Section: .. / 0707-advisories /
| /// File Name: |
sa26150.txt |
Description:
|
Secunia Security Advisory - Cyrill Brunschwiler has reported a vulnerability in DokuWiki, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26150/ | | File Size: | 2425 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 965444c792df28aeb33d1e0e42b4324f |
|
| /// File Name: |
sa26149.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, disclose sensitive information, and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26149/ | | File Size: | 2336 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 141cc2976b4dcd58e362f2dcced7ddc0 |
|
| /// File Name: |
sa26146.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Itaka, which can be exploited by malicious people to bypass certain security restrictions and disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/26146/ | | File Size: | 2318 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 7d15163a5aae4065d680b7b0e5364efc |
|
| /// File Name: |
sa26144.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in dirLIST, which can be exploited by malicious people to disclose sensitive information and to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26144/ | | File Size: | 2547 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 0f0437f95ce747b77776b96a578c6d31 |
|
| /// File Name: |
sa26143.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in Citrix Access Gateway, which can be exploited by malicious people to disclose sensitive information, conduct cross-site request forgery attacks, or to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26143/ | | File Size: | 4257 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | e0af09b2ffe490459d07c2fb517b5b40 |
|
| /// File Name: |
sa26136.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a vulnerability in Avaya CMS / IR, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26136/ | | File Size: | 2627 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 856acee1d6d4de55c783fc9f2f3a3676 |
|
| /// File Name: |
sa26130.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in lighttpd, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26130/ | | File Size: | 3513 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 05782fadd56c542f4468cbc89168f032 |
|
| /// File Name: |
sa26126.txt |
Description:
|
Secunia Security Advisory - Timq has discovered a vulnerability in A-shop, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26126/ | | File Size: | 2377 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 09939236d34bd1769f44b786acfd597d |
|
| /// File Name: |
sa26125.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a weakness in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26125/ | | File Size: | 2427 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 9cc3c1fe14d39239c5dcd522953bef8e |
|
| /// File Name: |
sa26120.txt |
Description:
|
Secunia Security Advisory - PescaoDeth has discovered a vulnerability in TBDEV.NET, which can be exploited by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/26120/ | | File Size: | 2511 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | c8a6f97a3035329a636995bd755c2b86 |
|
| /// File Name: |
sa26111.txt |
Description:
|
Secunia Security Advisory - A vulnerability with unknown impact has been reported in uFMOD.
| | Homepage: | http://secunia.com/advisories/26111/ | | File Size: | 2004 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 1363b2bd8e827f5307e64db0263b9358 |
|
| /// File Name: |
sa26083.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to cause a DoS (Denial of Service), by malicious users to perform certain actions with escalated privileges and to compromise a vulnerable system, and by malicious people to cause a DoS, to gain knowledge of potentially sensitive information, and to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26083/ | | File Size: | 4055 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 831e5d17d7b1390c7ea0f699213497a6 |
|
| /// File Name: |
sa26072.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, conduct spoofing and cross-site scripting attacks, or potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26072/ | | File Size: | 23150 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 615d78f1d2db367c9ef7a6121d38b12e |
|
| /// File Name: |
sa26041.txt |
Description:
|
Secunia Security Advisory - Matthew Cook has reported a vulnerability in ALEPH 500, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26041/ | | File Size: | 2254 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 5d8b433f2d277cc065a26e2612905bc7 |
|
| /// File Name: |
wii-flash.txt |
Description:
|
It appears that the Wii is susceptible to the recent Flash vulnerability.
| | Author: | Juha-Matti Laurio | | File Size: | 660 | | Related CVE(s): | CVE-2007-3456 | | Last Modified: | Jul 20 08:46:25 2007 |
| MD5 Checksum: | a9b33e8c3d3adde0e675d05dbd32efe8 |
|
| /// File Name: |
TA07-200A.txt |
Description:
|
Technical Cyber Security Alert TA07-200A - Oracle has released patches to address numerous vulnerabilities in different Oracle products. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 6224 | | Last Modified: | Jul 20 08:45:05 2007 |
| MD5 Checksum: | 7ec017aab5d0e9b1e0fe583299f1275b |
|
| /// File Name: |
heise-lotus.txt |
Description:
|
A debug function in versions 5 and above of Lotus Notes can be used to write a file containing the new password in plain text when a user password is changed.
| | Author: | Juergen Schmidt | | Homepage: | http://www.heise-security.co.uk/ | | File Size: | 2129 | | Last Modified: | Jul 20 08:43:41 2007 |
| MD5 Checksum: | 85742875ca20f3e82e3dea11989bb6b1 |
|
| /// File Name: |
CAID-35515.txt |
Description:
|
Multiple CA products that utilize Alert service functionality contain multiple vulnerabilities. The vulnerabilities are due to insufficient bounds checking on received data by certain RPC procedures. An attacker can exploit these buffer overflows to execute arbitrary code or cause service failure.
| | Author: | Ken Williams | | Homepage: | http://www3.ca.com/ | | File Size: | 3485 | | Related CVE(s): | CVE-2007-3825 | | Last Modified: | Jul 20 08:31:40 2007 |
| MD5 Checksum: | ea597a900ed63173104b243d02af6b2b |
|
| /// File Name: |
07.19.07-2.txt |
Description:
|
iDefense Security Advisory 07.19.07 - Remote exploitation of an input handling vulnerability within multiple browsers on the Microsoft Windows platform allows code execution as the local user. This vulnerability is due to interaction between programs. The most commonly used Microsoft Windows URL protocol handling code doesn't provide a way for the URI handling application to distinguish the end of one argument from the start of another. The problem is caused by the fact that browsers do not pct-encode certain characters in some URIs, which does not comply with the behavior that RFC3986 (also known as IETF STD 66) requires. As a result, a specially constructed link could be interpreted as multiple arguments by a URI protocol handler.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 7577 | | Related CVE(s): | CVE-2007-3670 | | Last Modified: | Jul 20 08:29:46 2007 |
| MD5 Checksum: | 401f50546fb7a6ac0740d19ed3abeec5 |
|
| /// File Name: |
07.19.07-1.txt |
Description:
|
iDefense Security Advisory 07.19.07 - Remote exploitation of a dangling pointer vulnerability in Opera Software ASA's Opera web browser could allow an attacker to execute arbitrary code with the privileges of the logged in user. Opera 9.2 supports BitTorrent downloads. When parsing a specially crafted BitTorrent header, Opera uses memory that has already been freed. This can result in an invalid object pointer being dereferenced, and may allow for the execution of arbitrary code. The vulnerability is triggered when the user right clicks on the transfer and removes it. iDefense has confirmed the existence of this vulnerability in Opera version 9.21 on Windows. Previous versions may also be affected.
| | Author: | enhalos | | Homepage: | http://www.idefense.com/ | | File Size: | 3071 | | Last Modified: | Jul 20 08:27:45 2007 |
| MD5 Checksum: | b5ed8c60f7cd7a1f4ccb27150d5ba7b5 |
|
| /// File Name: |
docuwiki-xss.txt |
Description:
|
DocuWiki versions 2007-06-26 and below suffer from a cross site scripting vulnerability.
| | Author: | Cyrill Brunschwiler | | Homepage: | http://www.csnc.ch/ | | File Size: | 2682 | | Last Modified: | Jul 20 08:25:43 2007 |
| MD5 Checksum: | 15a5ce6fa749f6679f8730fa4c1f8de0 |
|
| /// File Name: |
USN-489-2.txt |
Description:
|
Ubuntu Security Notice 489-2 - USN-489-1 fixed vulnerabilities in the Linux kernel. This update provides the corresponding fixes for the redhat cluster suite kernel sources. A flaw was discovered in the cluster manager. A remote attacker could connect to the DLM port and block further DLM operations.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16619 | | Related CVE(s): | CVE-2007-3380 | | Last Modified: | Jul 20 08:23:59 2007 |
| MD5 Checksum: | fa2d1e36c3decb09b0108ca5b75c592a |
|
| /// File Name: |
USN-489-1.txt |
Description:
|
Ubuntu Security Notice 489-1 - A ridiculous amount of vulnerabilities in the Linux 2.6 kernel have been fixed.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 45306 | | Related CVE(s): | CVE-2006-4623, CVE-2006-7203, CVE-2007-0005, CVE-2007-1000, CVE-2007-1353, CVE-2007-1861, CVE-2007-2453, CVE-2007-2525, CVE-2007-2875, CVE-2007-2876, CVE-2007-2878, CVE-2007-3380, CVE-2007-3513 | | Last Modified: | Jul 20 08:22:42 2007 |
| MD5 Checksum: | 44760b5f718175c47aece71c76f178d5 |
|
| /// File Name: |
sa26138.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Opera, which can be exploited by malicious people to compromise a user's system
| | Homepage: | http://secunia.com/advisories/26138/ | | File Size: | 2505 | | Last Modified: | Jul 20 07:47:25 2007 |
| MD5 Checksum: | 52f3b65f57bd4bb6172c04eeb666694f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
