oracle_cpu_jul_2007.txt
Oracle 8i through 10g Release 2 allow updates, deletes and inserts via specially crafted views without having the right privileges.
View Articleoracle_sql_injection_dbms_prvtaqis.txt
Oracle 9i Release 1 through 10g Release 1 suffer from a SQL injection vulnerability in package DBMS_PRVTAQIS.
View Articleoracle_apex_sql_injection_check_db_password.txt
Oracle APEX suffers from a SQL injection vulnerability in the function wwv_flow_security.check_db_password.
View ArticleSTEGASRC201.zip
STEGA is a tiny 4058 byte steganography program that will hide files inside of BMP/GIF/PCX/TGA pictures, VOC/WAV sound files, RAW 8-bit data file, or LST/TXT text files.
View Articleledgersmb-bypass.txt
LedgerSMB versions 1.2.0 through 1.2.6 suffer from an authentication bypass.
View ArticleCisco Security Advisory 20070718-waas
Cisco Security Advisory - The Cisco Wide Area Application Services (WAAS) software contains a denial of service (DoS) vulnerability that may cause some devices that run WAAS software (WAE appliance and...
View ArticleDebian Linux Security Advisory 1333-1
Debian Security Advisory 1333-1 - It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer...
View ArticleDebian Linux Security Advisory 1334-1
Debian Security Advisory 1334-1 - A problem was discovered with freetype, a FreeType2 font engine, which could allow the execution of arbitrary code via an integer overflow in specially crafted TTF files.
View ArticleTechnical Cyber Security Alert 2007-199A
Technical Cyber Security Alert TA07-199A - The Mozilla web browser and derived products contain several vulnerabilities, the most severe of which could allow a remote attacker to execute arbitrary code...
View ArticleiDEFENSE Security Advisory 2007-07-18.1
iDefense Security Advisory 07.18.07 - Exploitation of an input validation vulnerability in Microsoft Corp.'s DirectX library could allow an attacker to execute arbitrary code in the context of the...
View ArticleiDEFENSE Security Advisory 2007-07-18.2
iDefense Security Advisory 07.18.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Ipswitch Inc.'s IMail Server 2006 could allow attackers to execute arbitrary code. IMail...
View ArticleDebian Linux Security Advisory 1335-1
Debian Security Advisory 1335-1 - Several remote vulnerabilities have been discovered in Gimp, the GNU Image Manipulation Program, which might lead to the execution of arbitrary code. Sean Larsson...
View Articleshatter-dbmsdrs.txt
Team SHATTER Security Alert - Oracle Database Server provides the DBMS_DRS package that includes procedures used in Oracle Data Guard. This package contains the function GET_PROPERTY which is...
View Articleshatter-mdsysmd.txt
Team SHATTER Security Alert - The Oracle Database Server provides the MDSYS.MD package that is used in the Oracle Spatial component. These packages contain many public procedures that are vulnerable to...
View ArticleAstKilla.c
Asterisk versions below 1.2.22 / 1.4.8 / 2.2.1 chan_skinny remote denial of service exploit.
View Articlevivvocms-sql.txt
Vivvo CMS versions 3.4 and below remote blind SQL injection exploit that makes use of index.php.
View Articlequickestore-sql.txt
QuickEStore versions 8.2 and below suffer from a remote SQL injection vulnerability in insertorder.cfm.
View Articlejoomlaexpose-rfu.txt
The Joomla component Expose versions RC35 and below suffer from a remote permission bypass and file upload vulnerability.
View Articlebbsemarket-rfi.txt
BBS E-Market suffers from a remote file inclusion vulnerability in postscript.php.
View Article