Section: .. / 0609-advisories /
| /// File Name: |
USN-338-1.txt |
Description:
|
Ubuntu Security Notice USN-338-1 - Dmitri Lenev discovered that arguments of setuid SQL functions were evaluated in the security context of the functions' definer instead of its caller. An authenticated user with the privilege to call such a function could exploit this to execute arbitrary statements with the privileges of the definer of that function. Peter Gulutzan reported a potentially confusing situation of the MERGE table engine. If an user creates a merge table, and the administrator later revokes privileges on the original table only (without changing the privileges on the merge table), that user still has access to the data by using the merge table. This is intended behavior, but might be undesirable in some installations; this update introduces a new server option "--skip-merge" which disables the MERGE engine completely.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5579 | | Related CVE(s): | CVE-2006-4227, CVE-2006-4031 | | Last Modified: | Sep 7 10:53:33 2006 |
| MD5 Checksum: | 384753d8cfbfe440cfc7d57b77071152 |
|
| /// File Name: |
dsa-1169-1.txt |
Description:
|
Debian Security Advisory 1169-1 - Several local vulnerabilities have been discovered in the MySQL database server. Michal Prokopiuk discovered that remote authenticated users are permitted to create and access a database if the lowercase spelling is the same as one they have been granted access to. Beat Vontobel discovered that certain queries replicated to a slave could crash the client and thus terminate the replication.
| | Homepage: | http://www.debian.org/security | | File Size: | 12237 | | Related CVE(s): | CVE-2006-4226, CVE-2006-4380 | | Last Modified: | Sep 7 10:51:49 2006 |
| MD5 Checksum: | d681538479702c1b2dc6181ee316561c |
|
| /// File Name: |
dsa-1168-1.txt |
Description:
|
Debian Security Advisory 1168-1 - Several remote vulnerabilities have been discovered in Imagemagick, a collection of image manipulation tools, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 15585 | | Related CVE(s): | CVE-2006-2440, CVE-2006-3743, CVE-2006-3744 | | Last Modified: | Sep 7 10:50:20 2006 |
| MD5 Checksum: | 50bba9d206db94a99c12ed6bfa57066e |
|
| /// File Name: |
secadv_20060905.txt |
Description:
|
OpenSSL Security Advisory - Daniel Bleichenbacher recently described an attack on PKCS #1 version 1.5 signatures. If an RSA key with exponent 3 is used it may be possible to forge a PKCS #1 version 1.5 signature signed by that key. Implementations may incorrectly verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature. Since there are CAs using exponent 3 in wide use, and PKCS #1 version 1.5 is used in X.509 certificates, all software that uses OpenSSL to verify X.509 certificates is potentially vulnerable, as well as any other use of PKCS #1 version 1.5. This includes software that uses OpenSSL for SSL or TLS. OpenSSL versions up to 0.9.7j and 0.9.8b are affected.
| | Homepage: | http://www.openssl.org/ | | File Size: | 3082 | | Related CVE(s): | CAN-2006-4339 | | Last Modified: | Sep 7 10:41:36 2006 |
| MD5 Checksum: | 7f355d2434c311c39a165bf5d82e0bd4 |
|
| /// File Name: |
TTG0602.txt |
Description:
|
Alt-N WebAdmin version 3.2.5 running with MDaemon version 9.0.6 suffers from a flaw that allows Domain administrators within the default domain the ability to take over the MDaemon system account.
| | Author: | TTG | | Homepage: | http://www.teklow.com/ | | File Size: | 3649 | | Last Modified: | Sep 7 10:34:31 2006 |
| MD5 Checksum: | 270f5bd829a04dcb1009bc06d95c951f |
|
| /// File Name: |
dsa-1167-1.txt |
Description:
|
Debian Security Advisory 1167-1 - Several remote vulnerabilities have been discovered in the Apache, the worlds most popular webserver, which may lead to the execution of arbitrary web scripts. A cross-site scripting (XSS) flaw exists in the mod_imap component of the Apache server. Apache does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks.
| | Homepage: | http://www.debian.org/security | | File Size: | 15605 | | Related CVE(s): | CVE-2005-3352, CVE-2006-3918 | | Last Modified: | Sep 7 10:21:34 2006 |
| MD5 Checksum: | f9a8ab142f7a0c600050d5124bc36726 |
|
| /// File Name: |
anywhereUSB.txt |
Description:
|
AnywhereUSB/5 version 1.80.00 drivers are susceptible to an integer overflow vulnerability.
| | Author: | Itzik Kotler | | Homepage: | http://www.safend.com/ | | File Size: | 4189 | | Related CVE(s): | CVE-2006-4459 | | Last Modified: | Sep 7 10:20:01 2006 |
| MD5 Checksum: | 62a7454e96e65a5daaa2107dc66a9f46 |
|
| /// File Name: |
AS05081701.txt |
Description:
|
Airscanner Mobile Security Advisory - IM+ version 3.10 suffers from a local plaintext password disclosure flaw.
| | Homepage: | http://www.airscanner.com | | File Size: | 2403 | | Last Modified: | Sep 7 10:01:47 2006 |
| MD5 Checksum: | b1fd646a10648abee82cd6f15615ea8f |
|
| /// File Name: |
AS05081201.txt |
Description:
|
Airscanner Mobile Security Advisory - PDAapps Verichat version 1.30bh suffers from a local password disclosure flaw.
| | Homepage: | http://www.airscanner.com | | File Size: | 2400 | | Last Modified: | Sep 7 10:00:17 2006 |
| MD5 Checksum: | 925552b98bf01f566859ab0a5fcdf7a4 |
|
| /// File Name: |
webdictate.txt |
Description:
|
Web Dictate version 1.02 allows administrative login with a null password.
| | Author: | Revnic Vasile | | File Size: | 500 | | Last Modified: | Sep 7 09:57:30 2006 |
| MD5 Checksum: | 66d51d47a2973108b2b1e5188a529b71 |
|
| /// File Name: |
dsa-1166-1.txt |
Description:
|
Debian Security Advisory 1166-1 - Luigi Auriemma discovered a buffer overflow in the loading component of cheesetracker, a sound module tracking program, which could allow a maliciously constructed input file to execute arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 4713 | | Related CVE(s): | CVE-2006-3814 | | Last Modified: | Sep 7 09:50:19 2006 |
| MD5 Checksum: | a3b6d83d1b9f551af12cf58f2abb87cb |
|
| /// File Name: |
sslinks122.txt |
Description:
|
ssLinks version 1.22 suffers from multiple SQL injection vulnerabilities.
| | Author: | Sirdarckcat | | Homepage: | http://elhacker.net/ | | File Size: | 1098 | | Last Modified: | Sep 7 09:30:49 2006 |
| MD5 Checksum: | 900ce6e412577a5c3ba0d3b29f8c08b1 |
|
| /// File Name: |
e107075.txt |
Description:
|
e107 version 0.7.5 suffers from SQL injection flaws in the admin section.
| | Author: | Omid | | File Size: | 2024 | | Last Modified: | Sep 7 09:18:28 2006 |
| MD5 Checksum: | fd2f393ebf6169a063b6eea59d220b97 |
|
| /// File Name: |
smf11.txt |
Description:
|
SMF version 1.1 RC3 suffers from a SQL injection flaw in the admin section.
| | Author: | Omid | | File Size: | 1005 | | Last Modified: | Sep 7 09:17:26 2006 |
| MD5 Checksum: | 5e819f03b4ad9c56e5bdea16402bbf05 |
|
| /// File Name: |
SQLInjectionTix.txt |
Description:
|
Tix.com suffered from a SQL injection vulnerability where a user could access account information, and order tickets (and print them online) via a stolen account.
| | Author: | FxYxIxE | | File Size: | 1328 | | Last Modified: | Sep 7 09:16:21 2006 |
| MD5 Checksum: | 72d28f11553d9e86eef3a6d41e17b326 |
|
| /// File Name: |
dsa-1165-1.txt |
Description:
|
Debian Security Advisory 1165-1 - Lionel Elie Mamane discovered a security vulnerability in capi4hylafax, tools for faxing over a CAPI 2.0 device, that allows remote attackers to execute arbitrary commands on the fax receiving system.
| | Homepage: | http://www.debian.org/security | | File Size: | 4335 | | Related CVE(s): | CVE-2006-3126 | | Last Modified: | Sep 7 09:05:53 2006 |
| MD5 Checksum: | ca6e43250bce8c0a042c5cccd794d08c |
|
| /// File Name: |
blackICEpc.txt |
Description:
|
BlackICE PC Protection suffers from a denial of service condition when failing to validate the third argument of NtOpenSection.
| | Author: | David Matousek | | Homepage: | http://www.matousec.com/ | | File Size: | 1384 | | Last Modified: | Sep 7 08:35:09 2006 |
| MD5 Checksum: | 81d050fbe5e67a0b36c974fd2eb67725 |
|
| /// File Name: |
MDKSA-2006-160.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-160 - X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 8775 | | Related CVE(s): | CVE-2006-4447 | | Last Modified: | Sep 7 08:33:22 2006 |
| MD5 Checksum: | 698d87bfb3d04f8db4969f223c936876 |
|
| /// File Name: |
MDKSA-2006-159.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-159 - Previous sudo updates were made available to sanitize certain environment variables from affecting a sudo call, such as PYTHONINSPECT, PERL5OPT, etc. While those updates were effective in addressing those specific environment variables, other variables that were not blacklisted were being made available.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 3912 | | Related CVE(s): | CVE-2005-4158, CVE-2006-0151 | | Last Modified: | Sep 7 08:32:25 2006 |
| MD5 Checksum: | 4661b6ce8508215c583a6c6ef16bb1dc |
|
| /// File Name: |
MDKSA-2006-158.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-158 - MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects. There is also a bug in the MySQL-Max (and MySQL) init script where the script was not waiting for the mysqld daemon to fully stop. This impacted the restart behavior during updates, as well as scripted setups that temporarily stopped the server to backup the database files.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 4039 | | Related CVE(s): | CVE-2006-4389 | | Last Modified: | Sep 7 08:30:54 2006 |
| MD5 Checksum: | 8ba06d45177758f0f30e180b234174b8 |
|
| /// File Name: |
dsa-1164-1.txt |
Description:
|
Debian Security Advisory 1164-1 - A programming error has been discovered in sendmail, an alternative mail transport agent for Debian, that could allow a remote attacker to crash the sendmail process by sending a specially crafted email message.
| | Homepage: | http://www.debian.org/security | | File Size: | 13683 | | Related CVE(s): | CVE-2006-4434 | | Last Modified: | Sep 7 08:06:42 2006 |
| MD5 Checksum: | 8dbcd895f51d3d02b8b9108663d44110 |
|
| /// File Name: |
lyris895.txt |
Description:
|
The Lyris ListManager version 8.95 suffers from an arbitrary administrative user addition flaw.
| | Author: | Design Properly | | File Size: | 3995 | | Last Modified: | Sep 7 08:05:26 2006 |
| MD5 Checksum: | 1a82ccec03920ee7c28bea19d623ed1f |
|
| /// File Name: |
MDKSA-2006-157.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-157 - Multiple buffer overflows in libmusicbrainz (aka mb_client or MusicBrainz Client Library) 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a long Location header by the HTTP server, which triggers an overflow in the MBHttp::Download function in lib/http.cpp; and (2) a long URL in RDF data, as demonstrated by a URL in an rdf:resource field in an RDF XML document, which triggers overflows in many functions in lib/rdfparse.c.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 2932 | | Related CVE(s): | CVE-2006-4197 | | Last Modified: | Sep 7 07:52:34 2006 |
| MD5 Checksum: | 517c3e802783811c8a8396cb62a82056 |
|
| /// File Name: |
MDKSA-2006-156.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-156 - Moritz Jodeit discovered a vulnerability in sendmail when processing very long header lines that could be exploited to cause a Denial of Service by crashing sendmail.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 4265 | | Related CVE(s): | CVE-2006-4434 | | Last Modified: | Sep 7 07:51:39 2006 |
| MD5 Checksum: | a60a68c04f694436ad4dfed1a78ff00c |
|
| /// File Name: |
feedsplitter.txt |
Description:
|
The Feedsplitter script suffers from multiple vulnerabilities including a file inclusion flaw that may allow for code execution.
| | Author: | Jonathan Rockway | | File Size: | 2008 | | Last Modified: | Sep 7 07:43:02 2006 |
| MD5 Checksum: | e938964a050758af7ece8846b4a4c71a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
