Section: .. / 0701-advisories /
| /// File Name: |
sa23972.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23972/ | | File Size: | 3129 | | Last Modified: | Jan 29 11:19:09 2007 |
| MD5 Checksum: | b70bf31c6631465b1d88f10dcde2d965 |
|
| /// File Name: |
sa23975.txt |
Description:
|
Secunia Security Advisory - iDefense Labs has reported a vulnerability in CHM Lib, which potentially can be exploited by malicious people to compromise an application using the vulnerable library.
| | Homepage: | http://secunia.com/advisories/23975/ | | File Size: | 2548 | | Last Modified: | Jan 29 11:19:09 2007 |
| MD5 Checksum: | 65905162daae56ed97bd78fad49e10be |
|
| /// File Name: |
sa23980.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Movable Type, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/23980/ | | File Size: | 2707 | | Last Modified: | Jan 29 11:19:09 2007 |
| MD5 Checksum: | 53a0082692f5c5d59299ec190c4e7a8b |
|
| /// File Name: |
sa23981.txt |
Description:
|
Secunia Security Advisory - Lucas Bartholemy has reported a vulnerability in WebGUI, which can be exploited by malicious users to delete assets.
| | Homepage: | http://secunia.com/advisories/23981/ | | File Size: | 2367 | | Last Modified: | Jan 29 11:19:09 2007 |
| MD5 Checksum: | 3ed765516b394aac51ae4e7120bb0f13 |
|
| /// File Name: |
sa23984.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information, cause a DoS (Denial of Service), or gain escalated privileges; by malicious users to manipulate data, disclose sensitive information, or compromise a vulnerable system; and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/23984/ | | File Size: | 3530 | | Last Modified: | Jan 29 11:19:09 2007 |
| MD5 Checksum: | 23ba40d2856cb753b13e73c00476b68e |
|
| /// File Name: |
01.26.07.txt |
Description:
|
CHM files contain various tables and objects stored in "pages." When parsing a page of objects, CHMlib passes an unsanitized value from the file to the alloca() function. This allows an attacker to shift the stack pointer to point to arbitrary locations in memory. Consequently it is possible to write arbitrary data from the file to arbitrary memory locations. Successful exploitation of this vulnerability allows an attacker to execute arbitrary code with the permissions of the user viewing the file. An attacker would have to first convince the user to view the CHM file through some type of social engineering. iDefense has confirmed the existence of this vulnerability in CHMlib version 0.38.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 2790 | | Last Modified: | Jan 26 23:36:20 2007 |
| MD5 Checksum: | eae5775da2f691edeea7b2a245121c02 |
|
| /// File Name: |
s21sec-034-en.txt |
Description:
|
The Cisco Catalyst switch suffers from a denial of service vulnerability related to VTP.
| | Author: | Alfredo Andres Omella,David Barroso Berrueta | | Homepage: | http://www.s21sec.com/ | | File Size: | 2726 | | Last Modified: | Jan 26 23:34:42 2007 |
| MD5 Checksum: | b3082b8ca4f186890b46273bcf213f60 |
|
| /// File Name: |
phpmm-xss.txt |
Description:
|
PHP Membership Manager version 1.5 suffers from a cross site scripting condition.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1071 | | Last Modified: | Jan 26 23:31:04 2007 |
| MD5 Checksum: | b0f350e5e7c837064fc9a3c6078d436b |
|
| /// File Name: |
yim-xss.txt |
Description:
|
Yahoo! Messenger versions 8.1.0.29 and below suffer from a javascript injection flaw.
| | Author: | Hai Nam Luke | | File Size: | 1469 | | Last Modified: | Jan 26 23:30:12 2007 |
| MD5 Checksum: | 27d35218f889720d1bc6ff53479c97f6 |
|
| /// File Name: |
MDKSA-2007-027.txt |
Description:
|
Mandriva Linux Security Advisory - Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows attackers to execute arbitrary code via unknown vectors. XINE 0.99.4 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain M3U file that contains a long #EXTINF line and contains format string specifiers in an invalid udp:// URI, possibly a variant of CVE-2007-0017.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3863 | | Related CVE(s): | CVE-2007-0254, CVE-2007-0255 | | Last Modified: | Jan 26 23:23:28 2007 |
| MD5 Checksum: | 9d6e9715986128f1272f30d7cbe75298 |
|
| /// File Name: |
glsa-200701-24.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200701-24 - Kevin Finisterre has discovered that when handling media locations, various functions throughout VLC media player make improper use of format strings. Versions less than 0.8.6-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2589 | | Last Modified: | Jan 26 23:21:59 2007 |
| MD5 Checksum: | 3a87d60d4bd0556d18867ef4c2c999b7 |
|
| /// File Name: |
glsa-200701-23.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200701-23 - rgod discovered that the Cacti cmd.php and copy_cacti_user.php scripts do not properly control access to the command shell, and are remotely accessible by unauthenticated users. This allows SQL injection via cmd.php and copy_cacti_user.php URLs. Further, the results from the injected SQL query are not properly sanitized before being passed to a command shell. The vulnerabilities require that the register_argc_argv option is enabled, which is the Gentoo default. Also, a number of similar problems in other scripts were reported. Versions less than 0.8.6i-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2872 | | Last Modified: | Jan 26 23:18:24 2007 |
| MD5 Checksum: | 20755595642f5525d446d60a180d6784 |
|
| /// File Name: |
USN-410-2.txt |
Description:
|
Ubuntu Security Notice 410-2 - USN-410-1 fixed vulnerabilities in the poppler PDF loader library. This update provides the corresponding updates for a copy of this code in tetex-bin in Ubuntu 5.10. Versions of tetex-bin after Ubuntu 5.10 use poppler directly and do not need a separate update. The poppler PDF loader library did not limit the recursion depth of the page model tree. By tricking a user into opening a specially crafter PDF file, this could be exploited to trigger an infinite loop and eventually crash an application that uses this library.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3836 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 26 23:17:53 2007 |
| MD5 Checksum: | 9e90300be556dfebee280bc8f1cd8a60 |
|
| /// File Name: |
ngs-pgp.txt |
Description:
|
NGSSoftware has discovered a medium risk vulnerability in PGP Desktop versions prior to 9.5.1 which can allow a remote authenticated attacker to execute arbitrary code on a system on which PGP Desktop is installed.
| | Author: | Peter Winter-Smith | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 3993 | | Last Modified: | Jan 26 23:14:29 2007 |
| MD5 Checksum: | 241330362f1a75aea36240a564a5fc2c |
|
| /// File Name: |
tmvwall381v3_adv.txt |
Description:
|
A local buffer overflow vulnerability in the VSAPI library in Trend Micro VirusWall version 3.81 on Linux allows arbitrary code execution and leads to privilege escalation.
| | Author: | Sebastian Wolfgarten | | Related Exploit: | tmvwall381v3_exp.c | | File Size: | 5957 | | Last Modified: | Jan 26 23:11:35 2007 |
| MD5 Checksum: | 5582921034a6813c8c086f44b44ca424 |
|
| /// File Name: |
glsa-200701-22.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200701-22 - Squid fails to correctly handle ftp:// URI's. There is also an error in the external_acl queue which can cause an infinite looping condition. Versions less than 2.6.7 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2701 | | Last Modified: | Jan 26 23:06:00 2007 |
| MD5 Checksum: | 610c37d0ca0db59710755f281679c3f6 |
|
| /// File Name: |
NETRAGARD-20061218.txt |
Description:
|
Netragard, L.L.C Advisory - It is possible to take control of an @Mail webmail email account by exploiting a Cross Site Request Forgery (XRSF) vulnerability in the @Mail webmail product. An attacker can send a specially crafted email to any @Mail webmail user with a forged "img" tag. This forged tag, if crafted properly, will inject new settings into the @Mail webmail users account. Version 4.51 is susceptible.
| | Homepage: | http://www.netragard.com | | File Size: | 5963 | | Last Modified: | Jan 26 22:50:51 2007 |
| MD5 Checksum: | 629b483b68e10bb70a63d9f54125e278 |
|
| /// File Name: |
earthlink-activex.txt |
Description:
|
Earthlink TotalAccess suffers from an unsafe method call that allows remote attackers to add entire individual e-mail addresses or entire domains to the spam whitelist.
| | Author: | Ethan Hunt | | File Size: | 1611 | | Last Modified: | Jan 26 22:32:09 2007 |
| MD5 Checksum: | d433f72d84e7c858ff023856ccf0ed0f |
|
| /// File Name: |
TA07-024A.txt |
Description:
|
Technical Cyber Security Alert TA07-024A - Several vulnerabilities have been discovered in Cisco's Internet Operating System (IOS). A remote attacker may be able to execute arbitrary code on an affected device, cause an affected device to reload the operating system, or cause other types of denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5750 | | Last Modified: | Jan 26 22:04:59 2007 |
| MD5 Checksum: | a3986b01c3509b58b598386c774f329e |
|
| /// File Name: |
USN-414-1.txt |
Description:
|
Ubuntu Security Notice 414-1 - David Duncan Ross Palmer and Henrik Nordstrom discovered that squid incorrectly handled special characters in FTP URLs. Remote users with access to squid could crash the server leading to a denial of service. Erick Dantas Rotole and Henrik Nordstrom discovered that squid could end up in an endless loop when exhausted of available external ACL helpers. Remote users with access to squid could cause CPU starvation, possibly leading to a denial of service. This does not affect a default Ubuntu installation, since external ACL helpers must be configured and used.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6812 | | Related CVE(s): | CVE-2007-0247, CVE-2007-0248 | | Last Modified: | Jan 26 22:04:03 2007 |
| MD5 Checksum: | 6fc3f283654dd2781fc2b61734798aa0 |
|
| /// File Name: |
oracle-6.txt |
Description:
|
The Oracle Database Server provides the DBMS_CAPTURE_ADM_INTERNAL package that is used internally by the Streams Change Data Capture component. This package contains the procedures CREATE_CAPTURE, ALTER_CAPTURE, ABORT_TABLE_INSTANTIATION that are vulnerable to buffer overflow attacks.
| | Homepage: | http://www.appsecinc.com/ | | File Size: | 2437 | | Last Modified: | Jan 26 22:03:12 2007 |
| MD5 Checksum: | c3d6ff1ddae8ab45d2292921bf47168c |
|
| /// File Name: |
oracle-5.txt |
Description:
|
The Oracle Database Server provides the DBMS_LOGREP_UTIL package that is used internally by Oracle. This package contains the procedure GET_OBJECT_NAME which is vulnerable to buffer overflow attacks.
| | Homepage: | http://www.appsecinc.com/ | | File Size: | 2328 | | Last Modified: | Jan 26 22:02:43 2007 |
| MD5 Checksum: | 2165936a9b0f7ce36ab92857ddd4f6d5 |
|
| /// File Name: |
CAID-34818.txt |
Description:
|
Multiple vulnerabilities have been discovered in CA Personal Firewall drivers. The vulnerabilities are due to errors in the HIPS Core (KmxStart.sys) and HIPS Firewall (KmxFw.sys) drivers. Local attackers can exploit these vulnerabilities to gain escalated privileges.
| | Author: | Ken Williams | | Homepage: | http://www3.ca.com/ | | File Size: | 3206 | | Related OSVDB(s): | 30497,30498 | | Related CVE(s): | CVE-2006-6952 | | Last Modified: | Jan 26 22:02:12 2007 |
| MD5 Checksum: | 2892812304ef3817dcf5e68c4e4806cc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
