Navigation

SANS @RISK

All Updates From Vol: 9 - Issue: 35

URL: http://www.sans.org/newsletters/risk/display.php

Updated: 17 min 47 sec ago

10.35.2 UiPlayer "UiCheck.dll" ActiveX Buffer Overflow

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2009-2970

Platform: Third Party Windows Apps

Categories: Security Alerts

10.35.3 Tuniac ".m3u" File Buffer Overflow

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2009-4867

Platform: Third Party Windows Apps

Categories: Security Alerts

10.35.25 PHPCMS2008 "download.php" Information Disclosure Issue

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.26 Mollify Authentication Bypass Vulnerability and Multiple Information Disclosure Weaknesses

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.27 MAXcms Multiple Remote File Include Issues

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.28 DotNetNuke Syndication Handler Remote Denial of Service Issue

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.29 Netpet CMS "confirm.php" Local File Include

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.30 In-Portal CMS "index.php" Local File Include

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.35.31 phpMyAdmin Configuration File PHP Code Injection

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2010-3055

Platform: Web Application

Categories: Security Alerts

10.35.18 LXR Cross Referencer TITLE Element Cross-Site Scripting Issue

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.19 ACCESSGUARDIAN Unspecified Cross-Site Scripting Issue

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.20 Online Work Order Suite Lite Edition Multiple Cross-Site Scripting Vulnerabilities

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.21 Drupal Simplenews Content Selection Module Cross-Site Scripting Issue

Fri, 2010-08-27 07:00

CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.22 ViArt Helpdesk Multiple Cross-Site Scripting Vulnerabilities

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2009-4548

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.23 phpMyAdmin Multiple Cross-Site Scripting Vulnerabilities

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2010-3056

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts

10.35.24 PHP City Portal "login.php" Multiple SQL Injection Issues

Fri, 2010-08-27 07:00

CVEs: CVE: CVE-2009-4870

Platform: Web Application - SQL Injection

Categories: Security Alerts

(1) HIGH: Opera Heap Buffer Overflow

Fri, 2010-08-20 07:10

Category: Widely Deployed Software

Affected:

Opera prior to 10.61

Categories: Security Alerts

10.34.9 Cisco ACE Module and Engine RTSP Inspection Denial of Service

Fri, 2010-08-20 07:10

CVEs: CVE: CVE-2010-2822

Platform: Cross Platform

Categories: Security Alerts

10.34.10 Portable Document Format Specification Signature Collision Issue

Fri, 2010-08-20 07:10

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.34.11 VLC Media Player Meta Information Remote Denial of Service

Fri, 2010-08-20 07:10

CVEs: CVE: CVE-2010-2937

Platform: Cross Platform

Categories: Security Alerts