Microsoft Security Bulletin MS08-056 - Moderate Vulnerability in Microsoft Office Could Allow Information Disclosure (957699)

Microsoft Security Bulletin MS08-056 - Moderate Vulnerability in Microsoft Office Could Allow Information Disclosure 957699 Published: October 14, 2008 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Microsoft Office. The...

Moderate: Red Hat Security Advisory: pam_krb5 security update

An updated pamkrb5 package that fixes a security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The pamkrb5 module allows Pluggable Authentication Modules PAM aware applications to use...

Simple PHP Blog config/users.php Arbitrary User Password Hash Disclosure

The version of Simple PHP Blog installed on the remote host allows an unauthenticated, remote attacker to retrieve information about non-admin users defined to the application, including their user names and password hashes, which could in turn be used to gain access to the application. While the...

RHEL 3 / 4 / 5 : postfix (RHSA-2008:0839)

Updated postfix packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Postfix is a Mail Transport Agent MTA, supporting LDAP, SMTP AUTH SASL, and TLS. A fl...

RHEL 5 : nfs-utils (RHSA-2008:0486)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2008:0486 advisory. The nfs-utils package provides a daemon for the kernel NFS server and related tools. A flaw was found in the nfs-utils package build. The nfs-utils...

CentOS 3 : vsftpd (CESA-2008:0579)

An updated vsftpd package that fixes a security issue is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. vsftpd Very Secure File Transfer Protocol FTP daemon is a secure FTP server for Linux and Unix-like systems. The version of...

SECOBJADV-2008-02: Cygwin Installation and Update Process can be Subverted Vulnerability

====================================================================== = Security Objectives Advisory SECOBJADV-2008-02 = ====================================================================== Cygwin Installation and Update Process can be Subverted Vulnerability...

RHEL 4 : kernel (RHSA-2008:0665)

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux 4. This is the seventh regular update. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel...

CentOS 3 / 5 : php (CESA-2008:0544)

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

RHEL 2.1 : ucd-snmp (RHSA-2008:0528)

Updated ucd-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Simple Network Management Protocol SNMP is a protocol used for network management. A fla...

Microsoft Security Bulletin MS08-031 - Critical Cumulative Security Update for Internet Explorer (950759)

Microsoft Security Bulletin MS08-031 - Critical Cumulative Security Update for Internet Explorer 950759 Published: June 10, 2008 Version: 1.0 General Information Executive Summary This security update resolves one privately reported and one publicly disclosed vulnerability. The privately reported...

vuln in WordPress plugin Upload File(UP)

New Advisory: Wordpress Plugin Upload FileUP Remote SQL Injection --------------------Summary---------------- Software: Upload File WordPress Plugin Critical Level: Moderate Type: SQL Injection Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: Not Available Discovered by:...

RHEL 5 : bind (RHSA-2008:0300)

"Updated bind packages that fix two security issues, several bugs, and add enhancements are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Berkeley Internet Name Domain BIND is an implementatio...

RHEL 5 : gnome-screensaver (RHSA-2008:0218)

An updated gnome-screensaver package that fixes a security flaw is now available for Red Hat Enterprise Linux FasTrack 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. gnome-screensaver is the GNOME project's official screen saver program. A...

Microsoft Security Bulletin MS08-029 – Moderate Vulnerabilities in Microsoft Malware Protection Engine Could Allow Denial of Service (952044)

Microsoft Security Bulletin MS08-029 – Moderate Vulnerabilities in Microsoft Malware Protection Engine Could Allow Denial of Service 952044 Published: May 13, 2008 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in the...

RHEL 4 / 5 : thunderbird (RHSA-2008:0224)

Updated thunderbird packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. A flaw was found in th...

CentOS 4 / 5 : thunderbird (CESA-2008:0209)

Updated thunderbird packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws...

alamthal-sql.txt

Default.ASPX SQL Injection Vulnerability: Al-Amthal HRMS Solution-Optimum Remote: Yes Local: Yes Class: Input Validation Error Critical: Moderately critical URL: http://www.example.com/optimum/default.aspx?page=Search&app=Search&srch=sql sql=-1//UNION//ALL//SELECT//1,2 Published: April 6, 2008...

RHEL 5 : gnome-screensaver (RHSA-2008:0197)

The remote Redhat Enterprise Linux 5 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2008:0197 advisory. gnome-screensaver is the GNOME project's official screen saver program. A flaw was found in the way gnome-screensaver verified user passwords. When a...

Moderate: Red Hat Security Advisory: gnome-screensaver security update

An updated gnome-screensaver package that fixes a security flaw is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. gnome-screensaver is the GNOME project's official screen saver program. A flaw was...