My Account

Home PHP Scripts Contact News RSS Readers Donations

Software and Script Bug Exploits

	Enter your search terms Submit search form
	Web www.amigura.co.uk

Main

Software Alerts

Software and Script Bug Exploits
Software Vulnerability
Random Feeds

Archives

| Oct 2008 | Sep 2008 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 | Apr 2008 | Mar 2008 | Feb 2008 | Jan 2008 | Dec 2007 | Nov 2007 |

Tue, 30 Sep 08
MPlayer "demux_real_fill_buffer()" Integer Underflow Vulnerabilities
http://secunia.com/Advisories/32045/
Some vulnerabilities have been reported in MPlayer, which potentially can be exploited by malicious people to compromise a user's system.

Tue, 30 Sep 08
HP Insight Diagnostics Unspecified File Disclosure Vulnerability
http://secunia.com/Advisories/32061/
A vulnerability has been reported in HP Insight Diagnostics, which can be exploited by malicious people to disclose sensitive information.

Tue, 30 Sep 08
tnftpd Long Command Processing Vulnerability
http://secunia.com/Advisories/31958/
A vulnerability has been reported in tnftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.

Tue, 30 Sep 08
The Gemini Portal File Inclusion and Security Bypass
http://secunia.com/Advisories/32057/
Two vulnerabilities have been discovered in The Gemini Portal, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, and compromise a vulnerable system.

Tue, 30 Sep 08
Pro Chat Rooms "gud" SQL Injection Vulnerability
http://secunia.com/Advisories/31988/
~!Dok_tOR!~ has reported a vulnerability in Pro Chat Rooms, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 30 Sep 08
PHP-Lance "catid" SQL Injection Vulnerability
http://secunia.com/Advisories/32027/
Cyb3r-1sT has reported a vulnerability in PHP-Lance, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 30 Sep 08
RealWin INFOTAG/SET_CONTROL Packet Processing Buffer Overflow
http://secunia.com/Advisories/32055/
Ruben Santamarta has discovered a vulnerability in RealWin, which can be exploited by malicious people to compromise a vulnerable system.

Tue, 30 Sep 08
CoAST "sections_file" File Inclusion Vulnerability
http://secunia.com/Advisories/32050/
DaRkLiFe has reported a vulnerability in CoAST, which can be exploited by malicious users to compromise a vulnerable system.

Tue, 30 Sep 08
vBulletin VBGooglemap Module "mapid" SQL Injection Vulnerability
http://secunia.com/Advisories/32054/
elusiven has reported a vulnerability in the VBGooglemap module for vBulletin, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 30 Sep 08
LnBlog "plugin" Local File Inclusion
http://secunia.com/Advisories/32032/
dun has discovered a vulnerability in LnBlog, which can be exploited by malicious people to disclose sensitive information.

Tue, 30 Sep 08
Fedora update for seamonkey
http://secunia.com/Advisories/32089/
Fedora has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Tue, 30 Sep 08
WhoDomLite "dom" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/32085/
Ghost Hacker has discovered a vulnerability in WhoDomLite, which can be exploited by malicious people to conduct cross-site scripting attacks.

Tue, 30 Sep 08
Fedora update for firefox and xulrunner
http://secunia.com/Advisories/32095/
Fedora has issued an update for firefox and xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Tue, 30 Sep 08
Fedora update for firefox
http://secunia.com/Advisories/32096/
Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Tue, 30 Sep 08
OpenBSD ftpd Long Command Processing Vulnerability
http://secunia.com/Advisories/32070/
Maksymilian Arciemowicz has reported a vulnerability in OpenBSD ftpd, which can be exploited by malicious people to conduct cross-site request forgery attacks.

Mon, 29 Sep 08
SUSE Update for Multiple Packages
http://secunia.com/Advisories/32099/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges, and by malicious people to bypass certain security restrictions, cause a DoS, or to compromise a user's system.

Mon, 29 Sep 08
Fedora update for rubygems / rubygem packages
http://secunia.com/Advisories/32090/
Fedora has issued an update for rubygems, rubygem-activerecord, rubygem-activesupport, rubygem-activeresource, rubygem-rails, rubygem-actionpack, and rubygem-actionmailer. This fixes some vulnerabilities, which can be exploited by malicious people to conduct SQL injection attacks.

Mon, 29 Sep 08
Slackware update for mozilla-thunderbird
http://secunia.com/Advisories/32082/
Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Mon, 29 Sep 08
lighttpd Duplicate Request Headers Memory Leak Vulnerability
http://secunia.com/Advisories/32069/
A vulnerability has been reported in lighttpd, which can be exploited by malicious people to cause a DoS (Denial of Service).

Mon, 29 Sep 08
MyCard "id" SQL Injection Vulnerability
http://secunia.com/Advisories/32039/
r45c4l has reported a vulnerability in MyCard, which can be exploited by malicious users to conduct SQL injection attacks.

Sat, 27 Sep 08
Vikingboard Local File Inclusion and Username Spoofing
http://secunia.com/Advisories/31976/
Two vulnerabilities have been discovered in Vikingboard, which can be exploited by malicious people to disclose sensitive information and spoof usernames.

Sat, 27 Sep 08
FlatPress Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/32043/
Fabian Fingerle has discovered some vulnerabilities in FlatPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

Sat, 27 Sep 08
Libra File Manager "isadmin" Security Bypass
http://secunia.com/Advisories/32001/
Pepelux has discovered a vulnerability in Libra File Manager (Libra PHP File Manager), which can be exploited by malicious people to bypass certain security restrictions.

Sat, 27 Sep 08
CCProxy HTTP Proxy "CONNECT" Buffer Overflow Vulnerability
http://secunia.com/Advisories/31997/
A vulnerability has been discovered in CCProxy, which potentially can be exploited by malicious people to compromise a vulnerable system.

Sat, 27 Sep 08
Sagem F@st DHCP Script Insertion Vulnerability
http://secunia.com/Advisories/31934/
Underz0ne Crew has reported a vulnerability in multiple Sagem F@st products, which can be exploited by malicious people to conduct script insertion attacks.

Sat, 27 Sep 08
ABB PCU400 X87 Buffer Overflow Vulnerability
http://secunia.com/Advisories/32047/
A vulnerability has been reported in ABB PCU400, which can potentially be exploited by malicious people to compromise a vulnerable system.

Sat, 27 Sep 08
Slackware update for seamonkey
http://secunia.com/Advisories/32044/
Slackware has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Sat, 27 Sep 08
Slackware update for mozilla-firefox
http://secunia.com/Advisories/32042/
Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Sat, 27 Sep 08
BuzzyWall "search" SQL Injection Vulnerability
http://secunia.com/Advisories/31962/
~!Dok_tOR!~ has reported a vulnerability in BuzzyWall, which can be exploited by malicious people to conduct SQL injection attacks.

Sat, 27 Sep 08
Tivoli Netcool/Webtop Security Issue and Information Disclosure Vulnerability
http://secunia.com/Advisories/32036/
A vulnerability and a security issue have been reported in Tivoli Netcool/Webtop, which can be exploited by malicious users to gain escalated privileges and by malicious people to disclose sensitive information.

Sat, 27 Sep 08
EasyRealtorPRO Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/32041/
David Sopas has reported some vulnerabilities in EasyRealtorPRO, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 26 Sep 08
Gentoo update for git
http://secunia.com/Advisories/32029/
Gentoo has issued an update for git. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.

Fri, 26 Sep 08
Gentoo update for clamav
http://secunia.com/Advisories/32030/
Gentoo has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 26 Sep 08
CA Service Desk Web Forms Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/32038/
Some vulnerabilities have been reported in CA Service Desk, which can be exploited by malicious people to conduct cross-site scripting attacks.

Fri, 26 Sep 08
Gentoo update for wireshark
http://secunia.com/Advisories/32028/
Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 26 Sep 08
Ubuntu update for thunderbird
http://secunia.com/Advisories/32025/
Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Fri, 26 Sep 08
OpenNMS Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/32019/
Some vulnerabilities have been reported in OpenNMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

Fri, 26 Sep 08
Jetik ESA "KayitNo" SQL Injection Vulnerabilities
http://secunia.com/Advisories/32008/
ZoRLu has reported two vulnerabilities in Jetik ESA, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 26 Sep 08
JETIK-WEB "kat" SQL Injection Vulnerability
http://secunia.com/Advisories/31932/
d3v1l has reported a vulnerability in JETIK-WEB, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 26 Sep 08
Aegis "aegis.cgi" Insecure Temporary Files
http://secunia.com/Advisories/31970/
A security issue has been reported in Aegis, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

Fri, 26 Sep 08
ol'bookmarks File Inclusion Vulnerabilities
http://secunia.com/Advisories/31706/
Some vulnerabilities have been discovered in ol'bookmarks, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to disclose sensitive information.

Fri, 26 Sep 08
Barcode Generator "code" File Inclusion Vulnerability
http://secunia.com/Advisories/31956/
dun has discovered a vulnerability in Barcode Generator, which can be exploited by malicious people to disclose sensitive information.

Fri, 26 Sep 08
MailWatch for MailScanner "doc" File Inclusion Vulnerability
http://secunia.com/Advisories/31994/
dun has discovered a vulnerability in MailWatch for MailScanner, which can be exploited by malicious people to disclose sensitive information.

Fri, 26 Sep 08
Drupal Brilliant Gallery Module "bgchecklist/save" SQL Injection
http://secunia.com/Advisories/32015/
Justin C. Klein Keane has reported a vulnerability in the Brilliant Gallery module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks.

Fri, 26 Sep 08
bitweaver Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/32014/
Michael Schratt has discovered some vulnerabilities in bitweaver, which can be exploited by malicious people to conduct cross-site scripting attacks.

Fri, 26 Sep 08
Drupal Ajax Checklist Module SQL Injection and Script Insertion
http://secunia.com/Advisories/32009/
Two vulnerabilities have been reported in the Ajax Checklist module for Drupal, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.

Thu, 25 Sep 08
Drupal Simplenews Module Newsletter Categories Script Insertion
http://secunia.com/Advisories/32022/
A vulnerability has been reported in the Simplenews module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

Thu, 25 Sep 08
Cisco Unified Communications Manager SIP Denial of Service Vulnerabilities
http://secunia.com/Advisories/32013/
Some vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).

Thu, 25 Sep 08
Cisco IOS Multiple Vulnerabilities
http://secunia.com/Advisories/31990/
Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or to compromise a vulnerable system.

Thu, 25 Sep 08
Symantec Veritas NetBackup Multiple Vulnerabilities
http://secunia.com/Advisories/32026/
Some vulnerabilities have been reported in Symantec Veritas NetBackup, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to overwrite arbitrary files or compromise a vulnerable system.

Thu, 25 Sep 08
Fedora update for phpMyAdmin
http://secunia.com/Advisories/32034/
Fedora has issued an update for phpMyAdmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to compromise a vulnerable system.

Thu, 25 Sep 08
Red Hat update for kernel
http://secunia.com/Advisories/32023/
Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions, to disclose potentially sensitive information, or to cause a DoS (Denial of Service).

Thu, 25 Sep 08
PHPcounter "l" Local File Inclusion Vulnerability
http://secunia.com/Advisories/31993/
dun has discovered a vulnerability in PHPcounter, which can be exploited by malicious people to disclose sensitive information.

Thu, 25 Sep 08
TYPO3 sr_freecap Extension Unspecified Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31946/
A vulnerability has been reported in the freeCap CAPTCHA (sr_freecap) extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.

Thu, 25 Sep 08
Ubuntu update for firefox and xulrunner
http://secunia.com/Advisories/32012/
Ubuntu has issued an update for firefox, firefox-3.0, and xulrunner-1.9. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.

Thu, 25 Sep 08
Checkpoint Connectra NGX "dir" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31553/
Sarid Harper has reported a vulnerability in Checkpoint Connectra NGX, which can be exploited by malicious people to conduct cross-site scripting attacks.

Thu, 25 Sep 08
6rbScript SQL Injection and Local File Disclosure
http://secunia.com/Advisories/31945/
Two vulnerabilities have been reported in 6rbScript, which can be exploited by malicious people to disclose sensitive information or to conduct SQL injection attacks.

Thu, 25 Sep 08
Basebuilder "mj_config[src_path]" File Inclusion Vulnerability
http://secunia.com/Advisories/31947/
dun has discovered a vulnerability in Basebuilder, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.

Thu, 25 Sep 08
TYPO3 phpMyAdmin Extension Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31992/
A vulnerability has been reported in the phpMyAdmin extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.

Thu, 25 Sep 08
InterTech WCMS "id" SQL Injection Vulnerability
http://secunia.com/Advisories/32000/
GeNiUs IrAQI has reported a vulnerability in InterTech WCMS, which can be exploited by malicious people to conduct SQL injection attacks.

Thu, 25 Sep 08
BurnAware NMSDVDX ActiveX Control Insecure Methods
http://secunia.com/Advisories/31950/
A vulnerability has been reported in BurnAware, which can be exploited by malicious people to potentially compromise a user's system.

Wed, 24 Sep 08
Basic PHP Events Lister "id" SQL Injection Vulnerability
http://secunia.com/Advisories/31779/
0x90 has discovered a vulnerability in Basic PHP Events Lister, which can be exploited by malicious people to conduct SQL injection attacks.

Wed, 24 Sep 08
Gentoo update for bitlbee
http://secunia.com/Advisories/31991/
Gentoo has issued an update for bitlbee. This fixes some security issues, which can be exploited by malicious people to bypass certain security restrictions and hijack accounts.

Wed, 24 Sep 08
CDBurnerXP Pro NMSDVDX ActiveX Control Insecure Methods
http://secunia.com/Advisories/31949/
bruiser has reported a vulnerability in CDBurnerXP, which can be exploited by malicious people to potentially compromise a user's system.

Wed, 24 Sep 08
NMS DVD Burning SDK ActiveX Control Insecure Methods
http://secunia.com/Advisories/31936/
bruiser has reported a vulnerability in NMS DVD Burning SDK ActiveX, which can be exploited by malicious people to potentially compromise a user's system.

Wed, 24 Sep 08
Chilkat XML ActiveX Component Insecure Methods
http://secunia.com/Advisories/31951/
shinnai has discovered some vulnerabilities in Chilkat XML ActiveX Component, which can be exploited by malicious people to compromise a user's system.

Wed, 24 Sep 08
fuzzylime (cms) "user" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31980/
Fabian Fingerle has reported a vulnerability in Fuzzylime CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

Wed, 24 Sep 08
x10 Automatic MP3 Script "web_root" File Inclusion Vulnerabilities
http://secunia.com/Advisories/31920/
Some vulnerabilities have been reported x10 Automatic MP3 Script, which can be exploited by malicious people to compromise a vulnerable system.

Wed, 24 Sep 08
Dataspade Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/31999/
r0t has reported some vulnerabilities in Dataspade, which can be exploited by malicious people to conduct cross-site scripting attacks.

Wed, 24 Sep 08
HP-UX rpcbind Denial of Service Vulnerability
http://secunia.com/Advisories/32002/
A vulnerability has been reported in HP-UX, which can be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 24 Sep 08
Vignette VCM Unspecified Security Bypass Vulnerability
http://secunia.com/Advisories/31983/
A vulnerability has been reported in Vignette, which can be exploited by malicious users to bypass certain security restrictions.

Wed, 24 Sep 08
PHP Pro Bid Multiple SQL Injection Vulnerabilities
http://secunia.com/Advisories/31981/
Jan van Niekerk has reported some vulnerabilities in PHP Pro Bid, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 23 Sep 08
Arcadem "articlecat" SQL Injection Vulnerability
http://secunia.com/Advisories/31975/
A vulnerability has been reported in Arcadem, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 23 Sep 08
Achievo "atkaction" Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31973/
A vulnerability has been discovered in Achievo, which can be exploited by malicious people to conduct cross-site scripting attacks.

Tue, 23 Sep 08
phpMyAdmin Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31974/
A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks.

Tue, 23 Sep 08
Gentoo update for newsbeuter
http://secunia.com/Advisories/31995/
Gentoo has issued an update for newsbeuter. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.

Tue, 23 Sep 08
Gentoo update for R
http://secunia.com/Advisories/31996/
Gentoo has issued an update for R. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

Tue, 23 Sep 08
Plaincart "p" SQL Injection Vulnerability
http://secunia.com/Advisories/31952/
r45c4l has discovered a vulnerability in Plaincart, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 23 Sep 08
BlueCUBE "id" SQL Injection Vulnerability
http://secunia.com/Advisories/31967/
r45c4l has reported a vulnerability is BlueCUBE CMS, which can be exploited by malicious people to conduct SQL injection attacks.

Sat, 20 Sep 08
Kantan WEB Server Multiple Vulnerabilities
http://secunia.com/Advisories/31917/
Multiple vulnerabilities have been reported in Kantan WEB Server, which can be exploited by malicious people to conduct cross-site scripting attacks and to disclose sensitive information.

Sat, 20 Sep 08
HyperStop Web Host Directory "admin/backup/db" Security Bypass
http://secunia.com/Advisories/31922/
r45c4l has reported a vulnerability in HyperStop Web Host Directory, which can be exploited by malicious people to bypass certain security restrictions.

Sat, 20 Sep 08
Attachmax Multiple Vulnerabilities
http://secunia.com/Advisories/31794/
K-159 has reported some vulnerabilities in Attachmax, which can be exploited by malicious people to disclose sensitive information, conduct SQL injection attacks, and compromise a vulnerable system.

Sat, 20 Sep 08
Assetman "order_by" SQL Injection Vulnerability
http://secunia.com/Advisories/31935/
Neo Anderson & Jackh4xor have discovered a vulnerability in Assetman, which can be exploited by malicious users to conduct SQL injection attacks.

Sat, 20 Sep 08
Xerox ESS/Network Controller Samba Vulnerability
http://secunia.com/Advisories/31911/
A vulnerability has been reported in Xerox ESS/Network Controller, which can be exploited by malicious people to compromise a vulnerable system.

Sat, 20 Sep 08
H-Sphere webshell4 "login.php" Cross-Site Scripting
http://secunia.com/Advisories/31830/
t0fx has reported two vulnerabilities in H-Sphere, which can be exploited by malicious people to conduct cross-site scripting attacks.

Sat, 20 Sep 08
TYPO3 kw_secdir Extension Unspecified Code Execution Vulnerability
http://secunia.com/Advisories/31897/
A vulnerability has been reported in the Secure Directory (kw_secdir) extension for TYPO3, which can be exploited by malicious users to compromise a vulnerable system.

Sat, 20 Sep 08
Sun Solaris ACL for UFS File Systems Local Denial of Service
http://secunia.com/Advisories/31919/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

Sat, 20 Sep 08
G DATA Products GDTdiIcpt.sys Privilege Escalation Vulnerability
http://secunia.com/Advisories/31941/
Tobias Klein has reported a vulnerability in various G DATA products, which can be exploited by malicious, local users to gain escalated privileges.

Sat, 20 Sep 08
Astaro update for ClamAV
http://secunia.com/Advisories/31929/
Astaro has issued an update for ClamAV. This fixes some vulnerabilities, where some have an unknown impact and others can potentially be exploited by malicious people to cause a DoS (Denial of Service).

Sat, 20 Sep 08
ISC BIND for Windows UDP Client Handler Denial of Service
http://secunia.com/Advisories/31924/
A vulnerability has been reported in ISC BIND, which can be exploited by malicious people to cause a DoS (Denial of Service).

Sat, 20 Sep 08
emacspeak Insecure Temporary Files
http://secunia.com/Advisories/31880/
Some security issues have been reported in emacspeak, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

Sat, 20 Sep 08
Cluster Project CMAN "fence_egenera" Insecure Temporary Files
http://secunia.com/Advisories/31887/
A security issue has been reported in the Cluster Project, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

Sat, 20 Sep 08
phpShop Session Fixation Vulnerability
http://secunia.com/Advisories/31948/
Michael Schratt has discovered a vulnerability in phpShop, which can be exploited by malicious people to conduct session fixation attacks.

Sat, 20 Sep 08
ProArcadeScript "random" SQL Injection Vulnerability
http://secunia.com/Advisories/31931/
SuNHouSe2 has reported a vulnerability in ProArcadeScript, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 19 Sep 08
TECHNOTE "shop_this_skin_path" File Inclusion Vulnerability
http://secunia.com/Advisories/31916/
webDEViL has reported a vulnerability in TECHNOTE, which can be exploited by malicious people to compromise a vulnerable system.

Fri, 19 Sep 08
E-Php Content Management System "es_id" SQL Injection
http://secunia.com/Advisories/31923/
HaCker_Egy has reported a vulnerability in E-Php Content Management System, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 19 Sep 08
Quick.Cart "admin.php" Cross-Site Scripting
http://secunia.com/Advisories/31938/
John Cobb has discovered a vulnerability in Quick.Cart, which can be exploited by malicious people to conduct cross-site scripting attacks.

Fri, 19 Sep 08
Fedora Directory Server Denial of Service Vulnerabilities
http://secunia.com/Advisories/31913/
Some vulnerabilities have been reported in Fedora Directory Server, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 19 Sep 08
FFmpeg libavformat gifdec.c GIF Processing Denial of Service
http://secunia.com/Advisories/31899/
A vulnerability has been reported in FFmpeg, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 19 Sep 08
Denora IRC Stats Denial of Service Vulnerability
http://secunia.com/Advisories/31762/
A vulnerability has been reported in Denora IRC Stats, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 19 Sep 08
TYPO3 phpMyAdmin Extension PHP Code Execution Vulnerability
http://secunia.com/Advisories/31918/
A vulnerability has been reported in the phpMyAdmin extension for TYPO3, which can be exploited by malicious users to compromise a vulnerable system.

Fri, 19 Sep 08
Drupal Link To Us Module "Link page header" Script Insertion
http://secunia.com/Advisories/31914/
Justin C. Klein Keane has reported a vulnerability in the Link To Us module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

Fri, 19 Sep 08
Drupal Talk Module Script Insertion and Security Bypass
http://secunia.com/Advisories/31908/
Two vulnerabilities have been reported in the Talk module for Drupal, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to bypass certain security restrictions.

Fri, 19 Sep 08
SUSE update for gnutls
http://secunia.com/Advisories/31939/
SuSE has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the library.

Fri, 19 Sep 08
Drupal Mailsave Module MIME Type Script Insertion
http://secunia.com/Advisories/31889/
A vulnerability has been reported in the Mailsave module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

Fri, 19 Sep 08
Sun Solaris Editors Tag File Handling Privilege Escalation Vulnerability
http://secunia.com/Advisories/31895/
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to gain escalated privileges.

Fri, 19 Sep 08
Drupal Mailhandler Module Unspecified SQL Injection
http://secunia.com/Advisories/31877/
A vulnerability has been reported in the Mailhandler module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks.

Fri, 19 Sep 08
rPath update for wireshark
http://secunia.com/Advisories/31886/
rPath has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

Fri, 19 Sep 08
WebPortal CMS "aid" SQL Injection Vulnerability
http://secunia.com/Advisories/31784/
StAker has discovered a vulnerability in WebPortal CMS, which can be exploited by malicious people to conduct SQL injection attacks.

Thu, 18 Sep 08
Personal FTP Server "RETR" Denial of Service Vulnerability
http://secunia.com/Advisories/31852/
Shinnok raydenxy has discovered a vulnerability in Personal FTP Server, which can be exploited by malicious users to cause a DoS (Denial of Service).

Thu, 18 Sep 08
iScripts EasyIndex "produid" SQL Injection Vulnerability
http://secunia.com/Advisories/31788/
SirGod has discovered a vulnerability in iScripts EasyIndex, which can be exploited by malicious people to conduct SQL injection attacks.

Thu, 18 Sep 08
LinksCaffePRO "idd" SQL Injection Vulnerability
http://secunia.com/Advisories/31844/
sl4xUz has reported a vulnerability in LinksCaffePRO, which can be exploited by malicious people to conduct SQL injection attacks.

Thu, 18 Sep 08
phpRealty "INC" File Inclusion Vulnerability
http://secunia.com/Advisories/31874/
ka0x has discovered a vulnerability in phpRealty, which can be exploited by malicious people to compromise a vulnerable system.

Thu, 18 Sep 08
Adobe Illustrator Unspecified Code Execution Vulnerabilities
http://secunia.com/Advisories/31902/
Some vulnerabilities have been reported in Adobe Illustrator, which can potentially be exploited by malicious people to compromise a vulnerable system.

Thu, 18 Sep 08
Quick.Cms.Lite "admin.php" Cross-Site Scripting
http://secunia.com/Advisories/31701/
John Cobb has discovered a vulnerability in Quick.Cms.Lite, which can be exploited by malicious people to conduct cross-site scripting attacks.

Thu, 18 Sep 08
Accellion File Transfer Appliance "api_error_email.html" Security Bypass
http://secunia.com/Advisories/31848/
Eric BEAULIEU has reported a vulnerability in Accellion File Transfer Appliance, which can be exploited by malicious people to bypass certain security restrictions.

Thu, 18 Sep 08
Data Dynamics ActiveReports ARViewer2 ActiveX Control Insecure Methods
http://secunia.com/Advisories/31894/
Tan Chew Keong has reported some vulnerabilities in Data Dynamics ActiveReports, which can be exploited by malicious people to overwrite arbitrary files and compromise a user's system.

Wed, 17 Sep 08
IBM HTTP Server mod_proxy Interim Responses Denial of Service
http://secunia.com/Advisories/31904/
IBM has acknowledged a vulnerability in IBM HTTP Server, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 17 Sep 08
Fedora update for tomcat5
http://secunia.com/Advisories/31891/
Fedora has issued an update for tomcat5. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, or disclose sensitive information.

Wed, 17 Sep 08
Debian update for openssh
http://secunia.com/Advisories/31885/
Debian has issued an update for openssh. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 17 Sep 08
Nokia E90 Communicator Denial of Service Vulnerability
http://secunia.com/Advisories/31857/
wins.mallow has reported a vulnerability in Nokia E90 Communicator, which can be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 17 Sep 08
Red Hat update for bzip2
http://secunia.com/Advisories/31869/
Red Hat has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 17 Sep 08
LANDesk Multiple Products Buffer Overflow Vulnerability
http://secunia.com/Advisories/31888/
A vulnerability has been reported in multiple LANDesk products, which can be exploited by malicious people to compromise a vulnerable system.

Wed, 17 Sep 08
Link Bid Two SQL Injection Vulnerabilities
http://secunia.com/Advisories/31853/
SirGod has discovered two vulnerabilities in Link Bid, which can be exploited by malicious people or users to conduct SQL injection attacks.

Wed, 17 Sep 08
Sun Management Center PRM Module Denial of Service
http://secunia.com/Advisories/31841/
A vulnerability has been reported in Sun Management Center (SunMC), which can be exploited by malicious people to cause a DoS (Denial of Service).

Wed, 17 Sep 08
OSADS Unspecified Security Issue
http://secunia.com/Advisories/31876/
A security issue with an unknown impact has been reported in OSADS.

Wed, 17 Sep 08
Pre Real Estate Listings "c" SQL Injection Vulnerability
http://secunia.com/Advisories/31873/
JosS has reported a vulnerability in Pre Real Estate Listings, which can be exploited by malicious people to conduct SQL injection attacks.

Wed, 17 Sep 08
iBoutique "cat" SQL Injection Vulnerability
http://secunia.com/Advisories/31871/
r45c4l and h4x0r have reported a vulnerability in iBoutique, which can be exploited by malicious people to conduct SQL injection attacks.

Wed, 17 Sep 08
Downline Goldmine Builder "id" SQL Injection
http://secunia.com/Advisories/31812/
Hussin X has reported a vulnerability in Downline Goldmine Builder and related scripts, which can be exploited by malicious people to conduct SQL injection attacks.

Wed, 17 Sep 08
Free PHP VX Guestbook Security Bypass Vulnerabilities
http://secunia.com/Advisories/31850/
Two vulnerabilities have been reported in Free PHP VX Guestbook, which can be exploited by malicious people to bypass certain security restrictions.

Wed, 17 Sep 08
Vastal I-Tech Dating Zone "fage" SQL Injection Vulnerability
http://secunia.com/Advisories/31747/
ZoRLu has reported a vulnerability in Vastal I-Tech Dating Zone, which can be exploited by malicious people to conduct SQL injection attacks.

Wed, 17 Sep 08
Vastal I-Tech Freelance Zone "coder_id" SQL Injection Vulnerability
http://secunia.com/Advisories/31717/
Stack has reported a vulnerability in Vastal I-Tech Freelance Zone, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 16 Sep 08
NooMS Two Cross-Site Scripting Vulnerabilities
http://secunia.com/Advisories/31859/
Khashayar Fereidani has discovered two vulnerabilities in NooMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

Tue, 16 Sep 08
PHPortfolio "id" SQL Injection Vulnerability
http://secunia.com/Advisories/31828/
Beenu has discovered a vulnerability in PHPortfolio, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 16 Sep 08
RazorCommerce Shopping Cart "id" SQL Injection Vulnerability
http://secunia.com/Advisories/31733/
rsauron and P47r1ck have reported a vulnerability in RazorCommerce Shopping Cart, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 16 Sep 08
pdnsd DNS Cache Poisoning and Denial of Service
http://secunia.com/Advisories/31847/
Some vulnerabilities have been reported in pdnsd, which can be exploited by malicious people to poison the DNS cache and cause a DoS (Denial of Service).

Tue, 16 Sep 08
NetBSD IPsec-Tools racoon Phase 1 Handler Denial of Service
http://secunia.com/Advisories/31890/
A vulnerability has been reported in NetBSD, which can be exploited by malicious people to cause a DoS (Denial of Service).

Tue, 16 Sep 08
YourOwnBux Security Bypass Vulnerability
http://secunia.com/Advisories/31851/
Tec-n0x has reported a vulnerability in YourOwnBux, which can be exploited by malicious people to bypass certain security restrictions.

Tue, 16 Sep 08
vbLOGIX Tutorials Script "cat_id" SQL Injection Vulnerability
http://secunia.com/Advisories/31829/
FIREH4CK3R has reported a vulnerability in vbLOGIX Tutorials Script, which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 16 Sep 08
Nortel Switched Firewall Products SNMPv3 HMAC Authentication Bypass
http://secunia.com/Advisories/31905/
Nortel has acknowledged a vulnerability in Nortel Switched Firewall products, which can be exploited by malicious people to spoof authenticated SNMPv3 packets.

Tue, 16 Sep 08
Debian update for git-core
http://secunia.com/Advisories/31780/
Debian has issued an update for git-core. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.

Tue, 16 Sep 08
WebSphere Application Server Unspecified Vulnerability
http://secunia.com/Advisories/31892/
A vulnerability with an unknown impact has been reported in WebSphere Application Server.

Tue, 16 Sep 08
PSCRIPT Forum "showprofil.php" SQL Injection
http://secunia.com/Advisories/31872/
-tmh- has reported a vulnerability in Powies PSCRIPT Forum (pForum), which can be exploited by malicious people to conduct SQL injection attacks.

Tue, 16 Sep 08
StingRay FTS Cross-Site Scripting Vulnerability
http://secunia.com/Advisories/31645/
Marc Ruef has reported a vulnerability in StingRay FTS, which can be exploited by malicious people to conduct cross-site scripting attacks.

Tue, 16 Sep 08
Linux Kernel s390 ptrace Local Denial of Service
http://secunia.com/Advisories/31826/
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

Tue, 16 Sep 08
TalkBack "language" Local File Inclusion
http://secunia.com/Advisories/31879/
SirGod has discovered a vulnerability in TalkBack, which can be exploited by malicious people to disclose sensitive information.

Tue, 16 Sep 08
Ruby on Rails ":offset" and ":limit" SQL Injection Vulnerabilities
http://secunia.com/Advisories/31910/
Some vulnerabilities have been reported in Ruby on Rails, which can be exploited by malicious people to conduct SQL injection attacks.

Fri, 5 Sep 08
CS-Cart "cs_cookies" SQL Injection Vulnerability
http://secunia.com/advisories/31686/
James Bercegay has reported a vulnerability in CS-Cart, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Drupal Content Construction Kit Script Insertion Vulnerabilities
http://secunia.com/advisories/31757/
Some vulnerabilities have been reported in the Drupal Content Construction Kit (CCK), which can be exploited by malicious users to conduct script insertion attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Gentoo update for realplayer
http://secunia.com/advisories/31756/
Gentoo has issued an update for realplayer. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
rPath update for libtiff
http://secunia.com/advisories/31763/
rPath has issued an update for libtiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
HP OpenView Select Identity Connectors Information Disclosure
http://secunia.com/advisories/31764/
A vulnerability has been reported in various HP OpenView Select Identity Connectors, which can be exploited by malicious, local users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Gentoo update for yelp
http://secunia.com/advisories/31753/
Gentoo has issued an update for yelp. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Gentoo update for dnsmasq
http://secunia.com/advisories/31754/
Gentoo has issued an update for dnsmasq. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Gentoo update for mysql
http://secunia.com/advisories/31755/
Gentoo has issued an update for mysql. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Wireshark Denial of Service Vulnerabilities
http://secunia.com/advisories/31674/
Some vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Django Authentication Cross-Site Request Forgery
http://secunia.com/advisories/31729/
A vulnerability has been reported in Django, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Celerondude Uploader "username" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31735/
A vulnerability has been discovered in Celerondude Uploader, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Najdi.si Toolbar Buffer Overflow Vulnerability
http://secunia.com/advisories/31671/
shinnai has discovered a vulnerability in Najdi.si Toolbar, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
SUSE update for IBMJava5-JRE and java-1_5_0-ibm
http://secunia.com/advisories/31736/
SUSE has issued an update for IBMJava5-JRE and java-1_5_0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Words tag "word" SQL Injection Vulnerability
http://secunia.com/advisories/31653/
Hussin X has reported a vulnerability in Words tag, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
CMSbright "id_rub_page" SQL Injection Vulnerability
http://secunia.com/advisories/31669/
BorN To K!LL has reported a vulnerability in CMSbright, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
FreeBSD ICMPv6 "Packet Too Big" MTU Denial of Service Vulnerability
http://secunia.com/advisories/31745/
FreeBSD has acknowledged a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
aspWebAlbum Multiple Vulnerabilities
http://secunia.com/advisories/31649/
Alemin_Krali has reported some vulnerabilities in aspWebAlbum, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
PageR Enterprise Directory Traversal Vulnerability
http://secunia.com/advisories/31693/
A vulnerability has been reported in PageR Enterprise, which can be exploited by malicious users to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Cisco ASA and PIX Security Appliances Multiple Vulnerabilities
http://secunia.com/advisories/31730/
Some vulnerabilities have been reported in Cisco ASA and PIX appliances, which can be exploited by malicious people to disclose sensitive information, and by malicious users and malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
IBM AIX "swcons" Command Privilege Escalation Vulnerability
http://secunia.com/advisories/31739/
A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Astaro Security Gateway DNS Cache Poisoning
http://secunia.com/advisories/31742/
Astaro has acknowledged a vulnerability in Astaro Security Gateway, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
FreeBSD AMD64 General Protection Fault Privilege Escalation
http://secunia.com/advisories/31743/
FreeBSD has acknowledged a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Fri, 5 Sep 08
Living Local Website "r" SQL Injection Vulnerability
http://secunia.com/advisories/31696/
Hussin X has reported a vulnerability in Living Local Website, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Cisco Secure ACS EAP Packet Denial of Service
http://secunia.com/advisories/31731/
A vulnerability has been reported in Cisco Secure Access Control Server (ACS), which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Slackware update for php
http://secunia.com/advisories/31738/
Slackware has issued an update for php. This fixes some vulnerabilities, where some have an unknown impact and others can potentially be exploited by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Ubuntu update for libxml2
http://secunia.com/advisories/31728/
Ubuntu has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
DIC shop_v50 / shop_v52 Cross-Site Scripting Vulnerability
http://secunia.com/advisories/31652/
A vulnerability has been reported in DIC shop_v50 and shop_v52, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Ruby on Rails REXML Denial of Service Vulnerability
http://secunia.com/advisories/31723/
A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Belkin Wireless G Router Web Interface Authentication Bypass
http://secunia.com/advisories/31665/
noensr has reported a vulnerability in Belkin Wireless G F5D7632-4V6, which can be exploited by malicious people to bypass certain security restrictions.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Invision Power Board Multiple Vulnerabilities
http://secunia.com/advisories/31683/
DarkFig has reported some vulnerabilities in Invision Power Board (IP.Board), which can be exploited by malicious users to disclose sensitive information and compromise a vulnerable system, and by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
ClamAV CHM Processing Denial of Service
http://secunia.com/advisories/31725/
A vulnerability has been reported in ClamAV, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
@Mail Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31720/
C1c4Tr1Z has discovered some vulnerabilities in @Mail, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
@Mail WebMail Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31727/
C1c4Tr1Z has discovered some vulnerabilities in @Mail WebMail, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Postfix epoll File Descriptor Leak Security Issue
http://secunia.com/advisories/31716/
A security issue has been reported in Postfix, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Open Media Collectors Database Cross-Site Scripting and Request Forgery
http://secunia.com/advisories/31719/
Some vulnerabilities have been discovered in Open Media Collectors Database (OpenDb), which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
eliteCMS "page" SQL Injection Vulnerability
http://secunia.com/advisories/31722/
e.wiZz! has discovered a vulnerability in eliteCMS, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Softalk Mail Server IMAP Denial of Service Vulnerability
http://secunia.com/advisories/31715/
João Antunes has discovered a vulnerability in Softalk Mail Server, which can be exploited by malicious users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Thu, 4 Sep 08
Spice Classifieds "cat_path" SQL Injection Vulnerability
http://secunia.com/advisories/31664/
Cyb3r-1sT has reported a vulnerability in Spice Classifieds, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Novell iPrint Client nipplib.dll "IppCreateServerRef()" Buffer Overflow
http://secunia.com/advisories/31370/
Secunia Research has discovered a vulnerability in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
PHP Coupon Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/31699/
Hussin X has reported a vulnerability in PHP Coupon Script, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Ubuntu update for tiff
http://secunia.com/advisories/31698/
Ubuntu has issued an update for tiff. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
HP OpenView Network Node Manager Denial of Service
http://secunia.com/advisories/31688/
Some vulnerabilities have been reported in HP OpenView Network Node Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Citrix Access Gateway DNS Cache Poisoning
http://secunia.com/advisories/31594/
Citrix has acknowledged a vulnerability in Access Gateway, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Reciprocal Links Manager "site" SQL Injection Vulnerability
http://secunia.com/advisories/31703/
Hussin X has discovered a vulnerability in Reciprocal Links Manager, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Web directory "site" SQL Injection Vulnerability
http://secunia.com/advisories/31629/
Hussin X has reported a vulnerability in Web directory, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Debian update for wordnet
http://secunia.com/advisories/31654/
Debian has issued an update for wordnet. This fixes some vulnerabilities, which can potentially be exploited by malicious, local users to gain escalated privileges, and by malicious people to compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
vtiger CRM Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/31679/
Fabian Fingerle has discovered some vulnerabilities in vtiger CRM, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Wed, 3 Sep 08
Kyocera FS-118MFP Command Center Directory Traversal Vulnerability
http://secunia.com/advisories/31680/
Francesco Tornieri has reported a vulnerability in Kyocera FS-118MFP, which can be exploited by malicious people to disclose potentially sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
ZoneMinder Multiple Vulnerabilities
http://secunia.com/advisories/31636/
Filip Palian has reported some vulnerabilities in ZoneMinder, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks and compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Plait Insecure Temporary Files
http://secunia.com/advisories/31617/
A security issue has been reported in Plait, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Dreambox DM500 Long Requests Denial of Service Vulnerability
http://secunia.com/advisories/31650/
Marc Ruef has reported a vulnerability in Dreambox DM500, which can be exploited by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Friendly Technologies fwDialerTechTool.dll Multiple Vulnerabilities
http://secunia.com/advisories/31644/
Some vulnerabilities have been discovered in Friendly Technologies fwDialerTechTool.dll ActiveX control, which can be exploited by malicious people to disclose sensitive information and compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
HP-UX update for Netscape / Red Hat Directory Server
http://secunia.com/advisories/31702/
HP has issued an update for Netscape / Red Hat Directory Server. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Newsbeuter URL Processing Shell Command Execution
http://secunia.com/advisories/31676/
A vulnerability has been reported in Newsbeuter, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Debian update for slash
http://secunia.com/advisories/31691/
Debian has issued an update for slash. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Acoustica MP3 CD Burner ASX Playlist Buffer Overflow
http://secunia.com/advisories/31666/
n00b has discovered a vulnerability in Acoustica MP3 CD Burner, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware Workstation Multiple Vulnerabilities
http://secunia.com/advisories/31707/
VMware has acknowledged some vulnerabilities in VMware Workstation, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware Server Multiple Vulnerabilities
http://secunia.com/advisories/31708/
VMware has acknowledged some vulnerabilities in VMware Server, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware Player Multiple Vulnerabilities
http://secunia.com/advisories/31709/
VMware has acknowledged some vulnerabilities in VMware Player, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware ACE Multiple Vulnerabilities
http://secunia.com/advisories/31710/
VMware has acknowledged some vulnerabilities in VMware ACE, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware ESX / ESXi Server Multiple Vulnerabilities
http://secunia.com/advisories/31713/
VMware has acknowledged a weakness and a vulnerability in VMware ESX Server, which can be exploited by malicious users to disclose potentially sensitive information and by malicious people to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware ESX Server Multiple Vulnerabilities
http://secunia.com/advisories/31712/
VMware has acknowledged some vulnerabilities in VMware ESX Server, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Acoustica Beatcraft Project File Buffer Overflow Vulnerability
http://secunia.com/advisories/31660/
Koshi has discovered a vulnerability in Acoustica Beatcraft, which can be exploited by malicious people to compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
VMware Fusion Multiple Vulnerabilities
http://secunia.com/advisories/31711/
VMware has acknowledged some vulnerabilities in VMware Fusion, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Microsoft BitLocker Password Disclosure Security Issue
http://secunia.com/advisories/31619/
A security issue has been reported in Microsoft BitLocker, which can be exploited by malicious, local users to disclose sensitive information.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Avaya Products Linux Kernel Local Denial of Service
http://secunia.com/advisories/31689/
Avaya has acknowledged a vulnerability in various Avaya products, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Avaya Products Linux Kernel Multiple Vulnerabilities
http://secunia.com/advisories/31685/
Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
EasyClassifields "go" SQL Injection Vulnerability
http://secunia.com/advisories/31682/
e.wiZz! has discovered a vulnerability in EasyClassifields, which can be exploited by malicious people to conduct SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Nortel Business Communications Manager BIND DNS Cache Poisoning
http://secunia.com/advisories/31588/
Nortel has acknowledged a vulnerability in Business Communications Manager, which can be exploited by malicious people to poison the DNS cache.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Novell IDM Cross-Site Scripting and Script Insertion
http://secunia.com/advisories/31678/
Some vulnerabilities have been reported in Novell User Application and Novell Identity Manager Roles Based Provisioning Module, which can be exploited by malicious people to conduct script insertion and cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Tue, 2 Sep 08
Brim SQL Injection and Script Insertion Vulnerabilities
http://secunia.com/advisories/31661/
Fisher762 has discovered two vulnerabilities in Brim, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 1 Sep 08
rPath update for ruby
http://secunia.com/advisories/31697/
rPath has issued an update for ruby. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and conduct spoofing attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/

Mon, 1 Sep 08
SUSE Update for Multiple Packages
http://secunia.com/advisories/31687/
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, gain escalated privileges, and bypass certain security restrictions, by malicious users to conduct script insertion attacks and cause a DoS (Denial of Service), and by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, cause a DoS, poison the DNS cache, and potentially compromise a vulnerable system.



Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/

Home | Contact | PHP Scripts | Sitemap | News | Jobs | RSS Readers | Donations

© amigura.co.uk All Rights Reserved.