Section: .. / 0610-advisories /
| /// File Name: |
10.02.06.txt |
Description:
|
iDefense Security Advisory 10.02.06: Remote exploitation of a DoS vulnerability in Novell Inc.'s GroupWise Messenger could allow attackers to crash the Messenger server.
| | Author: | iDefense | | Homepage: | http://www.idefense.com/ | | File Size: | 3193 | | Last Modified: | Oct 4 18:10:45 2006 |
| MD5 Checksum: | ec17d21552be0cec382064c95d451f2a |
|
| /// File Name: |
10.05.06.txt |
Description:
|
iDefense Security Advisory 10.05.06 - Local exploitation of a design error vulnerability in Symantec Corp. AntiVirus can allow an attacker to execute arbitrary code with kernel privileges. The vulnerability specifically exists due to improper address space validation when the NAVENG and NAVEX15 device drivers process IOCTL 0x222AD3, 0x222AD7, and 0x222ADB. An attacker can overwrite a user supplied address, including code segments, with a constant double word value by supplying a specially crafted Irp to the IOCTL handler function. iDefense has confirmed the existence of this vulnerability within version 10 of Symantec Client Security as of this writing. Previous versions, as well as relating products, which contain the NAVENG.SYS and NAVEX15.SYS drivers are suspected to be vulnerable as well.
| | Author: | Ruben Santamarta | | Homepage: | http://www.idefense.com | | File Size: | 3734 | | Related CVE(s): | CVE-2006-4927 | | Last Modified: | Oct 8 23:22:36 2006 |
| MD5 Checksum: | 0173f2475ead8ed40d2478d5326cdedf |
|
| /// File Name: |
10.13.06.txt |
Description:
|
iDefense Security Advisory 10.13.06 - Remote exploitation of a format string vulnerability in the mod_tcl module for the Apache httpd v2.x could allow attackers to execute arbitrary code in the context of the httpd.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3574 | | Last Modified: | Oct 20 17:21:59 2006 |
| MD5 Checksum: | a98acf4b15148b8483385b4d7bcd4496 |
|
| /// File Name: |
10.15.06-1.txt |
Description:
|
iDefense Security Advisory 10.15.06 - Remote exploitation of a buffer overflow in Clam AntiVirus allows attackers to potentially execute arbitrary code or cause a denial of service condition.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 2923 | | Last Modified: | Oct 20 18:33:56 2006 |
| MD5 Checksum: | c4645704ba882a5ae5d849242a21912a |
|
| /// File Name: |
10.15.06-2.txt |
Description:
|
iDefense Security Advisory 10.15.06: Remote exploitation of a input validation vulnerability in Clam AntiVirus's ClamAV could allow attackers to crash the virus scanning service.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3035 | | Last Modified: | Oct 20 18:33:28 2006 |
| MD5 Checksum: | 597314452400461b167c43811fdf762b |
|
| /// File Name: |
10.19.06.txt |
Description:
|
iDefense Security Advisory 10.19.06: Local exploitation of a design error vulnerability in Kaspersky Labs Anti-Virus allows an attacker to execute arbitrary code with kernel privileges.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3189 | | Last Modified: | Oct 24 15:59:15 2006 |
| MD5 Checksum: | c889155f72b7c59582df209da98c5d3a |
|
| /// File Name: |
10.21.06-1.txt |
Description:
|
iDefense Security Advisory 10.21.06 - Novell eDirectory NCP over IP length Heap Overflow Vulnerability: Remote exploitation of a heap overflow vulnerability in Novell Inc.'s eDirectory product could allow an attacker to execute arbitrary code in the context of the running daemon.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3623 | | Last Modified: | Oct 27 15:48:20 2006 |
| MD5 Checksum: | 6c66886fa28d55c86470553c39e15c80 |
|
| /// File Name: |
10.21.06-2.txt |
Description:
|
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Heap Overflow Vulnerability - Remote exploitation of a heap overflow vulnerability in Novell Inc.'s eDirectory product could allow an attacker to execute arbitrary code in the context of the running daemon.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3835 | | Last Modified: | Oct 27 15:47:38 2006 |
| MD5 Checksum: | 094931b68ae22029cc2a7590d8a98955 |
|
| /// File Name: |
10.21.06-3.txt |
Description:
|
iDefense Security Advisory 10.21.06: Novell eDirectory evtFilteredMonitorEventsRequest Invalid Free Vulnerability - Remote exploitation of an invalid free vulnerability in Novell Inc.'s eDirectory product could allow an attacker to execute arbitrary code in the context of the running daemon.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3858 | | Last Modified: | Oct 27 15:45:28 2006 |
| MD5 Checksum: | a7b36f795b099b4a76e4610841f3cd86 |
|
| /// File Name: |
10.25.06-2.txt |
Description:
|
iDefense Security Advisory 10.25.06: Remote exploitation of a heap-based buffer overflow vulnerability in the Ultravox protocol handler of AOL Corp.'s Nullsoft Winamp media player could allow an attacker to execute arbitrary code in the context of the currently logged in user.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3337 | | Last Modified: | Oct 27 19:38:29 2006 |
| MD5 Checksum: | cbb38e228101db66cc67c0df716dd4d9 |
|
| /// File Name: |
10.25.06-3.txt |
Description:
|
iDefense Security Advisory 10.25.06: America Online 9.0 Security Edition ships with an ActiveX control which is marked as safe for scripting and contains a buffer overflow vulnerability which allows for the arbitrary execution of code.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 3143 | | Last Modified: | Oct 27 19:37:54 2006 |
| MD5 Checksum: | c949d48591bafc8b71d819bf8c7093fc |
|
| /// File Name: |
2006_novell_httpstk.pdf |
Description:
|
Novell eDirectory/iMonitor Remote Code Execution Security Advisory: Novell's HTTP Protocol Stack (httpstk) is a component of iMonitor which provides a web-based interface for management of eDirectory, an LDAP service forming the basis for many of the world s largest identity-management deployments. The code fails to check the length of client-supplied HTTP Host request-header (e.g. Host: www.host.com) values before using them to build a formatted URL into an inadequate, statically-sized buffer on the stack. This condition occurs in a call to snprintf() while the server is preparing an HTTP redirect response and can be triggered remotely, before any authentication takes place. This can allow attacker supplied code to be executed on vulnerable systems.
| | Author: | Michael Ligh and Ryan Smith | | File Size: | 153531 | | Last Modified: | Oct 20 20:43:00 2006 |
| MD5 Checksum: | 0ebc713354412809617a93a95c797081 |
|
| /// File Name: |
AD20061010.txt |
Description:
|
This vulnerability allows remote attackers to execute arbitrary code in the context of the logged in user. An array boundary condition may be violated by a malicious Microsoft Office (DOC/PPT/XLS) file in order to redirect execution into attacker-supplied data. Exploitation requires that the attacker coerce or persuade the victim to open a malicious Microsoft Office file.
| | Author: | Sowhat | | Homepage: | http://www.nevisnetworks.com/ | | File Size: | 2353 | | Last Modified: | Oct 18 19:30:47 2006 |
| MD5 Checksum: | 1763a133a4b79e7a24b69f16b96b9bb0 |
|
| /// File Name: |
adv09-expblog.txt |
Description:
|
eXpBlog versions 0.3.5 and prior suffer from several cross site scripting vulnerabilities.
| | Author: | Tamriel | | File Size: | 2223 | | Last Modified: | Oct 9 19:56:02 2006 |
| MD5 Checksum: | 58c40da1708992927e560a5c7d550d18 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
