arbitrary code

Cyber Cynic: "Actually, it's bigger than just a problem that could crash a system. Secunia, a security company, stated that "Successful exploitation may allow execution of arbitrary code." In other words, you could use the bug to crack PCs and take control of them."

Multiple vulnerabilities have been discovered in Opera, allowing for the execution of arbitrary code.

Tobias Heinlein - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200810-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - ...

Debian has updated python-dns (fix a regression).

Gentoo has updated newsbeuter (execution of arbitrary code), R (arbitrary file overwrite).

Mandriva has updated ed (heap-based buffer overflow), pan (execution of arbitrary code).

Gentoo has updated ISC DHCP (denial of service) and libxslt (execution of arbitrary code).

Ubuntu has updated xine-lib (multiple vulnerabilities).

Gentoo Linux Security Advisory GLSA 200807-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - ...

Because of a not sufficiently secure default value of the TYPO3 configuration variable fileDenyPattern, authenticated backend users could upload files that allowed to execute arbitrary code as the webserver ...

Officials at a popular video conferencing Web site are warning that a security policy bypass is allowing attackers to write arbitrary code into users' systems and causing problems.

Filed under: Internet, Mozilla