Ubuntu Security Notice 940-2 - USN-940-1 fixed vulnerabilities in Kerberos. This update provides the corresponding updates for Ubuntu 10.04. Joel Johnson, Brian Almeida, and Shawn Emery discovered that Kerberos did not correctly verify certain packet structures. An unauthenticated remote attacker could send specially crafted traffic to cause the KDC or kadmind services to crash, leading to a denial of service.
3c8b93fd0edd6e58fca580bf1a44eb064495e54a3d68d843006bbfd410e691eaDebian Linux Security Advisory 2074-1 - Aki Helin discovered an integer underflow in ncompress, the original Lempel-Ziv compress/uncompress programs. This could lead to the execution of arbitrary code when trying to decompress a crafted LZW compressed gzip archive.
50c62803a6a8a590dea68ddb31eb6f822375c0761f3889df99469706d035eb40The Advanced Stats On Indexing Portal plugin versions 3.1 and below for MyBB suffer from cross site scripting vulnerabilities.
43cde71361c98f79fb98bd52f73957dc1149ba86eaf77d0174c0b1379bd20e41RapidLeech Scripts suffers from a remote shell upload vulnerability.
e0e3ad55205fddb9788552c9aa9b012362c70aae77c7bc1808e5b7248a06c14dOutlook Web Access 2003 suffers from a cross site request forgery vulnerability.
30a91fa07904715e8b9028a6989f8ead9d5901c6b67546213fd92089851942a7Imagine CMS version 2.50 suffers from a remote SQL injection vulnerability.
11d880d3fea212de1e726912be77780ae2709e1538fb7c8c1b597fed23a9586fQQPlayer suffers from an asx file processing buffer overflow vulnerability.
fd109dd74ddd606b64616efb27793f71972a55eddb95d4bb5cff5ed640c51591Joomla versions 1.5.19 and below suffer from cross site scripting vulnerabilities.
3b4fb9c3327b271275a41e8fc47c6c2e117dced54ae4efa6839e9540481a5804HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to execute arbitrary code under the context of the user running the web server.
59171f8fb4745b163c4c06c6b56432aaa5ada74b3fa7adbcdaa115b65c9f1900HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM) running on Windows. The vulnerability could be exploited remotely to execute arbitrary code.
ad437943a99a94a28a643b15ae3422e9d2fa3ce412d8fefb9c02b0cf8f0668f2Debian Linux Security Advisory 2073-1 - Florian Streibelt reported a a directory traversal flaw in the way the Mailing List Managing Made Joyful mailing list manager processed users' requests originating from the administrator web interface without enough input validation. A remote, authenticated attacker could use these flaws to write and / or delete arbitrary files.
b070f86d35be8b21b5141b328cb9c8a2ab13a5d95616ca8c60a7defa52b060f6Secunia Security Advisory - Fedora has issued an update for python-cjson. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the module.
fc57c77f1969c548fe1684077dc064c3ab908e77fc0a4e23cbb3b5e548622d05Secunia Security Advisory - Debian has issued an update for ncompress. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system.
9df835662acfb4b03dabef6b51b721e55bed55af9f7856612c4dda405d2209d5Secunia Security Advisory - Ubuntu has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
5bb8d6febeba076c175491831b6f250117a547e8debc492f8f49609c615d40cdSecunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to manipulate certain data, disclose sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and potentially compromise a user's system.
dd8feba98cfd30f4dab6b69f6363601185d67e36be91bbfd012849982669ee6cSecunia Security Advisory - A vulnerability has been reported in ncompress, which can be exploited by malicious people to potentially compromise a user's system.
444bc855e0b4988e69d75c942448e147fdac9ef024c66ddde98d54a4eae48d4aSecunia Security Advisory - Debian has issued an update for mlmmj. This fixes a vulnerability, which can be exploited by malicious users to disclose system information and manipulate certain data.
4817198ab5d46fd7167fe3ed0381e297c09e7cba2421415c623633d9392769f4Secunia Security Advisory - Red Hat has issued an update for seamonkey. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, and potentially compromise a vulnerable system.
3edb63dab01ac02aee1f94867a29772555d666a0cc985ad3428b0dcc46f93b0aSecunia Security Advisory - Red Hat has issued an update for firefox. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, and potentially compromise a vulnerable system.
8082e36b8516bfb2ded6fdc90870e1f2c4fcbb5c79a3c793521d6278880b7d72Secunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross site scripting attacks, bypass certain security restrictions, and compromise a user's system.
a68feb2202fbc596af6d4879e9a8ae8089058ca3b9fb8a15c0e836148e1c6178Secunia Security Advisory - Two vulnerabilities have been discovered in Imagine CMS, which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
9dd3985c77b15430205f531b8e707f5cfdc487053f63bc4dea1b4b0c003659e1Secunia Security Advisory - Mariano Nu
17ff2699677af18f94717b7a98ed360ce8fbdd2794df40b724d430eeeaf689efSecunia Security Advisory - Two vulnerabilities have been discovered in QQPlayer, which can be exploited by malicious people to compromise a user's system.
2ac9f59bf3640abb9693011a8dae9141f862c7aa022c54386bd596d08af76d27Zero Day Initiative Advisory 10-135 - This vulnerability allows remote attackers to execute arbitrary client side script on vulnerable installations of Novell Groupwise WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within handling html messages sent to a Novell Groupwise WebAccess user. Messages are improperly sanitized allowing client side script to be supplied to the user's web browser resulting in the user's WebAccess credentials being compromised.
d9a2608c117c28f405f37042b1fa11dd1fd848c441fad6887c142f2403ce65b3Zero Day Initiative Advisory 10-134 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists due to a workaround that was implemented in order to support recursive cloning of attribute nodes. If an event is added to the first attribute node, the application can be made to free the node, and then later access a reference to it. This can lead to code execution under the context of the application.
63d03b8fb29260cb331e01c3042b524ef8789e174422a32f77df32058812329e
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed