Debian Security Advisory 1632-1 - Drew Yao discovered that libTIFF, a library for handling the Tagged Image File Format, is vulnerable to a programming error allowing malformed tiff files to lead to a crash or execution of arbitrary code.
d67d4eb8e9b19dde12725793fb6a0732fccdcb9fc65aeee6f513e69a7726a14eThickbox Gallery version 2 suffers from an administrative data disclosure vulnerability in admins.php.
fef887fde4f2014c28892a3e76077905862b4bb4b80dbbca01882b0aa44bf69bCMME version 1.12 suffers from local file inclusion, cross site scripting, cross site request forgery, and other vulnerabilities.
af9a9d21b69154ca42ae5484e414943bce4d97255fc63c59630739512ac3b97dSimple Gallery ASP Script suffers from a remote SQL injection vulnerability.
d2af477a8bd61094cc124cb7ae0a491559fbc59ce23118f88ea0de7e2c0979afZoneMinder versions 1.23.3 and below suffer from command injection, SQL injection, and cross site scripting vulnerabilities.
55a64e531a978647b9439767a88f9de3c18cf64e5e2d817d8d467293e12ac55dMicrosoft Visual Studio Active-X remote buffer overflow exploit that leverages Msmask32.ocx.
807bbc098da295675fcf16e2045be01698e849fcabdc6fe4f7c158d6cb3c3e6eFurther analysis regarding the HP System Management
50cafab5d8ea833ac02ac9ae4a102f63d72c36a385c1f8949e6ee5291fbf724fz-breaknews version 2.0 suffers from a remote SQL injection vulnerability in single.php.
b86ed91dcc3d65aa7699cdc0ef8368b559c53cafeaf2fe70d1b5aee6fe9bfa00MiniNuke version 2.3 Freehost suffers from multiple remote SQL injection vulnerabilities.
d8a528623e187f2457a7f01d4a0238235f64710b47177a8a29d197e809d2471cUbuntu Security Notice 637-1 - It was discovered that there were multiple NULL-pointer function dereferences in the Linux kernel terminal handling code. A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service. The do_change_type routine did not correctly validation administrative users. A local attacker could exploit this to block mount points or cause private mounts to be shared, leading to denial of service or a possible loss of privacy. Tobias Klein discovered that the OSS interface through ALSA did not correctly validate the device number. A local attacker could exploit this to access sensitive kernel memory, leading to a denial of service or a loss of privacy. Zoltan Sogor discovered that new directory entries could be added to already deleted directories. A local attacker could exploit this, filling up available memory and disk space, leading to a denial of service.
ca0426c0a769cfea0d004df111f7bc27965eadeb0ea4026d54fcf6f94868702fK-Rate suffers from SQL injection and cross site scripting vulnerabilities.
cc15d5ff12d6c23706f4dfe710a9476ea27355dd844f4160b8538c20fb56225eSimple PHP Blog (SPHPBlog) versions 0.5.1 and below code execution exploit.
365b2fc6a92df2b1ed27deddc7294362fdf0e43868fae4bf75fa1703748594fbKolifa.Net Download Script version 1.2 suffers from a remote SQL injection vulnerability.
4b3549f3ce69eb0dddf86356f616d85395edca951e8aa95cc5ed509a57327908Secunia Security Advisory - A security issue has been reported in Swimage Encore, which can be exploited by malicious, local users to disclose potentially sensitive information.
9b7f71d2c8815880e0bdaa2bb3068501a1116e83fdef503e9b7a2fb7f4124562Secunia Security Advisory - InATeam has discovered a vulnerability in BtitTracker (BTI-Tracker) and xbtit, which can be exploited by malicious people to conduct SQL injection attacks.
540ee4b2c5e8e3b84bafc22591836ab0157782c4c98001fdde11c815930d65cbSecunia Security Advisory - ~!Dok_tOR!~ has reported a vulnerability in CCMS Gaming, which can be exploited by malicious people to conduct SQL injection attacks.
4a0a41c83f49bde006115dd6065a148a96a895bf4154047a3d6a43080c355537Secunia Security Advisory - Eric BEAULIEU has reported a vulnerability in Accellion File Transfer Appliance, which can be exploited by malicious people to conduct cross-site scripting attacks.
4947faf05080b1f9b8165085630bc1394765d931fd6f6da0d472f85dd230a6ebSecunia Security Advisory - James Bercegay has discovered two vulnerabilities in Crafty Syntax Live Help, which can be exploited by malicious people to conduct SQL injection attacks.
3382bd59eeef0803eea657f7ee9b498b4968c66b2ad0bdcc15a70f1c58d6f218Secunia Security Advisory - A vulnerability has been reported in OpenVMS, which can be exploited by malicious, local users to gain escalated privileges.
1c50371b903b9e57daae6a49b45f3c6ebc9f73fdf1504d10afc46ba96beb3108Secunia Security Advisory - ~!Dok_tOR!~ has discovered some vulnerabilities in MiaCMS, which can be exploited by malicious people to conduct SQL injection attacks.
66dc8fcf77ef42fa52459c41dd4242bb62b3cfecc42769d6d1a7c4b9bbf1dac0Secunia Security Advisory - A vulnerability has been reported in NetBSD, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
dd86708373beec55143f2114a2f230cd2a756b735328e260017512822b59ff0eSecunia Security Advisory - A security issue has been reported in Samba, which can be exploited by malicious, local users to bypass certain security restrictions.
596d7ff993a6dc7453efb2dd0a1ee4562ea308db7409fe6091ef7a2b92185dd2Secunia Security Advisory - Digital Security Research Group have discovered some vulnerabilities in ezContents, which can be exploited by malicious people to disclose sensitive information.
16f6b015d38c35ecec322f6e23fad8eca48ffb6e5c7f3ec0dc30c074edfac7b8Secunia Security Advisory - Digital Security Research Group have reported two vulnerabilities in Pluck, which can be exploited by malicious people to disclose sensitive information.
1fac131403005e5a65e19ed8ef2e188afd6baa5a36d1100155cedf01ee6990d8Secunia Security Advisory - Some vulnerabilities have been reported in AN Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
3930c7717ae1d81bf941bf893a107bddd028c603d84c0f7782daf17e276890c6
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed