Secunia Security Advisory - Secunia Research has discovered some vulnerabilities and a security issue in The Address Book, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting, cross-site request forgery, script insertion, and SQL injection attacks, disclose sensitive information, and compromise a vulnerable system.
7e96499820d579e912dfd3e2d7cae02582bfcc28862c34179e0852eb8ed30f86Secunia Security Advisory - Stefano Di Paola and Giorgio Fedon have discovered a vulnerability in Adobe Reader, which can be exploited by malicious people to conduct cross-site scripting attacks.
cf8a3ce754e8c20f6776daaad6380e25f53b8e34e8c313c5dd0e4e36ec061ce5Secunia Security Advisory - Aria-Security Team has discovered a security issue in RBlog, which can be exploited by malicious people to disclose sensitive information.
c7d49558922061c02bd477ca8fda7f766059b41d672aa73de68a3a939d813bc4Secunia Security Advisory - Doz has reported some vulnerabilities in AShop Deluxe, which can be exploited by malicious people to conduct cross-site scripting attacks.
c19e0699c7f4324aa63ddfda51cb16fd957f8fd1873a744c61713dcf2364d471Secunia Security Advisory - Mandriva has issued an update for libmodplug. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
394ce9d8bb672426ded28e154a896cd3e1d101930fd6850e55b04fa80d79ba9bSecunia Security Advisory - ajann has reported a vulnerability in TaskTracker Pro, which can be exploited by malicious people to bypass certain security restrictions.
1326e52bcc4e2b3ba6ce53b250e29dde3a6a47559546db579c06003bab955e5eSecunia Security Advisory - ajann has reported a vulnerability in Enthrallweb eCars, which can be exploited by malicious people to conduct SQL injection attacks.
32a11c626d211060f4bf36448c6b97ac79374f7545ee2faed595c9a509836160Secunia Security Advisory - NanoyMaster has discovered a vulnerability in CMS Made Simple, which can be exploited by malicious people to conduct cross-site scripting attacks.
5d66afd2d0cf55db21f880edcd48e030b097ee138b2d7f59ac2d1405b61f0b43Secunia Security Advisory - Will Dormann has discovered a vulnerability in ICONICS Gauge ActiveX, ICONICS Switch ActiveX, and ICONICS Vessel ActiveX, which can be exploited by malicious people to compromise a user's system.
8af6ac84d24916e3c74b1b2cec03c6b80799769a6b7107042cbbf25481c09696Secunia Security Advisory - Soroush Dalili has reported a vulnerability in Hosting Controller, which can be exploited by malicious users to disclose sensitive information and to manipulate data.
a2217f59ac06ebc2282e75ea14d2742775118c6a37fa61375649c16f23824f89Secunia Security Advisory - Ubuntu has issued an update for w3m. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
c8d3e516b772a8e5a0458ed5aeba118f540c92c7a3aec2c70da664849d7e9754Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks, and potentially compromise a user's system.
4c28ec70f09c40c36c8104921b18e702a647a0ae2aab97db58ee354724374990Secunia Security Advisory - Kevin Finisterre and LMH have reported a vulnerability in VLC media player, which can be exploited by malicious people to compromise a user's system.
d5c4d930819f1dc150c25d8f1a37ba1be6724766e43866f3e973a9e2a3512d17Secunia Security Advisory - Mandriva has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges or to cause a DoS (Denial of Service) and by malicious people to cause a DoS.
9757ee0690956e7c373151f92ad2e0d43a85cc8df68affcfb32987c781986c3cSecunia Security Advisory - A vulnerability has been reported in Miredo, which can be exploited by malicious people to conduct spoofing attacks.
b135166ff73483f2a9aa9cae4d01d5c4d5b6b959d9bde7ededa6d6724ee80aa0Secunia Security Advisory - rPath has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially compromise a user's system.
36ca13ec9a14b5c31781aca928d253351347f346adfff966820e755f527b35e0The CarolinaCon Call For Papers is now open. It's an annual technology conference to enhance local and global awareness of current technology issues and developments, provide affordable technology education sessions to the unwashed masses, deliver varied/informative/interesting presentations on a wide variety of InfoSec/hacking/technology/science topics, and mix in enough entertainment and side contests/challenges to make for a truly fun event.
b81e757a7aed154ff698b8c0f223bd91ba05a9487fcd045e7ed4e104fb71c181Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which could allow a local user to cause a Denial of Service (process crash). The seqfile handling in the 2.6 kernel up to 2.6.18 allows local users to cause a DoS (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flowlabels. An integer overflow in the 2.6 kernel prior to 2.6.18.4 could allow a local user to execute arbitrary code via a large maxnum value in an ioctl request. A race condition in the ISO9660 filesystem handling could allow a local user to cause a DoS (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed data structures. A vulnerability in the bluetooth support could allow for overwriting internal CMTP and CAPI data structures via malformed packets.
29b627a6c57f64a58aaf5181124bc69b0a5710ab41f40daa39be76a6fe15e058Mandriva Linux Security Advisory - Multiple buffer overflows in MODPlug Tracker (OpenMPT) 1.17.02.43 and earlier and libmodplug 0.8 and earlier allow user-assisted remote attackers to execute arbitrary code via long strings in ITP files used by the CSoundFile::ReadITProject function in soundlib/Load_it.cpp and crafted modules used by the CSoundFile::ReadSample function in soundlib/Sndfile.cpp, as demonstrated by crafted AMF files.
ddf094e2319c282cf5918b477732574a9739e37a3d4201fc2763b9ce89fe45cfWhitepaper entitled Windows Vista 64bits And Unexported Kernel Symbols.
2b24f359a718212fdce5611bf648c054d5e5be36b5321038430e4c47d5aad39cA critical security vulnerability has been found in FreeRadius version 1.1.3. Arbitrary code execution is possible due to improper bounds-checking.
ef790c0434ea07cb947825b2c0788c76495d888a8818315d76eb07a0583c5e04OpenForum is susceptible to a direct database download flaw.
c02841eb2d7fcaa6d852ff5675ee52cf666360485a37fb422a7345889f3e6295AspBB is susceptible to a direct database download flaw.
2db5a8dad865581798524479398b35c361339388d553384535597929761b06e1
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed