netOffice Dwins versions 1.4p3 and below suffer from a remote SQL injection vulnerability.
39d41b4252de6df2de9804cbc38a0b31dfb7d7ffc050c10e0eb5d04a5d71b5acWordPress versions 2.5 through 3.3.1 suffer from a cross site scripting vulnerability in swfupload.swf.
3416c49055bebf361d1b122069bea5e7c90603b251960c5d38d0e202bb70d922The WordPress Eco-Annu third party plugin suffers from a remote SQL injection vulnerability.
ed3ca78a5025666d9498723d9c589c3e9b99e671791dd50f388c64c98aac4e65The WordPress Calendar-Script third party plugin suffers from a remote blind SQL injection vulnerability.
549093d17c959ce61a3b1cd9307c4708a3ae75a2861fd1f08ae6fdb629496b90The WordPress Kakao theme suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
3dc2268c974652d6a7dc818180fe747ab9e25822e57cf9844178f7d63c47f4b5Mandriva Linux Security Advisory 2012-171 - A buffer overflow flaw was found in the IcedTea-Web plug-in. Visiting a malicious web page could cause a web browser using the IcedTea-Web plug-in to crash or, possibly, execute arbitrary code. The updated packages have been upgraded to the 1.1.7 version which is not affected by this issue.
88b35f7abf8cc91226293af1402cd75d1bf293c0c5e90974ed919b1ffe98ec0fCisco Security Advisory - Cisco IronPort Email Security Appliances (ESA) and Cisco IronPort Web Security Appliances (WSA) include versions of Sophos Anti-Virus that contain multiple vulnerabilities that could allow an unauthenticated, remote attacker to gain control of the system, escalate privileges, or cause a denial-of-service (DoS) condition. An attacker could exploit these vulnerabilities by sending malformed files to an appliance that is running Sophos Anti-Virus. The malformed files could cause the Sophos antivirus engine to behave unexpectedly. As updates that address these vulnerabilities become available from Sophos, Cisco is working to qualify and automatically provision them through the Cisco Ironport ESA and WSA platforms. A workaround that mitigates these vulnerabilities is available.
e0ba938d57783cbbfba45d30d5729f99796cfd43b619a82057d2ab76f7d6aa26360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
8680b4e7358b1f8228ccc1ad72f65c83c7889eadc6a887adb27b060b96b044dfMicrosoft Office Excel 2007 suffers from a WriteAV memory corruption vulnerability.
d0a125ddf295b440347d165196d4286ebce9a077959e87b13d5e075845006d02Secunia Security Advisory - Multiple vulnerabilities have been reported in Apple QuickTime, which can be exploited by malicious people to compromise a user's system.
331b030466d2f9fef68aed123f9275211f457ccf2f060f43d7d88ab92a21df10Secunia Security Advisory - A vulnerability has been reported in Cisco Secure ACS, which can be exploited by malicious people to bypass security restrictions.
84921ef5463be4f49de534410773afdc975a2c0be73db3040837f1172299896fSecunia Security Advisory - A vulnerability has been reported in OpenStack, which can be exploited by malicious users to bypass certain security restrictions.
5d40f3c7047d2ddfc29491cd39c60373d1fb95046d96a24a0d92229ba461213dSecunia Security Advisory - Red Hat has issued an update for icedtea-web. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
a8d4a91869a77f25486898439f8f55d9fd693ec786ba85d2d06a95b7fd868f89Secunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Tivoli Monitoring for Energy Management, which can be exploited by malicious, local users to disclose potentially sensitive data and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
459044ec33e40e7e00ae4dc86e251a0dd6ec8978ab904f0f3e7051761996ddc9Secunia Security Advisory - A vulnerability has been reported in the OM Maximenu module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
0db0f99f8cf70b4d0a7f1ab95fbf767304e356893733709d9444483388cdf2b1Secunia Security Advisory - Two vulnerabilities have been reported in Pattern Insight Code Assurance, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.
a7974423b89157ced0ba2cb6ae6e9160f2e0678b16df9cb3c56b077dddffdb92Secunia Security Advisory - A vulnerability has been discovered in IrfanView, which can be exploited by malicious people to compromise a user's system.
ecaab2e98606754f083cbeaf42919774e548699df825d9a5acb059002933a0bbSecunia Security Advisory - Ubuntu has issued an update for glance. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
bcbd8c6e6b96fe0f4be1cff800f23ce75457a8b76a8380e966e5570536c89c09Secunia Security Advisory - Stratsec has reported multiple vulnerabilities in Intramaps, which can be exploited by malicious people to disclose potentially sensitive information and conduct cross-site scripting and SQL injection attacks.
6e50b694456ffcd31e5346876abf5c04ba772f8b9ab5f7b8cffb605ea6001256Secunia Security Advisory - Multiple vulnerabilities have been reported in VMware Workstation and VMware Player, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a user's system.
7267a60a595e89b8f964de0cfcb4220508398dab30abe740eb5a759bbcf16c70Secunia Security Advisory - A vulnerability has been reported in VMware OVF Tool, which can be exploited by malicious people to compromise a user's system.
a9f55e42c56739af89c7cd8931d214ecb42eef96a080d5d27946bc26866386daSecunia Security Advisory - Some vulnerabilities have been reported in TYPO3, which can be exploited by malicious users to conduct script insertion attacks, bypass security restrictions, and conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
ee1533a94aae39070e71a92030f14ca0fe392f274e8e26c022868b6fbfbb333eSecunia Security Advisory - Cisco has acknowledged some vulnerabilities in Cisco IronPort Web Security Appliance and Cisco IronPort Email Security Appliance, which can be exploited by malicious people to compromise a vulnerable device.
a3a7edc23ae3b8b2fb6a10a5e18ccdf22bddd5eeb714020f5c32b9282b9767cbSecunia Security Advisory - Ubuntu has issued an update for apache2. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
70bf691b821d72685c60f6757d5025871ab0532b0ce35e951cca345164c9aa61Secunia Security Advisory - A vulnerability has been reported in IBM WebSphere MQ, which can be exploited by malicious users to cause a DoS (Denial of Service).
803f893fa5e5facd159d70351ea3a046f710ec269ba00903cd83032b37688526
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed