Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.
a4087fa008aa6b84a6780c9eedbe63319fba2f27bb5f182a1b0f349eba02ea24FreeRadius versions below 1.1.8 remote packet of death exploit.
6e98a461a80fd4c174e6b711128797dfcf9bee0de7edf590ef3cb43aab766c42Zero Day Initiative Advisory 09-064 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists during the parsing of malformed FlashPix (.fpx) files. While parsing the SectorShift and cSectFat fields from the header, the application will multiply 2 user-controlled 32-bit values and utilize this for an allocation. If the result of the multiplication is greater than 32bits, the application will allocate an undersized heap chunk. Later, the application will copy file data directly into this buffer leading to a buffer overflow which can allow for code execution under the context of the currently logged in user.
5a4410675af950264600ad06b00ee982607c01afd0cad713f369fa0eda24e10dZero Day Initiative Advisory 09-063 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists during the parsing of samples from a malformed MOV file utilizing the H.264 codec. While parsing data to render the stream, the application will mistrust a length that is used to initialize a heap chunk that was allocated in a header. If the length is larger than the size of the chunk allocated, then a memory corruption will occur leading to code execution under the context of the currently logged in user.
eaec113e9930ff8121c82d977917d1e2ffceb5afadfb54ccfa6cd18f0c6b492aPHP-IPNMonitor suffers from a remote SQL injection vulnerability.
aae4f835b7c471597aac6081575775b457f154bf95a62dd2fb6ac8c0fe41143dGyro version 5.0 suffers from remote SQL injection and cross site scripting vulnerabilities.
8b5d690192d090417a68d4fb4c6b92448c513acbd1a069e66d9e5a46df1713adXerver HTTP Server version 4.32 suffers from an arbitrary source code disclosure vulnerability.
803582b73c3c8872f07d31868a3995e5cc4c8ae67f8c87f396f3f0a8a4968915Kolibri+ Webserver 2 suffers from a remote source code disclosure vulnerability.
71ecaf676c0083eb07646ae20aeed7ebb70cdeda32d483b3f555f0a5f771d561Secunia Security Advisory - Mr.SQL has reported two vulnerabilities in MYRE Holiday Rental Manager, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
29e5d8f8b76b851e5e93eb58498ccda6a29a7f39dc9bdd6fcee0a2e0c9ba3940Secunia Security Advisory - Ubuntu has issued an update for firefox and xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct spoofing attacks, or compromise a vulnerable system.
21fb253129bef2bf7d2e88a060b47b9096e00630b0aa9bd533f284e7ba98698eSecunia Security Advisory - Luigi Auriemma has reported two vulnerabilities in Ventrilo Client, which can be exploited by malicious people to cause a DoS (Denial of Service).
692bdc98bca31a085d9f21e969d5f57546e311c8070661ef059bdcf158566831Secunia Security Advisory - Some vulnerabilities have been reported in Match Agency BiZ, which can be exploited by malicious people to conduct cross-site scripting attacks.
8aa3f6724b0c57fac40cb017ad53d5dd359143ed1f17990277b8bef4d6d55039Secunia Security Advisory - A vulnerability has been reported in Buy Dating Site, which can be exploited by malicious people to conduct cross-site scripting attacks.
9b178910a476bae75bc8f34dfb9e1dcd7adfe1e3952763bc978c7e5d8bfb94bfSecunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
3fc7cb91e46c0bd637725c3bcc828460e0c67e7746dda0bde178904d76349c4bSecunia Security Advisory - A vulnerability has been reported in yoyaku_v41, which can be exploited by malicious people to compromise a vulnerable system.
5ea168933891138453bcaadb9e270649cebbd1f59d464447281a46f124e796b7Secunia Security Advisory - Some vulnerabilities have been reported in Accommodation Hotel Booking Portal Script, which can be exploited by malicious people to conduct SQL injection attacks.
a6f54222d497c756c4635aff95475ec356063ed98f3f7f6d0ae83ac1c0a76cbeSecunia Security Advisory - Mr.SQL has reported a vulnerability in iDesk, which can be exploited by malicious people to conduct SQL injection attacks.
59cef7a157203fc1635d9f94112709b799e94d89df1504555288a915e0e9c7c5Secunia Security Advisory - Some vulnerabilities have been reported in Nullam Blog, which can be exploited by malicious people to disclose sensitive information and conduct cross-site scripting and SQL injection attacks.
a2dd1f0dce0e31106a76b7d6a102c9a29ec909a02e550109b9ed1ad3c6e1d27eSecunia Security Advisory - A security issue and some vulnerabilities have been discovered in An image gallery, which can be exploited by malicious people to disclose certain system information and conduct cross-site scripting attacks.
6c565dbc9ab220d37f09b13775635588063ad0db64294384267b7fa7f3602093Secunia Security Advisory - Debian has issued an update for xapian-omega. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
575c864e5173e928be0b93ffda911ed47659ac68274e59c27efb65c099bca90fSecunia Security Advisory - Gentoo has acknowledged some security issues in lmbench, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
5693796913584e61c34c411fe482ec91c5563a1f19a1f4fea230d829c6620b50Secunia Security Advisory - Fedora has issued an update for libsilc. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
822e14b7fd3c0b03b63d019425b3ac2cb79d9f62d70d3bf853434dfde137b7caSecunia Security Advisory - Gentoo has issued an update for tkman. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
cc09263bc96e47babc9f25032a68807f9ad3f2b69487fff1724adfdaeed1cedeSecunia Security Advisory - Gentoo has issued an update for gccxml. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
ff87c66063dda0fba7c286089dcbb10ba3ff5e5f253ba29313ae68a294555238Secunia Security Advisory - Gentoo has issued an update for aMule. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
f35bcf0a318f3b20e43673f17abf0972aa6cb14ed497fd6c2b46943b4caa67bb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed