J漾諸事會社

A vulnerability has been reported in GNU tar, which can be exploited by malicious people to compromise a user's system.

eCentrex VOIP Client Component ActiveX Control Buffer Overflow
rgod has discovered a vulnerability in the eCentrex VOIP Client Component ActiveX control, which can be exploited by malicious people to compromise a user's system.
 
Novell Identity Manager Client Login Extension Information Disclosure
A security issue has been reported in the Client Login Extension for Novell Identity Manager, which can be exploited by malicious, local users to disclose sensitive information.
 
Rogue Trooper Asura Engine Packet Handling Buffer Overflow
Luigi Auriemma has reported a vulnerability in Rogue Trooper, which can be exploited by malicious people to compromise a vulnerable system.

Bugzilla Security Issue and Multiple Vulnerabilities
Some vulnerabilities and a security issue have been reported in Bugzilla, which can be exploited by malicious users to inject shell commands, and by malicious people to conduct cross-site scripting attacks and to disclose potentially sensitive information.
 
Joomla Nice Talk Component "tagid" SQL Injection
ajann has reported a vulnerability in the Nice Talk component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
 
MapServer Multiple Cross-Site Scripting Vulnerabilities
Some vulnerabilities have been reported in MapServer, which can be exploited by malicious people to conduct cross-site scripting attacks.

Soldat Multiple Denial of Service Vulnerabilities
Some vulnerabilities have been reported in Soldat, which can be exploited by malicious people to cause a DoS (Denial of Service).

Unreal Commander Archive Handling Directory Traversal Vulnerability
Gynvael Coldwind has discovered a vulnerability in Unreal Commander, which potentially can be exploited by malicious people to compromise a user's system.

Hitachi Cosminexus Application Server Incorrect Handling of Group Permissions
A weakness has been reported in Cosminexus Application Server, which can potentially allow a server process to perform actions with escalated privileges.

Hitachi DABroker Unspecified Denial of Service Vulnerability
A vulnerability has been reported in Hitachi DABroker, which can be exploited by malicious people to cause a DoS (Denial of Service).

Skulltag Huffman Decompression Heap Overflow Vulnerability
Luigi Auriemma has reported a vulnerability in Skulltag, which potentially can be exploited by malicious people to compromise a vulnerable system.
 
Media Player Classic FLI File Processing Buffer Overflow
wushi has discovered a vulnerability in Media Player Classic, which can be exploited by malicious people to compromise a user's system.
 
Sophos Anti-Virus UPX and BZIP Processing Denial of Service Vulnerabilities
Two vulnerabilities have been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).

Ipswitch WS_FTP Server Script Insertion Vulnerability
John Harwold has discovered a vulnerability in Ipswitch WS_FTP Server, which can be exploited by malicious users to conduct script insertion attacks.

Red Hat update for tar
Red Hat has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.

Mandriva update for gimp
Mandriva has issued an update for gimp. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.