Section: .. / 0610-advisories /
| /// File Name: |
TSRT-06-11.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup, Enterprise Backup, Server Protection Suite and Business Protection Suite. Authentication is not required to exploit this vulnerability and both client and servers are affected. The problem specifically exists within DBASVR.exe, the Backup Agent RPC Server. This service exposes a number of vulnerable RPC routines through a TCP endpoint with ID 88435ee0-861a-11ce-b86b-00001b27f656 on port 6071. The most trivial of the exposed vulnerabilities results in an exploitable stack overflow.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2942 | | Related CVE(s): | CVE-2006-5143 | | Last Modified: | Oct 9 00:09:16 2006 |
| MD5 Checksum: | 4edad7ba52b64afcc4ab0f7a674bdc57 |
|
| /// File Name: |
TSRT-06-12.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Computer Associates ARCserver Backup. Authentication is not required exploit this vulnerability and both the client and server are affected. The problem specifically exists within the handling of long messages received over the Mailslot named 'CheyenneDS'. As no explicit MaxMessageSize is supplied in the call to CreateMailslot, an attacker can cause an exploitable stack-based buffer overflow.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 3515 | | Related CVE(s): | CVE-2006-5142 | | Last Modified: | Oct 9 00:09:59 2006 |
| MD5 Checksum: | b774c7f50fe5eba9e9562c847a8b8a6b |
|
| /// File Name: |
USN-353-1.txt |
Description:
|
Ubuntu Security Notice 353-1: openssl vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12539 | | Last Modified: | Oct 3 21:16:01 2006 |
| MD5 Checksum: | c5c4046a58109d7a9dc10e79cb146454 |
|
| /// File Name: |
USN-353-2.txt |
Description:
|
Ubuntu Security Notice 353-2: USN-353-1 fixed several vulnerabilities in OpenSSL. However, Mark J Cox noticed that the applied patch for CVE-2006-2940 was flawed. This update corrects that patch.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10885 | | Last Modified: | Oct 4 18:40:52 2006 |
| MD5 Checksum: | 14576eaad719e7a410cf51ecb0d72a25 |
|
| /// File Name: |
USN-354-1.txt |
Description:
|
Ubuntu Security Notice 354-1: firefox vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 20533 | | Last Modified: | Oct 3 21:16:13 2006 |
| MD5 Checksum: | 2c18f7b7e5739739e1884a4359c1c573 |
|
| /// File Name: |
USN-355-1.txt |
Description:
|
Ubuntu Security Notice 355-1: Tavis Ormandy discovered that the SSH daemon did not properly handle authentication packets with duplicated blocks. By sending specially crafted packets, a remote attacker could exploit this to cause the ssh daemon to drain all available CPU resources until the login grace time expired. (CVE-2006-4924)
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12809 | | Last Modified: | Oct 3 21:16:05 2006 |
| MD5 Checksum: | e2595de5befd559480be17097fc39139 |
|
| /// File Name: |
USN-356-1.txt |
Description:
|
Ubuntu Security Notice 356-1: Will Drewry, of the Google Security Team, discovered buffer overflows in GDB's DWARF processing. This would allow an attacker to execute arbitrary code with user privileges by tricking the user into using GDB to load an executable that contained malicious debugging information.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4603 | | Last Modified: | Oct 3 21:16:09 2006 |
| MD5 Checksum: | 35da0dcce6e19a49ae387f6a4cbe005f |
|
| /// File Name: |
USN-357-1.txt |
Description:
|
Ubuntu Security Notice 357-1: Sebastian Krahmer of the SuSE security team discovered that the System.CodeDom.Compiler classes used temporary files in an insecure way. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. Under some circumstances, a local attacker could also exploit this to inject arbitrary code into running Mono processes.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13733 | | Last Modified: | Oct 4 18:40:56 2006 |
| MD5 Checksum: | 2872aedcdcf6af7c9436df4e482001ed |
|
| /// File Name: |
USN-358-1.txt |
Description:
|
Ubuntu Security Notice 358-1: ffmpeg, xine-lib vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16864 | | Last Modified: | Oct 4 18:40:48 2006 |
| MD5 Checksum: | cda9896f3ac31c3a8cf85706fcc5ebd2 |
|
| /// File Name: |
USN-359-1.txt |
Description:
|
Ubuntu Security Notice 359-1 - Benjamin C. Wiley Sittler discovered that Python's repr() function did not properly handle UTF-32/UCS-4 strings. If an application uses repr() on arbitrary untrusted data, this could be exploited to execute arbitrary code with the privileges of the python application.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 28365 | | Related CVE(s): | CVE-2006-4980 | | Last Modified: | Oct 12 00:05:28 2006 |
| MD5 Checksum: | 88f2eb792fa6a2cce2592044b53f592c |
|
| /// File Name: |
USN-360-1.txt |
Description:
|
Ubuntu Security Notice 360-1: awstats did not fully sanitize input, which was passed directly to the user's browser, allowing for an XSS attack. If a user was tricked into following a specially crafted awstats URL, the user's authentication information could be exposed for the domain where awstats was hosted.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3344 | | Last Modified: | Oct 13 19:11:56 2006 |
| MD5 Checksum: | 1830e76da75a2fcc36ef84650e2604ad |
|
| /// File Name: |
USN-361-1.txt |
Description:
|
Ubuntu Security Notice 361-1: mozilla - Various flaws have been reported that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious URL.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 18684 | | Last Modified: | Oct 13 19:12:00 2006 |
| MD5 Checksum: | 09c9a019a2bfe6e61850bc9c1ee67a1f |
|
| /// File Name: |
USN-362-1.txt |
Description:
|
Ubuntu Security Notice 362-1: php4, php5 vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 29923 | | Last Modified: | Oct 13 19:12:06 2006 |
| MD5 Checksum: | ba3c3f6f3b9f6836f705dbf2ec48c757 |
|
| /// File Name: |
USN-363-1.txt |
Description:
|
Ubuntu Security Notice 363-1: Luigi Auriemma discovered multiple buffer overflows in libmusicbrainz. When a user made queries to MusicBrainz servers, it was possible for malicious servers, or man-in-the-middle systems posing as servers, to send a crafted reply to the client request and remotely gain access to the user's system with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14793 | | Last Modified: | Oct 13 19:12:11 2006 |
| MD5 Checksum: | 3ec0b6710cef92352e223bc8bba5a2e7 |
|
| /// File Name: |
USN-364-1.txt |
Description:
|
Ubuntu Security Notice 364-1: xinit vulnerability - A race condition existed that would allow other local users to see error messages generated during another user's X session. This could allow potentially sensitive information to be leaked.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4311 | | Last Modified: | Oct 17 17:54:11 2006 |
| MD5 Checksum: | 20b0b4dd21ff09a80da325618840deed |
|
| /// File Name: |
USN-365-1.txt |
Description:
|
Ubuntu Security Notice 365-1: libksba vulnerability: A parsing failure was discovered in the handling of X.509 certificates that contained extra trailing data. Malformed or malicious certificates could cause services using libksba to crash, potentially creating denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3287 | | Last Modified: | Oct 17 17:54:18 2006 |
| MD5 Checksum: | e51908d22244a17ce414247c7eb662a0 |
|
| /// File Name: |
USN-366-1.txt |
Description:
|
Ubuntu Security Notice 366-1: A buffer overflow was discovered in gas (the GNU assembler). By tricking an user or automated system (like a compile farm) into assembling a specially crafted source file with gcc or gas, this could be exploited to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5114 | | Last Modified: | Oct 20 21:01:45 2006 |
| MD5 Checksum: | 5853701593d70ae4be9d980fe6fb1840 |
|
| /// File Name: |
USN-367-1.txt |
Description:
|
Ubuntu Security Notice 367-1: An SQL injection was discovered in Pike's PostgreSQL module. Applications using a PostgreSQL database and uncommon character encodings could be fooled into running arbitrary SQL commands, which could result in privilege escalation within the application, application data exposure, or denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9398 | | Last Modified: | Oct 20 21:01:53 2006 |
| MD5 Checksum: | a2599f6d5ad184ff1e2e17cbf3409c2f |
|
| /// File Name: |
USN-368-1.txt |
Description:
|
Ubuntu Security Notice 368-1: qt-x11-free vulnerability
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 39643 | | Last Modified: | Oct 25 17:39:57 2006 |
| MD5 Checksum: | a16d4a0173e6dfe9c2c17f36fc1b4224 |
|
| /// File Name: |
USN-369-1.txt |
Description:
|
Ubuntu Security Notice 369-1: postgresql-8.1 vulnerabilities
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12009 | | Last Modified: | Oct 25 17:39:51 2006 |
| MD5 Checksum: | ab1a2d089b8ae48b8355d4170437b96a |
|
| /// File Name: |
ViewVC-1.0.2.txt |
Description:
|
It was discovered that ViewVC is neither sending a charset HTTP header nor specifying a charset in the HTML body. Therefore it is possible to trick several browsers into decoding ViewVC pages UTF-7. This allows attackers to inject arbitrary UTF-7 encoded Java-Script code into the output.
| | Homepage: | http://www.hardened-php.net/ | | File Size: | 3024 | | Last Modified: | Oct 20 18:02:42 2006 |
| MD5 Checksum: | 782c691f37fbc2fb4e39c1d46e5ebccf |
|
| /// File Name: |
VirtueMart-joomla.txt |
Description:
|
VirtueMart Joomla eCommerce Edition CMS suffers from several cross site scripting vulnerabilities.
| | Author: | base640 | | File Size: | 1297 | | Last Modified: | Oct 3 20:06:36 2006 |
| MD5 Checksum: | 1f8c526d0b0c53aec7d4bc94a60725b6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
