Red Hat Security Advisory 2012-0466-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw in the Samba suite's Perl-based DCE/RPC IDL compiler, used to generate code to handle RPC calls, resulted in multiple buffer overflows in Samba. A remote, unauthenticated attacker could send a specially-crafted RPC request that would cause the Samba daemon to crash or, possibly, execute arbitrary code with the privileges of the root user.
ac3d0a5cf4ad166161f6d299cf8b70631e442e80e31a75c43f97926eb4e060f3Red Hat Security Advisory 2012-0468-01 - The libtiff packages contain a library of functions for manipulating Tagged Image File Format files. Two integer overflow flaws, leading to heap-based buffer overflows, were found in the way libtiff attempted to allocate space for a tile in a TIFF image file. An attacker could use these flaws to create a specially-crafted TIFF file that, when opened, would cause an application linked against libtiff to crash or, possibly, execute arbitrary code. All libtiff users should upgrade to these updated packages, which contain a backported patch to resolve these issues. All running applications linked against libtiff must be restarted for this update to take effect.
1c154b2cc7b2764e4eb386316ad291c0776e267591f9cfe7e2c473ddf73fde81Red Hat Security Advisory 2012-0465-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw in the Samba suite's Perl-based DCE/RPC IDL compiler, used to generate code to handle RPC calls, resulted in multiple buffer overflows in Samba. A remote, unauthenticated attacker could send a specially-crafted RPC request that would cause the Samba daemon to crash or, possibly, execute arbitrary code with the privileges of the root user.
5a04569b6919bd0a20fe7431a7493f6484a21e57dfa7115a5e0ef655365f0b8dRed Hat Security Advisory 2012-0467-01 - FreeType is a free, high-quality, portable font engine that can open and manage font files. It also loads, hints, and renders individual glyphs efficiently. Multiple flaws were found in the way FreeType handled TrueType Font, Glyph Bitmap Distribution Format, Windows .fnt and .fon, and PostScript Type 1 fonts. If a specially-crafted font file was loaded by an application linked against FreeType, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application.
3a13d9120cf34d5a658787c980c5020c879717bc89c85aea8328c9515717c900Red Hat Security Advisory 2012-0469-01 - Adobe Reader allows users to view and print documents in Portable Document Format. This update fixes multiple security flaws in Adobe Reader. These flaws are detailed on the Adobe security page APSB12-08, listed in the References section. A specially-crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. All Adobe Reader users should install these updated packages. They contain Adobe Reader version 9.5.1, which is not vulnerable to these issues. All running instances of Adobe Reader must be restarted for the update to take effect.
c341c5397d6898dd8e367ea7d2edae47c08423d0ec1dda6322251c22228ed4eeSecunia Security Advisory - Sow Ching Shiong has discovered a vulnerability in HP System Management Homepage, which can be exploited by malicious people to conduct cross-site request forgery attacks.
3eb295df02aa2dea9ce9bb1e8539fa5e951c2cdf73b2cbcb014b731e80b84d25Secunia Security Advisory - Novell has acknowledged a vulnerability in Novell Sentinel, which can be exploited by malicious users to disclose sensitive information.
2072fad44288fd6a211ba70af152027d390295a520c28e23369d0a4e057c5b6aSecunia Security Advisory - A vulnerability has been reported in FlightGear, which can be exploited by malicious people to compromise a user's system.
a46d5381cb806b2bbe95c5a65e8d164203b4709d3106a5c29aece17fe633bee8Secunia Security Advisory - Multiple vulnerabilities have been reported in Adobe Reader and Adobe Acrobat, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, gain knowledge of potentially sensitive information, and compromise a user's system.
22304ba7c1a6e7b1206a3acc050aeb70179433422e80d9f9768a57ee6ea68584Secunia Security Advisory - A security issue has been reported in the HP ProCurve 5400 zl Switch, which can be exploited by malicious people to compromise a users's system.
1441323731a789b9e9cd40e7d3e048efa0d7b2086bcb501ce8addd3a98bfe8d5Secunia Security Advisory - A vulnerability has been reported in Samba, which can be exploited by malicious people to compromise a vulnerable system.
5d2ad0bc0aa63842329c0ce1690b26bfa06fde52a7ebb61d21169a5288eae898Secunia Security Advisory - Multiple security issues and two vulnerabilities have been reported in Puppet, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges and by malicious users to cause a DoS (Denial of Service).
23af1d95573e132c193e278164ff5e557a5da5093fdb7bbec335ce7fd99a47adSecunia Security Advisory - Multiple vulnerabilities have been reported in Pluck SiteLife, which can be exploited by malicious people to conduct cross-site scripting attacks.
d8baef04fa49a85a891d289171d9323b3045760b64941d25e87cc3cc5f144ebdSecunia Security Advisory - Gentoo has issued an update for chromium. This fixes multiple vulnerabilities, where some have unknown impacts while others can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
34e72e1cb1123862080b4ad587fc6b9601fc5baba753083268aeb4faec295944Secunia Security Advisory - Red Hat has issued an update for samba3x. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
db367b04925e60c60dfe94ae18036c22fcae8d7d2ab94d680dd97a14e31a6b7fSecunia Security Advisory - Red Hat has issued an update for freetype. This fixes multiple vulnerabilities, which can be exploited by malicious people to potentially compromise an application using the library.
4172c2925d2218f7b104c4aa87f596e71448286e1e6a6c388c1a2eb72418ed41Secunia Security Advisory - Red Hat has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
147421976ea6adf6fd130b22530f68412a1b26fd1cc80d80ab01201abf9fe665Secunia Security Advisory - vekt0r has discovered a vulnerability in Horizon Quick CMS, which can be exploited by malicious people to conduct SQL injection attacks.
a36728af10149f20afec7a49b8da4b0a9870339b54e03bffbc038f5f688c3140Secunia Security Advisory - Red Hat has issued an update for acroread. This fixes multiple vulnerabilities, which can be exploited by malicious people to compromise a user's system.
a87e3764512575974ea4492278dad9a98dae69f56f9bdc12ab2fe03ce0629c6aSecunia Security Advisory - F5 has acknowledged multiple vulnerabilities in some F5 products, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service).
2dfb711072a4bdcc22fc6fae801937df4c16f80cb4734f977184f37a33f7394eSecunia Security Advisory - A weakness has been reported in Interstage List Works, which can be exploited by malicious users to bypass certain security restrictions.
1d138ac58bf0b9548e8d404732c39dba3d74b391c3d8beed4fd6329eb0938da4Secunia Security Advisory - SecureWorks has reported a vulnerability in Astaro Security Gateway, which can be exploited by malicious people to conduct spoofing attacks.
74ca9c7692223617e5d2cb4a83893ba78a3b19386dd614e9d68914b7795fb411Secunia Security Advisory - Red Hat has issued an update for libtiff. This fixes two vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
04ede0e5d20f0d7731ab68d8fff762a459d3c7e51d325ebc78dfcd1341bbbbd2Secunia Security Advisory - Ubuntu has issued an update for puppet. This fixes multiple security issues and two vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges and by malicious users to cause a DoS (Denial of Service).
65924cb0f3673eb40eb244f4fcbb530544a49570f5fe308bd9f86f28ba7242c2Secunia Security Advisory - Some vulnerabilities with an unknown impact have been reported in the Image News slider plugin for WordPress.
448f77dcdb48b8ca1a9784ced0b2e9f3d587bf1a9ad0b02aaaf12c8b67321764
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed