rPath Security Advisory: 2006-0175-1: openssl Remote Deterministic Unauthorized Access
bad571b639bf6d215d6c75d795524f028ed833d69870db827c2e7bc508b2b11fGentoo Linux Security Advisory GLSA 200609-20 - Input validation flaws have been discovered in the image handling of fetch.php if ImageMagick is used, which is not the default method. Versions less than 20060309e are affected.
9316cb9b16319b68654bec881d7228117463d350b31bd863ba21d17c7820ab78Gentoo Linux Security Advisory GLSA 200609-19 - A number of vulnerabilities were found and fixed in Mozilla Firefox. For details please consult the references below. Versions less than 1.5.0.7 are affected.
4a9469ce6c1244c1b23af8d7fa22c1e4447c6b4e415a1a5460861dd2f4a0858dGentoo Linux Security Advisory GLSA 200609-18 - Opera makes use of OpenSSL, which fails to correctly verify PKCS #1 v1.5 RSA signatures signed by a key with exponent 3. Some CAs in Opera's list of trusted signers are using root certificates with exponent 3. Versions less than 9.0.2 are affected.
da5f03a5eef9f68b2f27c28255f4f4f62c445f86d55a895db59dc25323ed640aArmorize-ADV-2006-0002 discloses multiple cross-site scripting vulnerabilities that are found in Red Mombin, which is a +quick and easy-to-use web-base task manager. It's powered by AJAX, PHP, and MySQL and works in all major browsers.
b164e824cd54fa7955306418cbf7d8afdf700d357c19d197e16c1ccbfbfa4d30National Cyber Alert System - Technical Cyber Security Alert TA06-270A: Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability
17b648e0c55d31f1e7ad5e86e70475d968a59704e99ae8edd17cdd4b8743ff27Sourcefire is aware of an issue in Snort that can produce segmentation faults in certain circumstances. This issue occurs when Snort is handling a large number of sessions and the configuration item cache_clean_percent is set to anything other than 0.
99672946ed3f21bcfab386a0aa7e31ff8a9b96c86b09c60c83b2b34931585524Many products from comdev are vulnerable to remote file inclusion. Vulnerable applications include: Comdev CSV Importer 3.1, Comdev Links Directory 3.1, Comdev Guestbook 3.1, Comdev eCommerce 3.1, Comdev FAQ Support 3.1, Comdev Customer Helpdesk 3.1, Comdev Newsletter 3.1, Comdev Photo Gallery 3.1, Comdev News Publisher 3.1, Comdev Vote Caster 3.1, Comdev Web Blogger 3.1, Comdev Events Calendar 3.1, and Comdev Contact Form 3.1.
c168bf8fbd5b0851a266fcec0fb949d53a0628d24266845ad60a7f77c65d079cGentoo Linux Security Advisory GLSA 200609-17 - Tavis Ormandy of the Google Security Team discovered a Denial of Service vulnerability in the SSH protocol version 1 CRC compensation attack detector. Versions less than 4.3_p2-r5 are affected.
0a0ffe4d6a25eae9811b49283a92c6a359a874de8a02c6d2549d8d203a95ee70Metasploit module for the WebViewFolderIcon ActiveX control flaw in Windows 2000, XP and 2003.
7f86b688c1c55c52a027bba8540e4857c64ca2342f00b7626f96e19dc7f5524bTests conducted by heise Security show that the online banking web sites of eight major UK Banks are vulnerable to long known security issues.
5fc22b468f0bf6eb9ff06bda01f1dc6c1b018d475e6f782c28ea15a4d29ad026Pixel Motion V2.1.1 PHP Code Execution / Create Admin Exploit
6b0652b398ab4e3dcafffd4e1df766651f0ee07334e2d791d3cb60c0aad25a24VirtueMart Joomla eCommerce Edition CMS suffers from several cross site scripting vulnerabilities.
9262d4d61e5a53268bf9a18aa6640ee0a892fc68e3d4dbed6d976bff821a07d4rPath Security Advisory: 2006-0174-1 - Remote Deterministic Denial of Service in openssh.
c1640f92d7c0341827fcd3df1abf30503aa5d4ec4a020d804833f56c1fdcc594Several MSN pages can be used for redirection attacks which may lead to phishing, cross site scripting, etc.
f85a4df28a255242410247f08a5d904d842a8e6259ff3a2478d6e577728c6680PHPSelect PDD suffers from a remote file inclusion vulnerability in $Application_Root.
672c0e94d89d7170effe372364db9611f91a4ca04ce52a226e90f87a14d7d684
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed