Software and Script Bug Exploits
Main
Software Alerts
Software and Script Bug ExploitsSoftware Vulnerability
Random Feeds
Archives
| Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |Sat, 30 Aug 08
dotProject SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31681/
C1c4Tr1Z has discovered some vulnerabilities in dotProject, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Caudium "configvar" Insecure Temporary Files
http://secunia.com/advisories/31656/
A security issue has been reported in Caudium, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
HP TCP/IP Services for OpenVMS Finger Format String Vulnerability
http://secunia.com/advisories/31587/
Christer Öberg, Claes Nyberg, and James Tusini have reported a vulnerability in HP TCP/IP Services for OpenVMS, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Adium MSN SLP Message Integer Overflow Vulnerabilities
http://secunia.com/advisories/31642/
Some vulnerabilities have been reported in Adium, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Blogn Cross-Site Scripting and Cross-Site Request Forgery
http://secunia.com/advisories/31662/
Two vulnerabilities have been reported in Blogn, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Novell eDirectory Multiple Vulnerabilities
http://secunia.com/advisories/31684/
Multiple vulnerabilities have been reported in Novell eDirectory, where some have an unknown impact and others can be exploited by malicious people to conduct cross-site scripting attacks or to potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
GpsDrive "geo-code" Insecure Temporary Files
http://secunia.com/advisories/31694/
A security issue has been reported in GpsDrive, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
geo-* Insecure Temporary Files
http://secunia.com/advisories/31655/
Some security issues have been reported in geo-*, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Acoustica Mixcraft ".mx4" File Processing Buffer Overflow
http://secunia.com/advisories/31595/
Koshi has discovered a vulnerability in Acoustica Mixcraft, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Sun Solaris Kernel Covert Channel Security Bypass
http://secunia.com/advisories/31667/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Novell Forum TCL Command Injection Vulnerability
http://secunia.com/advisories/31578/
A vulnerability has been reported in Novell Forum, which can be exploited by malicious people to to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
phpMyRealty "price_max" SQL Injection Vulnerability
http://secunia.com/advisories/31613/
~!Dok_tOR!~ has reported a vulnerability in phpMyRealty, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Slackware update for amarok
http://secunia.com/advisories/31663/
Slackware has issued an update for amarok. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Red Hat update for libtiff
http://secunia.com/advisories/31668/
Red Hat has issued an update for libtiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
Red Hat update for libtiff
http://secunia.com/advisories/31670/
Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 30 Aug 08
IBM WebSphere Application Server for z/OS HTTP Server mod_proxy_ftp Vulnerability
http://secunia.com/advisories/31673/
IBM has acknowledged a vulnerability in IBM WebSphere Application Server for z/OS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Ultra Office ActiveX Control Multiple Vulnerabilities
http://secunia.com/advisories/31632/
shinnai has reported some vulnerabilities in Ultra Office Control, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
HP-UX update for Apache
http://secunia.com/advisories/31651/
HP has issued an update for Apache. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Tiger "genmsgidx" Insecure Temporary Files
http://secunia.com/advisories/31659/
A security issue has been reported in Tiger, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Honeyd "test.sh" Insecure Temporary Files
http://secunia.com/advisories/31658/
A security issue has been reported in Honeyd, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Ampache "gather-messages.sh" Insecure Temporary Files
http://secunia.com/advisories/31657/
A security issue has been reported in Ampache, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Citadel "migrate_aliases.sh" Insecure Temporary Files
http://secunia.com/advisories/31648/
A security issue has been discovered in Citadel, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
R "javareconf" Insecure Temporary Files
http://secunia.com/advisories/31647/
A security issue has been reported in R, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Quick Poll "id" SQL Injection Vulnerability
http://secunia.com/advisories/31641/
Hussin X has reported a vulnerability in Quick Poll, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
OpenOffice "rtl_allocateMemory()" Truncation Vulnerability
http://secunia.com/advisories/31640/
A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Red Hat update for openoffice.org
http://secunia.com/advisories/31646/
Red Hat has issued an update for openoffice.org. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
CMME Multiple Vulnerabilities
http://secunia.com/advisories/31599/
SirGod has discovered some vulnerabilities and a security issue in CMME (Content Management Made Easy), which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Red Hat Directory Server Multiple Vulnerabilities
http://secunia.com/advisories/31565/
Some vulnerabilities have been reported in Red Hat Directory Server, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 29 Aug 08
Red Hat update for adminutil
http://secunia.com/advisories/31612/
Red Hat has issued an update for adminutil. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Mono Sys.Web HTTP Header Injection Vulnerability
http://secunia.com/advisories/31643/
Juraj Skripsky has reported a vulnerability in Mono, which can be exploited by malicious people to conduct HTTP header injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Red Hat update for tomcat
http://secunia.com/advisories/31639/
Red Hat has issued an update for tomcat. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, or disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Red Hat Directory Server Denial of Service Vulnerabilities
http://secunia.com/advisories/31627/
Some vulnerabilities have been reported in Red Hat Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Ubuntu update for yelp
http://secunia.com/advisories/31620/
Ubuntu has issued an update for yelp. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
JustSystems Ichitaro Products Unspecified Code Execution Vulnerability
http://secunia.com/advisories/31603/
A vulnerability has been reported in JustSystems Ichitaro products, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Sun Solaris NFS RPC Zones Denial of Service
http://secunia.com/advisories/31622/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
HP Enterprise Discovery Unspecified Privilege Escalation
http://secunia.com/advisories/31616/
