UBUNTU-CVE-2017-9182

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service use-after-free and invalid heap read, related to the GETCOLOR function in color.c:16:11...

PT-2017-18747 · Autotrace Team +1 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 Description: The issue is related to a heap-based buffer over-read in the GET COLOR function, located in color.c. This function is part of the libautotrace.a library in AutoTrace. Recommendations: For AutoTrace versio...

UBUNTU-CVE-2015-3451

The clone function in XML::LibXML before 2.0119 does not properly set the expandentities option, which allows remote attackers to conduct XML external entity XXE attacks via crafted XML data to the 1 new or 2 loadxml function...

PT-2010-2878 · X.Org +1 · X.Org X11R7.1 +1

Name of the Vulnerable Software and Affected Versions: X.Org X11R7.1 Description: The issue is related to the fbComposite function in fbpict.c in the Render extension in the X server, which allows remote authenticated users to cause a denial of service, resulting in memory corruption and daemon...

SmallNuke 2.0.4 - Pass Recovery SQL Injection

SmallNuke 2.0.4 - Pass Recovery SQL Injection !/usr/bin/perl use Tk; use Tk::BrowseEntry; use Tk::DialogBox; use LWP::UserAgent; $mw = new MainWindowtitle = "UnderWHAT?!" ; $mw-geometry '420x365' ; $mw-resizable0,0; $mw-Label-text = '', -font = 'Verdana 8',-foreground='red'-pack; $mw-Label-text =...