Section: .. / 0701-advisories /
| /// File Name: |
cisco-sa-20070103-CleanAccess.txt |
Description:
|
Cisco Security Advisory - The Cisco Clean Access Manager (CAM) and Cisco Clean Access Server (CAS) suffer from an unchangeable shared secret vulnerability. Also, manual backups of the database ('snapshots') taken on the CAM are susceptible to brute force download attacks. A malicious user can guess the file name and download it without authentication. The file itself is not encrypted or otherwise protected.
| | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml | | File Size: | 12404 | | Last Modified: | Jan 4 02:34:40 2007 |
| MD5 Checksum: | 7f66a5ebe174302dc13434323da64b53 |
|
| /// File Name: |
cisco-sa-20070105-csacs.txt |
Description:
|
Cisco Security Advisory - Certain versions of Cisco Secure Access Control Server (ACS) for Windows and the Cisco Secure ACS Solution Engine (here after both referred to as purely Cisco Secure ACS) are affected by multiple vulnerabilities that cause specific Cisco Secure services to crash. Two of the vulnerabilities may permit arbitrary code execution after exploitation of the specified vulnerability.
| | Homepage: | http://www.cisco.com/ | | File Size: | 25828 | | Related CVE(s): | CVE-2006-4098, CVE-2006-4097 | | Last Modified: | Jan 13 15:45:56 2007 |
| MD5 Checksum: | 75996cdb0d85252d1f5d7e76cb1494ad |
|
| /// File Name: |
cisco-sa-20070110-dlsw.txt |
Description:
|
Cisco Security Advisory - A vulnerability exists in the Data-link Switching (DLSw) feature in Cisco IOS where an invalid value in a DLSw message could result in a reload of the DLSw device. Successful exploitation of this vulnerability requires that an attacker be able to establish a DLSw connection to the device.
| | Homepage: | http://www.cisco.com/ | | File Size: | 47426 | | Last Modified: | Jan 13 18:29:44 2007 |
| MD5 Checksum: | c7b16fd9119b6894b8b981c09db494b0 |
|
| /// File Name: |
cisco-sa-20070110-jtapi.txt |
Description:
|
Cisco Security Advisory - Cisco Unified Contact Center Enterprise, Cisco Unified Contact Center Hosted, Cisco IP Contact Center Enterprise, and Cisco IP Contact Center Hosted editions are affected by a vulnerability that may result in the restart of JTapi Gateway process. Until this process restarts, no new connections can be processed. Existing connections will continue to work.
| | Homepage: | http://www.cisco.com/ | | File Size: | 14002 | | Last Modified: | Jan 13 18:29:05 2007 |
| MD5 Checksum: | 7e1ee10e8abb4c318cb3cfa23893781b |
|
| /// File Name: |
cisco-sa-20070118-certs.txt |
Description:
|
Cisco Security Advisory - The Cisco Security Monitoring, Analysis and Response System (CS-MARS) and the Cisco Adaptive Security Device Manager (ASDM) do not validate the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) certificates or Secure Shell (SSH) public keys presented by devices they are configured to connect to. Malicious users may be able to use this lack of certificate or public key validation to impersonate the devices that these affected products connect to, which could then be used to obtain sensitive information or misreport information.
| | Homepage: | http://www.cisco.com/ | | File Size: | 14521 | | Last Modified: | Jan 19 22:31:36 2007 |
| MD5 Checksum: | ded5a9321e1e23fedac2ad04811a8e2f |
|
| /// File Name: |
cisco-sa-20070124-crafted-ip-option..> |
Description:
|
Cisco Security Advisory - Cisco routers and switches running Cisco IOS\256 or Cisco IOS XR software may be vulnerable to a remotely exploitable crafted IP option Denial of Service (DoS) attack. Exploitation of the vulnerability may potentially allow for arbitrary code execution. The vulnerability may be exploited after processing an Internet Control Message Protocol (ICMP) packet, Protocol Independent Multicast version 2 (PIMv2) packet, Pragmatic General Multicast (PGM) packet, or URL Rendezvous Directory (URD) packet containing a specific crafted IP option in the packet's IP header. No other IP protocols are affected by this issue.
| | Homepage: | http://www.cisco.com/ | | File Size: | 71315 | | Last Modified: | Jan 26 21:31:45 2007 |
| MD5 Checksum: | 577fd50627b0f80c7885e9f61dbd8439 |
|
| /// File Name: |
cisco-sa-20070124-crafted-tcp.txt |
Description:
|
Cisco Security Advisory - The Cisco IOS Transmission Control Protocol (TCP) listener in certain versions of Cisco IOS software is vulnerable to a remotely-exploitable memory leak that may lead to a denial of service condition. This vulnerability only applies to traffic destined to the Cisco IOS device. Traffic transiting the Cisco IOS device will not trigger this vulnerability.
| | Homepage: | http://www.cisco.com/ | | File Size: | 63855 | | Last Modified: | Jan 26 21:29:42 2007 |
| MD5 Checksum: | 37c32831dda7d34aac95c6c587bb9175 |
|
| /// File Name: |
cisco-sa-20070124-IOS-IPv6.txt |
Description:
|
Cisco Security Advisory - Processing a specially crafted IPv6 Type 0 Routing header can crash a device running Cisco IOS software. This vulnerability does not affect IPv6 Type 2 Routing header which is used in mobile IPv6. IPv6 is not enabled by default in Cisco IOS.
| | Homepage: | http://www.cisco.com/ | | File Size: | 62324 | | Last Modified: | Jan 26 21:31:00 2007 |
| MD5 Checksum: | dcea7c1cf3bf61e222409a766a302c5f |
|
| /// File Name: |
corsaire-chainkey.txt |
Description:
|
Corsaire Security Advisory - The aim of this document is to clearly define an issue that exists with the ChainKey Java Code Protection product, that will allow an attacker to circumvent the encryption protection and de-compile any protected Java application.
| | Author: | Stephen de Vries | | Homepage: | http://www.corsaire.com/ | | File Size: | 8182 | | Related CVE(s): | CVE-2007-0014 | | Last Modified: | Jan 13 19:59:09 2007 |
| MD5 Checksum: | a947f900a295b970a1717f7650f7279b |
|
| /// File Name: |
CT09-01-2007.txt |
Description:
|
Microsoft Outlook is a popular personal communication manager that provides end users with a unified place to manage e-mail, calendar and contact information. As part of its standard offering, Outlook also includes an Advanced Search facility (Finder.exe) enabling end-users to query any aspect of their repository information. Unfortunately, it transpires that Outlook/Finder is susceptible to a remote Buffer overflow vulnerability, when processing the contents of a specially crafted Office Saved Search (.oss) file.
| | Author: | Stuart Pearson | | Homepage: | http://www.computerterrorism.com/ | | File Size: | 3364 | | Related CVE(s): | CVE-2007-0034 | | Last Modified: | Jan 13 19:10:08 2007 |
| MD5 Checksum: | ae714bb4c24e9aea624b67a515703c5f |
|
| /// File Name: |
CX-2007-01.txt |
Description:
|
Calyptix Security Advisory - Snort 2.6.1.2 is vulnerable to an integer underflow that allows a remote attacker to cause Snort to read beyond a specified length of memory, potentially corrupting logfiles.
| | Author: | Chris Rohlf | | File Size: | 4541 | | Last Modified: | Jan 13 19:11:29 2007 |
| MD5 Checksum: | eb0738f597308dc82b34c3f4a28321c9 |
|
| /// File Name: |
DRUPAL-SA-2007-001.txt |
Description:
|
Drupal security advisory - A few arguments passed via URLs are not properly sanitized before display. When an attacker is able to entice an administrator to follow a specially crafted link, arbitrary HTML and script code can be injected and executed in the victim's session. Such an attack may lead to administrator access if certain conditions are met.
| | Author: | Uwe Hermann | | Homepage: | http://drupal.org/security | | File Size: | 1914 | | Last Modified: | Jan 6 19:32:24 2007 |
| MD5 Checksum: | c63802f3ddcacfd814fb71e3b5b7048f |
|
| /// File Name: |
DRUPAL-SA-2007-002.txt |
Description:
|
Drupal security advisory - The way page caching was implemented allows a denial of service attack. An attacker has to have the ability to post content on the site. He or she would then be able to poison the page cache, so that it returns cached 404 page not found errors for existing pages. If the page cache is not enabled, your site is not vulnerable. The vulnerability only affects sites running on top of MySQL.
| | Author: | Uwe Hermann | | Homepage: | http://drupal.org/security | | File Size: | 1974 | | Last Modified: | Jan 6 19:33:00 2007 |
| MD5 Checksum: | 4ee5ccf0b9c894440a06c49e399edf6f |
|
| /// File Name: |
DRUPAL-SA-2007-005.txt |
Description:
|
Drupal security advisory - Previews on comments were not passed through normal form validation routines, enabling users with the 'post comments' permission and access to more than one input filter to execute arbitrary code. Affected include Drupal 4.7.x versions before Drupal 4.7.6 and Drupal 5.x versions before Drupal 5.1.
| | Author: | Uwe Hermann | | Homepage: | http://drupal.org/security | | File Size: | 2063 | | Last Modified: | Jan 30 22:55:27 2007 |
| MD5 Checksum: | ed1adc7b529116a1736f9a8e799514d0 |
|
| /// File Name: |
dsa-1245-1.txt |
Description:
|
Debian Security Advisory 1245-1 - Martin Loewer discovered that the proftpd FTP daemon is vulnerable to denial of service if the addon module for Radius authentication is enabled.
| | Homepage: | http://www.debian.org/security | | File Size: | 13148 | | Related CVE(s): | CVE-2005-4816 | | Last Modified: | Jan 13 16:32:05 2007 |
| MD5 Checksum: | 0e47566d7a11419e70add2fccdfc8c77 |
|
| /// File Name: |
dsa-1246-1.txt |
Description:
|
Debian Security Advisory 1246-1 - John Heasman from Next Generation Security Software discovered a heap overflow in the handling of Windows Metafiles in OpenOffice.org, the free office suite, which could lead to a denial of service and potentially execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 14360 | | Related CVE(s): | CVE-2006-5870 | | Last Modified: | Jan 13 17:01:32 2007 |
| MD5 Checksum: | 15d589a34d9d20238ba439285fb487b2 |
|
| /// File Name: |
dsa-1247-1.txt |
Description:
|
Debian Security Advisory 1247-1 - An off-by-one error leading to a heap-based buffer overflow has been identified in libapache-mod-auth-kerb, an Apache module for Kerberos authentication. The error could allow an attacker to trigger an application crash or potentially execute arbitrary code by sending a specially crafted kerberos message.
| | Homepage: | http://www.debian.org/security | | File Size: | 7740 | | Related CVE(s): | CVE-2006-5989 | | Last Modified: | Jan 13 17:03:05 2007 |
| MD5 Checksum: | 7f7de90945a1fe95f8ba92652f174884 |
|
| /// File Name: |
dsa-1248-1.txt |
Description:
|
Debian Security Advisory 1248-1 - Roland Lezuo and Josselin Mouette discovered that the libsoup HTTP library performs insufficient sanitizing when parsing HTTP headers, which might lead to denial of service.
| | Homepage: | http://www.debian.org/security | | File Size: | 7312 | | Related CVE(s): | CVE-2006-5876 | | Last Modified: | Jan 13 20:05:32 2007 |
| MD5 Checksum: | 32c1a2838b83eedbbb78902ad3106ac2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
