Mandriva Linux Security Advisory 2011-134 - Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service via a long TAG in a legacy syslog message. The updated packages have been patched to correct this issue.
e2b9a9eebcd2c457f08a472995ec53958f06ca166dcb40494ec1727187937f57Spring Security provides a mechanism (RunAsManager) to allow particular operations to run with a different set of privileges than the predefined user. The implementation contains a race condition whereby the escalated privileges could also be used in a different invocation in another thread. Versions 2.0.0 to 2.0.6 and 3.0.0 to 3.0.5 are affected.
47b96c9de342642c2cd4e172c544b89e012a3797e75972454bb8c77cb5091e42This Metasploit module exploits a buffer overflow vulnerability found in the APPE command in the Freefloat FTP server.
950c862e6b6de9d40cbd1985606f5537b80f3a942e3fe1a254c131ec594dd88dWordPress WP-Filebase Download Manager plugin versions 0.2.9 and below suffer from a remote SQL injection vulnerability.
c3a7489072c55d9ec457c3d9223ffc28ffb90246c243bf41770af0fa7079fba6WordPress A to Z Category Listing plugin versions 1.3 and below suffer from a remote SQL injection vulnerability.
d79382856246f58f3bb1298a9b331b7c87742153ce6970cdc9b31ffef787df3eSpring Framework versions 3.0.0 to 3.0.5 and Spring Security versions 2.0.0 to 2.0.6 and 3.0.0 to 3.0.5 suffer from serialization issues. Several issues have been reported which may affect applications which de-serialize objects from an untrusted source such as a remote client. It is possible for a malicious client to inject undesirable behavior into the server by serializing proxies rather than specific class instances, or by taking advantage of internal AOP interfaces which were being exposed through the remote service, in addition to the service interface.
f905e5bf5433c31b6e389d1aca05670a117b1f5976e8502215745fe22fe34fc4Spring Security allows the use of a parameter (named "spring-security-redirect" by default) to determine the location URL to which a user will be redirected after logging in. This will normally be submitted as part of the login request, so is deemed to be an acceptable use of remote supplied data. However, the functionality is in a base class which is also shared by logout code, so a logout URL could be maliciously constructed to contain a version of this parameter which contained CRLF characters in order to inject additional headers or split the response. Versions 2.0.0 to 2.0.6 and 3.0.0 to 3.0.5 are affected.
190a53655a53fda33bb5be21ed5b61b82d8ef40a6afea588925d6719c66f2ba0MYRE Real Estate Software suffers from cross site scripting and remote SQL injection vulnerabilities.
f55bf895d71ad9c47ff89a07e549e560d612d3b25ab2af10eaaa70388f3d638aSpring Framework versions 3.0.0 to 3.0.5, 2.5.0 to 2.5.6.SEC02, and 2.5.0 to 2.5.7.SR01 suffer from an information disclosure vulnerability.
f0dc757e73d89236f2c88698d4791d1317a31be811db0b76dade2bee53c8a3d7Xataface WebAuction versions 0.3.6 and below and Xataface Librarian DB versions 0.2 and below suffer from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.
eeb1be34f9b3ea62cad720ef286c45c943798050461a867a2c199ec66f0143b6This Metasploit module exploits a buffer overflow vulnerability found in the BisonFTP Server versions 3.5 and below.
018520acb6e1863986585a84609a42da6c2d2770126553bfe3a6abac64147ef0Ubuntu Security Notice 1197-5 - USN-1197-1 addressed an issue in Firefox and Xulrunner pertaining to the Dutch Certificate Authority DigiNotar mis-issuing fraudulent certificates. This update provides the corresponding update for ca-certificates. It was discovered that Dutch Certificate Authority DigiNotar, had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. For the protection of its users, Mozilla has removed the DigiNotar certificate. Sites using certificates issued by DigiNotar will need to seek another certificate vendor.
65cf1792f7a4dd38c9c5bf612f354a54cb4983de28f468427142e9874d7aa170Debian Linux Security Advisory 2303-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation.
72d50088cc453629042c1d2a8fe39ec8d1f2442c069a5c04c5bf02d848669ad6Ubuntu Security Notice 1197-4 - USN-1197-1 and USN-1197-3 addressed an issue in Firefox and Xulrunner pertaining to the Dutch Certificate Authority DigiNotar mis-issuing fraudulent certificates. This update provides the corresponding update for the Network Security Service libraries (NSS). USN-1197-1 It was discovered that Dutch Certificate Authority DigiNotar, had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. For the protection of its users, Mozilla has removed the DigiNotar certificate. Sites using certificates issued by DigiNotar will need to seek another certificate vendor.
2fa3d9961038c477b07ac26e41cda71fa80220ec29136cc74f18296bca564134Debian Linux Security Advisory 2302-1 - It has been discovered that the bcfg2 server, a configuration management server for bcfg2 clients, is not properly sanitizing input from bcfg2 clients before passing it to various shell commands. This enables an attacker in control of a bcfg2 client to execute arbitrary commands on the server with root privileges.
55efb7a2128a1ef35890d6ea654ca071a81a08262593a044dc09efca187277b6HP Security Bulletin HPSBUX02702 SSRT100606 - A potential security vulnerability has been identified with HP-UX Apache Web Server. These vulnerability could be exploited remotely to create a Denial of Service (DoS). Revision 1 of this advisory.
56ce56453dcdcdf048753152dd2165359229dd31558d0c9f6b820c059512d8e0MyAuth version 3 remote blind SQL injection exploit that allows for access to a root shell.
b8e7f5d20629287f5a705b87cdbabad2746378222327dc62a83ec133d1fba24fPluck version 4.7 suffers from local file disclosure and inclusion vulnerabilities.
a03439cea8b56ef6bcaeba2d0ea59cddf5356139c3772a66008253bee15768f3Ubuntu versions 11.04 and below ftp client local buffer overflow crash proof of concept exploit.
e117701bee907294456727f26f4110ff0ab6796ed4c467bde81cb8deb5c6ec59OpenCart version 1.5.1.2 suffers from a remote blind SQL injection vulnerability.
03f2b7c902a321c3e1e95b810d5409a62e0d60f78cdcfef0b98dce865755ade9This bulletin summary lists 5 Microsoft security bulletins released for September 2011.
658fe67fafa3857a68903e54a6728f3a857e12d1a29f5631f5e161d96c761469Call for participation for the 28C3 Chaos Communication Congress. The Chaos Communication Congress is the annual four-day conference organized by the Chaos Computer Club (CCC) in Berlin, Germany. First held in 1984, it has since established itself as "The European Hacker Conference" attracting a diverse audience of thousands of hackers, scientists, artists, and utopists from all around the world. It will be held from December 27th through the 30th, 2011.
d18b745920f6bf0c3840d8aca089fc49f4df8e1c0585934c4bbc523f32db6535Secunia Security Advisory - A vulnerability has been reported in the MailformPlus extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
5324410f7bf40e6082479aea218f2b8692b7493cc3829280b97f94e7733d2ab7Secunia Security Advisory - Fedora has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.
205742f45cf019e2f9547d7eba5caa5640e194a5b2d566c8ffaac04b4ef5736aSecunia Security Advisory - Two vulnerabilities have been reported in Direct Mail Subscription extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
18c9e862d2786b09b47d0fbbb65ef375ae9c045eaf2536de18834c9a563f0bbb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed