Community forum suffers from a cross site scripting flaw. Exploitation provided.
1757445512d7b26b3c7d49e6539b4b39db1a6df52d0f99323f9c9bb682b2a2c0ld.so from Solaris 9 and 10 does not check the LD_AUDIT environment variable when running setuid and setgid binaries, allowing a malicious party to run arbitrary code with elevated privileges.
99095146827726d63bfcc4635cf1196f0a332c6fd871b51f211d97645f2ae3c8Ubuntu Security Notice USN-144-1 - dbus suffers from a vulnerability that allows another user to make use of its bus if the address is known.
068e9bcea7aec1f7d96efdb366f5cc0a3d2e0df6ffb052ec151a4d3c26aea952SUSE Security Announcement - Various security problems were found in RealPlayer that allow a remote attacker to execute code in the local player by providing handcrafted files.
75d770e58d6f7a947862e78ef943044638179e7fd06c63ce9d72cb35e4a4905aNokia remote restart Bluetooth nickname exploit.
68980d38458b7058d4ad29d7700ce790c443cff4fbe50f161de88fc16345c426A denial of service vulnerability exists in the True North Software IA eMailServer Corporate Edition version 5.2.2. Build: 1051. Input to the IMAP4 LIST command is not properly checked. Perl exploit provided.
c6a4487d3cf352e0cc68caba9961d47584d5dfcbf146b2cf528b97fd38c0685fUbuntu Security Notice USN-143-1 - Multiple denial of service vulnerabilities have been discovered in the Linux 2.6 kernel series.
4cd3dfa7a35c80ee8c631027c7356be647cd61f14eeb47c71cffc2b138b2067eASPNuke versions 0.80 and below SQL injection exploit that makes use of article.asp.
90b3e3ceff10ed56896efa4f9e8e854bbe662127f09ac2d98a72d0e72748e84dGentoo Linux Security Advisory GLSA 200506-23 - Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack. Versions less than 0.86.1 are affected.
91cac2135bcfac39b53851aad61ae1d411db6e0d9325e8c60fe2fa056decd5a6Cross site scripting, HTTP Response splitting, and SQL injection vulnerabilities exist in ASP Nuke versions 0.80 and below.
51482bee3a221f559eb0ec5c578c515f23393d86c0f551fb8cc5885e97332275Veritas Backup Exec Agent CONNECT_CLIENT_AUTH Request exploit that makes use of a stack overflow.
4da972cff3f585c3eb26236ddd07ebf71b8f600f2078def3ce58f2880b98c3b3raddump interprets captured RADIUS packets to print a timestamp, packet length, RADIUS packet type, source and destination hosts and ports, and included attribute names and values for each packet.
f2d5c80164a5064d25e112f3ead9952d86200b022da584bddbc4afea948cb970afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
43a586e3490623a7921efada877bfeb20f6c222b776c55bc6b57c8bc3ecf5b16arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
5dcc2a411aa6868377d0406fd8e9e3ceb491aac8e1ac663e04999da13522c7e2Secunia Security Advisory - A security issue has been reported in WebCalendar, which can be exploited by malicious people to bypass certain security restrictions.
c4544b33eb08ec5377c25bd8836faf7cb8cfd92613ec4e9ba14e483801645667Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
df83d60fb541a4cdf9b8a5ab466ad24c3fd86be265a544bce389e9edae156e6fSecunia Security Advisory - basher13 has reported a vulnerability in Dynamic Biz Website Builder (QuickWeb), which can be exploited by malicious people to conduct SQL injection attacks.
2489d7fc51b7f851f7b501573ef688f84e5550acc4bc18b68af97de4e9ce903eSecunia Security Advisory - Two vulnerabilities have been reported in Adobe Reader and Adobe Acrobat for Mac OS, which may grant elevated permissions on certain folders or can be exploited by malicious people to execute arbitrary local programs on a user's system.
21ea4066aeeb89c77b5ff20a34ebb8b44c58f7e122ab7650ae6f9ba7fa00afd4Secunia Security Advisory - Reed Arvin has reported two vulnerabilities in Inframail Advantage Server Edition, which can be exploited by malicious people to cause a DoS (Denial of Service).
762ff106ce7205d44e47a115b1b0d94f57376723d586e5456eb2d842ba5cc40fSecunia Security Advisory - FJLJ has reported a vulnerability in PHP-Nuke, which can be exploited by malicious people to conduct script insertion attacks.
98f7419b984782bed4001faab29bd39d7f576233334858929f05b62f4f4ab585Secunia Security Advisory - Easyex has discovered two vulnerabilities in PHP-Fusion, which can be exploited by malicious people to conduct script insertion attacks or disclose sensitive information.
6a28f4eaf7b38c3869e0263eb4428802c3065b0f1734f6b4186ab56383b40824Secunia Security Advisory - basher13 has reported a security issue in Sukru Alatas Guestbook, which can be exploited by malicious people to disclose sensitive information.
7677cfa09d431e89cdcb5692e36c9e461c39c808c5be251a91c37b501abcf8faSecunia Security Advisory - Damian Menscher has reported a vulnerability in clamav-milter, which can be exploited by malicious people to cause a DoS (Denial of Service).
bc19ab65c2f8e24b648d687eb44029c9b958eeeda7af45008095c4d146d403daSecunia Security Advisory - Dedi Dwianto has reported some vulnerabilities in ActiveBuyandSell, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
40e124241210c60cd719ed4f3ac9357f7974d6c41efb4ea4ad5cd9714d5ab206Secunia Security Advisory - Reed Arvin has reported a vulnerability in IA eMailServer, which can be exploited by malicious users to cause a DoS (Denial of Service).
2ea15dff540ab72bae9b78acd5d9d96fccb10060e9d1ade1a5969ebec932d075
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed