Software and Script Bug Exploits
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Sat, 31 May 08
Digital Smart Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30450/
A vulnerability has been discovered in Digital Smart Software products, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
HiFi Software Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30447/
A vulnerability has been discovered in various HiFi products, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
Gold Wave Editor NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30446/
A vulnerability has been discovered in Gold Wave Editor, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
Color7 Technology Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30459/
A vulnerability has been discovered in various Color7 Technology products, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
Kent Web Mart Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30444/
A vulnerability has been reported in Kent Web Mart, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
DVBBS login.asp SQL Injection Vulnerability
http://secunia.com/advisories/30455/
hackerb has reported a vulnerability in DVBBS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
Total Audio Capture NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30451/
A vulnerability has been discovered in Total Audio Capture, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
Vista MP3 Recorder NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30439/
A vulnerability has been discovered in Vista MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 31 May 08
My Phone Files Media Studio NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30452/
A vulnerability has been discovered in My Phone Files Media Studio, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Total Audio Recorder and Editor NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30453/
A vulnerability has been discovered in Total Audio Recorder and Editor, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Easy Audio Redactor NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30454/
A vulnerability has been discovered in Easy Audio Redactor, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
CMS from Scratch Information Disclosure and File Upload
http://secunia.com/advisories/30448/
Stack has discovered some vulnerabilities in CMS from Scratch, which can be exploited by malicious users to disclose sensitive information and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Crystal MP3 Recorder NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30456/
A vulnerability has been discovered in Crystal MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Focus Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30424/
A vulnerability has been discovered in various Focus Systems products, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Audio Editor Plus NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30458/
A vulnerability has been discovered in Audio Editor Plus, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Powerful Audio Tool NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30457/
A vulnerability has been discovered in Powerful Audio Tool, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Airvae Commerce "pid" SQL Injection Vulnerability
http://secunia.com/advisories/30440/
QTRinux has reported a vulnerability in Airvae Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Xerox DocuShare Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30426/
Doz has reported a vulnerability in Xerox DocuShare, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Gentoo update for mplayer
http://secunia.com/advisories/30412/
Gentoo has issued an update for mplayer. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
RockN Audio NCTAudioFile2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30406/
A vulnerability has been discovered in RockN Audio, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Gentoo update for samba
http://secunia.com/advisories/30396/
Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
IDrive Online Backup SSL Verification Security Issue
http://secunia.com/advisories/30434/
Heise Security has reported a security issue in IDrive Online Backup, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
4U WMA MP3 Converter NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30418/
A vulnerability has been discovered in 4U WMA MP3 Converter, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Power Audio CD Grabber NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30419/
A vulnerability has been discovered in Power Audio CD Grabber, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Power Audio CD Burner NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30421/
A vulnerability has been discovered in Power Audio CD Burner, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
Alive MP3 WAV Converter NCTAudioInformation2.dll ActiveX Control Buffer Overflow
http://secunia.com/advisories/30445/
A vulnerability has been discovered in Alive MP3 WAV Converter, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 30 May 08
CinematicMP3 NCTAudioInformation2 ActiveX Control Buffer Overflow
http://secunia.com/advisories/30395/
A vulnerability has been discovered in CinematicMP3, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Calcium "CalendarName" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30431/
Marvin Simkin has discovered a vulnerability in Calcium, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
AhsayOBM / AhsayACB SSL Verification Security Issue
http://secunia.com/advisories/30436/
Heise Security has reported a security issue in Ahsay Online Backup Manager and Ahsay A-Click Backup, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/30430/
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
imlib2 PNM and XPM Buffer Overflow Vulnerabilities
http://secunia.com/advisories/30401/
Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
SteadyBackup Online Backup Manager SSL Verification Security Issue
http://secunia.com/advisories/30435/
Heise Security has reported a security issue in SteadyBackup Online Backup Manager, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
BullGuard Backup Client SSL Verification Security Issue
http://secunia.com/advisories/30384/
Heise Security has reported a security issue in BullGuard Backup, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
CA Internet Security Suite UmxEventCli.dll ActiveX Control Insecure Method
http://secunia.com/advisories/30420/
A vulnerability has been discovered in CA Internet Security Suite, which can be exploited by malicious people to overwrite arbitrary files.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Fedora update for system-config-network
http://secunia.com/advisories/30399/
Fedora has issued an update for system-config-network. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Slackware update for samba
http://secunia.com/advisories/30442/
Slackware has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
PHPhotoalbum Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30407/
cOndemned has discovered two vulnerabilities in PHPhotoalbum, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Fedora update for cbrpager
http://secunia.com/advisories/30438/
Fedora has issued an update for cbrpager. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
rPath update for evolution
http://secunia.com/advisories/30437/
rPath has issued an update for evolution. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
CiscoWorks Common Services Unspecified Code Execution Vulnerability
http://secunia.com/advisories/30422/
A vulnerability has been reported in various Cisco products, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Fedora update for stunnel
http://secunia.com/advisories/30425/
Fedora has issued an update for stunnel. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Debian update for libxslt
http://secunia.com/advisories/30393/
Debian has issued an update for libxslt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
cbrPager Archive Handling Arbitrary Command Execution
http://secunia.com/advisories/30417/
A vulnerability has been reported in cbrPager, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Fedora update for libpng10
http://secunia.com/advisories/30402/
Fedora has issued an update for libpng10. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Fedora update for kvm
http://secunia.com/advisories/30413/
Fedora has issued an update for kvm. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Symantec Backup Exec System Recovery Manager Directory Traversal
http://secunia.com/advisories/30432/
A vulnerability has been reported in Symantec Backup Exec System Recovery Manager, which can be exploited by malicious people to disclose potentially sensitive information and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
REVOKED: Adobe Flash Player Unspecified Vulnerability
http://secunia.com/advisories/30404/
A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
Samba "receive_smb_raw()" Buffer Overflow Vulnerability
http://secunia.com/advisories/30228/
Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
OpenSSL Two Denial of Service Vulnerabilities
http://secunia.com/advisories/30405/
Two vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
eMule X-Ray Unspecified Memory Corruption and Buffer Overflow
http://secunia.com/advisories/30292/
Some vulnerabilities have been reported in eMule X-Ray, which have unknown impacts.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
NCTSoft NCTAudioEditor NCTAudioGrabber2 ActiveX Control Buffer Overflows
http://secunia.com/advisories/30414/
Will Dormann has reported some vulnerabilities in NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 29 May 08
NCTSoft Products NCTAudioInformation2 ActiveX Control Buffer Overflows
http://secunia.com/advisories/30415/
Will Dormann has reported some vulnerabilities in NCTAudioStudio and NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Debian update for linux-2.6
http://secunia.com/advisories/30368/
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of service), and by malicious people to potentially cause a DoS.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
http://secunia.com/advisories/30403/
A vulnerability has been reported in Creative Software AutoUpdate Engine ActiveX Control, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
CKGold "category_id" SQL Injection Vulnerability
http://secunia.com/advisories/30392/
Cr@zy_King has discovered a vulnerability in CKGold, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
DT Centrepiece "searchFor" Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/30382/
Russ McRee has reported two vulnerabilities in DT Centrepiece, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Slackware update for rdesktop
http://secunia.com/advisories/30380/
Slackware has issued an update for rdesktop. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Ortro Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30398/
A vulnerability has been reported in Ortro, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
spamdyke "smtp_filter()" DATA Command Relay Vulnerability
http://secunia.com/advisories/30408/
A vulnerability has been reported in spamdyke, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Motorola RAZR JPEG Processing Buffer Overflow
http://secunia.com/advisories/30409/
A vulnerability has been reported in Motorola RAZR, which can be exploited by malicious people to compromise a vulnerable device.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
EMC AlphaStor Multiple Vulnerabilities
http://secunia.com/advisories/30410/
Some vulnerabilities have been reported in EMC AlphaStor, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
rPath update for php
http://secunia.com/advisories/30411/
rPath has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
rPath update for emacs
http://secunia.com/advisories/30303/
rPath has issued an update for emacs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Gentoo update for roundup
http://secunia.com/advisories/30274/
Gentoo has issued an update for roundup. This fixes some vulnerabilities and a security issue, where some have unknown impacts, while others can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
MAXSITE "category" SQL Injection Vulnerability
http://secunia.com/advisories/30306/
Tesz has reported a vulnerability in MAXSITE, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
Quate CMS Multiple Vulnerabilities
http://secunia.com/advisories/30377/
Digital Security Research Group have discovered some vulnerabilities in Quate CMS, which can be exploited by malicious users to disclose and manipulate sensitive information, and by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 28 May 08
ClassSystem "teacher_id" SQL Injection Vulnerabilities
http://secunia.com/advisories/30365/
unohope has reported two vulnerabilities in ClassSystem, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Linux Kernel Unspecified Vulnerability
http://secunia.com/advisories/30258/
A vulnerability with an unknown impact has been reported in the Linux Kernel.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
phpFix Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30397/
unohope has reported two vulnerabilities in phpFix, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
TYPO3 sg_zfelib Extension SQL Injection Vulnerabilities
http://secunia.com/advisories/30400/
Some vulnerabilities have been reported in the sg_zfelib extension for TYPO3, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
TYPO3 kj_imagelightbox2 Extension Cross-Site Scripting
http://secunia.com/advisories/30386/
A vulnerability has been reported in the kj_imagelightbox2 extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Safari Montage "forgotPW.php" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30363/
Omer Singer has reported some vulnerabilities in Safari Montage, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Mini CWB "connector.php" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30390/
CWH Underground has reported a vulnerability in Mini CWB, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
CuteFTP Directory Download Directory Traversal Vulnerability
http://secunia.com/advisories/29760/
Tan Chew Keong has reported a vulnerability in CuteFTP, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Mambo Multiple Vulnerabilities
http://secunia.com/advisories/30343/
Some vulnerabilities have been reported in Mambo, which can be exploited by malicious people to conduct SQL injection or HTTP response splitting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
ThinkVantage System Update Missing SSL Certificate Chain Verification
http://secunia.com/advisories/30379/
Derek Callaway has reported a security issue in ThinkVantage System Update, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Debian update for mtr
http://secunia.com/advisories/30340/
Debian has issued an update for mtr. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
Starsgames Control Panel "st" Cross-Site Scripting
http://secunia.com/advisories/30321/
CWH Underground has reported a vulnerability in Starsgames Control Panel, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
phpRaider "pConfig_auth[phpbb_path]" File Inclusion
http://secunia.com/advisories/30375/
KaCaK has discovered a vulnerability in phpRaider, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
plusPHP Short URL Multi-User Script "_pages_dir" File Inclusion
http://secunia.com/advisories/30373/
DR.TOXIC has reported a vulnerability in plusPHP Short URL Multi-User Script, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
OneCMS "load" Local File Inclusion Vulnerability
http://secunia.com/advisories/30378/
Digital Security Research Group has discovered a vulnerability in OneCMS, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 27 May 08
encrypt Anubis Plugin Original File Size Weakness
http://secunia.com/advisories/30388/
A weakness has been reported in the Anubis plugin for encrypt, which can be exploited by malicious people to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
eMule Plus "staticservers.dat" Unspecified Vulnerability
http://secunia.com/advisories/30277/
A vulnerability with an unknown impact has been reported in eMule Plus.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
Xomol CMS Local File Inclusion and SQL Injection
http://secunia.com/advisories/30374/
DNX has discovered some vulnerabilities in Xomol CMS, which can be exploited by malicious people to disclose potentially sensitive information or conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
SaraB Disclosure of DAR Encryption Ciphers
http://secunia.com/advisories/30394/
A security issue has been reported in SaraB, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
MxBB Portal "page" SQL Injection Vulnerability
http://secunia.com/advisories/30318/
cOndemned has reported a vulnerability in MxBB Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
Core FTP Directory Download Directory Traversal Vulnerability
http://secunia.com/advisories/30389/
Tan Chew Keong has reported a vulnerability in Core FTP, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
EntertainmentScript SQL Injection and Local File Inclusion
http://secunia.com/advisories/30311/
Two vulnerabilities have been reported in EntertainmentScript (ES), which can be exploited by malicious people to conduct SQL injection attacks and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
libpam-pgsql Authentication Bypass Security Issue
http://secunia.com/advisories/30391/
A security issue has been reported in libpam-pgsql, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
Sun Java System Web Server Advanced Search Cross-Site Scripting
http://secunia.com/advisories/30381/
A vulnerability has been reported in Sun Java System Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
RoomPHPlanning "idresa" SQL Injection Vulnerability
http://secunia.com/advisories/30376/
His0k4 has discovered a vulnerability in RoomPHPlanning, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
Slackware update for php
http://secunia.com/advisories/30387/
Slackware has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
rPath update for php
http://secunia.com/advisories/30345/
rPath has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
Slackware update for mozilla-thunderbird
http://secunia.com/advisories/30370/
Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 26 May 08
PCPIN Chat URL Redirection Script Cross-Site Scripting
http://secunia.com/advisories/30371/
A vulnerability has been reported in PCPIN Chat, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 24 May 08
HP-UX Secure Shell Unauthorized Access Vulnerability
http://secunia.com/advisories/30347/
A vulnerability has been reported in HP-UX, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 24 May 08
phpFreeForum Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30372/
CWH Underground has reported some vulnerabilities in phpFreeForum, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 24 May 08
Cerberus Helpdesk Information Disclosure Security Issue
http://secunia.com/advisories/30344/
A security issue has been reported in Cerberus Helpdesk, which can be exploited by malicious people to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
AbleDating "keyword" SQL Injection Vulnerability
http://secunia.com/advisories/30366/
Ali Jasbi has reported a vulnerability in AbleDating, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Sava CMS Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/30367/
Russ McRee has reported some vulnerabilities in Sava CMS, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
BMForum Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30369/
CWH Underground has reported some vulnerabilities in BMForum, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Debian update for xine-lib
http://secunia.com/advisories/30337/
Debian has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Fedora update for vsftpd
http://secunia.com/advisories/30354/
Fedora has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Xerox WorkCentre Web Server Unspecified Script Insertion
http://secunia.com/advisories/30364/
A vulnerability has been reported in Xerox WorkCentre, which can be exploited by malicious people to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Apple iCal Memory Corruption Vulnerability
http://secunia.com/advisories/30350/
Rodrigo Carvalho has reported a vulnerability in Apple iCal, which can potentially be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Barracuda Spam Firewall "email" Cross-Site Scripting
http://secunia.com/advisories/30362/
Mark Crowther has reported a vulnerability in Barracuda Spam Firewall, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
rPath update for gnutls
http://secunia.com/advisories/30355/
rPath has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
rPath update for mtr
http://secunia.com/advisories/30359/
rPath has issued an update for mtr. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Stunnel OCSP Revoked Certificate Security Issue
http://secunia.com/advisories/30335/
A security issue has been reported in Stunnel, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
IBM HTTP Server Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/30356/
IBM has acknowledged some vulnerabilities in IBM HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 23 May 08
Interchange Unspecified HTTP POST Request Denial of Service
http://secunia.com/advisories/30346/
A vulnerability has been reported in Interchange, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
IBM AIX Multiple Vulnerabilities
http://secunia.com/advisories/30349/
Some vulnerabilities have been reported in IBM AIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Sun Solaris STREAMS Administrative Driver Denial of Service
http://secunia.com/advisories/30357/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Debian update for libfishsound
http://secunia.com/advisories/30353/
Debian has issued an update for libfishsound. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Debian update for speex
http://secunia.com/advisories/30358/
Debian has issued an update for speex. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for nss_ldap
http://secunia.com/advisories/30352/
Red Hat has issued an update for nss_ldap. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Snort Fragmented IP Packets TTL Security Bypass
http://secunia.com/advisories/30348/
A vulnerability has been reported in Snort, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
IBM AIX update for OpenSSH
http://secunia.com/advisories/30361/
IBM has acknowledged some vulnerabilities in OpenSSH, which can be exploited by malicious, local users to bypass certain security restrictions or disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
IBM AIX ftpd "quote cwd" Full Path Disclosure Weakness
http://secunia.com/advisories/30360/
A weakness has been reported in IBM AIX, which can be exploited by malicious people to disclose system information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
IBM Lotus Sametime Community Services Multiplexer Buffer Overflow
http://secunia.com/advisories/30309/
A vulnerability has been reported in IBM Lotus Sametime, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Cisco IOS SSH Server Denial of Service
http://secunia.com/advisories/30322/
Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Trillian Multiple Vulnerabilities
http://secunia.com/advisories/30336/
Some vulnerabilities have been reported in Trillian, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
SAP Web Application Server Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30334/
Digital Security Research Group has reported a vulnerability in SAP Web Application Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Cisco Service Control Engine SSH Server Denial of Service Vulnerabilities
http://secunia.com/advisories/30316/
Some vulnerabilities have been reported in Cisco Service Control Engine, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Cisco Voice Portal Privilege Escalation Vulnerability
http://secunia.com/advisories/30289/
A vulnerability has been reported in Cisco Voice Portal (CVP), which can be exploited by malicious users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Ubuntu update for gnutls
http://secunia.com/advisories/30331/
Ubuntu has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for vsftpd
http://secunia.com/advisories/30341/
Red Hat has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Gentoo update for gnutls
http://secunia.com/advisories/30338/
Gentoo has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for setroubleshoot
http://secunia.com/advisories/30339/
Red Hat has issued an update for setroubleshoot. This fixes two security issues, which can be exploited by malicious, local users to conduct script insertion attacks and to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for bind
http://secunia.com/advisories/30313/
Red Hat has issued an update for bind. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, and a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for dovecot
http://secunia.com/advisories/30342/
Red Hat has issued an update for dovecot. This fixes a weakness and a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for mysql
http://secunia.com/advisories/30351/
Red Hat has issued an update for mysql. This fixes some security issues and vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), bypass certain security restrictions, and gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Red Hat update for compiz
http://secunia.com/advisories/30329/
Red Hat has issued an update for compiz. This fixes a security issue, which can be exploited by malicious people with physical access to a system to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Fedora update for gnutls
http://secunia.com/advisories/30302/
Fedora has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
Fedora update for Django
http://secunia.com/advisories/30291/
Fedora has issued an update for Django. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 22 May 08
FicHive "letter" SQL Injection Vulnerability
http://secunia.com/advisories/30281/
A vulnerability has been discovered in FicHive, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
IBM Lotus Domino Web Server Cross-Site Scripting and Buffer Overflow
http://secunia.com/advisories/30310/
Some vulnerabilities have been reported in IBM Lotus Domino, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
IBM Lotus Domino 6 Web Server Cross-Site Scripting and Buffer Overflow
http://secunia.com/advisories/30332/
Some vulnerabilities have been reported in IBM Lotus Domino, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Gentoo Update for Mozilla Products
http://secunia.com/advisories/30327/
Gentoo has issued updates for mozilla-firefox, mozilla-firefox-bin, seamonkey, seamonkey-bin, mozilla-thunderbird, mozilla-thunderbird-bin, and xulrunner. These fix some weaknesses and vulnerabilities, which can be exploited by malicious people to disclose sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, conduct spoofing attacks, or to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/
Wed, 21 May 08
Gentoo update for clamav
http://secunia.com/advisories/30328/
Gentoo has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to cause a DoS (Denial of Service), or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
ComicShout "comic_id" SQL Injection Vulnerability
http://secunia.com/advisories/30319/
D3m0n has reported a vulnerability in ComicShout, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Red Hat update for gnutls
http://secunia.com/advisories/30317/
Red Hat has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Debian update for gnome-peercast
http://secunia.com/advisories/30325/
Debian has issued an update for gnome-peercast. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Gentoo update for perl and libperl
http://secunia.com/advisories/30326/
Gentoo has issued an update for perl and libperl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
PHP-Jokesite "cat_id" SQL Injection Vulnerability
http://secunia.com/advisories/30314/
Cyb3r-1sT has reported a vulnerability in PHP-Jokesite, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Debian update for gnutls13
http://secunia.com/advisories/30324/
Debian has issued an update for gnutls13. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Debian update for peercast
http://secunia.com/advisories/30320/
Debian has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Debian update for phpgedview
http://secunia.com/advisories/30256/
Debian has issued an update for phpgedview. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
GnuTLS Multiple Vulnerabilities
http://secunia.com/advisories/30287/
Some vulnerabilities have been reported in GnuTLS, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Borland Interbase 2007 Packet Processing Buffer Overflow
http://secunia.com/advisories/30299/
Damian Frizza has reported a vulnerability in Borland Interbase, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Avaya CMS Solaris TCP Implementation SYN Flood Denial of Service
http://secunia.com/advisories/30125/
Avaya has acknowledged a vulnerability in CMS, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Red Hat update for kernel
http://secunia.com/advisories/30294/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
PHP-Fusion Forum Rank System Local File Inclusion
http://secunia.com/advisories/30304/
Matrix86 has reported two vulnerabilities in the Forum Rank System module for PHP-Fusion, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Mtr "split_redraw()" Buffer Overflow Vulnerability
http://secunia.com/advisories/30312/
Adam Zabrocki has discovered a vulnerability in Mtr, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 21 May 08
Foxit Reader "util.printf()" Buffer Overflow
http://secunia.com/advisories/29941/
Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
TAGWORX.CMS Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30149/
dun has reported two vulnerabilities in TAGWORX.CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
how2ASP Webboard "qNo" SQL Injection Vulnerability
http://secunia.com/advisories/30295/
CWH Underground has discovered a vulnerability in how2ASP Webboard, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
microSSys CMS "PAGES[]" File Inclusion Vulnerability
http://secunia.com/advisories/30264/
Raz0r has reported a vulnerability in microSSys CMS, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
Nagios CGI Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30283/
A vulnerability has been reported in Nagios, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
CA ARCserve Backup Multiple Vulnerabilities
http://secunia.com/advisories/30300/
Some vulnerabilities have been reported in CA ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
HP-UX useradd Security Bypass
http://secunia.com/advisories/30308/
A security issue has been reported in HP-UX, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
Stunnel Windows Privilege Escalation Vulnerability
http://secunia.com/advisories/30297/
A vulnerability has been reported in Stunnel, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
FireFTP Extension for Firefox Directory Traversal Vulnerability
http://secunia.com/advisories/30284/
Tan Chew Keong has reported a vulnerability in the FireFTP extension for Firefox, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
PhotoStockPlus Uploader Tool ActiveX Control Buffer Overflows
http://secunia.com/advisories/30305/
Will Dormann has reported some vulnerabilities in PhotoStockPlus Uploader Tool ActiveX control, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
dotCMS "search_query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30307/
Russ McRee has reported a vulnerability in dotCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
Multi-Page Comment System "CommentSystemAdmin" Security Bypass
http://secunia.com/advisories/30255/
t0pP8uZz has reported a vulnerability in Multi-Page Comment System, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 20 May 08
bcoos "file" Information Disclosure Vulnerability
http://secunia.com/advisories/30035/
Lostmon has discovered a vulnerability in bcoos, which can be exploited by malicious users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
GNU/Gallery "show" Local File Inclusion Vulnerability
http://secunia.com/advisories/30301/
t0pP8uZz has discovered a vulnerability in GNU/Gallery, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
CMS WebManager-Pro SQL Injection Vulnerabilities
http://secunia.com/advisories/30293/
dun has reported some vulnerabilities in CMS WebManager-Pro, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
testMaker Data Export Disclosure of Sensitive Information
http://secunia.com/advisories/30251/
A vulnerability has been reported in testMaker, which can be exploited by malicious users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Smeego "lang" Local File Inclusion Vulnerability
http://secunia.com/advisories/30138/
0in has discovered a vulnerability in Smeego, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Debian update for netpbm-free
http://secunia.com/advisories/30280/
Debian has issued an update for netpbm-free. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Debian update for php4
http://secunia.com/advisories/30288/
Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, and malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
SunShop Shopping Cart "id" SQL Injection Vulnerability
http://secunia.com/advisories/30282/
irvian has reported a vulnerability in SunShop Shopping Cart, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
WR-Meeting "msnum" File Disclosure Vulnerability
http://secunia.com/advisories/30296/
Cr@zy_King has discovered a vulnerability in WR-Meeting, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Fedora update for kernel
http://secunia.com/advisories/30252/
Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
TYPO3 sr_feuser_register Extension Multiple Vulnerabilities
http://secunia.com/advisories/30275/
Some vulnerabilities have been reported in the sr_feuser_register extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Freelance Auction Script "pid" SQL Injection Vulnerability
http://secunia.com/advisories/30268/
t0pP8uZz has reported a vulnerability in Freelance Auction Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 19 May 08
Aruba Mobility Controller Authentication Bypass and Cross-Site Scripting
http://secunia.com/advisories/30262/
Some vulnerabilities have been reported in Aruba Mobility Controller, which can be exploited by malicious people to bypass certain security restrictions or to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Model Search "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30196/
cyb3r-1st has reported a vulnerability in Model Search, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Blender Multiple Temporary File Security Issues
http://secunia.com/advisories/29842/
Some security issues have been discovered in Blender, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Kostenloses Linkmanagementscript Multiple Vulnerabilities
http://secunia.com/advisories/30201/
Some vulnerabilities have been discovered in Kostenloses Linkmanagementscript, which can be exploited by malicious people to conduct SQL injection attacks, disclose sensitive information, and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Rantx "logininfo" Security Bypass Vulnerability
http://secunia.com/advisories/30279/
t0pP8uZz has discovered a vulnerability in Rantx, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
e107 BLOG Engine Plugin "rid" SQL Injection
http://secunia.com/advisories/30212/
Saime has discovered a vulnerability in the BLOG Engine plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Pet Grooming Management System "useradded.php" Security Bypass
http://secunia.com/advisories/30254/
t0pP8uZz has discovered a vulnerability in Pet Grooming Management System, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
W1L3D4 Philboard Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30278/
U238 has reported some vulnerabilities in W1L3D4 Philboard, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
68 Classifieds "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30273/
HaCkeR_EgY has reported a vulnerability in 68 Classifieds, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Interspire ActiveKB Admin Interface Cookie Security Bypass
http://secunia.com/advisories/30265/
t0pP8uZz has reported a security issue in Interspire ActiveKB, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
GForge Insecure Temporary Files
http://secunia.com/advisories/30088/
A security issue has been reported in GForge, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Debian update for gforge
http://secunia.com/advisories/30286/
Debian has issued an update for gforge. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Symantec Altiris Deployment Solution Multiple Vulnerabilities
http://secunia.com/advisories/30261/
Some vulnerabilities and security issues have been reported in Symantec Altiris Deployment Solution, which can be exploited by malicious, local users to gain escalated privileges or manipulate certain data, and by malicious people to disclose sensitive information, conduct SQL injection attacks, and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Fusebox "FUSEBOX_APPLICATION_PATH" File Inclusion
http://secunia.com/advisories/30178/
MajnOoNxHaCkEr has discovered a vulnerability in Fusebox, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
phpVID "query" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30152/
Russ McRee has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Drupal Site Documentation Module Information Disclosure
http://secunia.com/advisories/30257/
A vulnerability has been reported in the Site Documentation module for Drupal, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
LANAI CMS Multiple File Extensions Vulnerability
http://secunia.com/advisories/30263/
EgiX has discovered a vulnerability in LANAI CMS, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Oracle Application Server Portal Authentication Bypass
http://secunia.com/advisories/30140/
Deniz Cevik has reported a vulnerability in Oracle Application Server, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
AustinSmoke GasTracker "gastracker_admin" Security Bypass
http://secunia.com/advisories/30266/
t0pP8uZz has discovered a vulnerability in AustinSmoke GasTracker (AS-GasTracker), which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Cisco Unified Communications Manager Multiple Denial of Service
http://secunia.com/advisories/30238/
Some vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Fedora update for blender
http://secunia.com/advisories/30272/
Fedora has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Feedback and Rating Script "listingid" SQL Injection
http://secunia.com/advisories/30267/
t0pP8uZz has reported a vulnerability in Feedback and Rating Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
PHP Classifieds Script "fatherID" SQL Injection Vulnerabilities
http://secunia.com/advisories/30209/
Cyb3r-1sT has reported some vulnerabilities in PHP Classifieds Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Fedora update for clamav
http://secunia.com/advisories/30253/
Fedora has issued an update for clamav. which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
AJ Article "artid" SQL Injection Vulnerability
http://secunia.com/advisories/30215/
t0pP8uZz has reported a vulnerability in AJ Article, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 16 May 08
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/30241/
Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to potentially cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Internet Explorer "Print Table of Links" Cross-Zone Scripting
http://secunia.com/advisories/30141/
Aviv Raff has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Advanced Image Hosting "t" SQL Injection Vulnerability
http://secunia.com/advisories/30207/
Stack-Terrorist has reported a vulnerability in Advanced Image Hosting (AIH), which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Gentoo update for chicken
http://secunia.com/advisories/30219/
Gentoo has issued an update for chicken. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Chicken PCRE Buffer Overflow Vulnerability
http://secunia.com/advisories/30155/
A vulnerability been reported in Chicken, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Admidio "file" Information Disclosure
http://secunia.com/advisories/30170/
n3v3rh00d has reported a vulnerability in Admidio, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Net-snmp Perl Module "__snprint_value()" Buffer Overflow
http://secunia.com/advisories/30187/
A vulnerability has been reported in Net-snmp, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
UUDeview Insecure Temporary File Creation
http://secunia.com/advisories/30171/
Marco d'Itri has reported a vulnerability in UUDeview, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Cisco Building Broadband Service Manager "msg" Cross-Site Scripting
http://secunia.com/advisories/30222/
Brad Antoniewicz has reported a vulnerability in Cisco Building Broadband Service Manager (BBSM), which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
PhotoStore Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30194/
Some vulnerabilities have been reported in PhotoStore, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Debian update for openssh
http://secunia.com/advisories/30249/
Debian has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information and a security issue, which can lead to weak cryptographic key material.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Ubuntu update for ssl-cert
http://secunia.com/advisories/30231/
Ubuntu has issued an update for ssl-cert. This fixes a security issue, which can lead to weak cryptographic key material.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
WordNet Multiple Buffer Overflow Vulnerabilities
http://secunia.com/advisories/30242/
Some vulnerabilities have been reported in WordNet, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Django Login Form Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30250/
A vulnerability has been reported in Django, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Meto Forum Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/30233/
U238 has reported some vulnerabilities in Meto Forum, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
e107 ZoGo-Shop Plugin "cat" SQL Injection Vulnerability
http://secunia.com/advisories/30232/
Cr@zy_King has discovered a vulnerability in the ZoGo-Shop plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
EQdkp "eqdkp_data" SQL Injection Vulnerability
http://secunia.com/advisories/30206/
A vulnerability has been discovered in EQdkp, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
AJ E-Commerce "cid" SQL Injection Vulnerability
http://secunia.com/advisories/30180/
t0pP8uZz has reported a vulnerability in AJ E-Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Red Hat update for libvorbis
http://secunia.com/advisories/30237/
Red Hat has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Red Hat update for libvorbis
http://secunia.com/advisories/30247/
Red Hat has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
libvorbis Multiple Vulnerabilities
http://secunia.com/advisories/30234/
Some vulnerabilities have been reported in libvorbis, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
The Real Estate Script "docID" SQL Injection Vulnerability
http://secunia.com/advisories/30244/
HaCkeR_EgY has reported a vulnerability in The Real Estate Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Automated Link Exchange Portal "cat_id" SQL Injection
http://secunia.com/advisories/30243/
HaCkeR_EgY has reported a vulnerability in Automated Link Exchange Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
IDAutomation Barcode ActiveX Controls Insecure Methods
http://secunia.com/advisories/30246/
shinnai has discovered some vulnerabilities in various IDAutomation Barcode ActiveX controls, which can be exploited by malicious people to overwrite arbitrary files.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
Fedora update for libid3tag
http://secunia.com/advisories/30173/
Fedora has issued an update for libid3tag. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 14 May 08
CMS Made Simple Multiple File Extensions Vulnerability
http://secunia.com/advisories/30208/
EgiX has discovered a vulnerability in CMS Made Simple, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Microsoft Publisher Object Handler Validation Vulnerability
http://secunia.com/advisories/30150/
A vulnerability has been reported in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Microsoft Malware Protection Engine File Parsing Denial of Service
http://secunia.com/advisories/30172/
Two vulnerabilities have been reported in various Microsoft products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Ubuntu update for openssl
http://secunia.com/advisories/30221/
Ubuntu has issued an update for openssl. This fixes a security issue, which can lead to weak cryptographic key material.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Debian OpenSSL Predictable Random Number Generator and Update
http://secunia.com/advisories/30220/
Debian has issued an update for OpenSSL. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system, and a security issue, which can lead to weak cryptographic key material.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Build A Niche Store "q" Cross-Site Scripting
http://secunia.com/advisories/30153/
Russ McRee has reported a vulnerability in Build A Niche Store (BANS), which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
ZyXEL ZyWALL 100 "Referer" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30142/
Deniz Cevik has reported a vulnerability in ZyXEL ZyWALL 100, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
cPanel Cross-Site Scripting and Request Forgery Vulnerabilities
http://secunia.com/advisories/30166/
Matteo Carli has reported some vulnerabilities in cPanel, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Citrix Access Gateway Unspecified Authentication Bypass
http://secunia.com/advisories/30175/
A security issue has been reported in Citrix Access Gateway, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Novell Client Login Long Username/Context Buffer Overflow
http://secunia.com/advisories/30126/
laurent gaffiƩ has discovered a vulnerability in Novell Client, which can be exploited by malicious people with physical access to cause a DoS (Denial of Service) or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
wterm X11 Display Security Issue
http://secunia.com/advisories/30226/
A security issue has been reported in wterm, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
rxvt-unicode X11 Display Security Issue
http://secunia.com/advisories/30224/
A security issue has been reported in rxvt-unicode, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
aterm X11 Display Security Issue
http://secunia.com/advisories/30225/
A security issue has been reported in aterm, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Gentoo update for aterm, eterm, rxvt, mrxvt, multi-aterm, wterm, and rxvt-unicode
http://secunia.com/advisories/30229/
Gentoo has issued an update for aterm, eterm, rxvt, mrxvt, multi-aterm, wterm, and rxvt-unicode. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
mrxvt X11 Display Security Issue
http://secunia.com/advisories/30227/
A security issue has been reported in mrxvt, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
GNU Emacs "fast-lock-mode" File Processing Vulnerability
http://secunia.com/advisories/30199/
Morten Welinder has reported a vulnerability in GNU Emacs, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Gentoo update for ptex
http://secunia.com/advisories/30168/
Gentoo has acknowledged some vulnerabilities in ptex, which can be exploited by malicious, local users to manipulate certain data and malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Gentoo update for blender
http://secunia.com/advisories/30151/
Gentoo has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Debian update for kernel
http://secunia.com/advisories/30164/
Debian has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
YABSoft Mega File Hosting Script "fid" SQL Injection Vulnerability
http://secunia.com/advisories/30210/
TurkishWarriorr has reported a vulnerability in YABSoft Mega File Hosting Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Battle.net Clan Script "showmember" SQL Injection Vulnerability
http://secunia.com/advisories/30211/
Stack-Terrorist has discovered a vulnerability in Battle.net Clan Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
Kmita Mail "file" File Inclusion Vulnerability
http://secunia.com/advisories/30087/
M.Hasran Addahroni has reported a vulnerability in Kmita Mail, which can be exploited by malicious users to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
BlogPHP Script Insertion and Cross-Site Scripting
http://secunia.com/advisories/30165/
David Sopas Ferreira has discovered two vulnerabilities in BlogPHP, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
BIGACE Web CMS Multiple File Inclusion Vulnerabilities
http://secunia.com/advisories/30183/
BiNgZa has discovered some vulnerabilities in BIGACE Web CMS, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
RakNet Autopatcher Server Unspecified SQL Injection Vulnerabilities
http://secunia.com/advisories/30200/
Some vulnerabilities have been reported in RakNet, which can potentially be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 13 May 08
ActualAnalyzer "language" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/30205/
David Vieira-Kurz has reported a vulnerability in ActualAnalyzer, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Fedora update for cups
http://secunia.com/advisories/30190/
Fedora has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
SUSE Update for Multiple Packages
http://secunia.com/advisories/30202/
SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to disclose and manipulate sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, malicious users to cause a DoS and compromise a vulnerable system, and malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, cause a DoS, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/
Mon, 12 May 08
Sarg Multiple Unspecified Buffer Overflows
http://secunia.com/advisories/30156/
Some vulnerabilities with unknown impacts have been reported in Sarg.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Microsoft Windows CE Image Processing Vulnerabilities
http://secunia.com/advisories/30197/
Some vulnerabilities have been reported in Microsoft Windows CE, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Fedora update for audacity
http://secunia.com/advisories/30191/
Fedora has issued an update for audacity. This fixes a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to delete arbitrary files and directories.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Sun Solaris Print Service Unspecified Vulnerabilities
http://secunia.com/advisories/30184/
Some vulnerabilities have been reported in Sun Solaris, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Gentoo update for inspircd
http://secunia.com/advisories/30163/
Gentoo has issued an update for inspircd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Gentoo update for pngcrush
http://secunia.com/advisories/30174/
Gentoo has issued an update for pngcrush. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Pngcrush libpng Unknown Chunk Processing Uninitialized Memory Access
http://secunia.com/advisories/30157/
A vulnerability has been reported in Pngcrush, which can be exploited by malicious people to disclose potentially sensitive information or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Fedora update for bugzilla
http://secunia.com/advisories/30167/
Fedora has issued an update for bugzilla. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions or by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Fedora Directory Server Regular Expression Handler Buffer Overflow
http://secunia.com/advisories/30185/
A vulnerability has been reported in Fedora Directory Server, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Red Hat Directory Server Regular Expression Handler Buffer Overflow
http://secunia.com/advisories/30181/
A vulnerability has been reported in Red Hat Directory Server, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Gentoo update for firebird
http://secunia.com/advisories/30162/
Gentoo has acknowledged a security issue in firebird, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Internet Explorer "DisableCachingOfSSLPages" Weakness
http://secunia.com/advisories/30145/
A weakness has been reported in Internet Explorer, which may result in potentially sensitive information being inadvertently saved on a system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Debian update for php5
http://secunia.com/advisories/30158/
Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, malicious users to bypass certain security restrictions, and malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Debian update for rdesktop
http://secunia.com/advisories/30159/
Debian has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 12 May 08
Gentoo update for moinmoin
http://secunia.com/advisories/30160/
Gentoo has issued an update for moinmoin. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 10 May 08
Cyberfolio "rep" File Inclusion Vulnerability
http://secunia.com/advisories/30154/
RoMaNcYxHaCkEr has reported a vulnerability in Cyberfolio, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 10 May 08
Yahoo! Assistant yNotifier.dll ActiveX Control Code Execution
http://secunia.com/advisories/30115/
Sowhat has reported a vulnerability in Yahoo! Assistant, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 10 May 08
Zarafa Script Insertion Vulnerabilities
http://secunia.com/advisories/30102/
Some vulnerabilities have been reported in Zarafa, which can be exploited by malicious people to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 10 May 08
Slackware update for thunderbird
http://secunia.com/advisories/30094/
Slackware has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 10 May 08
Slackware update for php
http://secunia.com/advisories/30083/
Slackware has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain sec