My Account

Home PHP Scripts Contact News RSS Readers Donations

Software and Script Bug Exploits

	Enter your search terms Submit search form
	Web www.amigura.co.uk

Main

Software Alerts

Software and Script Bug Exploits
Software Vulnerability
Random Feeds

Archives

| Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |

Thu, 31 Jul 08
HP-UX System Administration Manager Security Issue
http://secunia.com/advisories/31309/
A security issue has been reported in HP-UX, which can lead to an insecure configuration.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
nzFotolog "action_file" Local File Inclusion
http://secunia.com/advisories/31297/
R3d.W0rm has discovered a vulnerability in nzFotolog, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Acronis True Image Echo Server FTP AES Encryption Security Bypass
http://secunia.com/advisories/30856/
Travis C Johnson has discovered a security issue in Acronis True Image Echo Server, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Sun N1 Service Provisioning System Web Server Plugin Vulnerability
http://secunia.com/advisories/31301/
A vulnerability has been reported in Sun N1 Service Provisioning System, which can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
rPath update for openssl
http://secunia.com/advisories/31308/
rPath has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Fedora update for trac
http://secunia.com/advisories/31314/
Fedora has issued an update for trac. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Sun Solaris "picld" Denial of Service
http://secunia.com/advisories/31303/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Fedora update for pdns-recursor
http://secunia.com/advisories/31311/
Fedora has issued an update for pdns-recursor. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Fedora update for phpMyAdmin
http://secunia.com/advisories/31312/
Fedora has issued an update for phpMyAdmin. This fixes two vulnerabilities, which can be exploited by malicious local users to conduct cross-site scripting attacks, and by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Article Friendly Two SQL Injection Vulnerabilities
http://secunia.com/advisories/31292/
Mr.SQL has reported two vulnerabilities in Article Friendly, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
PozScripts Classified Ads "cid" SQL Injection Vulnerability
http://secunia.com/advisories/31291/
Hussin X has reported a vulnerability in PozScripts Classified Ads, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
TubeGuru Video Sharing Script "UID" SQL Injection Vulnerability
http://secunia.com/advisories/31276/
Hussin X has reported a vulnerability in TubeGuru Video Sharing Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
ZeeScripts Reviews "ItemID" SQL Injection Vulnerability
http://secunia.com/advisories/31296/
Mr.SQL has reported a vulnerability in ZeeScripts Reviews, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
CoolPlayer M3U File Processing Buffer Overflow
http://secunia.com/advisories/31294/
Guido Landi has discovered a vulnerability in CoolPlayer, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Condor Authorization Policy Wildcard Security Bypass
http://secunia.com/advisories/31284/
A security issue has been reported in Condor, which can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
BookMine Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/31258/
Russ McRee has reported some vulnerabilities in BookMine, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
PhpWebGallery E-Mail Address Information Disclosure
http://secunia.com/advisories/31232/
Pat has reported a vulnerability in PhpWebGallery, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 31 Jul 08
Affinium Campaign Multiple Vulnerabilities
http://secunia.com/advisories/31280/
Some vulnerabilities have been reported in Affinium Campaign, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, conduct cross-site scripting and script insertion attacks, or cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Unreal Tournament 2004 Denial of Service
http://secunia.com/advisories/31266/
Luigi Auriemma has reported a vulnerability in Unreal Tournament 2004, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Unreal Tournament 3 Denial of Service and Memory Corruption
http://secunia.com/advisories/31265/
Luigi Auriemma has reported some vulnerabilities in Unreal Tournament, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
@Mail Two Information Disclosure Security Issues
http://secunia.com/advisories/31279/
injusticeinamerica has discovered two security issues in @Mail, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
ScrewTurn Wiki System Log Script Insertion
http://secunia.com/advisories/31242/
Ferruh Mavituna has reported a vulnerability in ScrewTurn Wiki, which can be exploited by malicious people to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Owl Intranet Engine "username" Cross-Site Scripting
http://secunia.com/advisories/31264/
Fabian Fingerle has discovered a vulnerability in Owl Intranet Engine, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Jamroom Authentication Bypass and Multiple Unspecified Vulnerabilities
http://secunia.com/advisories/31249/
Some vulnerabilities have been reported in Jamroom, one of which can be exploited by malicious people to bypass certain security restrictions, while others have unknown impacts.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
phpMyAdmin Cross-Site Scripting and Spoofing
http://secunia.com/advisories/31263/
Aung Khant has reported two vulnerabilities in phpMyAdmin, which can be exploited by malicious local users to conduct cross-site scripting attacks, and by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Gregarius "rsargs[]" SQL Injection Vulnerability
http://secunia.com/advisories/31260/
James Bercegay has discovered a vulnerability in Gregarius, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Trend Micro OfficeScan Web-Deployment ObjRemoveCtrl Class Buffer Overflows
http://secunia.com/advisories/31277/
Elazar Broad has discovered some vulnerabilities in Trend Micro OfficeScan, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
AVG Anti-Virus UPX Processing Denial of Service
http://secunia.com/advisories/31290/
Sergio ‘shadown’ Alvarez has reported a vulnerability in AVG Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
ibase "filename" File Disclosure Vulnerability
http://secunia.com/advisories/31210/
Dyshoo has reported a vulnerability in ibase, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Web Wiz Rich Text Editor "email" Cross-Site Scripting
http://secunia.com/advisories/31272/
CSDT has discovered a vulnerability in Web Wiz Rich Text Editor, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
ATutor "type" File Inclusion Vulnerability
http://secunia.com/advisories/31274/
R3d.W0rm has discovered a vulnerability in ATutor, which can be exploited by malicious users to disclose sensitive information and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
VMware ESX Server update for Samba and vmnix
