d35c23c24d5Secunia Security Advisory - Debian has issued an update for sudo. This fixes multiple security issues, which can be exploited by malicious, local users to gain escalated privileges.
9a798adb24fb88725a744a2f23bda5f72da0faaf13315dcfa24f1c32dc562335Secunia Security Advisory - Nikolas Sotiriu has reported a security issue in McAfee LinuxShield, which can be exploited by malicious, local users to gain escalated privileges.
e50ed7fe1f5df8ca48a5d88b5154a1e1dceb20d46dd06e4028c96c0b5f247b5dSecunia Security Advisory - A vulnerability has been reported in the Calendar Base extension for TYPO3, which can be exploited by malicious people to conduct SQL injection attacks.
5699968bb11dd732e60949967711a08b82f16a873abe8f1994b018e38c4e201bSecunia Security Advisory - SUSE has issued an update for the kernel. This fixes some security issues and some vulnerabilities, which can be exploited by malicious, local users to manipulate certain data, bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially gain escalated privileges and by malicious people to cause a DoS (Denial of Service).
21f93970fd7cd7089d7bc36abc550015170e09ff7816f13f8fd778fd3aa7655cSecunia Security Advisory - Yaniv Miron has reported a vulnerability in Oracle Siebel CRM, which can be exploited by malicious people to conduct cross-site scripting attacks.
955b21cfb2022dce4b2b212019dba30b4d149d67ba9aa67d97f16eb9b5ed3a10Secunia Security Advisory - A vulnerability has been discovered in Modo 401, which can be exploited by malicious people to potentially compromise a user's system.
fd7883b29e20eabf783cd7b721ec42293ff4c8172b90f6ddd7f05205aa979cd1Secunia Security Advisory - Yaniv Miron has reported a vulnerability in ARISg, which can be exploited by malicious people to conduct cross-site scripting attacks.
e54ae3d35f69a97a23d2b411bc51ec16a58c9c4ecf8f43889ccbba6bdc72bfa0
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed