Section: .. / 0605-advisories /
| /// File Name: |
dsa-1076-1.txt |
Description:
|
Debian Security Advisory 1076-1: Michal Zalewski discovered that lynx, the popular text-mode WWW Browser, is not able to grok invalid HTML including a TEXTAREA tag with a large COLS value and a large tag name in an element that is not terminated, and loops forever trying to render the broken HTML.
| | Homepage: | http://www.debian.org/security | | File Size: | 7536 | | Last Modified: | May 29 03:38:56 2006 |
| MD5 Checksum: | 9d288b10d87bea5d4f5d0c143548dd88 |
|
| /// File Name: |
dsa-1077-1.txt |
Description:
|
Debian Security Advisory 1077-1: Michael Zalewski discovered that lynx, the popular text-mode WWW Browser, is not able to grok invalid HTML including a TEXTAREA tag with a large COLS value and a large tag name in an element that is not terminated, and loops forever trying to render the broken HTML. The same code is present in lynx-ssl.
| | Homepage: | http://www.debian.org/security | | File Size: | 4968 | | Last Modified: | May 29 03:39:03 2006 |
| MD5 Checksum: | 66ed9dd2153f9819ad5f7bed2ba41c86 |
|
| /// File Name: |
dsa-1078-1.txt |
Description:
|
Debian Security Advisory 1078-1: Andrey Kiselev discovered a problem in the TIFF library that may allow an attacker with a specially crafted TIFF image with Yr/Yg/Yb values that exceed the YCR/YCG/YCB values to crash the library and hence the surrounding application.
| | Homepage: | http://www.debian.org/security | | File Size: | 12327 | | Last Modified: | May 29 03:39:11 2006 |
| MD5 Checksum: | e2d9b4e403405f51b510838c4e72a065 |
|
| /// File Name: |
dsa-1079-1.txt |
Description:
|
Debian Security Advisory 1079-1: Several vulnerabilities have been discovered in MySQL, a popular SQL database.
| | Homepage: | http://www.debian.org/security | | File Size: | 12424 | | Last Modified: | May 29 03:39:25 2006 |
| MD5 Checksum: | 2028ffaa54dce17d11ecbe0e99c077fc |
|
| /// File Name: |
dsa-1080-1.txt |
Description:
|
Debian Security Advisory 1080-1: A problem has been discovered in the IMAP component of Dovecot, a secure mail server that supports mbox and maildir mailboxes, which can lead to information disclosure via directory traversal by authenticated users.
| | Homepage: | http://www.debian.org/security | | File Size: | 9290 | | Last Modified: | May 29 19:40:24 2006 |
| MD5 Checksum: | 0c032fc7bbb81b62a3da0d4bab948b1a |
|
| /// File Name: |
dsa-1081-1.txt |
Description:
|
Debian Security Advisory 1081-1: Luigi Auriemma discovered a buffer overflow in the processing of ASF files in libextractor, a library to extract arbitrary meta-data from files., which can lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 9315 | | Last Modified: | May 29 19:40:39 2006 |
| MD5 Checksum: | b94672113f7a934fb3dc30a432dfb18c |
|
| /// File Name: |
dsa-1082-1.txt |
Description:
|
Debian Security Advisory 1082-1: Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 17142 | | Last Modified: | May 29 19:40:51 2006 |
| MD5 Checksum: | 5b2ee07e9b859ffd93b5684a6da04174 |
|
| /// File Name: |
DSChat-1.0.txt |
Description:
|
DSChat versions less than or equal to 1.0 suffer from XSS
| | Author: | zerogue | | File Size: | 260 | | Last Modified: | May 26 18:03:45 2006 |
| MD5 Checksum: | 201c6b299808786ca376c5815f2f6c22 |
|
| /// File Name: |
DuGalleryV2.x.txt |
Description:
|
DUGallery v2.x suffers from a login bypass vulnerability.
| | Homepage: | http://www.milli-harekat.org | | File Size: | 340 | | Last Modified: | May 17 18:57:08 2006 |
| MD5 Checksum: | 4db4da06bbdd0a58bda690baa1e2facf |
|
| /// File Name: |
Easy-Content-1.0.txt |
Description:
|
Easy-Content Forums 1.0 suffers from multiple SQL injection and XSS vulnerabilities
| | Author: | ajannhwt | | File Size: | 2179 | | Last Modified: | May 29 03:05:49 2006 |
| MD5 Checksum: | 61a53efba8ac0ae50add9c57bd0e38a6 |
|
| /// File Name: |
EEYEB-20060307.txt |
Description:
|
eEye Digital Security has discovered a critical vulnerability in QuickTime Player. There is a integer overflow in the way QuickTime processes fpx format files. An attacker can create a fpx file and send it to the user via email, web page, or fpx file with activex.
| | Author: | Fang Xing | | Homepage: | http://www.eeye.com/ | | File Size: | 2310 | | Related CVE(s): | CVE-2006-1249 | | Last Modified: | May 21 15:13:18 2006 |
| MD5 Checksum: | 2a65823ba1f098e05bf2b7f47f274f5f |
|
| /// File Name: |
Eggblog-3.x.txt |
Description:
|
Eggblog versions less than or equal to 3.x suffer from multiple SQL injection vulnerabilities.
| | Homepage: | http://www.nukedx.com/ | | File Size: | 1751 | | Last Modified: | May 29 19:08:57 2006 |
| MD5 Checksum: | 78e8133431c2bd8f460563834511864d |
|
| /// File Name: |
ejabberd.txt |
Description:
|
ejabberd versions 1.1.1_1 and below suffer from a denial of service vulnerability due to a symlink attack flaw.
| | Author: | Julien Lanthea | | File Size: | 675 | | Last Modified: | May 5 06:26:18 2006 |
| MD5 Checksum: | 4c114d8102b2e995da1ac02ab1558feb |
|
| /// File Name: |
Elite-Boardv.1.1.txt |
Description:
|
Bulletin Board Elite-Board v.1.1 suffers from XSS.
| | Author: | luny | | File Size: | 551 | | Last Modified: | May 26 19:15:17 2006 |
| MD5 Checksum: | 6e5aea1587e097b062329480bd404ced |
|
| /// File Name: |
EnigmaHaber-4.3.txt |
Description:
|
Enigma Haber versions less than or equal to 4.3 suffer from multiple SQL injection vulnerabilities.
| | Homepage: | http://www.nukedx.com/ | | File Size: | 2411 | | Last Modified: | May 29 19:06:28 2006 |
| MD5 Checksum: | 2516db9d3d354a57157db55f6c7fb212 |
|
| /// File Name: |
EzUploadProv2.10.txt |
Description:
|
EzUpload Pro v2.10 suffers from multiple remote file inclusion vulnerabilities.
| | Author: | black-cod3 | | File Size: | 831 | | Last Modified: | May 29 19:48:12 2006 |
| MD5 Checksum: | 3bb0752c9f74ae5e8a6571f9975c19a6 |
|
| /// File Name: |
firenull.txt |
Description:
|
Firefox version 1.5.0.3 with IE Tab version 1.0.9 on Windows XP/2k suffers from a null pointer dereference bug.
| | Author: | Debasis Mohanty | | Homepage: | http://www.hackingspirits.com/ | | File Size: | 1997 | | Last Modified: | May 22 01:39:46 2006 |
| MD5 Checksum: | 6a1ec33bcff61a4236d16d3dbce68615 |
|
| /// File Name: |
flexcustomer.txt |
Description:
|
FlexCustomer versions 0.0.4 and below suffer from SQL injection flaws.
| | Author: | Nomenumbra | | File Size: | 576 | | Last Modified: | May 6 18:14:36 2006 |
| MD5 Checksum: | b9b212a5876cdc7ad4ad8d0800e94399 |
|
| /// File Name: |
FLSA-2006-152868.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152868 - Updated tetex packages that fix several security issues are now available.
| | Homepage: | http://fedoralegacy.org | | File Size: | 10959 | | Last Modified: | May 17 17:35:14 2006 |
| MD5 Checksum: | 35d7bc6a1aed44d91ecf2633b33baa61 |
|
| /// File Name: |
FLSA-2006-152898.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152898 - Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an attacker can execute arbitrary code as the user running emacs.
| | Homepage: | http://fedoralegacy.org | | File Size: | 5462 | | Last Modified: | May 17 17:44:28 2006 |
| MD5 Checksum: | 5ab7dda0da60ba35659105672f4b620b |
|
| /// File Name: |
FLSA-2006-152904.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152904 - Buffer overflows were found in the nwclient program. An attacker, using a long -T option, could possibly execute arbitrary code and gain privileges.
| | Homepage: | http://fedoralegacy.org | | File Size: | 7231 | | Last Modified: | May 17 17:45:03 2006 |
| MD5 Checksum: | a49223f8d73e94a1f2dda56b6d7863d5 |
|
| /// File Name: |
FLSA-2006-152923.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152923 - A flaw was discovered in xloadimage where filenames were not properly quoted when calling the gunzip command. An attacker could create a file with a carefully crafted filename so that it would execute arbitrary commands if opened by a victim.
| | Homepage: | http://fedoralegacy.org | | File Size: | 5476 | | Last Modified: | May 17 17:45:53 2006 |
| MD5 Checksum: | 2ce6776465daf5b964122de0ea5dda6f |
|
| /// File Name: |
FLSA-2006-164512.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:164512 - A bug was found in the way fetchmail allocates memory for long lines. A remote attacker could cause a denial of service by sending a specially- crafted email.
| | Homepage: | http://fedoralegacy.org | | File Size: | 6274 | | Last Modified: | May 17 17:43:46 2006 |
| MD5 Checksum: | bee065c36fbe83bb42b3da38cba494f9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
