Secunia Security Advisory - Debian has issued an update for iceweasel. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, and compromise a user's system.
26bbd6ed6269f3869dde8524bd7ef613c3269c531593fcd630840216948e2d87Secunia Security Advisory - Ubuntu has issued an update for linux-lts-backport-natty. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose certain system information, bypass certain security restrictions, conduct session hijacking attacks, cause a DoS (Denial of Service), and gain escalated privileges and by malicious people to cause a DoS and potentially compromise a vulnerable system.
e92273b56eaf38ab54ba9c9fb0ce5086e1b4473e819a2427e8e06ea1ccd666a9Secunia Security Advisory - High-Tech Bridge SA has discovered some vulnerabilities in vtiger CRM, which can be exploited by malicious users to compromise a vulnerable system.
49eb4031a9021c6846bcba80fac69f3892c0cb477a143839a3526deba29138d5Secunia Security Advisory - muuratsalo has discovered multiple vulnerabilities in LabStoRe, which can be exploited by malicious people to conduct SQL injection attacks.
080f06b8d2ae4388e7989c529a997d30996269e1c4149f8332d41f387d568237John the Ripper is a fast password cracker, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. It supports several crypt(3) password hash types commonly found on Unix systems, as well as Windows LM hashes. On top of this, many other hash types are added with contributed patches, and some are added in John the Ripper Pro.
e81079682b5e39b9aae16bc3a3dfad5ee822067faf1af035d0087f9146c1cc71Wormtrack is a network IDS that helps detect scanning worms on a local area network by monitoring anomalous ARP traffic. This allows detection of scanning threats on the network, without having privileged access on a switch to set up a dedicated monitor port, nor does it require a constant updating of the rules engine to address new threats.
d14c1f13e9ebf372fff1196929b62f243ebe2d1b93e88472662a96e12abd305bThis is a brief whitepaper that discusses the wave of Rihanna related spam that hit Facebook.
246ff56a95c8e7081e78b42c07e44b5b4ec74e67b89d95923b98a5b7b742b9c9Mandriva Linux Security Advisory 2011-169 - Security issues were identified and fixed in mozilla NSS, firefox and thunderbird. 22 weak 512-bit certificates issued by the DigiCert Sdn. Bhd certificate authority has been revoked from the root CA storage. Untrusted search path vulnerability in Mozilla Network Security Services might allow local users to gain privileges via a Trojan horse pkcs11.txt file in a top-level directory. Cross-site scripting vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding. Various other issues were also addressed.
1a5863158a5fd4cd434856d62ecc7ece84182035492db44cb1f4705128b08a17Debian Linux Security Advisory 2343-1 - Several weak certificates were issued by Malaysian intermediate CA "Digicert Sdn. Bhd." This event, along with other issues, has lead to Entrust Inc. and Verizon Cybertrust to revoke the CA's cross-signed certificates.
383171a00176b910c1b22378d40f3b26b2b56ec956d439d5d5581a15fbde056a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed