SECUNIA ADVISORY ID: SA31724

VERIFY ADVISORY: http://secunia.com/advisories/31724/

CRITICAL: Highly critical

IMPACT: System access

SOFTWARE: Microsoft Windows Media Encoder 9.x - http://secunia.com/product/5895/

DESCRIPTION: A vulnerability has been reported in Windows Media Encoder, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the WMEX.DLL ActiveX control. This can be exploited to cause a buffer overflow by tricking a user into e.g. visiting a malicious website. Successful exploitation may allow execution of arbitrary code.
 Read More...

SECUNIA ADVISORY ID: SA31726

VERIFY ADVISORY: http://secunia.com/advisories/31726/

CRITICAL: Highly critical

IMPACT: System access

SOFTWARE: Microsoft Windows Media Player 11.x - http://secunia.com/product/11280/

DESCRIPTION: A vulnerability has been reported in Windows Media Player, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error when handling sampling rates. This can be exploited via a specially crafted audio file streamed from a server-side playlist (SSPL). Successful exploitation may allow execution of arbitrary code.
 Read More...

From ZDNet Blogs
The first security patch for Google’s new Chrome browser is out, fixing at least two “critical” vulnerabilities that put Windows users at risk of code execution attacks.

The patch, which is rolled out automatically via Chrome’s auto-update feature, also addresses two additional security vulnerabilities — the carpet-bombing issue and a denial-of-service flaw that could lead to browser crashes and data loss.

Read entire article about Google patches *critical* Chrome code execution flaws

kenetix writes:  

Hi everyone,

I'm pleased announce the release of a new tool to the community - An icon to png converter. This tool basically allows you to extract the PNG images within the .ico file. All you need to do is upload the icon file and you will be able to download converted copies of the PNG files directly from the website. To access this tool, visit: This site

To make things simpler, I've also released a PHP-Nuke block that allows users to upload the icon file directly to the server for conversions. To download this block, simply visit: Kenetix.net Downloads Section (no registration required). For more resources for PHP-Nuke such as themes, modules, and blocks, feel free to visit my community site here at: www.kenetix.net

Enjoy and have a great day!

SECUNIA ADVISORY ID: SA31758

VERIFY ADVISORY: http://secunia.com/advisories/31758/

CRITICAL: Moderately critical

IMPACT: Manipulation of data

SOFTWARE: Zen Cart 1.x - http://secunia.com/product/3488/

DESCRIPTION: James Bercegay has reported two vulnerabilities in Zen Cart, which can be exploited by malicious people to conduct SQL injection attacks. Successful exploitation requires in both cases that "magic_quotes_gpc" is disabled. The vulnerabilities are reported in versions 1.2.0d to 1.3.8a.
 Read More...

trunks writes:  

PHP-Clans.com would like to announce our SWAT RavenNuke(tm) theme has now been released and is now available for purchase in our theme store.

We have it on special for a month too, so BUY NOW before its too late! $24.99!!

Feel free to take a look at our other clan themes in our store too, or suggest a theme to be designed by our clan themers in our community forums.

Remember these themes ARE phpnuke compatible also.

Visit www.PHP-Clans.com Now!