Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox New vulnerability? New tool? Tell us	Unix Focus Multiple Vendor rdesktop Vulnerabilities 7 May 2008   Multiple vulnerabilities have been found in the rdesktop client, these vulnerabilities could be used to cause the program to execute arbitrary code More ›››   PHP GENERATE_SEED() Weak Random Number Seed Vulnerability 7 May 2008   Weak random number seed might lead to security problems in PHP applications using random numbers More ›››   PHP Multibyte Shell Command Escaping Bypass Vulnerability 7 May 2008   Several PHP shell locales with support for east asian variable width encodings allow bypassing PHP's shell command escaping functions, safe_mode and disable_functions More ›››   SugarCRM Community Edition Local File Disclosure Vulnerability 30 Apr. 2008   SugarCRM Community Edition is vulnerable to local file contents disclosure More ›››   Wordpress Cookie Integrity Protection Vulnerability 28 Apr. 2008   An attacker, who is able to register a specially crafted username on a Wordpress 2.5 installation, is able to generate authentication cookies for other chosen accounts More ›››   Joomla Component Jom Comment SQL Injection Vulnerability 21 Apr. 2008   A vulnerability in the way Jom Comment works allows remote attackers to cause the product to execute arbitrary SQL statements More ›››   Oracle Application Express Privilege Escalation Vulnerability 16 Apr. 2008   Local exploitation of a design error vulnerability in Oracle Corp.'s Application Express web application development tool allows attackers to gain elevated privileges More ›››   libpng Zero-Length Chunks Incorrect Handling 16 Apr. 2008   Applications using libpng that install unknown chunk handlers, or copy unknown chunks, may be vulnerable to a security issue which may result in incorrect output, information leaks, crashes, or arbitrary code execution More ›››   IBM DB2 Universal Database Administration Server File Creation Vulnerability 16 Apr. 2008   Local exploitation of a file creation vulnerability in the Administration Server of IBM Corp.'s DB2 Universal Database allows attackers to elevate privileges to root More ›››   IBM DB2 Universal Database db2dasStartStopFMDaemon Buffer Overflow Vulnerability 16 Apr. 2008   Local exploitation of a buffer overflow vulnerability in the db2dasrrm program, as included with IBM Corp.'s DB2 Universal Database, allows attackers to elevate privileges to root More ›››     Unix Focus Archive ...  Security News -  Security Reviews -  Exploits -  Tools -  UNIX Focus -  Windows Focus	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Recent Articles Cisco BBSM Captive Portal Cross-site Scripting Cisco Unified Communications Manager Denial of Service Vulnerabilities Vulnerability in Microsoft Publisher Allows Code Execution (MS08-027) Microsoft Word CSS Processing Memory Corruption Vulnerability Vulnerabilities in Microsoft Word Allows Code Execution (MS08-026) Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability Novell eDirectory Unauthenticated Access to SOAP Interface Call of Duty Denial of Service Novell eDirectory DoS via HTTP Headers Adobe Acrobat Javascript PDF Security Feature Bypass and Memory Corruption Vulnerabilities  Featured Articles Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability Adobe Acrobat Javascript PDF Security Feature Bypass and Memory Corruption Vulnerabilities Multiple Vendor rdesktop Vulnerabilities Wonderware SuiteLink Denial of Service Vulnerability PHP Multibyte Shell Command Escaping Bypass Vulnerability Akamai Download Manager Arbitrary Program Execution Vulnerability SugarCRM Community Edition Local File Disclosure Vulnerability

Copyright © 1998-2008 Beyond Security All rights reserved.
Terms of Use Site Privacy Statement.