Archive for the ‘Secunia’ Category

[3/5] MyDesign Sayac “user” and “pass” SQL Injection Vulnerabilities

|
Comments Off

Posted in Secunia on February 4th, 2009 by Secunia

Kacak has discovered two vulnerabilities in MyDesign Sayac, which can be exploited by malicious people to conduct SQL injection attacks.

http://secunia.com/Advisories/33771/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[2/5] Bugzilla Script Insertion and Cross-Site Request Forgery

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

Some vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to conduct script insertion attacks and malicious people to conduct cross-site request forgery attacks.

http://secunia.com/Advisories/33789/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[2/5] Bugzilla Cross-Site Request Forgery Vulnerability

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.

http://secunia.com/Advisories/33782/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[3/5] Bugzilla Multiple Vulnerabilities

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

Some vulnerabilities and a security issue have been reported in Bugzilla, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to potentially disclose sensitive information or to conduct cross-site request forgery attacks.

http://secunia.com/Advisories/33781/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[4/5] phpSlash “generic()” PHP Code Injection Vulnerability

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

DarkFig has discovered a vulnerability in phpSlash, which can be exploited by malicious people to compromise a vulnerable system.

http://secunia.com/Advisories/33717/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[3/5] AJA “currentlang” and “module_name” Local File Inclusion Vulnerabilities

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

Some vulnerabilities have been discovered in AJA, which can be exploited by malicious people to disclose potentially sensitive information.

http://secunia.com/Advisories/33735/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[3/5] HP NonStop Server DNS Cache Poisoning Vulnerability

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

HP has acknowledged a vulnerability in HP NonStop Server, which can be exploited by malicious people to poison the DNS cache.

http://secunia.com/Advisories/33786/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[2/5] D-Link DVG-2001S Cross-Site Scripting and Cross-Site Request Forgery

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

Some vulnerabilities have been reported in D-Link DVG-2001S, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.

http://secunia.com/Advisories/33738/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[3/5] CMS from Scratch File Upload Vulnerability

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

StAkeR has discovered a vulnerability in CMS from Scratch, which can be exploited by malicious people to bypass certain security restrictions.

http://secunia.com/Advisories/33778/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |

[2/5] Kaspersky Products klim5.sys Privilege Escalation Vulnerability

|
Comments Off

Posted in Secunia on February 3rd, 2009 by Secunia

Ruben Santamarta has reported a vulnerability in multiple Kaspersky products, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially gain escalated privileges.

http://secunia.com/Advisories/33788/

NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/

Tags: |