February 2012
[3/5] OneForum "id" SQL Injection Vulnerability
Red Security TEAM has discovered a vulnerability in OneForum, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48123/
[2/5] UTC Fire
A security issue has been reported in UTC Fire
[2/5] Drupal FAQ Module Script Insertion...
A vulnerability has been reported in the FAQ module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48131/
[2/5] Bugzilla Cross-Site Request Forgery...
A vulnerability has been reported in Bugzilla, which can be exploited by malicious people to conduct cross-site request forgery attacks.
http://secunia.com/advisories/48133/
[2/5] OpenVZ update for kernel
OpenVZ has issued an update for the kernel. This fixes two weaknesses and multiple vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to gain escalated privileges, by malicious, local users to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges, and by...
[2/5] Debian update for libxml2
Debian has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48130/
[3/5] Gentoo update for pdns
Gentoo has issued an update for pdns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48134/
[2/5] Gentoo update for maradns
Gentoo has issued an update for maradns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48135/
[4/5] Gentoo update for heimdal
Gentoo has issued an update for heimdal. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
http://secunia.com/advisories/48136/
[3/5] Gentoo update for asterisk
Gentoo has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48137/
[3/5] Ubuntu update for cvs
Ubuntu has issued an update for cvs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48142/
[3/5] EasyVista SSO Authentication Bypass...
A vulnerability has been reported in EasyVista, which can be exploited by malicious people to bypass certain security restrictions.
http://secunia.com/advisories/48124/
[4/5] Unity Web Player File Processing Buffer...
Luigi Auriemma has discovered a vulnerability in Unity Web Player, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48103/
[3/5] LimeSurvey "fieldnames" SQL Injection...
A vulnerability has been discovered in LimeSurvey, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48051/
[3/5] SocialCMS Enterprise Cross-Site Scripting...
Two vulnerabilities have been reported in SocialCMS Enterprise, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
http://secunia.com/advisories/48082/
[2/5] Chyrp "content" Cross-Site Scripting...
High-Tech Bridge SA has discovered a vulnerability in Chyrp, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48097/
[2/5] Chyrp "body" Cross-Site Scripting...
High-Tech Bridge SA has discovered a vulnerability in Chyrp, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48112/
[3/5] TestLink Multiple SQL Injection...
Multiple vulnerabilities have been discovered in TestLink, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48054/
[3/5] WordPress SB Uploader Plugin Arbitrary File...
A vulnerability has been discovered in the SB Uploader plugin for WordPress, which can be exploited by malicious users to compromise a vulnerable system.
http://secunia.com/advisories/48076/
[2/5] Dolphin Privacy Settings Security Bypass...
A vulnerability has been reported in Dolphin, which can be exploited by malicious users to bypass certain security restrictions.
http://secunia.com/advisories/48046/
[2/5] Fork CMS Cross-Site Request Forgery...
Ivano Binetti has discovered a vulnerability in Fork CMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
http://secunia.com/advisories/48067/
[3/5] BlackBerry Tablet OS Samba File Sharing...
A vulnerability has been reported in BlackBerry Tablet OS, which can be exploited by malicious people and by malicious people with physical access to the host computer to compromise a user’s device.
http://secunia.com/advisories/48116/
[2/5] PowerDNS Recursor Deleted Domain Record...
A vulnerability has been reported in PowerDNS Recursor, which can be exploited by malicious people to conduct spoofing attacks.
http://secunia.com/advisories/48132/
[3/5] Debian update for libmodplug
Debian has issued an update for libmodplug. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise an application using the library.
http://secunia.com/advisories/48058/
[4/5] Pale Moon libpng Integer Overflow...
A vulnerability has been reported in Pale Moon, which can be exploited by malicious people to potentially compromise a user’s system.
http://secunia.com/advisories/48128/
[4/5] Pale Moon Two Vulnerabilities
Two vulnerabilities have been reported in Pale Moon, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48110/
[4/5] Net4Switch ipswcom ActiveX Control Buffer...
Digital Security Research Group has discovered a vulnerability in Net4Switch ipswcom ActiveX Control, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48125/
[2/5] Red Hat update for ibutils
Red Hat has issued an update for ibutils. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
http://secunia.com/advisories/48038/
[2/5] Red Hat update for libxml2
Red Hat has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48060/
[2/5] Red Hat update for httpd
Red Hat has issued an update for httpd. This fixes two weaknesses and two vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and gain escalated privileges and by malicious people to disclose potentially sensitive information and bypass certain security restrictions.
http://secunia.com/advisories/48062/
[3/5] Red Hat update for cvs
Red Hat has issued an update for cvs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48063/
[2/5] Debian update for fex
Debian has issued an update for fex. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48066/
[2/5] libxml2 Hash Collision Denial of Service...
A vulnerability has been reported in libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48000/
[3/5] Gentoo update for quagga
Gentoo has issued an update for quagga. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
http://secunia.com/advisories/48106/
[1/5] Red Hat update for initscripts
Red Hat has issued an update for initscripts. This fixes a weakness, which can be exploited by malicious people to potentially disclose sensitive information.
http://secunia.com/advisories/48045/
[3/5] IBM WebSphere Lombardi Edition Coach Script...
A vulnerability has been reported in IBM WebSphere Lombardi Edition, which can be exploited by malicious people to conduct script insertion attacks.
http://secunia.com/advisories/48055/
[2/5] Website Baker "Referer" Header Cross-Site...
Stefan Schurtz has discovered two vulnerabilities in Website Baker, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48083/
[2/5] Debian update for libarchive
Debian has issued an update for libarchive. This fixes two vulnerabilities, which can be exploited by malicious people to potentially compromise an application using the library.
http://secunia.com/advisories/48034/
[3/5] Symantec pcAnywhere Denial of Service...
A vulnerability has been reported in Symantec pcAnywhere, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48092/
[2/5] CPG Dragonfly CMS "meta" and URL Cross-Site...
Ariko-Security has discovered two vulnerabilities in CPG Dragonfly CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/47999/
[4/5] Novell Messenger Client Contact File...
Luigi Auriemma has discovered a vulnerability in Novell Messenger Client, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48126/
[3/5] Red Hat update for busybox
Red Hat has issued an update for busybox. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
http://secunia.com/advisories/48117/
[2/5] SAP NetWeaver Internet Sales Module...
Digital Security Research Group has reported a vulnerability in SAP NetWeaver, which can be exploited by malicious users to disclose sensitive information.
http://secunia.com/advisories/47861/
[2/5] Jamroom "user_action" Script Insertion...
Sony has discovered a vulnerability in Jamroom, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48077/
[2/5] Red Hat update for samba
Red Hat has issued an update for samba. This fixes a weakness, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
http://secunia.com/advisories/48041/
[2/5] Red Hat update for boost
Red Hat has issued an update for boost. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48099/
[1/5] Red Hat update for ImageMagick
Red Hat has issued an update for ImageMagick. This fixes a weakness, which can be exploited by malicious, local users to gain escalated privileges.
http://secunia.com/advisories/48100/
[3/5] SUSE update for horde3-dimp
SUSE has issued an update for horde3-dimp. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
http://secunia.com/advisories/48091/
[2/5] Hitachi Command Suite Products Unspecified...
A vulnerability has been reported in Hitachi Command Suite products, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48084/
[4/5] Ubuntu update for libvorbis
Ubuntu has issued an update for libvorbis. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
http://secunia.com/advisories/48095/