| | | Hep buffer overflow in HX_split function. Applications: libHX 3.5 (02.09.2010) | |
| | | Double free() in ECDH code. Applications: OpenSSL 0.9 (02.09.2010) | |
| | | Directory traversal on file downloading in lwp-download. Applications: libwww-perl 5.834 (02.09.2010) | |
| | | If application is launched via file type association, current path is set to the path file is located, making it's possible to place DLLs application tries to load dynamically into same directory. Applications: Windows 2000 Server, Windows 2000 Professional, Windows XP, Windows 2003 Server, Windows Vista, Windows 2008 Server, Windows 7 (02.09.2010) | |
| | | Crash on SGV style parameters parsing. Applications: Safari 5.0 (02.09.2010) | |
| | | Crash on message parsing. Applications: bogofilter 1.2 (02.09.2010) | |
| | | Multiple integer overflows on BPM, JPEG, TIFF parsing. Applications: libgdiplus 2.6 (02.09.2010) | |
| | | Memory corruption in ActiveX control. (02.09.2010) | |
| | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Applications: Rumba CMS 2.4, Amiro.CMS 5.8, FCKEditor.NET 2.6, WebManager-Pro 8.1, WebManager-Pro 7.4 (02.09.2010) | |
| | | Multiple DoS conditions, buffer overflow. Applications: Wireshark 1.2 (02.09.2010) | |
| | | Integer overflows in Impress. Applications: OpenOffice 3.2 (31.08.2010) | |
| | | Crash on SIP messages parsing. Applications: Unified Communications Manager 6.1, Unified Communications Manager 7.1, Unified Communications Manager 8.0, Unified Presence 6.0, Unified Presence 7.0 (30.08.2010) | |
| | | Directory traversal on put / get operations. Applications: Deepin TFTP Server 1.25 (30.08.2010) | |
| | | Wildmasks in certificates issued to IP address are enabled. Applications: Windows 2000 Server, Windows 2000 Professional, Windows XP, Windows 2003 Server, Windows Vista, Windows 2008 Server, Windows 7, Firefox 3.6, QT 4.7 (30.08.2010) | |
| | | Router may issue invalid announce on receiving prefix with malformed attribute. Applications: IOS XR 3.4, IOS XR 3.5, IOS XR 3.6, IOS XR 3.7, IOS XR 3.8, IOS XR 3.9 (30.08.2010) | |
| | | Memory corruption on FLV and IVR formats parsing. (30.08.2010) | |
| | | Dynamic memory overflow on PDB files processing. Applications: KDE 4.4, KDE 4.2 (30.08.2010) | |
| | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Applications: phpmyadmin 2.11, phpmyadmin 3.3, typo3 4.3, BugTracker.net 3.4, Webmatic 3.0 (30.08.2010) | |
| | | Memory corruption in Core Graphics on PDf files parsing. Applications: MacOS X 10.5, MacOS X 10.6 (29.08.2010) | |
|
managing editor