Latest IT security alerts....

    SANS: 10.10.27 Hitachi JP1/Cm2/Network Node Manager Insecure File Permissions

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.26 XMail Insecure Temporary File Creation

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.38 TRUC "login_reset_password_page.php" Cross-Site Scripting

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

2010-03-12 02:30: read more...   

    SANS: 10.10.31 FileExecutive Multiple Remote Vulnerabilities

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.94 Article Friendly "filename" Parameter Local File Include

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.7 Multiple Vendor "librpc.dll" Stack Buffer Overflow

CVEs: CVE: CVE-2009-2754

Platform: Third Party Windows Apps

2010-03-12 02:30: read more...   

    SANS: 10.10.96 TrendNet TV-IP110W Missing Authentication Check Security Bypass

CVEs: CVE: Not Available

Platform: Network Device

2010-03-12 02:30: read more...   

    SANS: 10.10.36 MochaSoft FTPDisc Multiple Remote Denial of Service Vulnerabilities

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.85 Website Baker "framework/class.wb.php" Security Bypass

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.53 Pre Multi-Vendor E-Commerce Solution "detail.php" SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.9 Linux Kernel TSB I-TLB Load Local Privilege Escalation

CVEs: CVE: Not Available

Platform: Linux

2010-03-12 02:30: read more...   

    SANS: 10.10.41 Softbiz Jobs "sbad_type" Parameter Cross-Site Scripting

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

2010-03-12 02:30: read more...   

    SANS: 10.10.3 Google Picasa JPEG Image Processing Integer Overflow

CVEs: CVE: Not Available

Platform: Third Party Windows Apps

2010-03-12 02:30: read more...   

    SANS: 10.10.67 Joomla! "com_yanc" Component "listid" Parameter SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.95 DeDeCMS

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.86 TYPO3 OpenID Module Backend User Account Security Bypass

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.35 Reductive Labs Puppet "/tmp" Insecure File Permissions Vulnerabilities

CVEs: CVE: CVE-2010-0156

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.75 WikyBlog Multiple Remote Input Validation Vulnerabilities

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.4 MediaCoder ".m3u" File Remote Buffer Overflow

CVEs: CVE: Not Available

Platform: Third Party Windows Apps

2010-03-12 02:30: read more...   

    SANS: 10.10.21 Weekly Archive by Node Type Module Weekly Summary Security Bypass

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.60 Softbiz Classifieds PLUS Script Multiple SQL Injection Vulnerabilities

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.66 SLAED CMS SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.29 PHP "tempnam()" "safe_mode" Validation Restriction Bypass

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.56 Bispage Content Manager Admin Page SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.24 VKPlayer ".mid" File Processing Buffer Overflow

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.68 Uiga Fan Club and Personal Portal "id" Parameter SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.34 IBM Informix Dynamic Server "librpc.dll" Multiple Buffer Overflow Vulnerabilities

CVEs: CVE: CVE-2009-2753

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.90 Open Educational System "CONF_INCLUDE_PATH" Parameter Multiple Remote File Include Vulnerabilities

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.19 Kojoney "urllib.urlopen()" Remote Denial of Service

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.40 Computer Associates eHealth Performance Manager Web Interface Cross-Site Scripting

CVEs: CVE: CVE-2010-0640

Platform: Web Application - Cross Site Scripting

2010-03-12 02:30: read more...   

    SANS: 10.10.32 Apple Safari "background" attribute Remote Denial of Service

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.77 PHP F1 Max's Photo Album "admin.php" Arbitrary File Upload

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.44 Multiple IBM Products Login Page Cross-Site Scripting

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

2010-03-12 02:30: read more...   

    SANS: 10.10.70 Uiga Fan Club Login Multiple SQL Injection Vulnerabilities

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.17 cronie "crontab" Symbolic Link Local Privilege Escalation

CVEs: CVE: CVE-2010-0424

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.79 Facebook-style Statuses Module User Status Security Bypass

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.2 Microsoft Internet Explorer "winhlp32.exe" "MsgBox()" Stack-Based Buffer Overflow

CVEs: CVE: Not Available

Platform: Other Microsoft Products

2010-03-12 02:30: read more...   

    SANS: 10.10.8 ProSSHD "scp_get()" Buffer Overflow

CVEs: CVE: Not Available

Platform: Third Party Windows Apps

2010-03-12 02:30: read more...   

    SANS: 10.10.58 HD FLV Player Component for Joomla! "id" Parameter SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.15 EMC HomeBase Server Directory Traversal Remote Code Execution

CVEs: CVE: CVE-2010-0620

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.88 Orbital Viewer ".orb" File Stack-Based Buffer Overflow

CVEs: CVE: CVE-2010-0688

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.13 IBM AIX LDAP Login Local Denial of Service

CVEs: CVE: Not Available

Platform: Aix

2010-03-12 02:30: read more...   

    SANS: 10.10.59 shortCMS "printview.php" SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.61 GameScript "index.php" SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.78 OpenInferno OI.Blogs Multiple Local File Include Vulnerabilities

CVEs: CVE: Not Available

Platform: Web Application

2010-03-12 02:30: read more...   

    SANS: 10.10.22 Apple Safari Style Tag Remote Memory Corruption

CVEs: CVE: Not Available

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.62 JSK Internet WebAdministrator "download.php" SQL Injection

CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

2010-03-12 02:30: read more...   

    SANS: 10.10.30 Todd Miller Sudo "runas_default" Local Privilege Escalation

CVEs: CVE: CVE-2010-0427

Platform: Cross Platform

2010-03-12 02:30: read more...   

    SANS: 10.10.46 Hitachi Multiple Products Unspecified Cross-Site Scripting

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

2010-03-12 02:30: read more...   

    SANS: (1) HIGH: IBM Lotus iNotes ActiveX Control Buffer Overflow Vulnerability

Category: Widely Deployed Software

Affected:

  • IBM Lotus iNotes versions prior to 8.5
  • IBM Lotus iNotes versions prior to 7.0.4

2010-03-12 02:30: read more...   

HOME

 

This page is also available as an RSS feed.

This site is maintained by Hubertus A. Haniel (hubba@unixcook.com)

Last Updated: 2010-03-12 08:30