Slackware Security Advisory - mariadb, mysql Updates
Slackware Security Advisory - New mariadb and mysql packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix a security issue.
View ArticleMandriva Linux Security Advisory 2014-045
Mandriva Linux Security Advisory 2014-045 - A directory traversal attack was reported against libtar, a C library for manipulating tar archives. The application does not validate the filenames inside...
View ArticleDebian Security Advisory 2864-1
Debian Linux Security Advisory 2864-1 - Various vulnerabilities were discovered in PostgreSQL.
View ArticleRed Hat Security Advisory 2014-0195-01
Red Hat Security Advisory 2014-0195-01 - Red Hat JBoss Portal is the open source implementation of the Java EE suite of services and Portal services running atop Red Hat JBoss Enterprise Application...
View ArticleDebian Security Advisory 2865-1
Debian Linux Security Advisory 2865-1 - Various vulnerabilities were discovered in PostgreSQL.
View ArticleGentoo Linux Security Advisory 201402-18
Gentoo Linux Security Advisory 201402-18 - GNU Midnight Commander does not properly sanitize environment variables, possibly resulting in execution of arbitrary code or Denial of Service. Versions less...
View ArticleSlackware Security Advisory - kernel Updates
Slackware Security Advisory - New kernel packages are available for Slackware 14.1 (64-bit) to fix a security issue.
View ArticleVideoCharge Studio 2.12.3.685 MITM Code Execution
VideoCharge Studio version 2.12.3.685 GetHttpResponse() man in the in middle remote code execution exploit.
View ArticleCatia V5-6R2013 Stack Buffer Overflow
Dassault Systemes Catia V5-6R2013 "CATV5_Backbone_Bus" stack buffer overflow exploit.
View ArticleLotus Sametime 8.5.1 Password Disclosure
Verbose logging in Lotus Sametime version 8.5.1 logs a user password simply base64 encoded.
View ArticleEgroupware 1.8.005 PHP Object Insertion
Egroupware versions 1.8.005 and below suffer from a PHP object insertion vulnerability that can allow for arbitrary file deletion and possibly code execution.
View ArticleBarracuda Networks Web Firewall X300 Cross Site Scripting
Barracuda Networks Web Firewall X300 suffers from multiple script insertion vulnerabilities.
View ArticleHack In The Box Haxpo Call For Papers
The HITB crew is calling on the community of hackers, makers, builders, and breakers to send them their 30 minute talk abstracts for consideration to be included in the 3-day single-track agenda....
View ArticleAdRotate 3.9.4 SQL Injection
AdRotate version 3.9.4 suffers from a remote SQL injection vulnerability.
View ArticleStark CRM 1.0 Script Injection / Session Riding
Multiple stored cross site scripting and cross site request forgery vulnerabilities exist when parsing user input to several POST parameters in Stark CRM version 1.0. The application allows users to...
View Article
