February 2012
[2/5] LimeSurvey Script Insertion and SQL...
Two vulnerabilities have been discovered in LimeSurvey, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
http://secunia.com/advisories/48184/
[3/5] ImgPals Photo Host "u" SQL Injection...
Corrado Liotta has discovered a vulnerability in ImgPals Photo Host, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48182/
[3/5] Hitachi JP1/Cm2/Network Node Manager...
Multiple vulnerabilities have been reported in Hitachi JP1/Cm2/Network Node Manager, where some have an unknown impact and others can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48201/
[4/5] Sysax Multi Server Two Buffer Overflow...
Craig Freyman has reported two vulnerabilities in Sysax Multi Server, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
http://secunia.com/advisories/48188/
[2/5] Kongreg8 Script Insertion and SQL Injection...
Multiple vulnerabilities have been discovered in Kongreg8, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
http://secunia.com/advisories/48195/
[2/5] Ubuntu update for kernel
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/47681/
[3/5] Ubuntu update for kernel
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48189/
[2/5] Anchor CMS "real_name" Script Insertion...
Vulnerability Research Laboratory has discovered a vulnerability in Anchor CMS, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48191/
[2/5] Webfolio CMS Cross-Site Request Forgery...
Ivano Binetti has discovered a vulnerability in Webfolio CMS, which can be exploited by malicious people to conduct cross-site request forgery attacks.
http://secunia.com/advisories/48190/
[4/5] Debian update for openjdk-6
Ubuntu has issued an update for openjdk-6. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
http://secunia.com/advisories/48181/
[4/5] IBM Personal Communications WS File...
A vulnerability has been reported in IBM Personal Communications, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48185/
[3/5] SUSE update for libpng
SUSE has issued an update for libpng. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
http://secunia.com/advisories/48205/
[3/5] SUSE update for libpng12
SUSE has issued an update for libpng12. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
http://secunia.com/advisories/48206/
[3/5] SUSE update for csound
SUSE has issued an update for csound. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48207/
[2/5] Ubuntu update for postgresql
Ubuntu has issued an update for postgresql. This fixes multiple vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct spoofing attacks and manipulate certain data.
http://secunia.com/advisories/48198/
[2/5] Snom VoIP Phone Firmware Password Reset...
Sense of Security has reported a security issue in Snom VoIP Phone Firmware, which can be exploited by malicious people to bypass certain security restrictions.
http://secunia.com/advisories/48061/
[2/5] Snom VoIP Phone Firmware Two Vulnerabilities
Sense of Security has reported a security issue and a vulnerability in Snom VoIP Phone Firmware, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site request forgery attacks.
http://secunia.com/advisories/48158/
[2/5] Snom VoIP Phone Firmware Password Reset...
Sense of Security has reported a security issue in Snom VoIP Phone Firmware, which can be exploited by malicious people to bypass certain security restrictions.
http://secunia.com/advisories/48048/
[2/5] Kadu Two Script Insertion Vulnerabilities
Two vulnerabilities have been reported in Kadu, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48162/
[2/5] NetDecision Source Code Disclosure and...
SecPod Research Team has discovered two vulnerabilities in NetDecision, which can be exploited by malicious people to disclose potentially sensitive information and potentially compromise a vulnerable system.
http://secunia.com/advisories/48168/
[3/5] OpenSSL ASN.1 MIME Header Parsing NULL...
A vulnerability has been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service) of the application using the library.
http://secunia.com/advisories/48153/
[2/5] Sagem F@st 2604 Cross-Site Request Forgery...
A vulnerability has been reported in Sagem F@st 2604, which can be exploited by malicious people to conduct cross-site request forgery attacks.
http://secunia.com/advisories/48088/
[2/5] lknSupport URL Cross-Site Scripting...
A vulnerability has been reported in lknSupport, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48151/
[2/5] Webglimpse Multiple Cross-Site Scripting...
MustLive has discovered multiple vulnerabilities in Webglimpse, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48049/
[2/5] WonderDesk SQL Multiple Cross-Site Scripting...
Sony has reported multiple vulnerabilities in WonderDesk SQL, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48167/
[2/5] Gentoo update for libvirt
Gentoo has issued an update for libvirt. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious, local users in a guest system to bypass certain security restrictions, by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system, and by malicious people to bypass certain security restrictions and cause a DoS (Denial of...
[3/5] SUSE update for cvs
SUSE has issued an update for cvs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user’s system.
http://secunia.com/advisories/48150/
[2/5] Debian update for puppet
Debian has issued an update for puppet. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
http://secunia.com/advisories/48157/
[2/5] Debian update for postgresql-8.4
Debian has issued an update for postgresql-8.4. This fixes multiple vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct spoofing attacks and manipulate certain data.
http://secunia.com/advisories/48174/
[2/5] Ubuntu update for ruby
Ubuntu has issued an update for ruby. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
...
[2/5] Ubuntu update for libxml2
Ubuntu has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48178/
[4/5] SUSE update for java-1_6_0-openjdk
SUSE has issued an update for java-1_6_0-openjdk. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
http://secunia.com/advisories/48187/
[3/5] Avaya CMS Solaris Information Disclosure and...
Avaya has acknowledged two vulnerabilities in Avaya Call Management System, which can be exploited by malicious, local users to disclose system information and cause a DoS (Denial of Service) and by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48200/
[2/5] PostgreSQL Multiple Vulnerabilities
Multiple vulnerabilities have been reported in PostgreSQL, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct spoofing attacks and manipulate certain data.
http://secunia.com/advisories/48107/
[1/5] Cookpad for Android / Cookpad Noseru for...
A security issue has been reported in Cookpad for Android and Cookpad Noseru for Android, which can be exploited by malicious people to bypass certain security restrictions.
http://secunia.com/advisories/48065/
[3/5] MyJobList "eid" SQL Injection Vulnerability
A vulnerability has been discovered in MyJobList, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48169/
[2/5] idev-BusinessDirectory "SEARCH" Cross-Site...
A vulnerability has been reported in idev-BusinessDirectory, which can be exploited by malicious people to conduct cross-site scripting attacks.
http://secunia.com/advisories/48173/
[2/5] Contao Cross-Site Request Forgery...
Ivano Binetti has discovered a vulnerability in Contao, which can be exploited by malicious people to conduct cross-site request forgery attacks.
http://secunia.com/advisories/48180/
[4/5] WordPress Video Embed
Some vulnerabilities have been discovered in the Video Embed
[3/5] Ubuntu update for samba
Ubuntu has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
http://secunia.com/advisories/48186/
[2/5] Dropbear SSH Server Use-After-Free...
Danny Fullerton has reported a vulnerability in Dropbear SSH Server, which can be exploited by malicious users to gain escalated privileges.
http://secunia.com/advisories/48147/
[2/5] phpFox "val[description]" Script Insertion...
A vulnerability has been reported in phpFox, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48171/
[3/5] IBM AIX ICMP Packet Handling Denial of...
A vulnerability has been reported in IBM AIX, which can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/advisories/48149/
[4/5] SUSE update for MozillaFirefox
SUSE has issued an update for MozillaFirefox. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user’s system.
http://secunia.com/advisories/48160/
[4/5] SUSE update for mozilla-xulrunner192
SUSE has issued an update for mozilla-xulrunner192. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user’s system.
http://secunia.com/advisories/48179/
[3/5] The Uploader "username" SQL Injection...
A vulnerability has been discovered in The Uploader, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/advisories/48141/
[3/5] Cisco Small Business SRP520 / SRP540 Series...
Some vulnerabilities have been reported in Cisco Small Business SRP520 / SRP540 series, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to bypass certain security restrictions.
http://secunia.com/advisories/48129/
[2/5] ELBA "account group name" SQL Injection...
SEC Consult has reported a vulnerability in ELBA, which can be exploited by malicious users to conduct SQL injection attacks.
http://secunia.com/advisories/48014/
[4/5] Ubuntu update for openjdk-6
Ubuntu has issued an update for openjdk-6. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
http://secunia.com/advisories/48144/
[2/5] TYPO 3 TC BE User Admin Extension Script...
A vulnerability has been reported in the TC BE User Admin extension for TYPO3, which can be exploited by malicious users to conduct script insertion attacks.
http://secunia.com/advisories/48122/