t0pP8uZz has discovered a vulnerability in Rantx, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to improper access restriction in the Admin.php script. This can be exploited to bypass the authentication
Some security issues have been discovered in Blender, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges. The security issues are caused due to Blender handling temporary files in
cyb3r-1st has reported a vulnerability in Model Search, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "cat" parameter in cat.php is not properly sanitised before being used in SQL queries. This can
Some vulnerabilities have been discovered in Kostenloses Linkmanagementscript, which can be exploited by malicious people to conduct SQL injection attacks, disclose sensitive information, and to compromise a vulnerable system. 1) Input passed to the "main_page_directory" and "page_to_include" parameters in template/index.php
The hallmark of Apple's products makes them work as invisibly as possible for their users. In the case of the Safari web browser, it downloads items without letting people know it's happening.Apple's Odd Attitude About SafariMost browser users probably have
LinuxSecurity.com: A recently disclosed vulnerability in widely used Linux distributions can be exploited by attackers to guess cryptographic keys, possibly leading to the forgery of digital signatures and theft of confidential information, a noted security researcher said today.
LinuxSecurity.com: Thanks to the end-of-term for many colleges and some K12 schools, brute-force attacks against SSH servers surged sharply this past weekend, according to the SANS Internet Storm Center. The sudden jump in SSH attacks merits a re-examination of how
A local vulnerability in Altiris Client allows attackers to cause the program to escalate the privileges of the attacker launching the below exploit against it .
This security update resolves two privately reported vulnerabilities in the Microsoft Malware Protection Engine . An attacker could exploit either of the vulnerabilities by constructing a specially crafted file that could allow denial of service when received by the target
A vulnerability has been reported in Cisco Unified Presence, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the SIP Proxy service and can be exploited
Gentoo has issued an update for openoffice and openoffice-bin. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Fedora has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and potentially by malicious people to cause a DoS (Denial of Service).
Fedora has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise an application using the library.
Gentoo has issued an update for libid3tag. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "id3_field_parse()" function in field.c. This
thraxisp has reported a vulnerability in Mantis, which can be exploited by malicious people to conduct cross-site request forgery attacks. The vulnerability is caused due to the application allowing users to perform certain actions via HTTP requests without performing any