http://secunia.com/advisories/31246/
VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, to cause a DoS (Denial of Service), or to gain escalated privileges, and malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
rPath update for firefox
http://secunia.com/advisories/31261/
rPath has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
ViArt Shop "category_id" SQL Injection Vulnerability
http://secunia.com/advisories/31275/
James Bercegay has reported a vulnerability in ViArt Shop, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
rPath update for tshark and wireshark
http://secunia.com/advisories/31257/
rPath has issued an update for tshark and wireshark. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
rPath update for fetchmail
http://secunia.com/advisories/31262/
rPath has issued an update for fetchmail. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 30 Jul 08
Slackware update for vim
http://secunia.com/advisories/31289/
Slackware has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Slackware update for openssl
http://secunia.com/advisories/31288/
Slackware has issued an update for openssl. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Slackware update for fetchmail
http://secunia.com/advisories/31287/
Slackware has issued an update for fetchmail. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Slackware update for mozillla-thunderbird
http://secunia.com/advisories/31286/
Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Cerberus CMS "cerberus_user" Cookie Script Insertion Vulnerability
http://secunia.com/advisories/31218/
A vulnerability has been reported in Cerberus CMS, which can be exploited by malicious people to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Ubuntu update for firefox and xulrunner
http://secunia.com/advisories/31270/
Ubuntu has issued an update for firefox and xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, potentially conduct spoofing attacks, or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
HP OpenView Internet Service Probe Builder Arbitrary Process Termination
http://secunia.com/advisories/31278/
A vulnerability has been reported in HP OpenView Internet Service, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Ubuntu update for poppler
http://secunia.com/advisories/31267/
Ubuntu has issued an update for poppler. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Pixelpost "language_full" Local File Inclusion
http://secunia.com/advisories/31239/
Digital Security Research Group has reported a vulnerability in Pixelpost, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
European Performance Systems Probe Builder Arbitrary Process Termination
http://secunia.com/advisories/31282/
A vulnerability has been reported in European Performance Systems Probe Builder, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
EMC Centera Universal Access SQL Injection Vulnerability
http://secunia.com/advisories/31215/
Lars Heidelberg and Aaron Brown have reported a vulnerability in EMC Centera Universal Access, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Ubuntu update for ffmpeg
http://secunia.com/advisories/31268/
Ubuntu has issued an update for ffmpeg. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
MyBB "search.php" Cross-Site Scripting
http://secunia.com/advisories/31216/
A vulnerability has been reported in MyBB, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Trac Wiki Engine Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31231/
A vulnerability has been reported in Trac, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
reSIProcate Unspecified Memory Consumption Vulnerabilities
http://secunia.com/advisories/31251/
Some vulnerabilities have been reported in reSIProcate, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
SiteAdmin "art" SQL Injection Vulnerability
http://secunia.com/advisories/31240/
Cr@zy_King has reported a vulnerability in SiteAdmin, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
PunBB SMTP Command Injection and Cross-Site Scripting
http://secunia.com/advisories/31219/
Some vulnerabilities have been reported in PunBB, which can be exploited by malicious people to bypass certain security restrictions or conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Web Wiz Forum Multiple Vulnerabilities
http://secunia.com/advisories/31281/
CSDT has reported some vulnerabilities in Web Wiz Forum, which can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
IceBB "username" SQL Injection Vulnerability
http://secunia.com/advisories/31248/
girex has reported a vulnerability in IceBB, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Debian update for python-dns
http://secunia.com/advisories/31254/
Debian has issued an update for python-dns. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
XRMS CRM Information Disclosure and Cross-Site Scripting
http://secunia.com/advisories/31233/
AzzCoder has discovered two vulnerabilities in XRMS CRM, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Youtuber Clone "UID" SQL Injection Vulnerability
http://secunia.com/advisories/31238/
Hussin X has reported a vulnerability in Youtuber Clone, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Camera Life "id" SQL Injection Vulnerability
http://secunia.com/advisories/31234/
nuclear has discovered a vulnerability in Camera Life, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
cwRsync OpenSSL Denial of Service Vulnerabilities
http://secunia.com/advisories/31228/
Two vulnerabilities have been reported in cwRsync, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
GC Auction Platinum "cate_id" SQL Injection
http://secunia.com/advisories/31241/
Hussin X has reported a vulnerability in GC Auction Platinum, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 29 Jul 08
Avaya CMS Sun Java JDK / JRE Same Origin Policy Bypass
http://secunia.com/advisories/31269/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
CMScout "bit" Local File Inclusion Vulnerability
http://secunia.com/advisories/31243/
R3d.W0rm has discovered a vulnerability in CMScout, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
NetBSD update for bind
http://secunia.com/advisories/31236/
NetBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
Debian update for icedove
http://secunia.com/advisories/31253/
Debian has issued an update for icedove. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
Debian update for ruby1.9
http://secunia.com/advisories/31256/
Debian has issued an update for ruby1.9. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
Debian update for python2.5
http://secunia.com/advisories/31255/
Debian has issued an update for python2.5. This fixes some security issues, which can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
KbLance "cat_id" SQL Injection Vulnerability
http://secunia.com/advisories/31123/
A vulnerability has been reported in KbLance, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 28 Jul 08
fipsCMS light "r" SQL Injection Vulnerability
http://secunia.com/advisories/31250/
