GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
8c40148ad471f4a7e583bc5f84ebf652c395b303deaf2583b11e51f43fa8b47clibssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and SECSH-PUBLICKEY.
507b7a60b7cafeef071c58a93d2c3c9ee07092a61d5ab29aee73e8c4c6c7020aMandriva Linux Security Advisory 2009-087 - A security vulnerability has been identified and fixed in OpenSSL, which could crash applications using OpenSSL library when parsing malformed certificates. The updated packages have been patched to prevent this.
ffa65602f5ee61acc9b571643e7fb0816699b26ff022a22ec97b6220db26dbc0GLink Word Link Script version 1.2.4 suffers from an arbitrary file upload vulnerability.
2caaa10bebb7d2b87ecef572bf23d85331bd66b6a114f9ad58af2b411f25d4bcFamily Connection versions 1.8.2 and below remote shell upload exploit.
d39ab714bd1b243caa70cb00e9ec959bcbf193a26c21e3d4b6aab9672df5c9a5Family Connection versions 1.8.2 and below suffer from an arbitrary file upload vulnerability.
6e12e5a57c8e1e8367f687e3e0d2111e383b1e75de6a4c688d1f1f450ddd1ee2Family Connection versions 1.8.2 and below suffer from a blind SQL injection vulnerability that allows for remote command execution.
59af3ac79728f013b2a7a7bbe5ad3658ca8a5d67c81f984225234638ee75c295Gentoo Linux Security Advisory GLSA 200904-03 - An untrusted search path vulnerability in Gnumeric might result in the execution of arbitrary code. James Vega reported an untrusted search path vulnerability in the GObject Python interpreter wrapper in Gnumeric. Versions less than 1.8.4-r1 are affected.
aafe3eb3416c8f513222884d0b54d766be6401ff0a9b3f7cca8e8cb6bd4245edGentoo Linux Security Advisory GLSA 200904-02 - Multiple integer overflows might allow for the execution of arbitrary code when performing base64 conversion. Diego E. Petten
b1f5122f460acca80b8b244df0c098601842f6632d0c39361c27fed30552d0cfActiveKB Knowledgebase suffers from a local file inclusion vulnerability in loadpanel.php.
27a7c5c2ec3a9962cf85abaf660c594b87166bc014ef1d115618a66312d13923glFusion versions 1.1.2 and below COM_applyFilter()/cookies blind SQL injection exploit.
76c3a33c1103cadd63c4f1742f22cdb230b4876086835a15891e8dba8cd5ccdaNovaBoard version 1.0.3 suffers from a local file inclusion vulnerability in preview.php.
422a9df9b900c8971cd13fbcdda69c2288085ccd304152f65104d31c7704f63fform2list suffers from a remote SQL injection vulnerability in page.php.
ba40e9ba6cfb10c292d1eef6e9c8bf4e42259adb0c2aab609505756ecda7f263Prismstumbler version 0.7.3 suffers from a file clobbering vulnerability.
91a9f72de093f58686de2940b9eb49c3717f57f500603245b67bcb8ebb1377cbJRE Update 11/12 Pack 200 exploit for Windows XP.
63c55d2dd8d70b7159686ec0d915d037adfb3d6228dbf6ca84b0658482610d53Debian Security Advisory 1761-1 - Christian J. Eibl discovered that the TeX filter of Moodle, a web-based course management system, doesn't check user input for certain TeX commands which allows an attacker to include and display the content of arbitrary system files.
a5ba2592353a80c1f3c72c4727c59a62858885f33fe79693dba77a2a7c163285UltraISO versions 9.3.3.2685 and below CCD/IMG universal buffer overflow exploit.
b4948b9ff16b8ce741678a9efa6caba7e4d88a93fdce2d97522fb6ca287933afSecunia Security Advisory - A weakness has been reported in Asterisk, which can be exploited by malicious people to determine valid user names.
8b30de9750c42e90c7c24943437f7aefb359f413886bece263df2f4934e1a0beSecunia Security Advisory - A weakness and two vulnerabilities have been reported in ClamAV, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
8477e4ae6996de3840c33b3ebfd79448248d786e7b70d9a534ae32f98a1ae744Secunia Security Advisory - A vulnerability has been reported in BlogMan, which can be exploited by malicious users to conduct script insertion attacks.
4c978484d89177c62efc1b7144e7e2351bb5a1a738b06d3a70271e18253c3a39Secunia Security Advisory - Gentoo has issued an update for openfire. This fixes some vulnerabilities, which can be exploited by by malicious users to conduct script insertion attacks and disclose sensitive information and by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.
a0f7f0d2f3340cc4a8585bae4fa50bab2e68de420ef69b5b4c418b8ea2dc54e1Secunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server, which can be exploited by malicious, local users to bypass certain security restrictions.
140b42f33186ff7e689d22be761ea5de204a76a6cefb8fbc3b7333e5ca8fe04dSecunia Security Advisory - Patrick Webster has reported some vulnerabilities in Asbru Web Content Management, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
c378f23c33bdb2cb972f0772a5184c6f08a9f12dd61d31654c91200be5681e87Secunia Security Advisory - A vulnerability has been reported in Microsoft PowerPoint, which can be exploited by malicious people to compromise a user's system.
be5abb99a74f028d097ff435bcb01a653483da7278596e4f0d8a5b981fe37740Secunia Security Advisory - Some vulnerabilities have been discovered in XBMC, which can be exploited by malicious people to compromise a vulnerable system.
33a353653106fc0d14178debb158c497aad0088b5866a65108c1075c6d18c629
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed