prev · 09.05.2008 · next 
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | 31 | |
SazCart <= 1.5.1 (prodid) Remote SQL Injection Exploit
( 154 days 17 hours ago)
#!/usr/bin/perl # SazCart <= v1.5.1 (details&prodid) Remote SQL Injection Exploit # HomePage: # Discovered & Coded by JosS # Contact: sys-project[at]hotmail.com # Spanish Hackers Team / Sys - Project / EspSeC # # rgod forever :D # Dork: "Powered by SazCart" print "\t\t\n\n"; ...
[ MDVSA-2008:099 ] - Updated ImageMagick packages fix vulnerabilities
( 154 days 20 hours ago)
Mandriva Linux Security Advisory MDVSA-2008:099 Package : ImageMagick Date : May 8, 2008 Affected: 2007.1, 2008.0, Corporate 3.0, Corporate 4.0 Problem Description: A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF ...
FInal EUSecWest 2008 Speakers
( 154 days 20 hours ago)
The selected papers for EUSecWest 2008 are: * PhlashDance, discovering permanent denial of service attacks against embedded systems - Rich Smith, HP Labs * Attacking Near Field Communications (NFC) Mobile Phones - Collin Muliner, trifinite * Abusing X.509 certificate features - Alexander Klink, Cynops GmbH ...
[ GLSA 200805-06 ] Firebird: Data disclosure
( 154 days 20 hours ago)
- - Gentoo Linux Security Advisory GLSA 200805-06 - - - - Severity: Normal Title: Firebird: Data disclosure Date: May 09, 2008 Bugs: #216158 ID: 200805-06 - - Synopsis Firebird allows remote connections to the administrative account without verifying credentials. Background ...
[ GLSA 200805-07 ] Linux Terminal Server Project: Multiple vulnerabilities
( 154 days 20 hours ago)
- - Gentoo Linux Security Advisory GLSA 200805-07 - - - - Severity: Normal Title: Linux Terminal Server Project: Multiple vulnerabilities Date: May 09, 2008 Bugs: #215699 ID: 200805-07 - - Synopsis Multiple vulnerabilities have been discovered in components shipped ...
Oracle Application Server 10G ORA_DAV Basic Authentication Bypass Vulnerability
( 154 days 20 hours ago)
Affected Software/Device: Oracle Application Server Portal Vulnerability: Authentication Bypass Tested Version: 10G Risk: Medium Description: Oracle Application Server Portal (OracleAS Portal) is a Web-based application for building and deploying portals. It provides a secure, manageable environment for accessing and interacting with enterprise ...
[ GLSA 200805-08 ] InspIRCd: Denial of Service
( 154 days 20 hours ago)
- - Gentoo Linux Security Advisory GLSA 200805-08 - - - - Severity: Normal Title: InspIRCd: Denial of Service Date: May 09, 2008 Bugs: #215704 ID: 200805-08 - - Synopsis A buffer overflow in InspIRCd allows remote attackers to cause a Denial ...
XSS and CSRF vulnerability on Cpanel 11
( 154 days 20 hours ago)
1. DESCRIPTION OF THE SOFTWARE cPanel is a hosting automation tool. WHM interface provides access to the heart of the cPanel and WHM package and allows a Server Administrator to simply configure a few options and be on their way to hosting web sites. ...
Apache Server HTML Injection and UTF-7 XSS Vulnerability
( 154 days 20 hours ago)
Apache Server HTML Injection and UTF-7 XSS Vulnerability This vulnerability was found by Yaniv Miron and Yossi Yakubov. This vulnerability will allow an attacker to inject an XSS to any Apache server that use the Forbidden 403 default page. After injecting this string: %3EDEFACED%3C!xcADw-scriptAD4-alert('xss')ADw-/scriptAD4//-- ...
[USN-611-3] GStreamer Good Plugins vulnerability
( 154 days 20 hours ago)
Ubuntu Security Notice USN-611-3 May 08, 2008 gst-plugins-good0.10 vulnerability CVE-2008-1686 A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...
Gentoo: InspIRCd Denial of Service
( 154 days 21 hours ago)
LinuxSecurity.com: A buffer overflow in InspIRCd allows remote attackers to cause a Denial of Service.
Gentoo: Linux Terminal Server Project Multiple vulnerabilities
( 154 days 21 hours ago)
LinuxSecurity.com: Multiple vulnerabilities have been discovered in components shipped with LTSP which allow remote attackers to compromise terminal clients.
Gentoo: Firebird Data disclosure
( 154 days 21 hours ago)
LinuxSecurity.com: Firebird allows remote connections to the administrative account without verifying credentials.
Mandriva: Updated hal-info package fixes resume issue
( 154 days 21 hours ago)
LinuxSecurity.com: An updated hal-info package fixes resume from suspend to RAM on HP 6710b systems. It had previously failed with a black screen on Mandriva Linux 2008.0.
Mandriva: Updated ImageMagick packages fix vulnerabilities
( 154 days 21 hours ago)
LinuxSecurity.com: A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF file, it could be made to overwrite heap memory beyond the bounds of its allocated memory, potentially allowing an attacker to execute arbitrary code on the system running ImageMagick (CVE-2008-1096).
Ubuntu: GStreamer Good Plugins vulnerability
( 154 days 21 hours ago)
LinuxSecurity.com: It was discovered that Speex did not properly validate its input when processing Speex file headers. If a user or automated system were tricked into opening a specially crafted Speex file, an attacker could create a denial of service in applications linked against Speex or possibly execute arbitrary code as the user invoking the program.
prev · 09.05.2008 · next
