Gentoo Linux Security Advisory 201201-8 - A stack-based buffer overflow flaw in FontForge could result in execution of arbitrary code or a Denial of Service. Versions less than 20110222-r1 are affected.
1ee0cd4bf5fa6d8b71461c5e0ab3e98469d53f95913efa4b296c3baf0f847d6f
Gentoo Linux Security Advisory 201201-7 - An unspecified vulnerability in NX Server Free Edition and NX Node could allow local attackers to gain root privileges. Versions are affected.
68fc85c136e6c2fdeb69309cf82e996c03b3b888e6eea45a3fbd055fa44af6e1
Ubuntu Security Notice 1336-1 - Juri Aedla discovered that the kernel incorrectly handled /proc/pid/mem permissions. A local attacker could exploit this and gain root privileges.
7bf51f8ca9d4762f3747b86831890e28ad257c4eed6054a41f77305a26d8c57c
Bart's CMS suffers from a remote SQL injection vulnerability.
918283b50f556f9c2c298761193197d4eb924aeb04cad05a533f204e9785d50c
This is the Mempodipper local root exploit for Linux. /proc/pid/mem is an interface for reading and writing, directly, process memory by seeking around with the same addresses as the process's virtual memory space. In 2.6.39, the protections against unauthorized access to /proc/pid/mem were deemed sufficient, and so the prior #ifdef that prevented write support for writing to arbitrary process memory was removed. Anyone with the correct permissions could write to process memory. It turns out, of course, that the permissions checking was done poorly. This means that all Linux kernels greater than and equal to 2.6.39 are vulnerable.
3a525daa17c897f966b003f33e20bb846db1a8e769624736feaf876a139f8576
Parallels H Sphere version 3.3 P1 suffers from multiple cross site scripting vulnerabilities.
01ab3cd71c0b267cbb33781a3fa99a2769746dd473bf10df3ce4507a03b0f886
Gentoo Linux Security Advisory 201201-6 - Format string vulnerabilities in iSCSI Enterprise Target could result in execution of arbitrary code or a Denial of Service. Versions less than 1.4.19 are affected.
2d014fbfb2bb6c46e9eb25bcb01cb4c166c36737f6aab4f354771f907204b1ff
The Joomla Mobile component suffers from a remote SQL injection vulnerability.
243b4380b1ca904f1478b112bb2b2422f6316bbcc31d563ba6dd8671b2ba437e
Zone Rouge CMS 2012 suffers from a remote SQL injection vulnerability.
bb9ce4833261f96fd50afe72e09bcc8ee0a4e6a3177287d324808d5b2b74ba84
Gentoo Linux Security Advisory 201201-5 - Multiple vulnerabilities have been found in mDNSResponder, which could lead to execution of arbitrary code with root privileges. Versions less than 212.1 are affected.
e1cc1016a1c014bc7ef6bf4d1ca08c09ff348c721de3f1a2d7e5331a0be5bf0b
Debian Linux Security Advisory 2391-1 - Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web.
6b9978773cc9b5ff74c87471f4d39830b867da4e8a3cd93f6b20507e4c14391b
Secunia Security Advisory - Gentoo has issued an update for logsurfer. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
3ea8bf11da8414b3b4cf55d79319041822afb1c687184878120a7c15b0e887ea
Secunia Security Advisory - Gentoo has issued an update for mDNSResponder. This fixes multiple vulnerabilities, which can be exploited by malicious, local user to cause a DoS (Denial of Service) or potentially gain escalated privileges and by malicious people to conduct spoofing attacks, cause a DoS, and potentially compromise a vulnerable system.
d04912b19dd70d538e9d8b2d8525f0ce3f9d15e8eb4d9a34a7f055e2be7140f3
Secunia Security Advisory - A weakness has been reported in EMC SourceOne Email Management, which can be exploited by malicious, local users to disclose certain sensitive information.
f864a0017846778448ec95cb5c11d12d44e8707ddabcd32977d1eb997f73ec7c
Secunia Security Advisory - A vulnerability has been reported in Oracle PeopleSoft Enterprise CRM, which can be exploited by malicious users to manipulate certain data.
3ff3aace7089dcd1ac5051e9ff23333226fd8168c4ce507260d3c0eff95e0670
Secunia Security Advisory - A vulnerability has been reported in Oracle PeopleSoft Enterprise PeopleTools, which can be exploited by malicious users to manipulate certain data or cause a DoS (Denial of Service).
0b3e3703295f3b09e0f983482eae560930359e91f1774878732a0860d68a4dad
Secunia Security Advisory - Two vulnerabilities have been reported in Oracle VM VirtualBox, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service).
aae6beccd10c0f3de60af9ecd2f4907e30c2f6799df113c6b97b9ef36be15aba
Secunia Security Advisory - A vulnerability has been reported in OpenNMS, which can be exploited by malicious people to conduct script insertion attacks.
d9371dcc0c78461e6d3871927128d9dbc224aef7ce388155a6947bd730bc8086
Secunia Security Advisory - Meder Kydyraliev has reported a vulnerability in Apache Struts, which can be exploited by malicious people to bypass certain security restrictions.
d467b23d4df039b00132f8079db6a77c6acd0a6f44a724ea8349e19cd403cd74
Secunia Security Advisory - Multiple vulnerabilities have been reported in Schneider Electric Modicon Quantum Series Modules, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
130364c52c11ba73155da2c7d1b9286344f3f73475d6acee987c5228809dffbc
Secunia Security Advisory - Multiple vulnerabilities have been reported in Koyo ECOM100 Ethernet Module, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
447e3d445de176f05b87a48303686ab13463ff90d3604c15f56fce4cb44a7044
Secunia Security Advisory - Gentoo has issued an update for fontforge. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
0f2627108e2088b650cd2a1d5fd2903773ad8ddda6e6ab0fc7a7d5ccd392611b
Secunia Security Advisory - A vulnerability has been reported in SEL-2032 Communications Processor, which can be exploited by malicious people to cause a DoS (Denial of Service).
87e662643b7bd56ee730679562fb3003bc0fb5914310f2109a6ba3387b47c316
Secunia Security Advisory - Multiple vulnerabilities have been reported in Rockwell Automation ControlLogix, which can be exploited by malicious people to disclose system information, cause a DoS (Denial of Service), and compromise a vulnerable device.
89335abc9d8dfcd05d015a17defc73a38c103d4d4f457aaca81ff6b66e9c8cbb
Secunia Security Advisory - Ben Schmidt has discovered a vulnerability in the Theme Tuner plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
657427d8d32bf04cd9e6374c011957c801245db2df9bf3551d9a0d6f6cd0f87b