Secunia Security Advisory 33442
Secunia Security Advisory - Red Hat has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
View ArticleSecunia Security Advisory 33519
Secunia Security Advisory - pfSense has acknowledged some vulnerabilities in pfSense, which can be exploited by malicious people to conduct cross-site request forgery or spoofing attacks.
View ArticleSecunia Security Advisory 33416
Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to disclose sensitive information.
View ArticleOTSTurntables 1.00.027 .ofl Stack Overflow
OTSTurntables version 1.00.027 local stack overflow exploit that generates a malicious .ofl file.
View ArticleTeamSpeak 2.0.23.17 File Disclosure
TeamSpeak versions 2.0.23.17 and below suffer from a remote file disclosure vulnerability.
View ArticleSyzygy CMS 0.3 SQL Injection
Syzygy CMS versions 0.3 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass.
View ArticleNetvolution CMS 1.0 XSS / SQL Injection
Netvolution CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
View ArticleAAA EasyGrid Active-X 3.51 File Overwrite
AAA EasyGrid Active-X version 3.51 remote file overwrite exploit.
View ArticlePhosheezy 2.0 Command Execution
Phosheezy version 2.0 remote command execution exploit.
View ArticlePHP Photo Album 0.8b Local File Inclusion
Php Photo Album version 0.8 BETA suffers from a local file inclusion vulnerability in index.php.
View ArticleExcel Viewer OCX 3.2 File Execution
Excel Viewer OCX version 3.2 remote file execution exploit.
View ArticleFreeBSD Security Advisory SA-09:04.bind
FreeBSD Security Advisory - The DSA_do_verify() function from OpenSSL is used to determine if a DSA digital signature is valid. When DNSSEC is used within BIND it uses DSA_do_verify() to verify DSA...
View ArticleMandriva Linux Security Advisory 2009-007
Mandriva Linux Security Advisory 2009-007 - A flaw was found in how NTP checked the return value of signature verification. A remote attacker could use this to bypass certificate validation by using a...
View ArticleMandriva Linux Security Advisory 2009-008
Mandriva Linux Security Advisory 2009-008 - Security vulnerabilities have been discovered and corrected in VNC server of qemu version 0.9.1 and earlier, which could lead to denial-of-service attacks....
View ArticleMandriva Linux Security Advisory 2009-009
Mandriva Linux Security Advisory 2009-009 - Security vulnerabilities have been discovered and corrected in VNC server of kvm version 79 and earlier, which could lead to denial-of-service attacks. The...
View ArticleMandriva Linux Security Advisory 2009-010
Mandriva Linux Security Advisory 2009-010 - A security vulnerability have been discovered and corrected in VNC server of qemu 0.9.1 and earlier, which could lead to a denial-of-service attack. The...
View ArticleEDraw Office Viewer 5.4 Insecure Method
EDraw Office Viewer Component version 5.4 HttpDownloadFile() insecure method exploit.
View ArticleJoomla Camelcitydb2 2.2 SQL Injection
The Joomla Camelcitydb2 component version 2.2 suffers from a remote SQL injection vulnerability.
View ArticleJoomla Fantasytournament SQL Injection
The Joomla Fantasytournament component suffers from multiple remote SQL injection vulnerabilities.
View ArticleAdvisory Check Tool Version 2.20
Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are...
View ArticleFwknop Port Knocking Utility
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific...
View ArticleOracle BEA WebLogic Server Apache Connector Buffer Overflow
A remotely exploitable vulnerability has been discovered in the Apache Connector component of Oracle BEA WebLogic Server. Specifically, the vulnerability is due to a boundary error when processing...
View Article3COM TFTP Buffer Overflow
3COM TFTP buffer overflow exploit that binds a shell to port 4444.
View ArticleKDE Konqueror 4.1.3 iframe src Memory Leak Exploit
KDE Konqueror version 4.1.3 iframe src memory leak exploit that causes a denial of service condition.
View ArticleKDE Konqueror 4.1.3 link href Memory Leak Exploit
KDE Konqueror version 4.1.3 link href memory leak exploit that causes a denial of service condition.
View Article