Opial version 1.0 suffers from a remote SQL injection vulnerability.
8d36b03448b33b888798af2dc17761d4301262738c7fe0f8f642ff6be4837cadGentoo Linux Security Advisory GLSA 200907-02 - Two vulnerabilities in ModSecurity might lead to a Denial of Service. Versions less than 2.5.9 are affected.
93d0e84135062e1e983f892acb98b52eb6da4795ad05872d9381f1a961190823Gentoo Linux Security Advisory GLSA 200907-01 - libwmf bundles an old GD version which contains a use-after-free vulnerability. The embedded fork of the GD library introduced a use-after-free vulnerability in a modification which is specific to libwmf. Versions less than 0.2.8.4-r3 are affected.
10499a79b0bc5e2bf13aec58b6593b8d6c105fe091f20deb36de34436aa88dffRentventory PHP suffers from multiple remote SQL injection vulnerabilities.
3b7e17e0d095d922efca84a877a24d1ed2e1d3144227ba163d77af2107dab923This paper is a small SQL injection tutorial and is written in French.
38aefda178b4ab8c3f1fb7951183b724cd1c02d228d4f5d2cebb13ff91ae6e03CamlImages versions 2.2 and below suffer from several integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The vulnerability is triggered by PNG image parsing, the read_png_file and read_png_file_as_rgb24 functions do not properly validate the width and height of the image. Specific PNG images with large width and height can be crafted to trigger the vulnerability.
6bce357007801b08db39f99787240e44b3e48ab2eb8fd2ac497872dcab4f8b7eUbuntu Security Notice USN-795-1 - It was discovered that Nagios did not properly parse certain commands submitted using the WAP web interface. An authenticated user could exploit this flaw and execute arbitrary programs on the server.
f523db27f95ad851f6c09869a789caa0fcde77293516f678ec968096aad5cbe1Ubuntu Security Notice USN-794-1 - It was discovered that the Compress::Raw::Zlib Perl module incorrectly handled certain zlib compressed streams. If a user or automated system were tricked into processing a specially crafted compressed stream or file, a remote attacker could crash the application, leading to a denial of service.
7c06242b2b3a2d7466dcc0efeec0724be5966f879f23f5476df470b5158fa7f7Joomla! versions prior to 1.5.12 suffer from multiple cross site scripting vulnerabilities in relation to HTTP headers.
96382c9357b98c1fc2422f787e84ed89ac09e327397897640df4b58e69043ea1The ARD-9808 DVR card security camera suffers from a password disclosure vulnerability.
cb6199efa3e1973aa12346e59c94f86ce5c8a2aae7d8d19f81a61c5bf4bc55eaHP Security Bulletin - Potential security vulnerabilities have been identified with HP-UX running Apache-based Web Server or Tomcat-based Servelet Engine. The vulnerabilities could be exploited remotely to cause a Denial of Service (DoS), or execution of arbitrary code. Apache-based Web Server and Tomcat-based Servelet Engine are contained in the Apache Web Server Suite.
188b9f0db86834082088170fd33ebb8a50552ab4a702ee3c2405d86f177e52e0HP Security Bulletin - A potential security vulnerability has been identified with NFS/ONCplus running on HP-UX. The vulnerability could be exploited locally to create a Denial of Service (DoS).
1bf4a1e2365a85676d73cac0edd99ef89873454dba0d10218260becc99049dacOpial version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
3f8515e75cf2680b608d2363a5a910459927efdad73a33f278dc500c75619dfcSourcefire 3D Sensor and Defense Center versions 4.8.1 and below suffer from a privilege escalation vulnerability.
8d122104cad7e27e576d2a9001ec927db6865f70b597c09304127daf8c81ad95AdminLog version 0.5 suffers from an authentication bypass vulnerability.
f390d6e35a2bbb986e60700e6f872fe2fe3797cc4ec071c4b28880f35b678289Almnzm version 2.0 remote blind SQL injection exploit.
a4566be3216cdcc097188b52bebb3f584fc367f4570d76f5f2d6cec7e9a93db7conpresso version 3.4.8 suffers from a blind SQL injection vulnerability in detail.php.
41360bf026d6d8358353d6c1850968bf415902c6debc0f26a45eb1c83e2a4066Ubuntu Security Notice USN-793-1 - Multiple vulnerabilities associated with the Linux 2.6 kernel have been addressed. These issues range from arbitrary code execution to denial of service vulnerabilities.
797ae04efcacd60ef9328d90bb8c826ae9b22a209be3bcb11bbc1851d425ee75Oracle 10g SYS.LT.COMPRESSWORKSPACETREE remote SQL injection exploit.
e9924b3bff08566bd48f6a9c4c132a428ac601054dee9aa70008401001dc6b3cYourTube versions 2.0 and below suffer from a remote SQL database disclosure vulnerability.
b255a3b8b283c1356e86f743d2bdfc3a9c8fdcaf6ec5e73a80276374538c01cbApple Safari version 4.x javascript reload denial of service exploit.
63a6b2203349f231642b6b678c81f0357a781e029c46fbce20846b40dae6f574httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but instead to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the live traffic on the wire, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications. It does not display the raw HTTP data transferred, but instead focuses on parsing and displaying the request/response line along with associated header fields.
5b4a5f8170231cfbe341ad6720cadccf1c7a09b8d15c1868d3d9f803729b2560Secunia Security Advisory - Tielei Wang has discovered a vulnerability in wxWidgets, which can be exploited by malicious people to potentially compromise a user's system.
e901dfb18b12b1659a740908f93d27b7123984429269e9ad9b80236edb5ea2c4Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
e9d79e09b27696bdd5b0f67ea125ea5745f0167353b9fd76fe93293966519a72Secunia Security Advisory - Some vulnerabilities have been reported in the Advanced Forum module for Drupal, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks.
494e481cdd6d57b5124536f71ca440ce8394dbda1b01d08f222dd26599760963
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed