Phishers Launch Scam On Twitter Users
New GA Law Forces Sex Offenders to Hand Over Their Internet Passwords
Hundreds of Israeli Websites Hacked in 'Propaganda War'
MORE KEYHOLE
ENTERPRISE VULNERABILITIES
Vulnerability:courtier-authlib
Published:2008-12-22
Severity:Medium
Description:SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Published:2008-12-22
Severity:Medium
Description:SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Vulnerability:skype extension for firefox
Published:2008-12-22
Severity:Medium
Description:The skype_tool.copy_num method in the Skype extension BETA 2.2.0.95 for Firefox allows remote attackers to write arbitrary data to the clipboard via a string argument.
Published:2008-12-22
Severity:Medium
Description:The skype_tool.copy_num method in the Skype extension BETA 2.2.0.95 for Firefox allows remote attackers to write arbitrary data to the clipboard via a string argument.
Vulnerability:konqueror
Published:2008-12-22
Severity:Medium
Description:HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Published:2008-12-22
Severity:Medium
Description:HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Vulnerability:opensolaris, solaris
Published:2008-12-22
Severity:Medium
Description:The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.
Published:2008-12-22
Severity:Medium
Description:The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.
Vulnerability:kernel
Published:2008-12-22
Severity:Medium
Description:libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
Published:2008-12-22
Severity:Medium
Description:libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
|
