Secunia Security Advisory - Multiple vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.
162ebe3fb215c6d39267eebb7f496362Secunia Security Advisory - Debian has issued an update for krb5. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
a4db2811cfa78d2dc4b9c14dc2819390Secunia Security Advisory - A vulnerability has been reported in the Registration Codes module for Drupal, which can be exploited by malicious people to disclose sensitive information.
5cc4412bb1cae30b786288924736fae8Secunia Security Advisory - A vulnerability has been reported in UBB.threads, which can be exploited by malicious people to conduct cross-site scripting attacks.
a33240068cdf8547fdda371d6db223ebOpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.
e358705fb4a8827b5e9224a73f442025Technical Cyber Security Alert 2012-6A - Wi-Fi Protected Setup (WPS) provides simplified mechanisms to configure secure wireless networks. The external registrar PIN exchange mechanism is susceptible to brute force attacks that could allow an attacker to gain access to an encrypted Wi-Fi network.
76510dac2e1855f24b26eba6af7220b0Ubuntu Security Notice 1306-2 - USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. Various other issues were also addressed.
0cb8923ccca213371749c9ad49ba69bfUbuntu Security Notice 1306-1 - Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. Aki Helin discovered a crash in the YARR regular expression library that could be triggered by javascript in web content. Various other issues were also addressed.
66d158a2657e6a68eb213d345a66e000Novell Netware version 6.5 SP8 suffers from a XNFS.NLM NFS Rename remote code execution vulnerability.
932cbf32f536d7915c5001d7b70f4ad7Novell Netware version 6.5 SP8 suffers from a XNFS.NLM STAT Notify remote code execution vulnerability.
e949872ec1d486d378b559f2ae10cbf2WordPress Pay With Tweet plugin versions 1.1 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
f99a5a98a2e9a1fc938a1ee5b011398cTinyWebGallery version 1.8.3 suffers from a remote command execution vulnerability.
76a84840d9d69bc0f2f1fe5560e568a3Look411.com suffers from a cross site scripting vulnerability.
c941a40693e31bf01cd71f90df626a9fAtar2b CMS version 4.0.1 suffers from a remote SQL injection vulnerability.
06205c4ee3f7a7dadcb5f4f6362acd49Goto System suffers from a remote SQL injection vulnerability.
f9feba241ae681fd9ae505f00a4fc31cDIGIT CMS version 1.0.7 suffers from cross site scripting and remote SQL injection vulnerabilities.
3b352294564a321feab007d6f82e2331Debian Linux Security Advisory 2381-1 - It was discovered that the IPv6 support code in Squid does not properly handle certain DNS responses, resulting in deallocation of an invalid pointer and a daemon crash.
0d3758cce8291f77407931a6809b80b4VBDrupal suffers from a cross site scripting vulnerability.
e93f49e0cf2740ff27beb978a01980a5IRIS suffers from a remote SQL injection vulnerability.
5c4d945173a3a966eab13d38ac8a75ebIpTools (Tiny TCP/IP server) version 0.1.4 suffers from a directory traversal vulnerability.
a0ca8e6e3fa10f928aadb20af380402aIpTools (Tiny TCP/IP server) version 0.1.4 suffers from denial of service and overflow vulnerabilities.
f3b2cf7d3c6ed6032187ba5eaa0b2234
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed