GOautodial version 4.0 suffers from a persistent cross site scripting vulnerability in the CreateEvent flow.
a2ceaa0fb81b8481e0de45c99ccd63a549fc04da8ddbcaae71c33a9538c4415cDIGIT CENTRIS 4 ERP suffers from a remote SQL injection vulnerability.
8691e6f470b69594eed2b24c8a97b77e9de224567491a21012a2d84020fa8895Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
2a88524ce426079fb9b828bc1b789f2c8ade3ed53c130851102debc3518bed71Red Hat Security Advisory 2019-2799-01 - Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a focus on high concurrency, performance and low memory usage. Issues addressed include a denial of service vulnerability.
6db2fc5ba5ae499fa0f7a4bbbc155d6d378588483e1d08e6c8fed16e216519c8Debian Linux Security Advisory 4525-1 - Simon McVittie reported a flaw in ibus, the Intelligent Input Bus. Due to a misconfiguration during the setup of the DBus, any unprivileged user could monitor and send method calls to the ibus bus of another user, if able to discover the UNIX socket used by another user connected on a graphical environment. The attacker can take advantage of this flaw to intercept keystrokes of the victim user or modify input related configurations through DBus method calls.
31d489a5bebac71abdc3f0ab3fc8c5ed659bf01c8d9d73d9e23f3dd1dda2087dRed Hat Security Advisory 2019-2807-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.9.0. Issues addressed include cross site scripting and use-after-free vulnerabilities.
764bc4a4796da29c8cb55bc0d248d48283fea11352284be9fd1b1c8bcffbbeb3Red Hat Security Advisory 2019-2805-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. An insufficient input validation issue was addressed.
a3dd8f4dc4779a19de4f6f2287e599c65945ade0e186dd72671af32ed2cf9947Red Hat Security Advisory 2019-2806-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.
578ebcf4bc739d63cf9d017f09cf78dc93a26132c534ab18b05662020e5ef80dRed Hat Security Advisory 2019-2808-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A page cache side channel attack issue was addressed.
ad2bb158a4c47b6c6e01c5c21314541a0646b3e2fe267f72e25b81e77ed9a482Red Hat Security Advisory 2019-2798-01 - The patch program applies diff files to originals. The diff command is used to compare an original to a changed file. Diff lists the changes made to the file. A person who has the original file can then use the patch command with the diff file to add the changes to their original file. Issues addressed include a code execution vulnerability.
a92d6703bca508a9cc426af1331d9408fd4246d007e2ae2b76f88ddfabafbd5cRed Hat Security Advisory 2019-2773-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 60.9.0. Issues addressed include cross site scripting and use-after-free vulnerabilities.
3a0c16af0c58a36629ad8769fdc792a6f9ceb6114f07a9c052a1281fc0a4dc79Red Hat Security Advisory 2019-2796-01 - Skydive is an open source real-time network topology and protocols analyzer. Unbounded memory growth issues were addressed.
e5aa245137eb429f217aa860b6f067ce0c358b727940225e814ef05ddddaafa1Western Digital My Book World II NAS versions 1.02.12 and below have a hard-coded ssh credential that allows for remote command execution.
952bede65d22da4504271052feefe8cc6296bab5ca2788063bc52f2b233370fdmacOS version 18.7.0 kernel local privilege escalation exploit that may only work on Macs before 2016.
155c9a77ec71b17b990c29985941fcaf6377273a4a6c13c89f06514c39c675a7
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed