J漾諸事會社

 <= You can click on the link below for more detail


InterWorx-CP Multiple Cross-Site Scripting
oz has reported some vulnerabilities in InterWorx-CP, which can be exploited by malicious people to conduct cross-site scripting attacks.

Cisco CallManager / CUCM Cross-Site Scripting and SQL Injection
Some vulnerabilities have been reported in Cisco Unified CallManager and Unified Communications Manager (CUCM), which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

Debian update for postfix-policyd
Debian has issued an update for postfix-policyd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system

Yahoo! Messenger YVerInfo.dll ActiveX Control Buffer Overflow
A vulnerability has been reported in Yahoo! Messenger, which can be exploited by malicious people to compromise a user's system.

Ubuntu update for tcp-wrappers
Ubuntu has acknowledged a vulnerability in tcp-wrappers, which can be exploited by malicious people to bypass certain security restrictions.

Pakupaku CMS File Upload and Local File Inclusion
GoLd_M has discovered two vulnerabilities in Pakupaku CMS, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.

Python tarfile Module Directory Traversal and Symlink Vulnerability
Some vulnerabilities have been reported in the Python tarfile module, which can be exploited by malicious people to compromise a vulnerable system.
 
Debian update for lighttpd
Debian has issued an update for lighttpd. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).

Doomsday Multiple Vulnerabilities
Luigi Auriemma has reported some vulnerabilities in Doomsday, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system

SSHKeychain Unspecified Security Issues
Some security issues with unknown impact have been reported in SSHKeychain.

eScan Multiple Products Insecure File Permissions
Edi Strosar has discovered a security issue in multiple eScan products, which can be exploited by malicious, local users to gain escalated privileges.

SUSE update for opera
SUSE has issued an update for opera. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise vulnerable system.
 
Apache mod_proxy "date" Denial of Service Vulnerability
A vulnerability has been reported in the Apache mod_proxy module, which can be exploited by malicious people to cause a DoS (Denial of Service).