SuSE 10 Security Update : openslp (ZYPP Patch Number 7187)

The openslp daemon could run into an endless loop when receiving specially crafted packets CVE-2010-3609. This has been fixed. Additionally the following non-security bugs were fixed : - This openSLP update extends the net.slp.isDABackup mechanism introduced with the previous update by a new...

CVE-2010-2190

CVE-2010-2190 affects PHP 5.2.x (up to 5.2.13) and 5.3.x (up to 5.3.2). The vulnerability arises in the functions trim, ltrim, rtrim, and substr_replace, allowing a context-dependent attacker to obtain sensitive information (memory contents) by triggering an internal function interruption related...

trim()vulnerability crack and protection+articles the whole story-vulnerability warning-the black bar safety net

With the following code: % dim name,title name=trimrequest. form"name" password=trimrequest. form"password" if name=""or password="" then response. redirect "error. asp? error=name&name=null" myDSN="DSN=test;uid=test;pwd=test" set cn=server. createobject"adodb. connection" cn. open myDSN...