HPE Security Bulletin HPESBHF03769 1 - A potential security vulnerability has been identified in HPE Integrated Lights-out (iLO 4). The vulnerability could be exploited remotely to allow authentication bypass and execution of code. Revision 1 of this advisory.
55e502bbbda3b626b9c1e5d89f1185c6db3ed04eb47bc7d55058c15b071a11c7360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.
a5e81aab1e8b91aaabce9d577368d1e4cd97c8454402192a03fb4774a69da728Trend Micro Hosted Email Security (HES) suffers from email interception and insecure direct object reference vulnerabilities.
b05cc034ae6b0b1c59afe01f4ef720d5545f811f1fcc30f3cf6db2bc68cf4f8clibgig-LinuxSampler version 4.0.0 suffers from multiple denial of service buffer overflow vulnerabilities.
885fe26ead9507c5109c787a13a8f08e27418a2ffda6c7513a31979ebf639ce9BlackBoard LMS version 9.1.140152.0 suffers from a cross site scripting vulnerability that can be leveraged through an arbitrary file upload.
fb00b9f4d5c76705cd84cf906ed2e0ee3d584d564052ebe3070382778bf6f495Sandboxie version 5.20 local denial of service exploit.
8d336c7c253537cf2a8ab3483f157c1fde1d706e00af37495848c1d24574359fVX Search Enterprise version 9.9.12 import command buffer overflow exploit.
1d772b9bd1e126779b04500df2d069c72767b61e1bee3294db83114126349a5aDIGISOL DG-BG1100N suffers from a ROM-0 backup disclosure vulnerability.
f97868518ab3be1faf7bc6a2bbf813587a19f5f104c3d7f5b8b8652b864b3abdDup Scout Enterprise version 9.9.14 import command buffer overflow exploit.
7bbbc6922eef199432a3fba84824614ed9771744dfed7f1f3c584b2a07e51c3cPDF-XChange Viewer version 2.5 (Build 314.0) suffers from a javascript API remote code execution vulnerability.
cfbace44021f769466ad489c4e0fc85231a8e315fe45d4a3e4f433c425207fadDiskBoss Enterprise version 8.2.14 import command buffer overflow exploit.
6789602eb6212a778f3a4532421ad55dbdc0b8ed8c312c5cf050a967d7c7ac27Ubuntu Security Notice 3402-1 - It was discovered that PySAML2 incorrectly handled certain SAML XML requests and responses. A remote attacker could use this issue to read arbitrary files.
7e2b752c629f0db0c9e92473055636c9ddd7e0ae07259a5129bcae252d90f5b7Red Hat Security Advisory 2017-2534-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.3.0. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.
3efa095ba1b37ce40cff95ab71a1b77294a876547f5725f38d79b19e653d6887Red Hat Security Advisory 2017-2533-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. Security Fix: It was found that the lightweight resolver protocol implementation in BIND could enter an infinite recursion and crash when asked to resolve a query name which, when combined with a search list entry, exceeds the maximum allowable length. A remote attacker could use this flaw to crash lwresd or named when using the "lwres" statement in named.conf.
f67e3196c2b632817bfb8e448d9d3dd646f5092db83ded905469f711f1af5d8fEasy AVI DivX Converter version 1.2.24 suffers from a buffer overflow vulnerability.
e53bd7a29b52176bfa876f4ceb4a9f40f59a3b3eb196c8e8599d5bbc1732215cEasy Video to iPod/MP4/PSP/3GP Converter version 1.5.20 suffers from a buffer overflow vulnerability.
1bbfc08f56f3dc005dbd57f806c110787e87ea190a8c90c1044b38f57f6a66ec
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed