Mandriva Linux Security Advisory 2009-123 - src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted. The updated packages fix the issue.
7755490ed17aa91e9865b7bf6b17efa65a870ed74c74f7f9dc10916880b6e040Whitepaper called Buffer Overflow Exploitation SEH Explained. Written in Arabic.
b176886256e50ed93c85b0f5730e4144eb6ae2112a8d559480a488bd3e759f3dWhitepaper called Understanding SQL Injection. Written in Portuguese.
af987039e63ecaf10627212cb4cc10fd0b3928911e5862ae152fed93ba43490fGentoo Linux Security Advisory GLSA 200905-09 - Multiple heap-based buffer overflow vulnerabilities in libsndfile might allow remote attackers to execute arbitrary code. Versions less than 1.0.20 are affected.
93da091dbd2e5ce946b35c5825e1fc34c873fc0b15d3881bbe1fdf77c416653dHP Security Bulletin - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, privilege escalation, execution of arbitrary code, and Denial of Service (DoS).
21cffee8fc96ccc19efc5adaec63bae7ffc58b656b9a38a128b04eee39aabdc5Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible "interesting" (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data.
d6e2cb1c14364dc2d8db363d72a311d54353f6491970d5cdc0b808d333642d4bstrongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
1d34d793bc7cd109fa7a19486e58341d729f701d4d8736dcde568c94280d972eAdPeeps version 8.5d1 suffers from cross site scripting and HTML injection vulnerabilities.
3093e37ea794ca14328223f576eed8a81a3ff254bc77417ba5b9655951863885Evernew Free Joke Script version 1.2 suffers from a remote SQL injection vulnerability.
fa7bb2e533a6e3dc591efa6e1d919e69c6ba264a9afbb539847a9ee3e95d2637SiteX versions 0.7.4.418 and below suffer from local file inclusion vulnerabilities.
e48986405521947037729d3f633d0930c34dacca715f24b4cf684365d483b673Vanilla version 1.1.7 suffers from a cross site scripting vulnerability.
779b2b4d0010280d013da4219c6ea694286e7de33cef4864456750dc85583352PHP-Nuke version 8.0 suffers from a REFERER related SQL injection vulnerability.
02acf1698f582c2f5bcb8693ec211caa486de532d640b36c24719dd6188b4ab8Easy Px 41 CMS version 09.00.00B1 suffers from a local file inclusion vulnerability.
c72faec39b482c8708a660980941446c81114a44d7db3becf2a2c4069b2765f8The Joomla AgoraGroup component version 0.3.5.3 suffers from a blind SQL injection vulnerability.
46965ff0cd58d5a95acee4e5830eee0b7a31616329c8140503cb61afd32f1b94Million Dollar Text Links version 1.x suffers from an insecure cookie handling vulnerability.
e567acc8ed6555753c7119fedab15ddef71abc73e73331d74f23d75b0c63a1cdSecunia Security Advisory - A vulnerability has been discovered in the WP-Lytebox plugin for WordPress, which can be exploited by malicious people to disclose sensitive information.
bb891ebeca6db0e8aa12fe3f9c4eb538419d393dc3ad8b24702437bd453031dcSecunia Security Advisory - Tielei Wang has discovered a vulnerability in ImageMagick, which can be exploited by malicious people to potentially compromise a user's system.
6771669645f23309589231acf9a73a3acc21fb11cf25b3b0a67964cefd6320d2Secunia Security Advisory - pyrokinesis has discovered a vulnerability in jetAudio, which can be exploited by malicious people to compromise a user's system.
f941a8a048ab5fc792f8de647f5433f4bd690f7b1764d58df5ef27f7b904db6fSecunia Security Advisory - Some vulnerabilities have been discovered in RoomPHPlanning, which can be exploited by malicious people to bypass certain security restrictions and conduct SQL injection attacks.
d0948645301be76042a283aec11128aa6003f2e6007bfc916a57493ccf8b4fb3Secunia Security Advisory - staker has discovered a vulnerability in cpCommerce, which can be exploited by malicious people to disclose sensitive information or compromise a vulnerable system.
1ae0be76d42af68bf444379af9539d5773072b805f35b988562fda378be985beSecunia Security Advisory - Some vulnerabilities have been reported in Hot or Not Script, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, or to compromise a vulnerable system.
ca7d289c3089c035b04dcb42abd793508b70a86f845a2b77fcb12d8344325388Secunia Security Advisory - KiM has discovered a vulnerability in WebMember, which can be exploited by malicious users to conduct SQL injection attacks.
48e0d823e7ee9e8d865c6e5e2c05b250b949125e2373ff4717062d8a94f28477Secunia Security Advisory - A vulnerability has been reported in Serena Dimensions CM, which can be exploited by malicious people to conduct spoofing attacks.
f47939806ed7e06698638e4eca1640f1b8de4a3844de526bee053852e115a0a0Secunia Security Advisory - A vulnerability has been reported in Mole Group Adult Portal Script, which can be exploited by malicious people to conduct SQL injection attacks.
b33ab39945eaa904ed4c4bfcfa18dfbe9ece2f5d8f0bd7bdf057374440d45908Secunia Security Advisory - Hakxer has reported some vulnerabilities in Zeeways PhotoVideoTube, which can be exploited by malicious people to bypass certain security restrictions or conduct script insertion attacks and by malicious users to potentially to compromise a vulnerable system.
673b859f471cfe55e85dc57f6731cfa8a44a1d109fa81f0095bc047852717c8c
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed