Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
c6b409e55dfc5228b65fa54f12934012d8843b13171db8b687c640be7c1eb906
Ultimate PHP Board (UPB) versions 1.8 through 1.9.6 suffer from HTML and SQL injection flaws.
367ad025217cc43d84e3cce534d1cb331db3de34692e8a44cb5d5650304d4543
OllyDbg INT3 AT format string vulnerability advisory. Version 1.10 is affected.
4e248085ea289108462324432c3a447b216daa32ef90603b528efb433b1b757d
PhotoPost remote md5 password hash disclosure exploit.
21373b1accdbd0cab16c431d034392031b02a226d78f1b2d7a90874e7016e293
Open Bulletin Board versions 1.0.8 and below suffer from cross site scripting flaws.
63d70b6475fa5f7cb47dcc7d7b6bf9aed1f7bbd3645918432f846a1e12e81835
Astalavista Security Newsletter Issue 16 - The latest security events, trends, tools and resources, featured articles - DNS Security and the introduction of DNSSEC ? Part 1 ; Phishing attacks - put yourself in ?learning-mode? - Interview with Nicolay Nedyalkov from ISECA, http://www.iseca.org/
3de08f4092427e88f913995359475c79a64f634d0d8f0b4d09f6a164cfc5e3bb
Bugzilla versions 2.18, 2.19.2, and 2.16.8 suffer from information disclosure and and password leak flaws.
f08f267ae5cc5f1603bab4b6f18bd0f39e04e2252633e85565a25b94267ff2ca
This advisory concerns an as-yet unpatched problem in QuickTime 7 on Mac OS X 10.4.
e7ce6810a1cc4cc40d313e30ebb902b919e44fc8a46b32f75a1d7c496a33a8d2
Proof of concept denial of service exploit for the Ethereal SIP dissector stack overflow found in versions below 0.10.11.
270b4e9c753e696dfe50f645048e5d6190372706bd567ead23f2c9597323980f
Cisco Security Advisory - The Cisco Firewall Services Module (FWSM) is a high-speed, integrated firewall module for Catalyst 6500 series switches and Cisco 7600 series routers. A vulnerability exists in the Cisco Firewall Services Module when URL, FTP, or HTTPS filtering is enabled in which inbound TCP packets can bypass access-list entries intended to explicitly filter them.
1dee9ac29e26a23c6615b8a03062252875e0fc9e1ffe94b42705cbf9238225e0
yappa-ng versions 2.3.1 and below suffer from cross site scripting and remote file inclusion vulnerabilities.
90a3da05c60376ef97873498b991f03c9b913e452f14c0f26b68df2588b56502
Maxwebportal versions 1.3.5 and prior suffer from cross site scripting and SQL injection vulnerabilities.
c732baf72d306d51db23d20c0c2a2595e9d7a50f70ca3a40434658131204af63
Linux kernel ELF core dump privilege elevation advisory and proof of concept exploit. Affects the 2.2 series up to and including 2.2.27-rc2 and 2.4 up to and including 2.4.31-pre1. Also affected is 2.6 up to and including 2.6.12-rc4.
212888e5da8ea742abd0cc0bfa4ca3154edd8f5a58ea7bade1c81b8ebb10754b
QuickForum 2.1.6 suffers from cross site scripting and SQL injection flaws.
82bf64c287e3b0da111c7129f089219add896b6b657e01288fed7a6ea4e4b550
QuickCart version 0.3.0 is susceptible to cross site scripting and SQL injection attacks.
4f730d2c05628351a02ce0ff8cb873b18c40796f43df719100e677d5526ecb59
Neteyes Nexusway is susceptible to remote command execution flaws.
3c0085aab73ff2d0b5a2205c2c5bfc196968491832706a4556c3eaf34f456351
Guestbook PRO versions 3.2.1 and below suffer from a cross site scripting flaw.
3b089b45b88defa85c610c65d7475714e89b1c4dc05661e22010b51308b20524
Zoidcom versions 1.0 beta 4 and below suffer from an unallocated memory access bug.
1504b2a7ecb20d42e2404e62a94ddeaa0b4045f8f0ad3de3b6f4aa1ff8cfc9f5
The default error page in the optional-use JRun Web Server bundled with ColdFusion MX 7 is vulnerable to a cross-site scripting attack.
bb38ddfad4cb7a4de8cbe47b2786b4499b2ffc34117037b3d15edf6bdd252b0f
NukeET versions prior to 3.2 are susceptible to cross site scripting.
ff8e369cfe16f919ab85898c6914337ad74c471b3aed670cc76c80eae283cba0
wowBB versions 1.6, 1.61, and 1.62 suffer from a SQL injection flaw.
b1899ba12ae5e7b39dff6c925bf8c10e50ce1f1af90c443991152fead54b5991
Simple perl script that can be used to track overflows.
358adcaadedf7d52c8116f911f5ebad392623b2e08fde65cea09264234c5e25f
Multiple issues exist revolving around poor authentication mechanisms in GeoVision Digital Video Surveillance systems. These issues allow sniffed authentication credentials to be reused as-is or descrambled to allow the discovery of the original password. In certain configurations still pictures from security cameras can be viewed without providing any authentication. Versions 6.04, 6.1, and 7.0 are affected.
fa47f036c836b7eaac311e5f78e9e43ed2a9065ea93c82d010777ac1313bdeb3
Three attacks that apply to certain configurations of IPsec have been identified. These configurations use Encapsulating Security Payload (ESP) in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to provide integrity protection are also vulnerable.
d0606c851923c75a62e9d1bf58eb7a365eb5e42a9a5b404504811b1aaae0ad08
Suresec Security Advisory 2 - A buffer overflow exists in the distcc dissector for Ethereal. Version 0.10.11 fixes this.
e279b0a7f689b2cc7777332d919f035a59fa7a81d5a6a808600f3594dd0e4084