Gentoo Linux Security Advisory GLSA 200809-18 - Multiple vulnerabilities in ClamAV may result in a Denial of Service. Hanno boeck reported an error in libclamav/chmunpack.c when processing CHM files (CVE-2008-1389). Other unspecified vulnerabilities were also reported, including a NULL pointer dereference in libclamav (CVE-2008-3912), memory leaks in freshclam/manager.c (CVE-2008-3913), and file descriptor leaks in libclamav/others.c and libclamav/sis.c (CVE-2008-3914). Versions less than 0.94 are affected.
0f8d8ad864ec3633e4123d3636f3ea400f7979db302a26062a9e318e73734b0f
Gentoo Linux Security Advisory GLSA 200809-17 - Multiple Denial of Service vulnerabilities have been discovered in Wireshark. Versions less than 1.0.3 are affected.
5091b938b4c662d49a770914829b3fb3b851c6ccf58b949b6bee8d153db18af2
Gentoo Linux Security Advisory GLSA 200809-16 - Multiple buffer overflow vulnerabilities have been discovered in Git. Multiple boundary errors in the functions diff_addremove() and diff_change() when processing overly long repository path names were reported. Versions less than 1.5.6.4 are affected.
9f837f4290e1e7cffc354d64de8320415eb53ac4fb7f58aca7506f1a89c88e52
EasyRealtorPRO 2008 suffers from remote SQL injection vulnerabilities in site_search.php.
acee9b39864287952f3aeb461dbc59fb13d55f64dfc93625aab8805e42474d51
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
168c2a7a4e234a86e49e49d6ac032f240193a2040c6ee5b9eeebb0bc973c46a0
Secunia Security Advisory - A vulnerability has been reported in the Simplenews module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
86c4e6e8022bdb4086310aac19dca1e53cd2019fbc46946061a0544ca1202c29
Atomic Photo Album version 1.1.0pre4 suffers from SQL injection and cross site scripting vulnerabilities in album.php.
2fda03a7a013e5c38bc716073d9a9bad6bf7dfb2db8906d83343bdb3b3dd8295
Ubuntu Security Notice 645-3 - USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes the problem. A very large amount of vulnerabilities have been addressed in the latest Firefox release from Ubuntu.
a978bbdfecb457451bdcd378563f68292a1897028ca8bed1392915cbdd4b019d
PCU400, or Process Communication Unit 400, versions 4.4 through 4.6 suffer from a buffer overflow in the component that handles the IEC60870-5-101 and IEC60870-5-104 communication protocols.
6a6d07a48e90afa3d9a6977d1332f2a8d5a2df0cbc5b4335fd605011a69cb65e
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
2d62df60bfdb5fe20819e015d7ce648ee2230bddc88fc5eaf0e32ff2cfccb707
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenVMS SMGRTL Run Time Library. The vulnerability could be exploited locally by an authorized user to gain extended privileges.
835cbbc0016048d6adcf284c0a828fa54aec19a5e6c73e3c222aa4c80e7dafcd
FlatPress versions 0.804 and below suffer from multiple cross site scripting vulnerabilities.
3fdea98d891ca192999c2f55a8bcb56e78c93105dbbf84ced955644449e6ccbc
Secunia Security Advisory - ~!Dok_tOR!~ has discovered some vulnerabilities in Kasseler CMS, which can be exploited by malicious people to conduct SQL injection attacks.
a9570c439b6685a63709be606ebe29f0c47dc09aacc088b3c772ef292a0e825f
Secunia Security Advisory - dun has reported a vulnerability in OpenElec, which can be exploited by malicious people to disclose sensitive information.
55130d11e8d0b57a2f7dc5df366a0c5e512b3184391399a3d2918d58072bd6ca
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system.
fb5ca8784fad9041bde219ea3ea5528d1dc8e3893378d31367acb7d40e4c875f
Secunia Security Advisory - Two vulnerabilities have been reported in the Ajax Checklist module for Drupal, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
b510eb40c71625c4175b292296a87be3963c1c33293463d06ef4092d8e78e567
Secunia Security Advisory - Justin C. Klein Keane has reported a vulnerability in the Brilliant Gallery module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks.
239529b22f3e3a4d05b54566b816da7201d4292a2c342fc60ea49be3529d3bb2
Secunia Security Advisory - Some vulnerabilities have been reported and acknowledged in Java for Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service), to bypass certain security restrictions, disclose system information or potentially sensitive information, or to compromise a vulnerable system.
8bdc7f4ffba4063073489bde812e687540cdefac4c0c5a3da2a8efb526eb8288
Secunia Security Advisory - Fedora has issued an update for initscripts. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
80d033097a37926f6290f2fd602d36d4b1b25c9255a6690c2f8564c7bd38de82
Libra PHP File Manager versions 1.18 and below local file inclusion exploit.
3adecdf414bca58778d5944ccee7724c30fca5808082e7e49e92f09d959bef5f
PHP infoBoard version 7 Plus suffers from cross site scripting and SQL injection vulnerabilities.
a998ceffd849eaf2558420ad94b7d62a3b45745ddc0150544d29c08498b0a46d
PHP infoBoard version 7 Plus suffers from an insecure cookie handling vulnerability.
0a93dd571b4816a26d0d8accb9461a0d2f1c12d02ddcec09fd80bd224c107db3
NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
b021ec2243ab8d6fc5baceb99145f3e0cd58a59ae27b772416fd30d174d5fed2
VikingBoard versions 0.2 Beta and below suffer from a SQL column truncation vulnerability.
586bea5ad4a08676af5a5d129be54f90ebf50ea5313dc99bfe48f76843b9d614
K-Lite Mega CODEC Pack version 3.5.7.0 suffers from a local windows explorer denial of service. Proof of concept .FLV file included.
f185c34337ffb75ba702c410a081508460fd893ed7b670da58994fb7466fcd73