Webulas suffers from a remote password disclosure flaw.
93cfa7870273de58c616da6845e15358c924924a0741daca8f37051f1a819fccHarikaOnline version 2.0 suffers from a remote password disclosure flaw.
47fdc1a670e7dcc1cf0751ae17d13ed8e057a3ac9c3474b1b58500d453972796M-Core suffers from a remote password disclosure flaw.
10966fa9f59922e511780be7dfb75c184c7bc1920fcb8362ce78a2c15a105fa0MitiSoft suffers from a remote password disclosure flaw.
fbf15ca715a6fd74dfa9e2b60a61314bdbff0bf05929d26112bdd1f259f66851EMembersPro version 1.0 suffers from a remote password disclosure flaw.
293f27fb10ec2361d0cd03be2a38e5a07e4557fff5fc1cdd48c87873a564890eAJLogin versions 3.5 suffers from a remote password disclosure flaw.
19b1b1b9401943cb35307a014c15fcc3c0893bb0c3d64bda417069a939a4f938@lex Guestbook versions 4.0.2 and below remote command execution exploit.
aa6d5158fc31eea29f35203721b5d772d041076d1554427728369b89e7418a39createauction suffers from a remote SQL injection vulnerability in catid.
f877352ca1e31e8adfa5f3d092e8213b39c839910175424ceea88c01f8330986This tool enables the user to perform hop enumeration ("traceroute") within an established TCP connection, such as a HTTP or SMTP session. This is opposed to sending stray packets, as traceroute-type tools usually do.
bef2510b762b0b1f0bddb9261ff48bd58606aef3f200307d00bb91da517bf024Vuurmuur is a middle-end and front-end for netfilter and iptables that is aimed at system administrators who need a decent firewall, but do not have netfilter specific knowledge. It converts human-readable rules into an iptables ruleset (or optional a bash script), makes netfilter logs readable, and includes an ncurses GUI.
bf91812261ccf3ab3c1b88ae7d8c7fb6cfd95f7bc833d7e309f3ff9bb69f2b7atinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between multiple hosts on the Internet. This tunneling allows VPN sites to share information with each other over the Internet without exposing any information.
5993b9d2c8a2836bb2527a3c07ceb0d933e55964a4790b08743f5f7aaec25952OpenPKG Security Advisory - According to a security advisory from Stefan Esser, a vulnerability exists in the Weblog publishing system WordPress, versions up to and including 2.0.5.
5bb58c9bfbd9ea4823adca77bf7855e11fa850d081b036ff2dc309cfee673e95The shopstorenow E-commerce Shopping Cart is vulnerable to SQL injection attacks.
85371dbd39125f0777c338700bd2391ea73fd246e19fb41e3ae7a8a2e31edff7OpenPKG Security Advisory - According to vendor release notes and security advisories, two security issues exist in the POP3/IMAP batch client Fetchmail, version up to and including 6.3.5
e848b53d79d513a6112f14b3d4de99609c0c6e7edaa805a1ed7f23529322556eYet Another Link Directory version 1.0 suffers from cross site scripting flaws.
7d0e53ed4bb7768c33d7a8e50ebfe0adb8ca34742f4fb9abc14da43b7fed346cFix and Chip CMS version 1.0 suffers from cross site scripting flaws.
a5714a053ad344eae7738c2f85f72512793cc158e243aecdfac1d467d9d594c0oohASP suffers from a password disclosure vulnerability.
ad028637e129003169233d44a103487263563595dee819cb2e106b5d3db70cdbMultiple cross site scripting, filter bypass, and information disclosure vulnerabilities exist in the F5 FirePass SSL VPN.
cfb632bcc5ccc99300621cc90d6e8b25bfe1bfc7b2cc289fe2ff92c0abb09b72Month Of Apple Bugs - A vulnerability in the handling of Apple DiskManagement BOM files allows to set rogue permissions on the filesystem via the 'diskutil' tool. This can be used to execute arbitrary code and escalate privileges. A malicious user could create a BOM declaring new permissions for specific filesystem locations (ex. binaries, cron and log directories, etc). Once 'diskutil' runs a permission repair operation the rogue permissions would be set, allowing to plant a backdoor, overwrite resources or simply gain root privileges.
c25666ddbe5ff06c32ae1027a19af259bbc8f98431a50aaf19f02ff9168bb9ecCisco Security Advisory - Certain versions of Cisco Secure Access Control Server (ACS) for Windows and the Cisco Secure ACS Solution Engine (here after both referred to as purely Cisco Secure ACS) are affected by multiple vulnerabilities that cause specific Cisco Secure services to crash. Two of the vulnerabilities may permit arbitrary code execution after exploitation of the specified vulnerability.
bcf8f5af9d271d39db49f3c8440f13aea3e9f2af9c1dd8455ef32c407eece986Fetchmail 6.3.5 and early 6.3.6 release candidates, when delivering messages to a message delivery agent by means of the "mda" option, can crash (by passing a NULL pointer to ferror() and fflush()) when refusing a message. SMTP and LMTP delivery modes are not affected.
29ab4fe9879e97230989c4786d6960715b5578e1652398e73697d9b51c85ff67Fetchmail has had several nasty password disclosure vulnerabilities for a long time. It was only recently that these have been found. This affects fetchmail versions 6.3.5 and below.
a90b6668d3eb0388a08526760856b5f2f2e46ed5f5cc3551868bf5e5ff61289eOpenPKG Security Advisory - According to upstream vendor security advisories, two vulnerabilities exist in the content management system Drupal, versions up to and including 4.7.4.
113909de07850710304b892fe3a993e72495d2f35dd0f344511576e4e4b66531iDefense Security Advisory - Remote exploitation of a DoS vulnerability in Kaspersky Lab's Antivirus could allow an attacker to cause a denial of service (DoS) condition. Kaspersky Antivirus is vulnerable to a DoS condition when processing a specially crafted PE (portable executable) file. One of the headers in a PE file is the Optional Windows Header section. This section of the PE header contains information needed by the Windows linker and loader. An invalid value for the 'NumberOfRvaAndSizes' field will cause Kaspersky to repeatedly seek and read from the same section of the file in an endless loop. iDefense has confirmed the existence of this vulnerability in Kaspersky Labs Antivirus Engine version 6.0 for Windows and 5.5-10 for Linux. Previous versions may also be affected. Any products that use the scanning engine are also affected. This includes the Kaspersky mail gateway scanner.
be7e224cd831d1291162a9a587a53192f85770efc620bb3f05b516e727328395Technical Cyber Security Alert TA07-005A - Apple QuickTime contains a buffer overflow in the handling of RTSP URLs. This can allow a remote attacker to execute arbitrary code on a vulnerable system.
410cfbbd8272fd5ad524296f1bc76780665ed9d57bb082d3f11f29c75952e8f7
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed