Apache OFBiz versions 10.04 and later allow remote attackers to execute arbitrary code.
c37b6f9516be074f34619999dc19a6020fee9327c8600529b73e16eb302c2f24Joomla Beatz component version 1.x suffers from a cross site scripting vulnerability.
b84b94a45bc53d232a111d9bdd1d9c10c5df673197a35b8910ddb9fad3485de7Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.
de3faada87e1bd7b6c844f2b8479cf643993f49918b07823dfb93f24683b904dMathematica on Linux uses the /tmp/MathLink directory in insecure ways that can allow for account takeover. The problem was made worse by later versions as the addendum states. As of 02/08/2013, the author has noted that this problem is still present in version 9.0.1. As of 08/27/2014, the author has noted that this problem is still present in version 10.0.0 for the GUI interface.
7ededdbc15af7026dccd7b744315ba7216047ad69a2910c0587edbe99dab0843PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
4f8b4518e51638a4a7ae0c0c2a4a8d382eca998798bac68923b88a5731cfb863The WordPress Zingiri Tickets plugin suffers from a file disclosure vulnerability that holds administrative username and password hashes.
892b3d05968e8c76e93a0c032ea0704ecd6db0ee18f2a3afcc6db8d331fc0efbFastpath WebChat version 4.0.0 suffers from a cross site scripting vulnerability.
48d7320613198772764d8b98bc017da1932c860245b0954fdaf10d283d0b0154Radiography is a forensic tool which grabs as much information as possible from a Windows system. It checks registry keys related to start up processes, registry keys with Internet Explorer settings, host file contents, taskScheduler tasks, loaded system drivers, uses WinUnhide to catch hidden processes, and does much more.
be7394b4ce9a474ce4d3c0d3ddd25f7e3f4940ae86f346304bfb881bc6e41ad4Debian Linux Security Advisory 2453-1 - Several vulnerabilities have been discovered in gajim, a feature-rich jabber client.
bd105df7fba5991e582b3c8ae56d9c2086f0b1c465a2185562b29411c942cbb9Debian Linux Security Advisory 2452-1 - Niels Heinen noticed a security issue with the default Apache configuration on Debian if certain scripting modules like mod_php or mod_rivet are installed. The problem arises because the directory /usr/share/doc, which is mapped to the URL /doc, may contain example scripts that can be executed by requests to this URL. Although access to the URL /doc is restricted to connections from localhost, this still creates security issues in two specific configurations.
d52b84f07d62410b49a8dd5b85aec7aeebf6d89cf4e9d3b364e93c771843b179Whitepaper called JavaScript Deobfuscation - A Manual Approach.
f62eacd0b6de91f97b5724b5c6970f9e9ca83dcf56688802e7c335036028d5a8Yahoo Answer Wordpress Auto Poster suffers from a cross site scripting vulnerability.
777cd7837d6a1a6dcce7a1f173be970cd97270d93e499a2e0c2e3d293e9dad75Secunia Security Advisory - Red Hat has issued an update for Red Hat Enterprise MRG. This fixes multiple vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks.
9dfc02085dc5e27782ace6533755637c5ba1602ddbd32c566e795e25dbffc2c0Secunia Security Advisory - Francis Provencher has discovered a vulnerability in the FlashPix PlugIn for IrfanView, which can be exploited by malicious people to compromise a user's system.
621d0dd4ee0bb7549e55417521a577ee845b46b52f0875ba7da3206428ea9969Secunia Security Advisory - A security issue has been reported in multiple VMware products, which can be exploited by malicious, local users to gain escalated privileges.
b30b32aba2794f37b711b352d04e4da6bf7d875c98443dea5dd953fc1cb7c25bSecunia Security Advisory - A vulnerability has been reported in the Dokodemo Rikunabi 2013 extension for Google Chrome, which can be exploited by malicious people to conduct cross-site scripting attacks.
87d7cdc6abe479169f901593fb36f94a74cd32fd487eebf2b01b4b5f688e29d1Secunia Security Advisory - SUSE has issued an update for php5. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and compromise a vulnerable system.
9f2cb558411ca9ff4f299671b0bcc6d1201888abd9a9efddd427db039cf8f7b3Secunia Security Advisory - Multiple vulnerabilities have been reported in Cumin, which can be exploited by malicious users to conduct script insertion attacks.
9e92e8eae754d328e97e87f18941dcc4549ebc08fd8836346bb1d08a8a2a0c74Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
1dc44fafddb48db197374a37129408cbcad063e8d08fb4c7d0502bdcf116cfabSecunia Security Advisory - A vulnerability has been reported in nginx, which can be exploited by malicious people to compromise a vulnerable system.
5613e84e1d6dd919763849226033b40e85e1377e8515bf0b3e9d338e1ef40133Secunia Security Advisory - Ubuntu has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
59beec18f7f484edf9eb3226dce4ca6bc84733db787a7c14fd0b570908a0809eSecunia Security Advisory - A vulnerability has been discovered in the SH Slideshow plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
4415fdd7f6451f9c5a3a6b60370a3bff41cd018d53e1807050fbf74281aba5caSecunia Security Advisory - A vulnerability has been discovered in the Chat plugin for Seditio, which can be exploited by malicious people to conduct cross-site request forgery attacks.
5d73b3436b317dc5761f2b1484ec021a70feca8fa9b9ffa9fb69aed1fb8e865dSecunia Security Advisory - Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
e4cc99104ac9da2805bf959499adc517c5bdcad1f991dcd11cd9f5275b2e6da5Secunia Security Advisory - Debian has issued an update for gajim. This fixes a security issue and two vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to conduct SQL injection attacks and compromise a user's system.
bcf85c9e2b01a3cfb0102aca214cd5218b4fb2f657cb8f3588ec299d36ec9c2b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed