Call of Duty: Black Ops suffers from a remote memory leak vulnerability.
23f747fc13e4561d98d08374160cabdd2ae8c84df6b37dd2a2b12bf9451bf8d1Register Plus Redux version 3.6.1 for WordPress suffers from cross site scripting, insufficient anti-automation and path disclosure vulnerabilities.
118e46bfdbf5e843a00e7cf4594b0f025324c656c351c064eb67dc66a9eda6bdProof of concept exploits for cross site request forgery vulnerabilities found in the Linksys WRT54G2 and WRT54G routers.
b828c25f846a2d0368ccab279f0ecc63d70d06cad75e64a301b44245aa6d868bAlguest version 1.1c-patched suffers from a PHP code execution vulnerability.
b417d0e52abd2c8414ec59f6f59df3c18604ab91f5f421f118f2cb9ae1c2210eAlguest version 1.1c-patched suffers from an authentication bypass vulnerability.
abfde279b32f9d08871c7c98f0bff7efde14988293c5b4d92e18b0658212192bD-Link routers such as the DIR-615 revD, DIR-320 and DIR-300 all suffer from multiple remote authentication bypass vulnerabilities.
f1a9231c26177ad1738cc646517d63f8730f5f15148496f3064ab23103362ee0VMware Security Advisory 2010-0018 - VMware hosted products and ESX patches resolve multiple security issues.
0c2a1d7ce8cb7c11e6171577e84852c59a7e5a1763b387923bacb7c519d9f6b0HP Security Bulletin HPSBUX02610 SSRT100341 - A potential security vulnerability has been identified with HP-UX OpenSSL. This vulnerability could be exploited remotely to execute arbitrary code or create a Denial of Service (DoS). Revision 1 of this advisory.
3c60ef582ea207ca1d7c77e35984c45d1157a243dc5a24818013ad09e6e0b90dHP Security Bulletin HPSBUX02609 SSRT100147 - A potential security vulnerability has been identified with HP-UX CIFS-Server (Samba). The vulnerability could be exploited remotely to execute arbitrary code or create a Denial of Service (DoS). Revision 1 of this advisory.
2f3911909f01220b9ef5809092a969065918232999f56aa254b2fff5b204e769The Joomla Social User List component suffers from a remote SQL injection vulnerability.
7083ae023294632390dbfc5d3fe12763c58bce3ef97bcc98c4f277b4f343314cCMS Show - Job suffers from a remote SQL injection vulnerability.
2372e1601c28001d74e8bae37d697f3a9cb977cc062e4ff015fb4df082c0672aEasy Travel Portal version 2 suffers from a remote SQL injection vulnerability.
bebd7484355b629dbfce1d32036da99cbfdb9623918b1ec1d2ee4d06bead1537Image Viewer CP Gold 6 active-x TifMergeMultiFiles() buffer overflow exploit.
10ede7e8f24fa379319ed8250cf29cdc789d303aebe63e7d005d81b8f0cc35faA flaw has been found in the OpenSSL SSL/TLS server code where an old bug workaround allows malicious clients to modify the stored session cache ciphersuite. In some cases the ciphersuite can be downgraded to a weaker one on subsequent connections. Sebastian Martini found an error in OpenSSL's J-PAKE implementation which could lead to successful validation by someone with no knowledge of the shared secret.
7f8ca6e76dcf9ef92fc130a2bb2e5efad851ced1f1468d89cbc320f1359073f4The IE9 (platform preview) Javascript Math.random implementation is vulnerable to seed reconstruction. The seed reveals the computer's boot time (and on Windows 7 - also CPU clock speed). These can be used to finger-print computers and track users within the same Windows session even if they close and open their IE9 (platform preview) browser multiple times. Interestingly enough, this technique also provides some information regarding the client hardware (namely clock source and possibly CPU clock speed), and may be used to detect virtualized machines "over the web". Additionally, the Math.random implementation is flawed in such way that it returns non-uniform values (this holds for IE9 beta as well).
45918005ee9131a6395034c2c491000f1e0689d1286fb59db5508b9831387adaSecunia Security Advisory - A security issue has been reported in ProFTPD, which can be exploited by malicious people to compromise a vulnerable system.
93d7c62129f0f21b47890c47d4330d0cfaadf6d7346919e31c6cc1bc32aa32bcSecunia Security Advisory - Novell has acknowledged a vulnerability in Sentinel Log Manager, which can be exploited by malicious people to disclose certain system information and cause a DoS (Denial of Service).
f088fa6bd1a410a6a0a2270d64bbea8890f10b82efad8b6502f6e092fe209ed1Secunia Security Advisory - Red Hat has acknowledged some vulnerabilities in JBoss Enterprise Application Platform, which can be exploited by malicious people to conduct cross-site request forgery attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
64701893b587b90c7515fd188ea0b56b22cb38e6ce3e4e2594c0266542b98989Secunia Security Advisory - A vulnerability has been discovered in LittlePhpGallery, which can be exploited by malicious people to disclose sensitive information.
88575be2b16176a99bc425b185792e0b7ce5248044cb8f22c077d6f1f9aaf5daSecunia Security Advisory - A vulnerability has been reported in the Outline Designer module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.
8fb2bf72ddca8a7f4893767f1b10bb99e0bf700ec3c02de05370d22b43331c0eSecunia Security Advisory - A vulnerability has been discovered in Image Viewer CP Pro and Gold, which can be exploited by malicious people to compromise a user's system.
a4a3922fecb17feac5b54a9fc690863a8ecb703a8d7e843e4a869dbd5019c8f8Secunia Security Advisory - Ubuntu has issued an update for bind. This fixes a weakness and a vulnerability, which can be exploited by malicious people to manipulate certain data and cause a DoS (Denial of Service).
488965f51e7e3c281bf50a13fb4d0411ae9b44e396564d95fdea3f37d99ac2d5Secunia Security Advisory - A vulnerability has been reported in BIND, which can be exploited by malicious people to bypass certain security restrictions.
5e4ce9d75de0d6018012a943c7249047bb54808725d6e474cbd38631c22f1791Secunia Security Advisory - A vulnerability has been reported in the Comment Edited module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
40af11cf09282975b8e6fce1e30ec8f9f8874bddd83c8d1f2e5377365b572c1fSecunia Security Advisory - Fedora has issued an update for java-1.6.0-openjdk. This fixes a security issue, which can be exploited by malicious people to disclose system information.
303f6643af4f15516f0cb173ed6e14cda0a1cbebd021a9f9d91933c7ba04600a
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed