Des vulnérabilités hautement critiques ont été découvertes dans TYPO 3 et Linux Kernel !!!
Gust MEES
Des vulnérabilités hautement critiques (Cross-site-scripting et code injection) ont été découvertes dans TYPO 3 et Linux Kernel !!!
Voici ci-dessous les détails :
TYPO3 nepa-design.de Spam Protection Extension Unspecified Setting Manipulation Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29833
TYPO3 JobControl Extension Unspecified Cross-Site Scripting Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29828
TYPO3 Random Prayer Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29827
TYPO3 TARGET-E WorldCup Bets Extension Multiple Unspecified Input Validation Vulnerabilities 2008-06-21
http://www.securityfocus.com/bid/29826
TYPO3 Resource Library Extension Unspecified Cross-Site Scripting Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29832
TYPO3 Download system Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29825
TYPO3 TIMTAB Social Bookmark Icons Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29823
TYPO3 Fussballtippspiel Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29824
TYPO3 Diocese of Portsmouth Training Courses Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29822
TYPO3 CoolURI Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29821
TYPO3 Frontend Filemanager Extension Unspecified Code Execution Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29837
TYPO3 Diocese of Portsmouth Calendar Today Extension SQL Injection Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29819
Net-SNMP Remote Authentication Bypass Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29623
TYPO3 DCD GoogleMap Extension Unspecified Cross-Site Scripting Vulnerability 2008-06-21
http://www.securityfocus.com/bid/29815
Linux Kernel Direction Flag Local Memory Corruption Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29084
Linux Kernel Prior to 2.6.24.2 'vmsplice_to_pipe()' Local Privilege Escalation Vulnerability 2008-06-20
http://www.securityfocus.com/bid/27801
Linux Kernel 'hrtimer_forward()' Local Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29294
Linux Kernel DO_COREDUMP Local Information Disclosure Vulnerability 2008-06-20
http://www.securityfocus.com/bid/26701
Net-SNMP Perl Module Buffer Overflow Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29212
Linux Kernel wait_task_stopped Local Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/26477
Linux Kernel CIFS Transport.C Remote Buffer Overflow Vulnerability 2008-06-20
http://www.securityfocus.com/bid/26438
Linux Kernel 'sys_utimensat' Local Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29134
Linux Kernel 'ipip6_rcv()' Remote Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29235
Linux Kernel 'dnotify.c' Local Race Condition Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29003
Linux Kernel IPSec Fragmented ESP Packet Remote Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29081
Linux Kernel DCCP Subsystem Buffer Overflow Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29603
Linux Kernel 'fcntl_setlk()' SMP Ordering Local Denial of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29076
CGIWrap Error Page Handling Cross Site Scripting Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29811
Linux Kernel x86_64 ptrace Denial Of Service Vulnerability 2008-06-20
http://www.securityfocus.com/bid/29086
Source des vulnérabilités : SECURITYFOCUS