A vulnerability has been reported in HP Enterprise Discovery, which can be exploited by malicious users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Xoops PopnupBlog Module "index.php" Cross-Site Scripting
http://secunia.com/advisories/31625/
Lostmon has discovered two vulnerabilities in the PopnupBlog module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
DriveCrypt Plus Pack Password Disclosure Security Issue
http://secunia.com/advisories/31605/
A security issue has been discovered in DriveCrypt Plus Pack, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
K-Rate Premium Multiple Vulnerabilities
http://secunia.com/advisories/31548/
Corwin has discovered some vulnerabilities in K-Rate Premium, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people and users to conduct script insertion and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
IBM Lotus Quickr Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31634/
Some vulnerabilities have been reported in IBM Lotus Quickr, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
IBM DB2 CLR Stored Procedures Unspecified Vulnerability
http://secunia.com/advisories/31635/
A vulnerability with an unknown impact has been reported in IBM DB2.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
KM Scanner File Utility Multiple Vulnerabilities
http://secunia.com/advisories/31631/
Seth Fogie has reported some vulnerabilities in KM Scanner File Utility, which can be exploited by malicious people to cause a DoS (Denial of Service), bypass certain security restrictions, and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Sharity Unspecified Vulnerability
http://secunia.com/advisories/31638/
A vulnerability with an unknown impact has been reported in Sharity.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
webEdition CMS "we_objectID" SQL Injection Vulnerability
http://secunia.com/advisories/31560/
Lidloses_Auge has reported a vulnerability in webEdition CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
Smart Survey "sid" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31637/
Bug Researchers Group has reported a vulnerability in Smart Survey, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 28 Aug 08
BitlBee Account Recreation Security Issue
http://secunia.com/advisories/31633/
A security issue has been reported in BitlBee, which can be exploited by malicious people to bypass certain security restrictions and hijack accounts.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Red Hat update for ipsec-tools
http://secunia.com/advisories/31624/
Red Hat has issued an update for ipsec-tools. This fixes two vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Debian update for tiff
http://secunia.com/advisories/31623/
Debian has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Million Pixel Ad Script "id_cat" SQL Injection
http://secunia.com/advisories/31626/
Hussin X has reported a vulnerability in Million Pixel Ad Script (Million Pixel Script), which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Red Hat update for kernel
http://secunia.com/advisories/31628/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially gain escalated privileges, and by malicious people to cause a DoS.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Kolifa.net Download Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31621/
Kacak has reported a vulnerability in Kolifa.net Download Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
AWStats Totals Cross-site Scripting and PHP Code Execution
http://secunia.com/advisories/31630/
Emory University has reported some vulnerabilities in AWStats Totals, which can be exploited by malicious people to conduct cross-site scripting attacks or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
OpenVMS SMGSHR.EXE Buffer Overflow Vulnerability
http://secunia.com/advisories/31581/
A vulnerability has been reported in OpenVMS, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
NetBSD PPPoE Packet Processing Tag Length Vulnerability
http://secunia.com/advisories/31597/
A vulnerability has been reported in NetBSD, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
BtitTracker / xbtit "info_hash" SQL Injection Vulnerabilities
http://secunia.com/advisories/31556/
InATeam has discovered a vulnerability in BtitTracker (BTI-Tracker) and xbtit, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Pluck blog_include_react.php Local File Inclusion
http://secunia.com/advisories/31607/
Digital Security Research Group have reported two vulnerabilities in Pluck, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
ezContents Multiple Local File Inclusion Vulnerabilities
http://secunia.com/advisories/31606/
Digital Security Research Group have discovered some vulnerabilities in ezContents, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Swimage Encore Hardcoded Password Information Disclosure
http://secunia.com/advisories/31540/
A security issue has been reported in Swimage Encore, which can be exploited by malicious, local users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Samba "group_mapping.tdb" Insecure Permissions Security Issue
http://secunia.com/advisories/31601/
A security issue has been reported in Samba, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
MiaCMS "id" SQL Injection Vulnerabilities
http://secunia.com/advisories/31584/
~!Dok_tOR!~ has discovered some vulnerabilities in MiaCMS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
TIBCO Hawk Multiple Buffer Overflow Vulnerabilities
http://secunia.com/advisories/31618/
Some vulnerabilities have been reported in multiple TIBCO products, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Accellion File Transfer Appliance "forgot_password.html" Cross-Site Scripting
http://secunia.com/advisories/31572/
Eric BEAULIEU has reported a vulnerability in Accellion File Transfer Appliance, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
Crafty Syntax Live Help "department" SQL Injection Vulnerabilities
http://secunia.com/advisories/31573/
James Bercegay has discovered two vulnerabilities in Crafty Syntax Live Help, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
mysql-lists Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31611/
A vulnerability has been reported in mysql-lists, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 27 Aug 08
CCMS Gaming "id" SQL Injection Vulnerability
http://secunia.com/advisories/31562/
~!Dok_tOR!~ has reported a vulnerability in CCMS Gaming, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Civic Website Manager Calendar Control Cross-Site Scripting
http://secunia.com/advisories/31609/
Some vulnerabilities have been reported in Civic Website Manager, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
SoftArtisans XFile FileManager ActiveX Control Multiple Buffer Overflows
http://secunia.com/advisories/31615/
Will Dormann has reported some vulnerabilities in SoftArtisans XFile, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
LibTIFF LZW Decoder Buffer Underflow Vulnerability
http://secunia.com/advisories/31610/
A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
AN Guestbook Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31608/
Some vulnerabilities have been reported in AN Guestbook, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Ubuntu update for kernel
http://secunia.com/advisories/31614/
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
SUSE update for Sun Java
http://secunia.com/advisories/31600/
SUSE has issued an update for Sun Java. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Vim Shell Command Injection Weaknesses
http://secunia.com/advisories/31592/
Some weaknesses have been reported in Vim, which can be exploited by malicious people to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
xine-lib Multiple Vulnerabilities
http://secunia.com/advisories/31567/
Some vulnerabilities have been reported in xine-lib, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Calendarix Basic Two SQL Injection Vulnerabilities
http://secunia.com/advisories/30710/
Secunia Research has discovered two vulnerabilities in Calendarix Basic, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Novell iPrint Client ActiveX Control Multiple Vulnerabilities
http://secunia.com/advisories/30667/
Secunia Research has discovered multiple vulnerabilities in Novell iPrint Client, which can be exploited by malicious people to gain knowledge of potentially sensitive information or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
ACG-PTP Multiple Script Insertion Vulnerabilities
http://secunia.com/advisories/31591/
FatBack Mac has reported some vulnerabilities in ACG-PTP, which can be exploited by malicious users to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Ruby REXML Denial of Service Vulnerability
http://secunia.com/advisories/31602/
A vulnerability has been reported in Ruby, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Matterdaddy Market "index.php" SQL Injection
http://secunia.com/advisories/31564/
~!Dok_tOR!~ has discovered two vulnerabilities in Matterdaddy Market, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
Five Star Review Script SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31585/
Mr.SQL has reported two vulnerabilities in Five Star Review Script, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 26 Aug 08
GBrowse Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31596/
A vulnerability has been reported in GBrowse, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
SUSE update for IBM Java
http://secunia.com/advisories/31586/
SUSE has issued an update for IBM Java. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
Avaya Products Perl Regular Expressions Unicode Data Buffer Overflow
http://secunia.com/advisories/31604/
Avaya has acknowledged a vulnerability in various Avaya products, which can potentially be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
Photo Cart "qtitle" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31589/
Tyler Trioxide has reported a vulnerability in Photo Cart, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
Sun Solaris NFS Kernel Module Denial of Service
http://secunia.com/advisories/31598/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
SUSE update for IBMJava2-JRE and IBMJava2-SDK
http://secunia.com/advisories/31580/
SUSE has issued an update for IBMJava2-JRE and IBMJava2-SDK. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 25 Aug 08
Debian update for libxml2
http://secunia.com/advisories/31590/
Debian has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Xen "flask_op" Buffer Overflow Vulnerability
http://secunia.com/advisories/31561/
A vulnerability has been reported in Xen, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Uniwin eCart Professional SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/31545/
Some vulnerabilities have been reported in Uniwin eCart Professional, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Red Hat Update for Tampered OpenSSH Packages
http://secunia.com/advisories/31575/
Red Hat has issued an update for openssh, which corrects a small number of OpenSSH packages that have been tampered with.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Linux Kernel "rt6_fill_node()" Denial of Service Vulnerability
http://secunia.com/advisories/31579/
A vulnerability has been reported in the Linux kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
TimeTrex "interface/Login.php" Cross-Site Scripting
http://secunia.com/advisories/31557/
Doz has discovered two vulnerabilities in TimeTrex, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Pars4u Videosharing V1 "cat_id" SQL Injection
http://secunia.com/advisories/31571/
Mr.SQL has reported a vulnerability in Pars4u Videosharing V1, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Easy Site Local File Inclusion and Directory Listing Vulnerabilities
http://secunia.com/advisories/31570/
SirGod has discovered two vulnerabilities in Easy Site, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
phpBazar "adid" SQL Injection Vulnerability
http://secunia.com/advisories/31555/
e.wiZz! has discovered a vulnerability in phpBazar, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
LacoodaST Multiple Vulnerabilities
http://secunia.com/advisories/31582/
Some vulnerabilities have been reported in LacoodaST, which can be exploited by malicious people to conduct cross-site scripting and, cross-site request forgery, or session fixation attacks, and malicious users to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
La!cooda WIZ Multiple Vulnerabilities
http://secunia.com/advisories/31574/
Some vulnerabilities have been reported in La!cooda WIZ, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks, and malicious users to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Trend Micro Products Web Management Authentication Bypass
http://secunia.com/advisories/31373/
Secunia Research has discovered a vulnerability in Trend Micro OfficeScan, which can be exploited by malicious people to bypass authentication.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Astaro update for ClamAV
http://secunia.com/advisories/31576/
Astaro has issued an update for ClamAV. This fixes some vulnerabilities, which potentially can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Avaya Communication Manager FreeType Multiple Vulnerabilities
http://secunia.com/advisories/31577/
Avaya has acknowledged some vulnerabilities in Avaya Communication Manager, which potentially can be exploited by malicious people to compromise an application using the FreeType library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
Avaya Products Net-snmp Multiple Vulnerabilities
http://secunia.com/advisories/31568/
Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to spoof authenticated SNMPv3 packets or to potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
FAR-PHP "c" Local File Inclusion Vulnerability
http://secunia.com/advisories/31563/
Beenu Arora has discovered a vulnerability in FAR-PHP, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 23 Aug 08
TinyCMS "config[template]" Local File Inclusion Vulnerability
http://secunia.com/advisories/31569/
cOndemned has discovered a vulnerability in TinyCMS, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
Red Hat update for libxml2
http://secunia.com/advisories/31566/
A vulnerability has been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
Debian update for linux-2.6
http://secunia.com/advisories/31551/
Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or potentially gain escalated privileges, and by malicious people to cause a DoS.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
Libxml2 Recursion Limit Denial of Service Vulnerability
http://secunia.com/advisories/31558/
A vulnerability has been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
vBulletin Private Message Subject Script Insertion
http://secunia.com/advisories/31552/
Federico Muttis has reported a vulnerability in vBulletin, which can be exploited by malicious users to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
neon "parse_domain()" Denial of Service Vulnerability
http://secunia.com/advisories/31508/
A vulnerability has been reported in neon, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 22 Aug 08
Folder Lock Weak Password Encryption Security Issue
http://secunia.com/advisories/31559/
Charalambous Glafkos and George Nicolaou have discovered a security issue in Folder Lock, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities
http://secunia.com/advisories/31539/
James Bercegay has reported some vulnerabilities in SunShop Shopping Cart, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow
http://secunia.com/advisories/31554/
Core Security Technologies has reported a vulnerability in the Anzio Web Print Object (WePO) ActiveX component, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Programs Rating "id" SQL Injection Vulnerability
http://secunia.com/advisories/31550/
Hussin X has reported a vulnerability in Programs Rating, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
PHP Live Helper Multiple Vulnerabilities
http://secunia.com/advisories/31521/
James Bercegay has reported some vulnerabilities in PHP Live Helper, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Forced Matrix Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31510/
Hussin X has reported a vulnerability in Forced Matrix Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Viral Marketing Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31541/
Hussin X has reported a vulnerability in Viral Marketing Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Ad-Exchange Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31529/
Hussin X has reported a vulnerability in Ad-Exchange Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
URL Rotator Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31546/
Hussin X has reported a vulnerability in URL Rotator Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Short Url & Url Tracker Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31547/
Hussin X has reported a vulnerability in Short Url & Url Tracker Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Vanilla Multiple Vulnerabilities
http://secunia.com/advisories/31527/
Some vulnerabilities have been reported in Vanilla, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
YourFreeWorld Classifieds Script "category" SQL Injection Vulnerability
http://secunia.com/advisories/31513/
Hussin X has reported a vulnerability in YourFreeWorld Classifieds Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
llcon Message Denial of Service Vulnerabilities
http://secunia.com/advisories/31496/
Some vulnerabilities have been reported in llcon, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Opera Multiple Vulnerabilities
http://secunia.com/advisories/31549/
Some vulnerabilities have been reported in Opera, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, bypass certain security restrictions, disclose potentially sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Sun Solaris NFSv4 Client Kernel Module Denial of Service
http://secunia.com/advisories/31517/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Banner Management "id" SQL Injection Vulnerability
http://secunia.com/advisories/31542/
S.W.A.T. has reported a vulnerability in Banner Management, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Avaya CMS Solaris "snoop" Multiple Vulnerabilities
http://secunia.com/advisories/31535/
Avaya has acknowledged some vulnerabilities in Avaya CMS, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Avaya CMS Solaris namefs Kernel Module Privilege Escalation
http://secunia.com/advisories/31536/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Active PHP Bookmarks "id" SQL Injection Vulnerability
http://secunia.com/advisories/31544/
Hussin X has discovered a vulnerability in Active PHP Bookmarks (APB), which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 21 Aug 08
Avaya CMS Solaris "picld" Denial of Service
http://secunia.com/advisories/31501/
Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
Ubuntu update for postfix
http://secunia.com/advisories/31474/
Ubuntu has issued an update for postfix. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
IBM WebSphere Portal Server Authentication Bypass
http://secunia.com/advisories/31443/
Charles Gillman has reported a vulnerability in WebSphere Portal Server, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
WS_FTP Home / Professional Format String Vulnerability
http://secunia.com/advisories/31504/
securfrog has discovered a vulnerability in WS_FTP Home and Professional, which can be exploited by malicious people to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
Papoo "suchanzahl" SQL Injection Vulnerability
http://secunia.com/advisories/31520/
Russ McRee has reported a vulnerability in Papoo, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
Ad Board "id" SQL Injection Vulnerability
http://secunia.com/advisories/31491/
Hussin X has reported a vulnerability in Ad Board, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
PHPizabi "id" Information Disclosure and Manipulation
http://secunia.com/advisories/31533/
Lostmon has discovered a vulnerability in PHPizabi, which can be exploited by malicious users to disclose sensitive information and manipulate data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 20 Aug 08
NOAH Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31543/
A vulnerability has been reported in NOAH, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Interleave Information Disclosure Security Issues
http://secunia.com/advisories/31525/
Some security issues have been reported in Interleave, which can be exploited by malicious users to disclose certain sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
SFS Affiliate Directory "id" SQL Injection Vulnerability
http://secunia.com/advisories/31537/
Hussin X has reported a vulnerability in SFS Affiliate Directory, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
MailScan for Mail Servers Web Administration Interface Multiple Vulnerabilities
http://secunia.com/advisories/31534/
Oliver Karow has reported some vulnerabilities in MailScan for Mail Servers, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, and bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
SUSE update for python
http://secunia.com/advisories/31518/
SUSE has issued an update for python. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Debian update for postfix
http://secunia.com/advisories/31530/
Debian has issued an update for postfix. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Sun Java System Portal Server Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31538/
A vulnerability has been reported in Sun Java System Portal Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Serv-U File Server SFTP Logging Denial of Service Vulnerability
http://secunia.com/advisories/31461/
A vulnerability has been reported in Serv-U File Server, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
dotCMS Two File Disclosure Vulnerabilities
http://secunia.com/advisories/31516/
Don has discovered two vulnerabilities in dotCMS, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
FlexCMS "PreviousColorsString" Cross-Site Scripting
http://secunia.com/advisories/31532/
Khashayar Fereidani has discovered a vulnerability in FlexCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
EO Video Playlist File "Name" Buffer Overflow Vulnerability
http://secunia.com/advisories/31511/
Muris Kurgas has discovered a vulnerability in EO Video, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
SUSE update for openwsman
http://secunia.com/advisories/31429/
SUSE has issued an update for openwsman. This fixes some vulnerabilities, which can be exploited by malicious people to conduct replay attacks, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
openwsman HTTP Basic Authentication Buffer Overflow
http://secunia.com/advisories/31410/
A vulnerability has been reported in openwsman, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
AWStats URL Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31519/
Morgan Todd has discovered a vulnerability in AWStats, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Mambo Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31528/
Khashayar Fereidani has discovered two vulnerabilities in Mambo, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Reflection for Secure IT Multiple Vulnerabilities
http://secunia.com/advisories/31531/
Attachmate has reported some vulnerabilities in Reflection for Secure IT, where some have unknown impacts and others can be exploited by malicious, local users to disclose sensitive information and bypass certain security restrictions, and by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
vbDrupal Multiple Vulnerabilities
http://secunia.com/advisories/31522/
Some vulnerabilities have been reported in vbDrupal, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system, and by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Tue, 19 Aug 08
Linux Kernel "dccp_setsockopt_change()" Integer Overflow
http://secunia.com/advisories/31509/
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 18 Aug 08
EchoVNC for Linux "CLogger::WriteFormated()" Buffer Overflow
http://secunia.com/advisories/31526/
A vulnerability has been reported in EchoVNC for Linux, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 18 Aug 08
VLC Media Player TTA Processing Integer Overflow
http://secunia.com/advisories/31512/
g_ has discovered a vulnerability in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 18 Aug 08
Sympa "sympa.pl" Insecure Temporary Files
http://secunia.com/advisories/31458/
A security issue has been reported in Sympa, which can be exploited by malicious, local users to perform actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 18 Aug 08
Avaya Products nss_ldap Race Condition Security Issue
http://secunia.com/advisories/31524/
Avaya has acknowleged a security issue in various Avaya products, which can be exploited by malicious people to manipulate certain data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 18 Aug 08
ZEEJOBSITE "adid" SQL Injection Vulnerability
http://secunia.com/advisories/31515/
Hussin X has reported a vulnerability in ZEEJOBSITE, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 16 Aug 08
GnuTLS "gnutls_handshake()" Denial of Service
http://secunia.com/advisories/31505/
A vulnerability has been reported in GnuTLS, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 16 Aug 08
Mktemp Insecure Random Name Generator Vulnerability
http://secunia.com/advisories/31507/
A vulnerability has been reported in Mktemp, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 16 Aug 08
Harmoni Cross-Site Request Forgery and Security Bypass
http://secunia.com/advisories/31503/
Two vulnerabilities have been reported in Harmoni, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 16 Aug 08
HAVP Denial of Service Vulnerability
http://secunia.com/advisories/31494/
A vulnerability has been reported in HAVP, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
E-Shop Shopping Cart "cid" SQL Injection Vulnerability
http://secunia.com/advisories/31506/
Mormoroth has reported a vulnerability in E-Shop Shopping Cart (E-Php Shopping Cart), which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
xine-lib Multiple Vulnerabilities
http://secunia.com/advisories/31502/
Some vulnerabilities have been reported in xine-lib, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat update for postfix
http://secunia.com/advisories/31469/
Red Hat has issued an update for postfix. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat update for yum-rhn-plugin
http://secunia.com/advisories/31472/
Red Hat has issued an update for yum-rhn-plugin. This fixes a security issue, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Symantec Veritas Storage Foundation NULL NTLMSSP Authentication Security Bypass
http://secunia.com/advisories/31486/
A vulnerability has been reported in Symantec Veritas Storage Foundation, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Gentoo update for postfix
http://secunia.com/advisories/31477/
Gentoo has issued an update for postfix. This fixes some security issues, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
rPath update for freetype
http://secunia.com/advisories/31479/
rPath has issued an update for freetype. This fixes some vulnerabilities, which can potentially be exploited by malicious people to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Postfix Symlink Handling and Destination Ownership Security Issues
http://secunia.com/advisories/31485/
Sebastian Krahmer has reported some security issues in Postfix, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
SUSE update for postfix
http://secunia.com/advisories/31500/
SUSE has issued an update for postfix. This fixes some security issues, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Openfire "url" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31483/
Matt Tucker has discovered a vulnerability in Openfire, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
VitalQIP DNS Cache Poisoning Vulnerability
http://secunia.com/advisories/31447/
Alcatel-Lucent has acknowledged a vulnerability in VitalQIP, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Microsoft Visual Studio Masked Edit Control "Mask" Buffer Overflow
http://secunia.com/advisories/31498/
A vulnerability has been reported in Microsoft Visual Studio, which can potentially be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
HP TCP/IP Services for OpenVMS BIND DNS Cache Poisoning
http://secunia.com/advisories/31482/
HP has acknowledged a vulnerability in HP OpenVMS TCP/IP Services, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
PhpLinkExchange "catid" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31487/
A vulnerability has been reported in PhpLinkExchange, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat update for hplip
http://secunia.com/advisories/31499/
Red Hat has issued an update for hplip. This fixes a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
HPLIP hpssd Denial of Service
http://secunia.com/advisories/31470/
A security issue has been reported in hplip, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Yelp Invalid URI Format String Vulnerability
http://secunia.com/advisories/31465/
A vulnerability has been reported in Yelp, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Drupal Multiple Vulnerabilities
http://secunia.com/advisories/31462/
Some vulnerabilities have been reported in Drupal, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system, and by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Drupal Cross-Site Request Forgery and Security Bypass
http://secunia.com/advisories/31460/
Two vulnerabilities have been reported in Drupal, which can be exploited by malicious users to bypass certain security restrictions, and by malicious people to conduct cross-site request forgeries.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
NavBoard Local File Inclusion and Cross-Site Scripting
http://secunia.com/advisories/31463/
CraCkEr has discovered some vulnerabilities in NavBoard, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat Network Proxy Server update for mod_perl
http://secunia.com/advisories/31490/
Red Hat has issued an update for the Red Hat Network Proxy Server mod_perl package. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
HP Tru64 UNIX BIND Query Port DNS Cache Poisoning
http://secunia.com/advisories/31495/
HP has acknowledged a vulnerability in HP Tru64 UNIX, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat Network Satellite Server Update for Sun Java / IBM Java Runtime
http://secunia.com/advisories/31497/
Red Hat has issued an update for the Red Hat Network Satellite Server Sun Java and IBM Java runtimes. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat update for Red Hat Network Satellite Server
http://secunia.com/advisories/31493/
Red Hat has issued an update for Red Hat Network Satellite Server. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information, and malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, and cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 15 Aug 08
Red Hat Network Satellite Server Update for Solaris Client
http://secunia.com/advisories/31492/
Red Hat has issued an update for the Red Hat Network Satellite Server Solaris client. This fixes some vulnerabilities, which can be exploited by malicious people to expose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
FlashGet FTP PWD Buffer Overflow Vulnerability
http://secunia.com/advisories/31481/
Krystian Kloskowski has discovered a vulnerability in FlashGet, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
rPath update for idle and python
http://secunia.com/advisories/31473/
rPath has issued an update for idle and python. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Ventrilo Server Denial of Service Vulnerability
http://secunia.com/advisories/31466/
Luigi Auriemma and Andre Malm have reported a vulnerability in Ventrilo Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
PHP Realty "docID" SQL Injection Vulnerability
http://secunia.com/advisories/31484/
CraCkEr has reported a vulnerability in PHP Realty, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
IPsec-Tools racoon Phase 1 Handler Denial of Service
http://secunia.com/advisories/31478/
A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Freeway File Inclusion and Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31475/
Some vulnerabilities have been reported in Freeway, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Vim Netrw FTP Credentials Disclosure Security Issue
http://secunia.com/advisories/31464/
Jan Minar has discovered a security issue in Vim, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Joomla "token" Password Change Vulnerability
http://secunia.com/advisories/31457/
d3m0n has reported a vulnerability in Joomla!, which can be exploited by malicious people to bypass certain security restrictions and manipulate data.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Sun Java System Web Proxy Server FTP Subsystem Denial of Service
http://secunia.com/advisories/31476/
A vulnerability has been reported in Sun Java System Web Proxy Server, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Datafeed Studio search.php Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31488/
A vulnerability has been reported in Datafeed Studio, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
VMware ESXi OpenSSL Vulnerabilities
http://secunia.com/advisories/31489/
VMware has acknowledged some vulnerabilities in VMware ESXi, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Gelato "img" File Disclosure Vulnerability
http://secunia.com/advisories/31456/
jiko has discovered a vulnerability in Gelato, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
VMware updates for OpenSSL, net-snmp, and perl
http://secunia.com/advisories/31467/
VMware has issued updated OpenSSL, net-snmp, and perl packages. This fixes some vulnerabilities, which can be exploited by malicious people to spoof authenticated SNMPv3 packets, cause a DoS (Denial of Service), and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
hMailServer IMAP Denial of Service Vulnerability
http://secunia.com/advisories/31480/
João Antunes has reported a vulnerability in hMailServer, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
VMware VirtualCenter User Account Disclosure
http://secunia.com/advisories/31468/
A security issue has been reported in VMware VirtualCenter, which can be exploited by malicious users to disclose certain system information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
Fedora update for condor
http://secunia.com/advisories/31459/
Fedora has issued an update for condor. This fixes a security issue, which can be exploited by malicious users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 14 Aug 08
HP-UX ftpd Unspecified Privileged Access Vulnerability
http://secunia.com/advisories/31471/
A vulnerability has been reported in HP-UX, which can be exploited by malicious people to bypass certain security restrictions and to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
CA Products kmxfw.sys Privilege Escalation and Denial of Service
http://secunia.com/advisories/31434/