U238 has reported a vulnerability in fipsCMS light, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
RealNetworks RealPlayer SWF Frame Handling Buffer Overflow
http://secunia.com/advisories/27620/
Secunia Research has discovered a vulnerability in RealPlayer, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Sidewinder and CyberGuard DNS Cache Poisoning
http://secunia.com/advisories/31207/
Secure Computing has acknowledged a vulnerability in Sidewinder and CyberGuard, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
BlueCat Networks Adonis DNS Cache Poisoning
http://secunia.com/advisories/31213/
BlueCat Networks has acknowledged a vulnerability in BlueCat Networks Adonis, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Blackboard Academic Suite Cross-Site Request Forgery Vulnerabilities
http://secunia.com/advisories/31177/
Mark Janssen has reported some vulnerabilities in Blackboard Academic Suite, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Citrix NetScaler DNS Cache Poisoning
http://secunia.com/advisories/31221/
Citrix has acknowledged a vulnerability in NetScaler, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Ubuntu update for thunderbird
http://secunia.com/advisories/31220/
Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Live Music Plus "id" SQL Injection Vulnerability
http://secunia.com/advisories/31214/
IRAQI has reported a vulnerability in Live Music Plus, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 26 Jul 08
Lore Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31217/
Some vulnerabilities have been reported in Lore, which can be exploited by malicious people to conduct cross-site scripting-attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Atom PhotoBlog "photoId" SQL Injection Vulnerability
http://secunia.com/advisories/31205/
Mr.SQL has discovered a vulnerability in Atom PhotoBlog, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for kernel
http://secunia.com/advisories/31229/
Red Hat has issued an update for kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for mysql
http://secunia.com/advisories/31226/
Red Hat has issued an update for mysql. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for nss_ldap
http://secunia.com/advisories/31227/
Red Hat has issued an update for nss_ldap. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for coreutils
http://secunia.com/advisories/31225/
Red Hat has issued an update for coreutils. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for rdesktop
http://secunia.com/advisories/31222/
Red Hat has issued an update for rdesktop. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for vsftpd
http://secunia.com/advisories/31223/
Red Hat has issued an update for vsftpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Red Hat update for rdesktop
http://secunia.com/advisories/31224/
Red Hat has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Debian update for clamav
http://secunia.com/advisories/31206/
Debian has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Drupal Session Fixation Vulnerability
http://secunia.com/advisories/31211/
A vulnerability has been reported in Drupal, which can be exploited by malicious people to conduct session fixation attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Linux Kernel LDT Buffer Size Handling Vulnerability
http://secunia.com/advisories/31172/
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 25 Jul 08
Ubuntu update for php
http://secunia.com/advisories/31200/
Ubuntu has issued an update for php. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Slackware update for dnsmasq
http://secunia.com/advisories/31209/
Slackware has issued an update for dnsmasq. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Red Hat update for kernel
http://secunia.com/advisories/31198/
Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
IPCop update for perl
http://secunia.com/advisories/31208/
An updated version of IPCop has been released, which fixes some vulnerabilities in perl, which can potentially be exploited by malicious people to cause a Denial of Service or to compromise a vulnerable perl application.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
OpenBSD BIND Query Port DNS Cache Poisoning
http://secunia.com/advisories/31212/
OpenBSD has acknowledged a vulnerability in BIND, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Fedora update for asterisk
http://secunia.com/advisories/31194/
Fedora has issued an update for asterisk. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct DoS attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Debian update for xulrunner
http://secunia.com/advisories/31183/
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Red Hat update for thunderbird
http://secunia.com/advisories/31195/
Red Hat has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, disclose sensitive information, or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Debian update for iceweasel
http://secunia.com/advisories/31176/
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Moodle Script Insertion and Cross-Site Request Forgery
http://secunia.com/advisories/31196/
ProCheckUp Ltd have reported two vulnerabilities in Moodle, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Geeklog Forum Plugin Search Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31188/
A vulnerability has been reported in the Forum plugin for Geeklog, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Apple Safari Cross-Domain Cookie Injection Vulnerability
http://secunia.com/advisories/31128/
A vulnerability has been discovered in Apple Safari, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
SUSE update for kernel
http://secunia.com/advisories/31202/
SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges, and malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Claroline Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31201/
Digital Security Research Group have reported some vulnerabilities in Claroline, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
Fedora update for mantis
http://secunia.com/advisories/31171/
Fedora has issued an update for mantis. This fixes some vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and malicious people to conduct cross-site scripting and request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 24 Jul 08
SocialEngine SQL Injection and Code Execution
http://secunia.com/advisories/31203/
Tim Loshak has reported some vulnerabilities in SocialEngine, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to conduct SQL injection attacks and bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
YouTube Blog Multiple Vulnerabilities
http://secunia.com/advisories/31161/
Some vulnerabilities have been discovered in YouTube Blog, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
Ubuntu update for dnsmasq
http://secunia.com/advisories/31199/
Ubuntu has issued an update for dnsmasq. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
dnsmasq Denial of Service and DNS Cache Poisoning
http://secunia.com/advisories/31197/
Some vulnerabilities have been reported in dnsmasq, which can be exploited by malicious people to cause a DoS (Denial of Service) and poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
IPCop update for various packages
http://secunia.com/advisories/31204/
An updated version of IPCop has been released, which fixes some vulnerabilities in bzip2, dnsmasq, and snort, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
Pre Survey Poll "catid" SQL Injection Vulnerability
http://secunia.com/advisories/31187/
DreamTurk has reported a vulnerability in Pre Survey Poll, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
Asterisk Two Denial of Service Vulnerabilities
http://secunia.com/advisories/31178/
Two vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to cause a DoS (Denial of Service) or to conduct DoS attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
EasyPublish SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31193/
Khashayar Fereidani has discovered two vulnerabilities in EasyPublish, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
EasyDynamicPages SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31189/
Khashayar Fereidani has discovered two vulnerabilities in EasyDynamicPages, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
EasyBookMarker "rs" Cross-Site Scripting
http://secunia.com/advisories/31191/
Khashayar Fereidani has discovered a vulnerability in EasyBookMarker, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
HRS Multi "key" SQL Injection Vulnerability
http://secunia.com/advisories/31170/
Mr.SQL has reported a vulnerability in HRS Multi, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
MyReview Disclosure of Sensitive Information
http://secunia.com/advisories/31190/
Julien Thomas has reported a security issue in MyReview, which can be exploited by malicious people to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
MojoAuto "cat_a" SQL Injection Vulnerability
http://secunia.com/advisories/31162/
Mr.SQL has reported a vulnerability in MojoAuto, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
EasyE-Cards SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31192/
Khashayar Fereidani has discovered some vulnerabilities in EasyE-Cards, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
MojoJobs "cat_a" SQL Injection Vulnerability
http://secunia.com/advisories/31164/
Mr.SQL has reported a vulnerability in MojoJobs, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
Debian update for libgd2
http://secunia.com/advisories/31168/
Debian has issued an update for libgd2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
MojoPersonals "cat" SQL Injection Vulnerability
http://secunia.com/advisories/31165/
Mr.SQL has reported a vulnerability in MojoPersonals, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
MojoClassifieds "cat_a" SQL Injection Vulnerability
http://secunia.com/advisories/31166/
Mr.SQL has reported a vulnerability in MojoClassifieds, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
EMC Retrospect Multiple Vulnerabilities
http://secunia.com/advisories/31186/
Some vulnerabilities and a security issue has been reported in EMC Retrospect, which can be exploited by malicious people to disclose sensitive information or cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
ShopCartDx "pid" SQL Injection Vulnerability
http://secunia.com/advisories/31156/
Cr@zy_King has reported a vulnerability in ShopCartDX, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
ZDaemon Denial of Service Vulnerability
http://secunia.com/advisories/31185/
Luigi Auriemma has reported a vulnerability in ZDaemon, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 23 Jul 08
Interact "file" Local File Inclusion
http://secunia.com/advisories/31150/
Digital Security Research Group have discovered a vulnerability in Interact, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
OpenSSH "X11UseLocalhost" X11 Forwarding Security Issue
http://secunia.com/advisories/31179/
A security issue has been reported in OpenSSH, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Century Systems Routers Cross-Site Request Forgery
http://secunia.com/advisories/31173/
A vulnerability has been reported in various Century Systems routers, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Debian update for ruby1.8
http://secunia.com/advisories/31181/
Debian has issued an update for ruby1.8. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Gentoo BitchX Multiple Vulnerabilities
http://secunia.com/advisories/31180/
Gentoo has acknowledged a security issue and a vulnerability in bitchx, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Gentoo update for peercast
http://secunia.com/advisories/31182/
Gentoo has issued an update for peercast. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Gentoo Bacula MySQL Director Password Disclosure Weakness
http://secunia.com/advisories/31184/
Gentoo has acknowledged a weakness in bacula, which can be exploited by malicious, local users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Red Hat update for acroread
http://secunia.com/advisories/31136/
Red Hat has issued an update for acroread. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Jobbex JobSite Cross-Site Scripting and SQL Injection Vulnerabilities
http://secunia.com/advisories/31089/
Russ McRee has reported some vulnerabilities in Jobbex JobSite, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
openSUSE libxcrypt MD5 Password Hash Configuration Weakness
http://secunia.com/advisories/31096/
SUSE has acknowledged a weakness in libxcrypt, which results in potentially weaker security and may allow further attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Bea Weblogic Apache Connector Buffer Overflow Vulnerability
http://secunia.com/advisories/31146/
KingCope has reported a vulnerability in Bea Weblogic, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
SUSE update for kernel
http://secunia.com/advisories/30982/
SUSE has issued an update for kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, gain escalated privileges, and malicious people to cause a DoS and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
phpScheduleIt "useLogonName" Security Bypass
http://secunia.com/advisories/31147/
A vulnerability has been reported in phpScheduleIt, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Filesys::SmbClientParser Shell Command Injection Vulnerability
http://secunia.com/advisories/31175/
Jesus Olmos Gonzalez has discovered a vulnerability in Filesys::SmbClientParser, which can be exploited by malicious people to compromise an application using the module.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 22 Jul 08
Def-Blog "article" SQL Injection Vulnerabilities
http://secunia.com/advisories/31174/
CWH Underground has discovered some vulnerabilities in Def-Blog, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 21 Jul 08
rPath update for bind
http://secunia.com/advisories/31169/
rPath has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 21 Jul 08
Zoph Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/31125/
Some vulnerabilities have been reported in Zoph, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 21 Jul 08
SUSE Update for Multiple Packages
http://secunia.com/advisories/31167/
SUSE has issued an update for multiple packages. This fixes some security issues and some vulnerabilities, which can be exploited by malicious people to manipulate certain data, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 21 Jul 08
SWAT 4 Denial of Service Vulnerabilities
http://secunia.com/advisories/31158/
Luigi Auriemma has reported some vulnerabilities in SWAT 4, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 21 Jul 08
MoinMoin Advanced Search Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31135/
A vulnerability has been reported in MoinMoin, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Sun Solaris System Management Agent SNMP Daemon Buffer Overflow
http://secunia.com/advisories/31155/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
AlstraSoft Video Share Enterprise "UID" SQL Injection
http://secunia.com/advisories/31134/
Hussin X has reported a vulnerability in AlstraSoft Video Share Enterprise, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
MRO Maximo Information Disclosure and Cross-Site Scripting
http://secunia.com/advisories/31046/
Deniz Cevik has reported some vulnerabilities and a security issue in MRO Maximo, which can be exploited by malicious people to disclose system information and conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
tplSoccerSite Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/31111/
Mr.SQL has reported some vulnerabilities in tplSoccerSite, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
phpHoo3 "viewCat" SQL Injection Vulnerability
http://secunia.com/advisories/31130/
Mr.SQL has discovered a vulnerability in phpHoo3, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Fedora update for firefox
http://secunia.com/advisories/31157/
Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
LunarNight Laboratory WebProxy Cross-Site Scripting
http://secunia.com/advisories/31042/
A vulnerability has been reported in LunarNight Laboratory WebProxy, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Vim configure.in Insecure Temporary Files
http://secunia.com/advisories/31159/
A security issue has been reported in Vim, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Fedora update for seamonkey
http://secunia.com/advisories/31154/
Fedora has issued an update for seamonkey. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Arctic "filter" SQL Injection Vulnerability
http://secunia.com/advisories/31139/
QTRinux has discovered a vulnerability in Arctic, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
IBM WebSphere Application Server Unspecified Vulnerability
http://secunia.com/advisories/31149/
A vulnerability with an unknown impact has been reported in IBM WebSphere Application Server.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
preCMS "id" SQL Injection Vulnerability
http://secunia.com/advisories/31138/
Mr.SQL has discovered a vulnerability in preCMS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
OpenLink Virtuoso Denial of Service Vulnerabilities
http://secunia.com/advisories/31140/
Some vulnerabilities have been reported in OpenLink Virtuoso, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 19 Jul 08
Fedora update for python-formencode
http://secunia.com/advisories/31163/
Fedora has issued an update for python-formencode. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
FormEncode "chained_validators" Security Bypass Vulnerability
http://secunia.com/advisories/31081/
A vulnerability has been reported in FormEncode, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Berkley Yacc Denial of Service Security Issue
http://secunia.com/advisories/31073/
A security issue has been reported in Berkley Yacc, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Ubuntu update for firefox
http://secunia.com/advisories/31129/
Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Fedora update for clamav
http://secunia.com/advisories/31091/
Fedora has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Fedora update for phpMyAdmin
http://secunia.com/advisories/31097/
Fedora has issued an update for phpMyAdmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Slackware update for seamonkey
http://secunia.com/advisories/31144/
Slackware has issued an update for seamonkey. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Slackware update for mozilla-firefox
http://secunia.com/advisories/31145/
Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
MyBB Multiple Vulnerabilities
http://secunia.com/advisories/31013/
Some vulnerabilities with unknown impacts have been reported in MyBB.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
HP-UX update for bind
http://secunia.com/advisories/31143/
HP has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Blue Coat ProxySG DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31151/
Blue Coat has acknowledged a vulnerability in Blue Coat ProxySG, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Blue Coat PacketShaper and iShaper DNS Cache Poisoning
http://secunia.com/advisories/31137/
Blue Coat has acknowledged a vulnerability in Blue Coat PacketShaper and iShaper, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Blue Coat Director DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31152/
Blue Coat has acknowledged a vulnerability in Blue Coat Director, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Blue Coat ProxyRA DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31153/
Blue Coat has acknowledged a vulnerability in Blue Coat ProxyRA, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Claroline Unspecified Vulnerabilities
http://secunia.com/advisories/31116/
Some vulnerabilities with an unknown impact have been reported in Claroline.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Joomla DT Register Component "eventId" SQL Injection
http://secunia.com/advisories/31126/
His0k4 has reported a vulnerability in the DT Register component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
PHPizabi "writeLogEntry()" Arbitrary PHP Code Execution
http://secunia.com/advisories/31127/
inphex has discovered a vulnerability in PHPizabi, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
Simple Machines Forum "HTML-Tag" Vulnerability
http://secunia.com/advisories/30955/
A vulnerability with an unknown impact has been reported in Simple Machines Forum.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 18 Jul 08
BilboBlog Multiple Vulnerabilities
http://secunia.com/advisories/31054/
Black_H has discovered some vulnerabilities in BilboBlog, which can be exploited by malicious users to conduct script insertion and SQL injection attacks, and by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
AlstraSoft Affiliate Network Pro "pgm" SQL Injection Vulnerability
http://secunia.com/advisories/31112/
Hussin X has reported a vulnerability in AlstraSoft Affiliate Network Pro, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
HP Select Identity Active Directory Bidirectional LDAP Connector Unauthorized Access
http://secunia.com/advisories/31148/
Some vulnerabilities have been reported in HP Select Identity Active Directory Bidirectional LDAP Connector, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
rPath update for httpd
http://secunia.com/advisories/31142/
rPath has issued an update for httpd. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
Debian update for afuse
http://secunia.com/advisories/31131/
Debian has issued an update for afuse. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
F-Prot Antivirus Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/31118/
Some vulnerabilities have been reported in F-Prot Antivirus, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
BlackBerry Enterprise Server PDF Processing Vulnerability
http://secunia.com/advisories/31092/
A vulnerability has been reported in BlackBerry Enterprise Server, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
BlackBerry Unite! PDF Processing Vulnerability
http://secunia.com/advisories/31141/
A vulnerability has been reported in BlackBerry Unite!, which potentially can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
Citrix XenServer XenAPI HTTP Interface Cross-Site Scripting
http://secunia.com/advisories/31133/
A vulnerability has been reported in Citrix XenServer, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
Mozilla Firefox 3 on Mac OS X GIF File Handling Code Execution
http://secunia.com/advisories/31132/
A vulnerability has been reported in Firefox 3 on Mac OS X, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
Red Hat update for php
http://secunia.com/advisories/31124/
Red Hat has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions, and by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
FreeStyle Wiki CGI::Session "File" Driver "CGISESSID" Directory Traversal
http://secunia.com/advisories/31114/
Tan Chew Keong has reported a vulnerability in FreeStyle Wiki, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 17 Jul 08
CGI::Session "File" Driver "CGISESSID" Directory Traversal
http://secunia.com/advisories/31117/
Tan Chew Keong has reported a vulnerability in CGI::Session, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Mozilla Firefox 3 URI Launching and XUL Error Page Vulnerabilities
http://secunia.com/advisories/31106/
Some vulnerabilities have been reported in Firefox 3, which can be exploited by malicious people to bypass certain security restrictions, potentially conduct spoofing attacks, or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Red Hat update for firefox
http://secunia.com/advisories/31121/
Red Hat has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Ubuntu update for kernel
http://secunia.com/advisories/31107/
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, disclose potentially sensitive information, and gain escalated privileges, and malicious people to cause a DoS and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Red Hat update for seamonkey
http://secunia.com/advisories/31122/
Red Hat has issued an update for seamonkey. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Galatolo WebManager SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31098/
StAkeR has discovered two vulnerabilities in Galatolo WebManager (GWM), which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Mozilla Firefox 2 URI Launching Vulnerability
http://secunia.com/advisories/31120/
A vulnerability has been reported in Firefox 2, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
HP Oracle for OpenView Multiple Vulnerabilities
http://secunia.com/advisories/31113/
HP has acknowledged some vulnerabilities in HP Oracle for Openview (OfO). Some vulnerabilities have unknown impacts while others can be exploited by malicious, local users to gain escalated privileges, by malicious users to cause a DoS (Denial of Service), disclose sensitive information, gain escalated privileges, or compromise a vulnerable system, and by malicious people to bypass certain security restrictions or to cause a DoS.



Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/

Wed, 16 Jul 08
F5 Products DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31093/
A vulnerability has been reported in various F5 products, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
phpMyAdmin Cross-Site Request Forgery Vulnerabilities
http://secunia.com/advisories/31115/
Some vulnerabilities have been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
php Help Agent "content" File Inclusion Vulnerability
http://secunia.com/advisories/31099/
BeyazKurt has discovered a vulnerability in php Help Agent, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
IBM AIX DNS Cache Poisoning
http://secunia.com/advisories/31094/
A vulnerability has been reported in IBM AIX, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Red Hat update for php
http://secunia.com/advisories/31119/
Red Hat has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Op "XAUTHORITY" Buffer Overflow Vulnerability
http://secunia.com/advisories/31103/
Nico Golde has reported a vulnerability in Op, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Afuse Shell Command Injection Vulnerability
http://secunia.com/advisories/31086/
A vulnerability has been reported in Afuse, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Gentoo update for mercurial
http://secunia.com/advisories/31110/
Gentoo has issued an update for mercurial. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Mercurial "applydiff()" Directory Traversal Security Issue
http://secunia.com/advisories/31108/
A security issue has been reported in Mercurial, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Comdev Web Blogger "arcmonth" SQL Injection Vulnerability
http://secunia.com/advisories/31100/
M. Hasran Addahroni has discovered a vulnerability in Comdev Web Blogger, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
PPMate PPMedia Class ActiveX Control Buffer Overflow
http://secunia.com/advisories/30952/
Parvez Anwar has discovered a vulnerability in PPMate, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
WinRemotePC Packet Handling Denial of Service
http://secunia.com/advisories/31102/
Shinnok has discovered a vulnerability in WinRemotePC, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Pragyan CMS File Inclusion Vulnerabilities
http://secunia.com/advisories/31101/
N3TR00T3R has reported some vulnerabilities in Pragyan CMS, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Oracle Products Multiple Vulnerabilities
http://secunia.com/advisories/31087/
Multiple vulnerabilities have been reported for various Oracle products. Some vulnerabilities have unknown impacts while others can be exploited by malicious, local users to gain escalated privileges, by malicious users to cause a DoS (Denial of Service), disclose sensitive information, gain escalated privileges, or compromise a vulnerable system, and by malicious people to bypass certain security restrictions or to cause a DoS.



Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/

Wed, 16 Jul 08
OpenBSD update for X.Org
http://secunia.com/advisories/31109/
OpenBSD has issued an update for X.Org. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Black Ice Document Imaging SDK "OpenGifFile()" Buffer Overflow
http://secunia.com/advisories/31095/
r0ut3r has discovered a vulnerability in Black Ice Document Imaging SDK, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Debian update for lighttpd
http://secunia.com/advisories/31104/
Debian has issued an update for lighttpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 16 Jul 08
Debian update for gaim
http://secunia.com/advisories/31105/
Debian has issued an update for gaim. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Red Hat update for ruby
http://secunia.com/advisories/31090/
Red Hat has issued an update for ruby. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Red Hat update for ruby
http://secunia.com/advisories/31062/
Red Hat has issued an update for ruby. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Firebird 1 Unspecified Path Disclosure Weakness
http://secunia.com/advisories/31003/
A weakness has been reported in Firebird, which can be exploited by malicious users to disclose system information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Firebird 2 Multiple Vulnerabilities and Weakness
http://secunia.com/advisories/31064/
Some vulnerabilities and a weakness have been reported in Firebird, which can be exploited by malicious users to cause a DoS (Denial of Service) and disclose system information, and by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Ubuntu update for pcre3
http://secunia.com/advisories/30990/
Ubuntu has issued an update for pcre3. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Maian Weblog "weblog_cookie" Security Bypass Vulnerability
http://secunia.com/advisories/30943/
S.W.A.T. has reported a vulnerability in Maian Weblog, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
FreeBSD update for bind
http://secunia.com/advisories/31033/
FreeBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Red Hat update for java-1.5.0-sun
http://secunia.com/advisories/31055/
Red Hat has issued an update for java-1.5.0-sun. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Red Hat update for bluez-libs and bluez-utils
http://secunia.com/advisories/31057/
Red Hat has issued an update for bluez-libs and bluez-utils. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Red Hat update for java-1.4.2-ibm
http://secunia.com/advisories/31067/
Red Hat has issued an update for java-1.4.2-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Maian Events "mevents_admin_cookie" Security Bypass Vulnerability
http://secunia.com/advisories/31056/
Saime has discovered a vulnerability in Maian Events, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
ITechBids Cross-Site Scripting and SQL Injection
http://secunia.com/advisories/31084/
Encrypt3d.M!nd has discovered some vulnerabilities in ITechBids, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
reSIProcate Long Domain Name Denial of Service
http://secunia.com/advisories/31058/
A vulnerability has been reported in reSIProcate, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Maian Music "mmusic_cookie" Security Bypass Vulnerability
http://secunia.com/advisories/31038/
Saime has discovered a vulnerability in Maian Music, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Pluck predefined_variables.php Local File inclusion Vulnerabilities
http://secunia.com/advisories/31088/
AmnPardaz Security Research Team has discovered some vulnerabilities in Pluck, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Procapita SQL Injection Vulnerabilities
http://secunia.com/advisories/30968/
pelzi has reported some vulnerabilities in Procapita, which can be exploited by malicious people or users to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
jSite Multiple Vulnerabilities
http://secunia.com/advisories/31049/
Some vulnerabilities have been discovered in jSite, which can be exploited by malicious people to disclose sensitive information and conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Scripteen Free Image Hosting Script Security Bypass and SQL Injection
http://secunia.com/advisories/31083/
Some vulnerabilities have been discovered in Scripteen Free Image Hosting Script, which can be exploited by malicious people to bypass certain security restrictions and conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 15 Jul 08
Wysi Wiki Wyg "c" Directory Traversal Vulnerability
http://secunia.com/advisories/31061/
StAkeR has discovered a vulnerability in Wysi Wiki Wyg, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Apple iPhone / iPod touch Multiple Vulnerabilities
http://secunia.com/advisories/31074/
Some vulnerabilities have been reported in Apple iPhone and iPod touch, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, cause a DoS (Denial of Service), bypass certain security restrictions, or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
@1 File Store PRO "id" SQL Injection Vulnerabilities
http://secunia.com/advisories/31063/
Nu Am Bani has reported some vulnerabilities in @1 File Store PRO, which can be exploited by malicious users or people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
webcms.es webCMS Portal Edition "id" SQL Injection Vulnerability
http://secunia.com/advisories/31047/
Mr.SQL has reported a vulnerability in webcms.es webCMS Portal Edition, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Debian update for mysql-dfsg-5.0
http://secunia.com/advisories/31066/
Debian has issued an update for mysql-dfsg-5.0. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Million Pixels "id_cat" SQL Injection Vulnerability
http://secunia.com/advisories/31059/
Hussin X has reported a vulnerability in Million Pixels, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
SUSE update for MozillaFirefox
http://secunia.com/advisories/31076/
SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Debian update for iceweasel
http://secunia.com/advisories/31069/
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Apple Xcode tools Vulnerability and Security Issue
http://secunia.com/advisories/31060/
A vulnerability and a security issue have been reported in Xcode tools, which can be exploited by malicious people to disclose sensitive information or to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Novell Netware DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31065/
A vulnerability has been reported in Novell Netware, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 14 Jul 08
Gentoo update for bind
http://secunia.com/advisories/31072/
Gentoo has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
SUSE update for MozillaFirefox
http://secunia.com/advisories/31051/
SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/31048/
Some vulnerabilities have been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
Sun Solaris Thunderbird Multiple Vulnerabilities
http://secunia.com/advisories/31043/
Sun has acknowledged some vulnerabilities in Thunderbird included in Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
DreamNews Manager "id" SQL Injection Vulnerability
http://secunia.com/advisories/31032/
Hussin X has reported a vulnerability in DreamNews Manager, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
eSyndiCat Directory Software Pro "register.php" Cross-Site Scripting
http://secunia.com/advisories/31041/
Fugitif has reported some vulnerabilities in eSyndiCat Directory Software, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
SUSE update for bind
http://secunia.com/advisories/31052/
SUSE has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
Xomol CMS "current_url" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31015/
Julian Rodriguez has reported a vulnerability in Xomol CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
Pagefusion Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31050/
Julian Rodriguez has discovered some vulnerabilities in Pagefusion, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Sat, 12 Jul 08
phpDatingClub "page" Local File Inclusion
http://secunia.com/advisories/31040/
Big Ben has discovered a vulnerability in phpDatingClub, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 11 Jul 08
Wireshark Packet Reassembly Denial of Service
http://secunia.com/advisories/31044/
A vulnerability has been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 11 Jul 08
Apple TV Multiple Vulnerabilities
http://secunia.com/advisories/31034/
Some vulnerabilities have been reported in Apple TV, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 11 Jul 08
Zen Cart Two Local File Inclusion Vulnerabilities
http://secunia.com/advisories/31039/
CraCkEr has discovered two vulnerabilities in Zen Cart, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 11 Jul 08
Novell eDirectory LDAP Search Request Buffer Overflow
http://secunia.com/advisories/31036/
A vulnerability has been reported in Novell eDirectory, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
AuraCMS "pages_data.php" Manipulation of Data
http://secunia.com/advisories/31000/
k1tk4t has reported a vulnerability in AuraCMS, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Gentoo update for apache
http://secunia.com/advisories/31026/
Gentoo has issued an update for apache. This fixes a some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks and cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
vbDrupal Multiple Vulnerabilities
http://secunia.com/advisories/31024/
Some vulnerabilities have been reported in vbDrupal, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, session fixation, SQL injection, and script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Drupal Multiple Vulnerabilities
http://secunia.com/advisories/31028/
Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, session fixation, SQL injection, and script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Fedora update for java-1.7.0-icedtea
http://secunia.com/advisories/31020/
Fedora has issued an update for java-1.7.0-icedtea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Slackware update for bind
http://secunia.com/advisories/31022/
Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Gentoo update for nx
http://secunia.com/advisories/31025/
Gentoo has issued an update for nx. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Nixu Secure Name Server BIND Query Port DNS Cache Poisoning
http://secunia.com/advisories/31031/
A vulnerability has been reported in Nixu Secure Name Server, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
DreamPics Builder "page" SQL Injection Vulnerability
http://secunia.com/advisories/31009/
Hussin X has reported a vulnerability in DreamPics Builder, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Drupal OpenID Module Vulnerabilities
http://secunia.com/advisories/31027/
Some vulnerabilities have been reported in the OpenID module for Drupal, which can be exploited by malicious people to conduct cross-site scripting or cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Sophos Products Zero-byte MIME Attachments Denial of Service
http://secunia.com/advisories/31037/
A vulnerability has been reported in some Sophos products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Infoblox NIOS BIND Query Port DNS Cache Poisoning
http://secunia.com/advisories/31030/
A vulnerability has been reported in Infoblox NIOS, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Gentoo update for openoffice and openoffice-bin
http://secunia.com/advisories/31029/
Gentoo has issued an update for openoffice and openoffice-bin. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Debian update for poppler
http://secunia.com/advisories/31035/
Debian has issued an update for poppler. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Red Hat update for openldap
http://secunia.com/advisories/30996/
Red Hat has issued an update for openldap. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Slackware update for seamonkey
http://secunia.com/advisories/31023/
Slackware has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Network Appliance Data ONTAP Unspecified Vulnerabilities
http://secunia.com/advisories/30931/
Some vulnerabilities with unknown impact have been reported in IBM Data ONTAP.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Fedora update for bind
http://secunia.com/advisories/31019/
Fedora has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 10 Jul 08
Slackware update for mozilla-firefox
http://secunia.com/advisories/31021/
Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security re