Mandriva Linux Security Advisory 2012-016 - A File Inclusion vulnerability was discovered and corrected in GLPI. This advisory provides the latest version of GLPI that is not vulnerable to this issue.
028bfba520e86d5fe32de42689d38c85This is an advance notification of 9 security bulletins that Microsoft is intending to release on February 14, 2012.
040f22a4eccddefd628ef64a917dcd16The Indianapolis Superbowl 2012 website suffered from multiple remote SQL injection vulnerabilities.
032fb43b781fe3cce94956e3cc43a8a5Mandriva Linux Security Advisory 2012-015 - Multiple file parser and NULL pointer vulnerabilities including a RLC dissector buffer overflow was found and corrected in Wireshark. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.
2d35e004a607177786ff29a2fad3e58fSecunia Security Advisory - SUSE has issued an update for gnutls. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
1e4f47f83d581f30f9702dcee0ff2735Secunia Security Advisory - Luigi Auriemma has discovered multiple vulnerabilities in RabidHamster R4, which can be exploited by malicious people to disclose potentially sensitive information and compromise a vulnerable system.
de119da85fed23a00bdb658d7a478bcbSecunia Security Advisory - A vulnerability has been reported in IBM solidDB, which can be exploited by malicious users to cause a DoS (Denial of Service).
53f0e8cdaebdf419d2dbe6f61e8acbcdSecunia Security Advisory - Oracle has acknowledged a weakness in Pidgin included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
81c5ac2ca526ca9c8e5b1a7cc62da4d7Secunia Security Advisory - Two vulnerabilities have been reported in ImageMagick, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
0da5c263dedd2072d23ba053c07fcf23Secunia Security Advisory - Attachmate has acknowledged a vulnerability in multiple Reflection products, which can be exploited by malicious people to disclose potentially sensitive information.
af7ca13175ddfcadd7b890d1c4703885Secunia Security Advisory - Vulnerability-Lab has discovered a vulnerability in Dolibarr ERP/CRM, which can be exploited by malicious users to conduct SQL injection attacks.
7de3cee756e827b4c616b2e8fb5e46a2Secunia Security Advisory - SUSE has issued an update for opera. This fixes a weakness and a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information and bypass certain security restrictions.
9dad90391c24ad6109ee8a12354b9eebSecunia Security Advisory - A vulnerability has been discovered in Pluck, which can be exploited by malicious people to conduct cross-site request forgery attacks.
47082d5e213bb463a825d7d8d93a7c04Secunia Security Advisory - SUSE has issued an update for apache2. This fixes two weaknesses and a vulnerability, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to bypass certain security restrictions.
c27f92c5afb1b5b544ba90efd4a1060dSecunia Security Advisory - SUSE has issued an update for curl. This fixes a weakness and two vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, hijack a user's session, and manipulate certain data.
4de17e5a1a164075259c9fbfeeec3cf5Secunia Security Advisory - SUSE has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
31a265845c1f8723696f6d5687280db3Secunia Security Advisory - Ubuntu has issued an update for openssl. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.
089a9012d70239cb1de6f10d7b40138fSecunia Security Advisory - A vulnerability has been discovered in XRay CMS, which can be exploited by malicious people to conduct SQL injection attacks.
933035fdb36c2988329a1e7a4664a5c8Secunia Security Advisory - Emilien Girault has discovered a vulnerability in GLPI, which can be exploited by malicious users to compromise a vulnerable system.
ec359be1dad3faf265b71117d07cda05Secunia Security Advisory - Multiple vulnerabilities have been reported in MyBB, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
f7b8d7ae4a4230c5cb9db9ab3fc27a9cSecunia Security Advisory - A vulnerability has been discovered in Gazie, which can be exploited by malicious people to conduct cross-site request forgery attacks.
cdffb363cbfd72703e7bf32cf135c444Secunia Security Advisory - Luigi Auriemma has discovered two vulnerabilities in RabidHamster R2 Extreme, which can be exploited by malicious users to disclose potentially sensitive information and compromise a vulnerable system.
379986ac2d848cefc1b2b91a1257673eSecunia Security Advisory - Ubuntu has issued an update for php5. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
afa950c4858791c8c20ddba1283e9e57Ubuntu Security Notice 1358-1 - It was discovered that PHP computed hash values for form parameters without restricting the ability to trigger hash collisions predictably. This could allow a remote attacker to cause a denial of service by sending many crafted parameters. ATTENTION: this update changes previous PHP behavior by limiting the number of external input variables to 1000. This may be increased by adding a "max_input_vars" directive to the php.ini configuration file. See http://www.php.net/manual/en/info.configuration.php#ini.max-input-vars for more information. Various other issues were also addressed.
283098275d1a7663b375247bc413b584Red Hat Security Advisory 2012-0108-01 - JBoss Cache is the clustering backbone for data distribution in JBoss Enterprise Application Platform. It provides the backing implementation for web session replication, stateful session bean replication and entity caching. It was found that NonManagedConnectionFactory would log the username and password in plain text when an exception was thrown. This could lead to the exposure of authentication credentials if local users had permissions to read the log file. Warning: Before applying this update, back up your existing JBoss Enterprise Application Platform's "jboss-as/server/[PROFILE]/lib/jbosscache-core.jar" file.
3ddb669c3ae3e323ec59db09d160f7de
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed