Big B Trading CMS suffers from a cross site scripting vulnerability.
ca5dcf916556c2fb68ae23dd91c21a7bZero Day Initiative Advisory 12-08 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Citrix Provisioning Services. Authentication is not required to exploit this vulnerability. The specific flaw exists within the streamprocess.exe component which listens for UDP traffic on multiple ports, beginning with 6905. When handling a packet which requests a vDisk name, the user-supplied length value is not properly validated. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the SYSTEM user.
9e185ee773dc0a9df22d413672d574baMandriva Linux Security Advisory 2012-003 - Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a.htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, leading to a heap-based buffer overflow. The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of RewriteRule and ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an \@ character and a : character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368. The updated packages have been patched to correct these issues.
3190f99554cbd0a8df739618e3f40718W-CMS version 2.01 suffers from cross site scripting and directory traversal vulnerabilities.
faebb83c3f27a25ef79763b01efcc0dcPHP Vulnerability Hunter is a PHP fuzzing tool that scans for several different vulnerabilities by performing dynamic program analysis. It can detect arbitrary command execution, local file inclusion, arbitrary upload, and several other types of vulnerabilities.
1e02ee78d2940ef98e05c77caf0939cdSecunia Security Advisory - A vulnerability has been reported in Hitachi IT Operations Director, which can be exploited by malicious people to conduct cross-site scripting attacks.
3e1512e96451f68d7a83ca8c3ac50e01Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
46f41912506d111faafe1a9a793fc62aSecunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server Community Edition, which can be exploited by malicious people to cause a DoS (Denial of Service).
dc22f2386b54b7b6320aa3c557068d80Secunia Security Advisory - A weakness has been reported in libvirt, which can be exploited by malicious people to bypass certain security restrictions.
57073f7b656d2236a83afc204e87dae6Secunia Security Advisory - A vulnerability has been reported in Hitachi IT Operations Analyzer, which can be exploited by malicious people to conduct cross-site scripting attacks.
f1e9a1f39a1c90a5fcb9d708263e1f66Secunia Security Advisory - A vulnerability has been reported in Emacs, which can be exploited by malicious people to compromise a user's system.
cb7c4d443ee594d64945cc35c00fcdc0Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
95e33f95c6bbd0cdbe812e44ec610948Secunia Security Advisory - A vulnerability has been reported in CEDET, which can be exploited by malicious people to compromise a user's system.
b0078dbf0bb15623943681d6368a3f8bSecunia Security Advisory - A weakness has been reported in Microsoft AntiXSS Library, which can be exploited by malicious people to bypass certain security restrictions.
864538e807c77599fe4709ec141d6efeSecunia Security Advisory - Red Hat has issued an update for java-1.4.2-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
68e0aac5175739e7b3c25e30274c5c9aSecunia Security Advisory - A vulnerability has been reported in dl Download Ticket Service, which can be exploited by malicious people to bypass certain security restrictions.
9fbd7da07953c781415ace65c277fa8dSecunia Security Advisory - Debian has issued an update for cacti. This fixes multiple vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting and SQL injection attacks.
582401fe55f681787b9f64f89add5784Secunia Security Advisory - Stefan Schurtz has discovered two vulnerabilities in X3 CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
27e9453b37f47224c02be66457e67187Secunia Security Advisory - Two vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
9fa7a09cf9906abea20b77b7e66fb73cSecunia Security Advisory - A vulnerability has been discovered in razorCMS, which can be exploited by malicious users to bypass certain security restrictions.
27e5ee19bd845303bf4f77224c0beaf4Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in SumatraPDF, which can be exploited by malicious people to potentially compromise a user's system.
dd78213551b0df5ad369249e230be927Secunia Security Advisory - A weakness has been reported in Microsoft Windows, which can be exploited by malicious people to bypass certain security features.
a41182275c5ccf8efb730c1446cf7ba2Secunia Security Advisory - A weakness has been reported in Microsoft AntiXSS Library, which can be exploited by malicious people to bypass certain security restrictions.
6ecac084b76c02ef2561089566cbea4cSecunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
eb557e49c986de2d9c40271502f1ee9eSecunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
a1f0cdaac2a46dfdc0db78d810e471a3
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed