Promo2

Vulnerabilities Center

This is the source where you can keep an eye on all the news that come from security information with the most recent vulnerabilities and exploits. All the information listed below come from the most well known and trusted websites that keep track of security information on the Internet.

SecuriTeam:

+ Real Networks RealPlayer Compressed GIF Handling Integer Overflow
+ RealNetworks RealPlayer CMediumBlockAllocator Integer Overflow Vulnerability
+ SugarCRM Online Document Cross-Site Scripting (XSS) Vulnerability
+ Skype URI Processing Arbitrary XML File Deletion Vulnerability
+ Skype Protocol Handler Datapath Argument Injection Credential Disclosure Vulnerability
+ Netifera - Modular Open Source Platform for Security Tools
+ WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems
+ Webshag - Web Server Audit Tool

Milw0rm:

+
+
+
+
+
+
+
+

Exploit-DB:

+ no$gba 2.5c (.nds) local crash
+ Jewelry Cart Software (product.php) SQL Injection Vulnerability
+ Adult Video Site Script Multiple Vulnerabilities
+ Woltlab Burning Board Teamsite Hack <= v3.0 ts_other.php SQL Injection Exploit
+ Trouble Ticket Software ttx.cgi Remote File Download
+ ZKSoftware Biometric Attendence managnmnet Hardware[MIPS] Improper Authentication
+ JITed egg-hunter stage-0 shellcode
+ eDisplay Personal FTP server 1.0.0 Multiple Post-Authentication Stack BOF

SecurityFocus:

+ Microsoft Windows Media Player AVI File Colorspace Conversion Remote Memory Corruption Vulnerability
+ Apache Subrequest Handling Information Disclosure Vulnerability
+ Apache mod_proxy_ajp Module Incoming Request Body Denial Of Service Vulnerability
+ MIT Kerberos AES and RC4 Decryption Integer Underflow Vulnerabilities
+ announcing skipfish, an automated web app security scanner
+ Vulnerability Httpdx v1.5.3b
+ IBM Lotus 6.x HTTP Response Splitting Vulnerability
+ There are lost of xss vul in PHPWind v6.0 !

Vigil@nce:

+ Vigil@nce - Sun Web Server: buffer overflow via Digest
+ Vigil@nce - Sun Web Server: buffer overflow via WebDAV
+ Vigil@nce - CiscoWorks: overflow of IPM CORBA GIOP
+ Vigil@nce - SAP WebAS: code execution via ITS
+ Vigil@nce - Linux kernel: denial of service of routing
+ Vigil@nce - gunzip: code execution via LZW
+ Vigil@nce - gunzip: code execution via Huffman
+ Vigil@nce - Linux kernel: denial of service via NFS

VUPEN:

+ CA ARCserve Backup JRE Code Execution and Security Bypass Issues
+ Debian Security Update Fixes PHP XML-RPC Denial of Service Issue
+ Ubuntu Security Update Fixes Thunderbird Multiple Vulnerabilities
+ IBM DB2 Content Manager Web Services Single Sign-on Vulnerability
+ Transmission "tr_magnetParse()" Magnet Buffer Overflow Vulnerability
+ myMP3-Player Playlist Processing Buffer Overflow Vulnerability
+ VariCAD Products "DWB" File Processing Buffer Overflow Vulnerability
+ SugarCRM Document Name Handling Cross Site Scripting Vulnerability