Secunia Security Advisory - Citrix has acknowledged a vulnerability in NetScaler, which can be exploited by malicious people to poison the DNS cache.
4911a1a7cb0d3d4d7f937ecf97694452aac2cd632857a3c6f2cd4b064c7697c9Secunia Research has discovered a vulnerability in RealPlayer, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a design error within the handling of frames in Shockwave Flash (SWF) files and can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code. Affected is RealNetworks RealPlayer version 10.5 Build 6.0.12.1483.
85ea60ee6a68e6f33d5b4bdcc122dc5e0957dc9bfc2c3b7f6a8a25295470e2c8The Flashblock extension suffers from a bypass vulnerability.
3abdbbc0d0c93123afc790840b3faa118624f14c03969635f0631ffcef0e04c3Debian Security Advisory 1617-1 - In DSA-1603-1, Debian released an update to the BIND 9 domain name server, which introduced UDP source port randomization to mitigate the threat of DNS cache poisoning attacks (identified by the Common Vulnerabilities and Exposures project as CVE-2008-1447). The fix, while correct, was incompatible with the version of SELinux Reference Policy shipped with Debian Etch, which did not permit a process running in the named_t domain to bind sockets to UDP ports other than the standard 'domain' port (53). The incompatibility affects both the 'targeted' and 'strict' policy packages supplied by this version of refpolicy. This update to the refpolicy packages grants the ability to bind to arbitrary UDP ports to named_t processes. When installed, the updated packages will attempt to update the bind policy module on systems where it had been previously loaded and where the previous version of refpolicy was 0.0.20061018-5 or below.
d9ed425b97874f61eb0207b3d26987e6036bffbbbbbedda8e4db2913f6def931Camera Life version 2.6.2 suffers from a remote SQL injection vulnerability.
ad501ac6a9ff480bbde7b2d2d43e0c9f23278859cec5ed785af0cd09925d0ac8BIND 9.x remote DNS cache poisoning flaw exploit using the vulnerability discovered by Dan Kaminsky.
9c124eae9c7840190937c485399fd6cca178e89694b4ae96027a1cf86a7a95e3Powerfuzzer is a highly automated web fuzzer based on many other Open Source fuzzers available (including cfuzzer, fuzzled, fuzzer.pl, jbrofuzz, webscarab, wapiti, Socket Fuzzer) and information gathered from numerous security resources and websites. It is capable of spidering a website and identifying inputs.
4ee9ca809287166d059f03478f84ab9ae3b6ab083adaee34d3b2091de62e924bUbuntu Security Notice 629-1 - Various flaws in the mozilla-thunderbird package have been addressed including improper handling, weaknesses, denial of service, and code execution issues.
82ca639d83f57cdecdc577ad31c3dbae3194fd8e8d787de42f0f0097c3e1344dminix version 3.1.2a suffers from a remote tty panic vulnerability.
2cb379bf741ea02c61e445ed23d0a00db8cd6e95d444521210589cf0f9150615Aflog version 1.01 suffers from a cross site scripting vulnerability.
7a0740e91d1db14ae397cf034a2dc5d06bfea1555846afbca6f657eb40cd50c5xrms version 1.99.2 suffers from remote file inclusion and cross site scripting vulnerabilities.
a51d41ff70d02cb180fe508294f0a5ecf81f4796bc9d275714cf95d922140bbcLive Music Plus version 1.1.0 suffers from a remote SQL injection vulnerability.
c35f9519d0db5dc795e2852ef1d3b666146d48aa7d0f17620caf3dda77775f3fSecunia Security Advisory - Secunia Research has discovered a vulnerability in RealPlayer, which potentially can be exploited by malicious people to compromise a user's system.
d7b62b4db6f5366f708edd01a0dcdddd7f8b1df66981ad88ce9679cca8e1d595Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.
dfa635f4b32de258ed859c86a875167997a7065e0d790f60fab899bbb1b42f59Secunia Security Advisory - Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
e8d27a837f1060aff00b87e03c9a23eb7987a34b6b395ea835ccc13c5643819fSecunia Security Advisory - Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
d02a3fbeb05e2f7b7468148792adad9e87824fe6491cf65b7ef39781e80f409bSecunia Security Advisory - Red Hat has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, disclose sensitive information, or compromise a vulnerable system.
13213a61ce951d906b3f7782424906a87a60dbef8a8257a36b260970467e3e28Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
f45f7bc6063db6189fc89850ee18d182d0fcda8f07b52ca9524ffb12383c2abbSecunia Security Advisory - Ubuntu has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
21aa29bb4944656ece024d04d2bf0929216cc8a63beed169e04cc1bbc6d8b62fSecunia Security Advisory - Debian has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
b651a537787827d88846c5ec5797f01b6c75641a8809fad3dfae62d5f6c70ec7Secunia Security Advisory - Secure Computing has acknowledged a vulnerability in Sidewinder and CyberGuard, which can be exploited by malicious people to poison the DNS cache.
96622634f7c33b70588469e7cc64ba566376a385465de648b0ad7c4c133cab05Secunia Security Advisory - An updated version of IPCop has been released, which fixes some vulnerabilities in perl, which can potentially be exploited by malicious people to cause a Denial of Service or to compromise a vulnerable perl application.
675fa8a259a3dc24aabb4d32ccb27c201b6432bdb68de2b3480493a226ec72aaSecunia Security Advisory - Slackware has issued an update for dnsmasq. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
b3139506173f9328eaf61543f8ac7fbb73d8445258ee7a8bb417bde0619fa8d1Secunia Security Advisory - A vulnerability has been reported in Drupal, which can be exploited by malicious people to conduct session fixation attacks.
df5000187812391b41556b0076c288e681e41cf1e75df8b7981b382a73d6eb9aSecunia Security Advisory - OpenBSD has acknowledged a vulnerability in BIND, which can be exploited by malicious people to poison the DNS cache.
cb9aea0aa5663f746db101a2f5aae2238b0b967ddb026c3cf34e9a1d9d427a86
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed