VisualRoute is a traceroute tool which displays a map of the path to the destination server by looking up the geographical location of each traceroute hop. The network service provider is identified for each hop, and instant domain and network whois information enable quick problem or abuse reporting.
37f7c8a75d15983b39650a4f85ac5ea91c5139e861cb3dca2cbccb4703da354fJohn Heasman of NGSSoftware has discovered a high risk vulnerability in the handling of RTF documents within OpenOffice. The vulnerability affects all versions of OpenOffice prior to 2.2.1. If an attacker can coax a user into opening a specially crafted RTF document then the attacker can execute arbitrary code in the security context of their victim.
be4a33febe226d70a1f14570aa889aadb761814ecb40cb7d6d9614c7df6778d0IRIX MIPS processor shellcode. Tested on R12000 process with system IRIX64 6.5.26m.
a44477ca1f8cd02261ab5c90a11b65a2d02cc650a4771be9db30638bfc80f798Mandriva Linux Security Advisory - A flaw in libgd2 was found by Xavier Roche where it would not correctly validate PNG callback results. If an application linked against libgd2 was tricked into processing a specially-crafted PNG file, it could cause a denial of service scenario via CPU resource consumption. Tetex uses an embedded copy of the gd source and may also be affected by this issue.
c2838daf428e6274de9cf428e2c50be048207775770e300811229d5279e638f4Mandriva Linux Security Advisory - A flaw in libgd2 was found by Xavier Roche where it would not correctly validate PNG callback results. If an application linked against libgd2 was tricked into processing a specially-crafted PNG file, it could cause a denial of service scenario via CPU resource consumption. Libwmf uses an embedded copy of the gd source and may also be affected by this issue.
a8c79f68d3e3b0e5f6f5a4590aa697c61132ca007fc791d15e58185c6f9f9cf6Microsoft Speech API ActiveX control remote buffer overflow exploit for WinXP SP2.
9831ecdc3136c5ebcd838861c5051d81e53598094f8c0de11e0426cf26fe916aMicrosoft Speech API ActiveX control remote buffer overflow exploit for Win2k SP4.
4e8e2cfc8860f5b749fc21be1eb6f974459d23a7bb2b6fe42476964ef495ba24XOOPS module XFsection versions below 1.07 suffer from a remote file inclusion vulnerability in modify.php.
b1c13a21daf6d6264804920b57cffa5d95d37ebf9df2b1b1f6f18111e3335426Microsoft Office MSODataSourceControl COM-object buffer overflow proof of concept denial of service exploit.
b934bd5c541f5fef68a5febb74d194dd6d84fa809bbcfdaa46e2aa612fee7eb9Mandriva Linux Security Advisory - A flaw in libgd2 was found by Xavier Roche where it would not correctly validate PNG callback results. If an application linked against libgd2 was tricked into processing a specially-crafted PNG file, it could cause a denial of service scenario via CPU resource consumption.
2e3ba270ea3c4d1919f6f93689f647974c766f1a7bc9af560a39ea9541d60645Mandriva Linux Security Advisory - An integer overflow vulnerability was discovered in the way the FreeType font engine processed TTF files. If a user were to load a special font file with a program linked against freetype, it could cause the application to crash or possibly execute arbitrary code as the user running the program.
94960e6f55bc1b10bf6a19df85e9a6c69aa8b76672a3ba11ef83907969b799a6Debian Security Advisory 1305-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client.
0aa0b2bc037576d5074dbba295a1cec4a714fb97fb3ebabd1ab70e4e8705b623iDefense Security Advisory 06.13.07 - Remote exploitation of a integer overflow vulnerability in libexif, as included in various vendors' operating system distributions, could allow attackers to crash the process or execute arbitrary code. The problem exists while parsing a tagged image with a large number of Exif components. Applications using this library are susceptible to a heap overflow when an integer overflow is triggered in the exif_data_load_data_entry function. iDefense confirmed the existence of this vulnerability in versions 0.6.13 through 0.6.15 of libexif.
1bcc90101ec9fadb6112f82dea431a7c3852d675c609a10ac528b1524cda77a3rpm2html version 1.6 suffers from a cross site scripting vulnerability.
58d1ee03ffa95b4341e07ef23447a160cb499ed63c35226083334d21bdb7135aUbuntu Security Notice 474-1 - It was discovered that xscreensaver did not correctly validate the return values from network authentication systems such as LDAP or NIS. A local attacker could bypass a locked screen if they were able to interrupt network connectivity.
72b88d61bc7055aaa1e25acbb2dfe5eea23d3de4c8446e1781ce302bef159182
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed