KDE Konqueror version 4.1.3 link href memory leak exploit that causes a denial of service condition.
52ec44898dc0b279108db1d6176b487e62c9df5937992cc4e645545e44da1e9eKDE Konqueror version 4.1.3 iframe src memory leak exploit that causes a denial of service condition.
e19cb05ec580924d6dc19b3322ecdac3cfb55ab2b8fe843e14f0ec56776d4e013COM TFTP buffer overflow exploit that binds a shell to port 4444.
10a9bfc70432cab4c7496997dd07109c15d2e061794b60ef87be0e4f4ef1afd8A remotely exploitable vulnerability has been discovered in the Apache Connector component of Oracle BEA WebLogic Server. Specifically, the vulnerability is due to a boundary error when processing incoming HTTP requests and can lead to a buffer overflow condition. This boundary error can lead to a Denial of Service (DoS) condition for the Apache HTTP server.
c7c339b930f23c13f36b9129cc242c833a7716780cfe759fd4104eaed9ad7d62fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
bb36216abec00d3f8fea30ac8e3768a249f2ee181fd05c5064ac5a94ec069781Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery.
88c7ec2d6cf705c0fa6a5b790a67c2eb4cb0c27a76ea5b95a8986158b6dbd0a2The Joomla Fantasytournament component suffers from multiple remote SQL injection vulnerabilities.
09f2414d8a5d52435a8ccd8239ace69f3c633ca42187125aa7d0e39b771d7937The Joomla Camelcitydb2 component version 2.2 suffers from a remote SQL injection vulnerability.
395c35232d55b0666dacc49ae91637350ce1650537b4981ad17010bc6bc36c52EDraw Office Viewer Component version 5.4 HttpDownloadFile() insecure method exploit.
a6fcb95fe9b82106e8a774d5bf373f5d7c80975c7bc3c45ff276c35c45c66315Mandriva Linux Security Advisory 2009-010 - A security vulnerability have been discovered and corrected in VNC server of qemu 0.9.1 and earlier, which could lead to a denial-of-service attack. The updated packages have been patched to prevent this.
831766712ac3403f70e8c9b5418151753e7bc3ee853ce30604f58dc350031225Mandriva Linux Security Advisory 2009-009 - Security vulnerabilities have been discovered and corrected in VNC server of kvm version 79 and earlier, which could lead to denial-of-service attacks. The updated packages have been patched to prevent this.
357e44597fbdd7c4a9865cf676aa3cb015ead34be839af689ace128ac54035a3Mandriva Linux Security Advisory 2009-008 - Security vulnerabilities have been discovered and corrected in VNC server of qemu version 0.9.1 and earlier, which could lead to denial-of-service attacks. The updated packages have been patched to prevent this.
2c06bbad019474c3a006d9a50adf8ed443a45761713e318d529fdaa3d5f538c8Mandriva Linux Security Advisory 2009-007 - A flaw was found in how NTP checked the return value of signature verification. A remote attacker could use this to bypass certificate validation by using a malformed SSL/TLS signature. The updated packages have been patched to prevent this issue.
c9e99a6102c7efbed61e4bae8c6ba69c917268c68c4c956a0db78af8c0f45be8FreeBSD Security Advisory - The DSA_do_verify() function from OpenSSL is used to determine if a DSA digital signature is valid. When DNSSEC is used within BIND it uses DSA_do_verify() to verify DSA signatures, but checks the function return value incorrectly.
220d4fa821366af296e126574f48d4b6710134d13644b63e90dc0e60ac9c10b8Excel Viewer OCX version 3.2 remote file execution exploit.
f8e603390a0b9c7693dcb90aedb8dbe8d65ab54dfab631a7601beebfac5812a5Php Photo Album version 0.8 BETA suffers from a local file inclusion vulnerability in index.php.
0e15eb16c449c7c2349299da0c98d704915630c6e89a00ae30a22d02fed97fd1Phosheezy version 2.0 remote command execution exploit.
0690d2be5d4675ba21109776e994be3aa467f66811c6e74cfad82a3e309304a0AAA EasyGrid Active-X version 3.51 remote file overwrite exploit.
71fd46223d940690a9e3679b911611d8904d9f33129ef110a6102d0f85c3d994Netvolution CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
bbbc28872b59abe48a1830c6d478b818b78790bf5297009b43cc464d4d312493Syzygy CMS versions 0.3 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass.
3c72a751a6f689aab9ea307e93ac40dc5220eaf9345a35b82b2073ab5b34d130TeamSpeak versions 2.0.23.17 and below suffer from a remote file disclosure vulnerability.
8894836c9f7a3fab509a99e94dc4f91689d114dd68dfe84f6e662dd15d6fad66OTSTurntables version 1.00.027 local stack overflow exploit that generates a malicious .ofl file.
3ab6837ce3d1c6dd7455af5983343f6e8191d9ca3197f8a7fc5b621d88637a02Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to disclose sensitive information.
3187f18bb74f0722a4f75b4d34fe22f2109a8ec9f22fb0b3a6c4a81825e7f828Secunia Security Advisory - pfSense has acknowledged some vulnerabilities in pfSense, which can be exploited by malicious people to conduct cross-site request forgery or spoofing attacks.
23962a980b0d69ae23dccd6415a9180f71c9fd802992bd8b50fd429c9b2db5f2Secunia Security Advisory - Red Hat has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
24d1e514c137af742fb18430b95e3738a25f55d797ecb83f18f01162701dfb47
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed