Foresight - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

What is the most important Linux security technology?

	SELinux
	grsecurity
	CIS Benchmark
	Bastille Linux
	iptables
	LIDS

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

All About Linux

DanWalsh LiveJournal

Securitydistro

Latest Newsletters

Linux Advisory Watch: June 14th, 2013

Linux Security Week: June 4th, 2013

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Foresight

Find the information you need for your favorite open source distribution

To browse through our weekly Linux Advisory Watch newsletters, click here.

Foresight: inkscape

24 March 2007

Previous versions of the inkscape package are vulnerable to attacks which would allow unauthorized system access at the permission level of the user running inkscape (usually non-root). One attack vector is by coercing a user into opening a specially crafted URI, while the other requires that the user be logged into a malicious jabber server using the client provided in inkscape.

Foresight: firefox

22 March 2007

Previous versions of the Firefox package were vulnerable to an information disclosure issue. Firefox's handling of PASV FTP connections could allow a specially crafted server to perform rudimentary port scanning on the client machine, giving the FTP server information about the client's system. In and of itself, this is not going to cause a remote code exploit, but could aid a malicious individual in other attacks.

<< Start < Prev 10 11 12 Next > End >>

Results 78 - 79 of 79