Secunia Research has discovered a vulnerability in Internet Download Manager, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error when sending certain test sequences to an FTP server. This can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into downloading a file from a specially crafted FTP URI. Successful exploitation allows execution of arbitrary code. Internet Download Manager version 5.18 is affected.
56af8243c012b2993b884e0396af073ae6088b78ca52aa485de63621dbffa10cThe sixth annual EUSecWest applied technical security conference - where the eminent figures in the international security industry will get together share best practices and technology - will be held in downtown Amsterdam at the the Melkweg Multimedia Center near Leidseplein on June 16/17, 2010. This is the Call For Papers.
53f847b2c8d2b3b64a140f7dbc8fde59f63767b9847f13ef5e4c5b80a6553905Mandriva Linux Security Advisory 2010-088 - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
e35095f623ba6a410cd3c46cfabf90eff6d811d179244c48dcb04cae2f29d1d5Whitepaper called Phishing and Anti-Phishing.
97a9b959e96f8d68cdd0466a74e7da4f68b3f4fa5527a93c95c365005fd0655fKrM Haber suffers from a database disclosure vulnerability.
6d9528cfa5bc15f54bd75db684e4d17fe465dcea93788f1d58ae36edfe77fcc6Alibaba Clone Platinum suffers from a remote SQL injection vulnerability.
80bb3fa6f103b7186b5ca0b0bcc57eb6ab8e15d6ec877e9ea4be3b976c6d784aWebthaiapp suffers from a remote blind SQL injection vulnerability.
d791fb65ed72989f913d1a837519395709e8614fb9ae750b1d9c8aa275c151b7AutoDealer versions 1 and 2 suffer from a remote SQL injection vulnerability.
862e9bd400d68c091bc5086d303308423f8a0f8bcfb168bd00e35296df02adf3BPstyle Graphic Studio suffers from a remote SQL injection vulnerability.
d8b7d59c9974dddcc73d1f6504444cde607989fcb7046d2998dd960f8ca61d1bThe Joomla NewsFeeds component suffers from a remote SQL injection vulnerability.
8ff40dc55942fdf270c221e63518fe569f94ab940b8f47cb62abe9da97a9bbb2Puntal version 2.1.0 suffers from a remote file inclusion vulnerability.
20c6aa2c53f0893261cadb318977c41e059fde4d8e4de0d6dfc4db6e414ca341Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.
20f8ade2ee00dfb274030e267f8001cbc418676c2d295d7924ae12f54e109614XML Security Library is a C library based on LibXML2. It provides an implementation for major XML security standards: XML Digital Signature and XML Encryption.
8cdcc3861ad5f2b010010ffe359acadc9777f5d1ea35a8f74e52e0e1e7eca935FSlint is a toolkit to find various forms of lint on a filesystem. At the moment it reports duplicate files, bad symbolic links, troublesome file names, empty directories, non stripped executables, temporary files, duplicate/conflicting (binary) names, and unused ext2 directory blocks.
babbef4a34f42ab1d396152fd79b4353adc114b2e8d68b838e20a8067c5a3273WhatWeb is a next generation web scanner that identifies what websites are running. Flexible plugin architecture with over 80 plugins so far. Passive plugins use information in the headers, cookies, HTML body and URL. Aggressive plugins can identify versions of Joomla, phpBB, etc by making extra requests to the webserver.
de9e6e8be69942bfb60ac6211dab149dbee1f67f0217105def741a0f6804663aUbuntu Security Notice 934-1 - Marc Schoenefeld discovered a buffer overflow in Netpbm when loading certain images. If a user or automated system were tricked into opening a specially crafted XPM image, a remote attacker could crash Netpbm. The default compiler options for affected releases should reduce the vulnerability to a denial of service.
b35687a340a4fdbf7229769133d5339808e1f1c6becbce15b0647f661933d805JobPost suffers from a remote SQL injection vulnerability.
c3371267bcff9bffabeed37094a3abab3412a1f582cfc2b01430a2882e8cfdbfEC21 Clone version 3.0 suffers from a remote SQL injection vulnerability.
4d9aae08e14e6126b114b998a4d81b2e27851e09b7a75b38e587123f7aca8976B2B Gold Script suffers from a remote SQL injection vulnerability.
767cdd285dc01a559699cdc372c20d6bb1fe707b194af9e821a1be2f6084fb2eSecunia Security Advisory - Ubuntu has issued an update for netpbm-free. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
42a1c4b2abdfad7c280a2c69153d3d4a7952e9bd74890dcc178c125df00cfa5cSecunia Security Advisory - A security issue has been discovered in deV!L'z Clanportal, which can be exploited by malicious people to disclose potentially sensitive information.
7d6acee451282ffc82925a88b8d66aad8e9fe71a4bc29d522c4fb3d8c76a9a6bSecunia Security Advisory - A vulnerability has been reported in Microsoft SharePoint Server 2007 and Windows SharePoint Services 3.0, which can be exploited by malicious people to conduct cross-site scripting attacks.
0f9eb364ecbec46d5cbf86ca7e74aed76aeba37ea7cdc25c5ad1448839dea541Secunia Security Advisory - Secunia Research has discovered a vulnerability in Internet Download Manager, which can be exploited by malicious people to compromise a user's system.
4271da131c95503e0ab2e9e9f6757f6fad94289067ecadfe809ae4e6d9aadaeeMandriva Linux Security Advisory 2010-087 - Multiple buffer overflow vulnerabilities have been found and corrected in poppler. The updated poppler packages have upgraded to 0.5.4 and have been patched to correct these issues.
4168f306577bc79b87d31896306a31d170c85717df5212b9d33cbb3aa67282adchCounter version 3.1.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
e186b67a8dc532c2bdb00c5bf5dcdec58a950e0a58dc73659bac7daf6870b26a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed