Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption.
View Full Alert
Adobe Flash Player 188.8.131.52 and earlier, and 9.x up to 184.108.40.206, allows remote attackers to bypass the allowScriptAccess parameter setting via a crafted SWF file with unspecified "Filter evasion" manipulations.…
MDaemon Webmail (formerly WorldClient) has CSRF. View Full Alert
LOYTEC LGATE-902 6.3.2 devices allow XSS. View Full Alert