Some vulnerabilities have been reported in multiple CA products, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to potentially gain escalated privileges, and by malicious people to cause a DoS.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Internet Explorer MHTML Protocol Handler Cross-Domain Information Disclosure
http://secunia.com/advisories/31415/
A vulnerability has been reported in Internet Explorer, which can be exploited by malicious people to gain knowledge of sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Internet Explorer Multiple Vulnerabilities
http://secunia.com/advisories/31375/
Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Office SharePoint Server Privilege Escalation Vulnerability
http://secunia.com/advisories/31455/
A vulnerability has been reported in Microsoft Office SharePoint Server, which can be exploited by malicious users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Office Excel Multiple Vulnerabilities
http://secunia.com/advisories/31454/
Multiple vulnerabilities have been reported in Microsoft Excel, which can be exploited by malicious people to gain knowledge of sensitive information or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Office PowerPoint Multiple Vulnerabilities
http://secunia.com/advisories/31453/
Some vulnerabilities have been reported in Microsoft PowerPoint, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Windows Messenger ActiveX Control Vulnerability
http://secunia.com/advisories/31446/
A vulnerability has been reported in Microsoft Windows Messenger, which can be exploited by malicious people to gain knowledge of sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Windows Event System Privilege Escalation Vulnerabilities
http://secunia.com/advisories/31417/
Two vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Windows Color Management System Buffer Overflow
http://secunia.com/advisories/31385/
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Windows IPsec Policy Processing Information Disclosure
http://secunia.com/advisories/31411/
A security issue has been reported in Microsoft Windows, which may expose sensitive information to malicious people
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Microsoft Office Filters Multiple Vulnerabilities
http://secunia.com/advisories/31336/
Multiple vulnerabilities have been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Yamaha RT Series Routers DNS Cache Poisoning
http://secunia.com/advisories/31451/
A vulnerability has been reported in Yamaha RT Series Routers, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Bugzilla importxml.pl Directory Traversal Vulnerability
http://secunia.com/advisories/31444/
A vulnerability has been reported in Bugzilla, which can be exploited by malicious users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Alcatel-Lucent OmniSwitch Series Buffer Overflow Vulnerability
http://secunia.com/advisories/31435/
Deral Heiland has reported a vulnerability in various OmniSwitch products, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Kayako SupportSuite Multiple Vulnerabilities
http://secunia.com/advisories/31431/
James Bercegay has reported some vulnerabilities in Kayako SupportSuite, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to conduct cross-site scripting and script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
IceBB "skin" SQL Injection Vulnerability
http://secunia.com/advisories/31439/
matt & zach have discovered a vulnerability in IceBB, which can be exploited by malicious users to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
IPsec-Tools racoon Denial of Service
http://secunia.com/advisories/31450/
A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Amarok "MagnatuneBrowser::listDownloadComplete()" Insecure Temporary Files
http://secunia.com/advisories/31418/
A security issue has been reported in Amarok, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Sun Solaris "sendfilev()" Denial of Service
http://secunia.com/advisories/31426/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
PHP Multiple Vulnerabilities
http://secunia.com/advisories/31409/
Some vulnerabilities have been reported in PHP, where some have an unknown impact and others can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
BitTorrent "created by" Buffer Overflow Vulnerability
http://secunia.com/advisories/31445/
A vulnerability has been discovered in BitTorrent, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
uTorrent "created by" Buffer Overflow Vulnerability
http://secunia.com/advisories/31441/
A vulnerability has been discovered in uTorrent, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
GooCMS "s" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31449/
ahmadbaby has discovered a vulnerability in GooCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
Vacation Rental Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31421/
CraCkEr has discovered a vulnerability in Vacation Rental Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 13 Aug 08
SOURCENEXT Virus Security / Virus Security ZERO Denial of Service
http://secunia.com/advisories/31452/
A vulnerability has been reported in SOURCENEXT Virus Security and Virus Security ZERO, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 11 Aug 08
Gentoo update for clamav
http://secunia.com/advisories/31437/
Gentoo has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 11 Aug 08
Gentoo update for stunnel
http://secunia.com/advisories/31438/
Gentoo has issued an update for stunnel. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 11 Aug 08
Gentoo update for acroread
http://secunia.com/advisories/31428/
Gentoo has issued an update for acroread. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Mon, 11 Aug 08
Gentoo update for openldap
http://secunia.com/advisories/31436/
Gentoo has issued an update for openldap. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
SUSE Update for Multiple Packages
http://secunia.com/advisories/31339/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to disclose potentially sensitive information, conduct cross-site request forgery attacks, and compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
WSN Products "TID" Local File Inclusion
http://secunia.com/advisories/31392/
otmorozok428 has reported a vulnerability in various WSN products, which can be exploited by malicious users to disclose sensitive information and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
Cygwin Package Handling Security Issue
http://secunia.com/advisories/31271/
A security issue has been reported in Cygwin, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
Sun Solaris Trusted Extensions Labeled Networking Unauthorised Access
http://secunia.com/advisories/31412/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
PowerGap Shopsystem "ag" SQL Injection Vulnerability
http://secunia.com/advisories/31382/
Rohit Bansal has reported a vulnerability in PowerGap Shopsystem, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
e107 download.php "extract()" Vulnerability
http://secunia.com/advisories/31394/
James Bercegay has discovered a vulnerability in e107, which can be exploited by malicious people to conduct SQL injection attacks and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
Chupix Contact Module "mods" Local File Inclusion
http://secunia.com/advisories/31362/
A vulnerability has been discovered in the Contact module for Chupix, which can be exploited by malicious people to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Sat, 9 Aug 08
KAPhotoservice "page" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31369/
by_casper41 has reported a vulnerability in KAPhotoservice, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
RTH File Disclosure and SQL Injection Vulnerabilities
http://secunia.com/advisories/31414/
Some vulnerabilities have been reported in RTH, which can be exploited by malicious people to conduct SQL injection attacks or to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for poppler
http://secunia.com/advisories/31405/
Fedora has issued an update for poppler. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for httpd
http://secunia.com/advisories/31416/
Fedora has issued an update for httpd. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for thunderbird
http://secunia.com/advisories/31403/
Fedora has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks, disclose sensitive information, and to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for httpd
http://secunia.com/advisories/31404/
Fedora has issued an update for httpd. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for libxslt
http://secunia.com/advisories/31399/
Fedora has issued an update for libxslt. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Fedora update for pdns
http://secunia.com/advisories/31401/
Fedora has issued an update for pdns. This fixes a weakness, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Xoops Kshop Module "search" Cross-Site Scripting
http://secunia.com/advisories/31402/
Lostmon has discovered a vulnerability in the Kshop module for Xoops, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Contenido Unspecified File Inclusion Vulnerabilities
http://secunia.com/advisories/31374/
Some vulnerabilities have been reported in Contenido, which can be exploited by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Webex Meeting Manager WebexUCFObject ActiveX Control Buffer Overflow
http://secunia.com/advisories/31397/
Elazar Broad has discovered a vulnerability in Webex Meeting Manager, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
csphonebook "letter" Cross-Site Scripting
http://secunia.com/advisories/31359/
Ghost Hacker has discovered a vulnerability in csphonebook, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
PowerDNS Malformed Queries Handling Weakness
http://secunia.com/advisories/31407/
A weakness has been reported in PowerDNS, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
HP-UX libc Denial of Service Vulnerability
http://secunia.com/advisories/31400/
HP has acknowledged a vulnerability in libc, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
Gentoo update for dhcp
http://secunia.com/advisories/31396/
Gentoo has issued an update for dhcp. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Fri, 8 Aug 08
8e6 R3000 "Host" URL Filter Bypass Vulnerability
http://secunia.com/advisories/31391/
nnposter has reported a vulnerability in 8e6 R3000 Internet Filter, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
CA Products Ingres Multiple Vulnerabilities
http://secunia.com/advisories/31398/
Some vulnerabilities have been reported in CA products, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Gentoo update for libxslt
http://secunia.com/advisories/31395/
Gentoo has issued an update for libxslt. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Free Hosting Manager Insecure Cookie Handling Vulnerability
http://secunia.com/advisories/31383/
lvlr-Erfan has discovered a vulnerability in Free Hosting Manager, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Linux Kernel "snd_seq_oss_synth_make_info()" Information Disclosure
http://secunia.com/advisories/31366/
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Crafty Syntax Live Help "department" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31340/
modernape has reported a vulnerability in Crafty Syntax Live Help, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Mono ASP.net Cross-Site Scripting
http://secunia.com/advisories/31338/
Dean Brettle has reported some security issues in Mono, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Xerox Phaser 8400 Denial of Service Vulnerability
http://secunia.com/advisories/31329/
crit3rion has reported a vulnerability in Xerox Phaser 8400, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Sun Solaris "pthread_mutex_reltimedlock_np" Local Denial of Service
http://secunia.com/advisories/31348/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
LoveCMS Multiple Vulnerabilities
http://secunia.com/advisories/31389/
PoMdaPiMp has reported some vulnerabilities in LoveCMS, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Sun Netra T5220 Server Local Denial of Service
http://secunia.com/advisories/31335/
A vulnerability has been reported in Sun Netra T5220 Server, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
rPath update for gaim
http://secunia.com/advisories/31387/
rPath has issued an update for gaim. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Apache mod_proxy_ftp Wildcard Characters Cross-Site Scripting
http://secunia.com/advisories/31384/
A vulnerability has been reported in Apache, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Pidgin SSL Verification Security Issue
http://secunia.com/advisories/31390/
A security issue has been reported in Pidgin, which can be exploited by malicious people to conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Gallery Multiple Vulnerabilities
http://secunia.com/advisories/31367/
Some vulnerabilities have been reported in Gallery, which can be exploited by malicious users to disclose sensitive information, bypass certain security restrictions, and manipulate data, and by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
Sun Solaris "snoop" Command Execution Vulnerability
http://secunia.com/advisories/31386/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Thu, 7 Aug 08
rPath update for cups
http://secunia.com/advisories/31388/
rPath has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 6 Aug 08
Gentoo update for Mozilla products
http://secunia.com/advisories/31377/
Gentoo has issued an update for various Mozilla products. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 6 Aug 08
Gentoo update for wireshark
http://secunia.com/advisories/31378/
Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information or cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 6 Aug 08
Gentoo update for xine-lib
http://secunia.com/advisories/31372/
Gentoo has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/
Wed, 6 Aug 08
Gentoo update for net-snmp
http://secunia.com/advisories/31351/
Gentoo has issued an update for net-snmp. This fixes some vulnerabilities, which can be exploited by malicious people to spoof a