J漾諸事會社

 <= You can click on the link below for more detail


Fedora update for snort
Fedora has issued an update for snort. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

QGit "DataLoader::doStart()" Insecure Temporary Files
A vulnerability has been reported in QGit, which can be exploited by malicious, local users to gain escalated privileges.

IBM HTTP Server Multi-Processing Module Denial of Service
IBM has acknowledged a vulnerability in IBM HTTP Server, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

Debian update for xorg-server
Debian has issued an update for xorg-server. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.

X.org X11 Composite Pixmap Privilege Escalation Vulnerability
A vulnerability has been reported in X.org X11, which potentially can be exploited by malicious, local users to gain escalated privileges.

Unreal Commander FTP Download Directory Traversal Vulnerability
Gynvael Coldwind has reported a vulnerability in Unreal Commander, which can be exploited by malicious people to compromise a user's system.

IBM HTTP Server mod_proxy "date" Denial of Service Vulnerability
IBM has acknowledged a vulnerability in IBM HTTP Server, which can be exploited by malicious people to cause a DoS (Denial of Service).

Magellan Explorer FTP Directory Traversal Vulnerability
Gynvael Coldwind has discovered a vulnerability in Magellan Explorer, which can be exploited by malicious people to compromise a user's system.

Avaya CMS / IR Solaris Special File System "strfreectty()" Security Issue
Avaya has acknowledged a security issue in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
 
rPath update for krb5
rPath has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

Total Commander FTP Download Directory Traversal Vulnerability
Gynvael Coldwind has reported a vulnerability in Total Commander, which can be exploited by malicious people to compromise a user's system.

ER Mapper ECW JPEG 2000 Plug-ins NCSView ActiveX Control Buffer Overflows
Will Dormann has reported some vulnerabilities in ER Mapper ECW JPEG 2000 Plug-ins, which can be exploited by malicious people to compromise a user's system.

Mandriva update for eggdrop
Mandriva has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

Mandriva update for mysql
Mandriva has issued an update for mysql. This fixes a vulnerability and a security issue, which can be exploited by malicious users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service).
 
Mandriva update for konqueror
Mandriva has issued an update for konqueror. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks.

Mandriva update for krb5
Mandriva has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.

Fedora update for clamav
Fedora has issued an update for clamav. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.

Fedora update for gd
Fedora has issued an update for gd. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited to cause a DoS (Denial of Service).
 
IBM WebSphere Application Server Unspecified Vulnerability
A vulnerability with an unknown impact has been reported in IBM WebSphere Application Server.

Baofeng Storm Multiple Buffer Overflow Vulnerabilities
ZhenHan.Liu has discovered some vulnerabilities in Baofeng Storm, which can be exploited by malicious people to compromise a user's system.

Webace Linkscript "id" SQL Injection Vulnerability
k1tk4t has discovered a vulnerability in Webace Linkscript, which can be exploited by malicious people to conduct SQL injection attacks.

Debian update for phpmyadmin
Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks.

CellFactor: Revolution Format String and Buffer Overflow Vulnerabilities
Luigi Auriemma has reported two vulnerabilities in CellFactor: Revolution, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

TorrentTrader Script Insertion Vulnerabilities
Some vulnerabilities have been discovered in TorrentTrader, which can be exploited by malicious users to conduct script insertion attacks

lighttpd mod_fastcgi PHP Header Overflow
Mattias Bengtsson and Philip Olausson have reported a vulnerability in lighttpd, which can be exploited by malicious people to compromise a vulnerable system.