Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.
854dae21a64ca19b1542d0290c75f21fdaae6502cdd394180f3aa180c47609e3Ubuntu Security Notice 1316-1 - Jonathan Brossard discovered that t1lib did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges.
70fc8a23e9714c5972c4c937a393b4065ee9b324fc17ba3e3de0f2b5c50e3f77Infoproject Biznis Heroj versions Plus, Pro and Extra all suffer from a remote SQL injection vulnerability that allows for authentication bypass.
961df363124e6674f343f13b06667b0bf250c19cf3e3b56c172a9d02e465728bInfoproject Biznis Heroj versions Plus, Pro and Extra all suffer from cross site scripting and remote SQL injection vulnerabilities.
8ecabcbaea16aca5a5916cc00663bf1cb2f9fa325f8b98c1af8c3175c22a5eefDebian Linux Security Advisory 2368-1 - Several vulnerabilities have been discovered in lighttpd, a small and fast webserver with minimal memory footprint.
f07a24700e2eeea7198aeaf2eec0970239a3a34b71aaa8f180afb3e0a6490a33C Market version 1.1 suffers from a cross site scripting vulnerability.
7eee8a6e8b2efa913036f13a68c7e147df4b15ed400e1c7a8b08cb2e7ddc3a00The ImageShack main vendor website suffers from a cross site scripting vulnerability.
8302a621c340b765c1cb38377c2bb5005aeaa0fba45914ca0a29060fa6a43d07Bundesregierung Website suffers from a cross site scripting vulnerability.
8a4b85d15dd2b98d678c7d61fb666b56effe507ef131ce0a80b2239800bd08e4A vulnerability in the IrfanView FlashPix plugin exists due to the "Free_All_Memory()" function not properly setting certain decoder elements to NULL after freeing them, which can be exploited to cause a double-free condition via specially crafted FPX images. Proof of concept exploit included.
fd583f5874fee2012eada88e8599ffeaa35b493c3a60e8084c24257dfd12afb7IrfanView suffers from a heap-based buffer overflow vulnerability when parsing malicious TIFF images. Proof of concept exploit included.
0d475986f882b8c441677da90e11f68d6d58c3d8306b9fea5575d224ba69b2d2Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.
233198580f60b5c19807e7dc79ce1f1aaf6a9b1290ddd21adb2e624fea5f177dLocal buffer overflow exploit for TORCS version 1.3.1 that creates a malicious .acc file.
939526dbe3782fc5e3b30b79c600c848488a9ffffe97b13145f2f0d46831633cepesi BIM version 1.2.0-rev8154 suffers from multiple cross site scripting vulnerabilities.
5b59a2617e80ed3a1950f67746807d8c80cd4ac9e0382b4f2f81496b14e06957OBM version 2.4.0-rc13 suffers from information disclosure, cross site scripting, local file inclusion, remote SQL injection vulnerabilities.
32cd7c40beed039d478c01f5a79246b2f4906d3da94c27ddf5e45ea5678a6298SpamTitan version 5.08 suffers from persistent cross site scripting vulnerabilities.
0d7686367add0ed0adb58d2bca4b727c36be122f8456213678ef5158f414532bThe Barracuda Control Center 620 suffers from a remote session hijacking vulnerability.
8c69fa930e196991bbf895fc71606a169b03a3cb9ec3ab4781fe44c5371bdd13The Facebook Juniors-Cheesecake-Foxwoods application suffers from a remote SQL injection vulnerability.
b20151233aa79350631d9e3702280da179b94e666fa7d412d3766d0981492730The IBM TS3200/TS3200 Web User Interface is vulnerable to an authentication bypass attack. By sending a series of requests to the authentication function, it is possible to trigger a condition which causes the application to grant an access cookie which permits remote administration. Firmware less than A.60 is affected.
251930962a416ff086d78263b78eb5f8dcc016095a831b437bd5a97ae19df1acSecunia Security Advisory - Debian has issued an update for lighttpd. This fixes a weakness and a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, or cause a DoS (Denial of Service).
c9b4726d92c95daa7def95f51eb6c9d6f1ee633d8e42b7d2675903353db616d5Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla SeaMonkey, where one has an unknown impact and others can be exploited by malicious people to disclose sensitive information and compromise a user's system.
d96a1d1d14f5fae483e67d3a81dba7844006edd0188acaa7788f53186535e2a5Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, where one has an unknown impact and others can be exploited by malicious people to disclose sensitive information and compromise a user's system.
452e668617ef3bb62e93a3b61e812b6bbcbeadad44084a21ee5ab970f63702bdSecunia Security Advisory - A vulnerability has been reported in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system.
3883b5b4df526065c87fa832186337b859739de4bab03919334bcb9ea5e1340eSecunia Security Advisory - A vulnerability has been reported in NVIDIA Stereoscopic 3D Driver, which can be exploited by malicious, local users to gain escalated privileges.
390cad89c02c2d4994c01f497efbad2781acb0930662cb8db4dcd905dcd35addSecunia Security Advisory - IBM has acknowledged two vulnerabilities in IBM Java, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, and conduct DNS cache poisoning attacks.
80dca53a1466d3763f881ea2e7c6362a8a37c7d2abe5892cf84b456cf7fa08c9Secunia Security Advisory - Red Hat has issued an update for tomcat5. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and disclose sensitive information and by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
9c8414a97a54c5a65e2862ff86dbc79de0b4db6cc8a66f0921308cfe79cd2dcc
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed