Section: .. / 0707-advisories /
| /// File Name: |
sa26130.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in lighttpd, which can be exploited by malicious people to bypass certain security restrictions or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26130/ | | File Size: | 3513 | | Last Modified: | Jul 21 04:11:22 2007 |
| MD5 Checksum: | 05782fadd56c542f4468cbc89168f032 |
|
| /// File Name: |
n.runs-SA-2007.024.txt |
Description:
|
A denial of service vulnerability exists in CA eTrust Antivirus when parsing .CHM files. The vulnerability is present in CA eTrust Antivirus software previous to file arclib.dll version 7.3.0.9.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3504 | | Last Modified: | Jul 26 06:58:27 2007 |
| MD5 Checksum: | 3ccad6608188f66db6d7b1df8f6d3985 |
|
| /// File Name: |
CAID-35515.txt |
Description:
|
Multiple CA products that utilize Alert service functionality contain multiple vulnerabilities. The vulnerabilities are due to insufficient bounds checking on received data by certain RPC procedures. An attacker can exploit these buffer overflows to execute arbitrary code or cause service failure.
| | Author: | Ken Williams | | Homepage: | http://www3.ca.com/ | | File Size: | 3485 | | Related CVE(s): | CVE-2007-3825 | | Last Modified: | Jul 20 08:31:40 2007 |
| MD5 Checksum: | ea597a900ed63173104b243d02af6b2b |
|
| /// File Name: |
07.17.07-2.txt |
Description:
|
iDefense Security Advisory 07.17.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Computer Associates International Inc.'s (CA) Threat Manager allows attackers to execute arbitrary code with SYSTEM privileges. When Computer Associates Threat Manager is installed, it also installs the Alert Notification Server (alert.exe) which registers an RPC interface with the GUID 3d742890-397c-11cf-9bf1-00805f88cb72. This interface contains stack-based buffer overflow vulnerabilities within the handling code for several RPC operation codes. iDefense confirmed that the Alert Notification Server included with Computer Associates International Inc.'s eTrust Integrated Threat Management r8 for Windows is vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3481 | | Related CVE(s): | CVE-2007-3825 | | Last Modified: | Jul 18 06:31:52 2007 |
| MD5 Checksum: | 071ca65929f073cb5606d8cc87efc22d |
|
| /// File Name: |
sa26227.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.
| | Homepage: | http://secunia.com/advisories/26227/ | | File Size: | 3455 | | Last Modified: | Jul 27 05:17:23 2007 |
| MD5 Checksum: | 32969e5354dc6cce8318c561c2f1ae50 |
|
| /// File Name: |
statcounter-xss.txt |
Description:
|
StatCounter.com suffers from cross site scripting vulnerabilities due to completely trusting the user supplied HTTP referrer field.
| | Author: | Matteo Carli | | Homepage: | http://www.matteocarli.com/ | | File Size: | 3437 | | Last Modified: | Jul 24 05:03:08 2007 |
| MD5 Checksum: | cc29a79d825f6a82471c5aa4d477acc2 |
|
| /// File Name: |
tipping-bypass.txt |
Description:
|
During security analysis of the Tippingpoint IPS product a signature evasion vulnerability was discovered. The use of specific Unicode characters on particular web servers allows a remote user to bypass IPS detection. TippingPoint IPS running TOS versions 2.1 and 2.2.0 through 2.2.4 are affected.
| | Author: | Paul Craig | | Homepage: | http://www.security-assessment.com/ | | File Size: | 3410 | | Last Modified: | Jul 11 10:52:07 2007 |
| MD5 Checksum: | b75f7017f9550e4dfe22e1b71c777f55 |
|
| /// File Name: |
sa26049.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for Java and IBM Java. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26049/ | | File Size: | 3369 | | Last Modified: | Jul 13 02:55:11 2007 |
| MD5 Checksum: | 8d36fd40b046575dd6d844124008a3f1 |
|
| /// File Name: |
07.26.07-1.txt |
Description:
|
iDefense Security Advisory 07.26.07 - Local exploitation of an arbitrary library loading vulnerability in the 'pioout' program, as included with IBM Corp.'s AIX operating system, allows an attacker to execute arbitrary code with root privileges. iDefense has confirmed the existence of this vulnerability in AIX version 5.3 with service pack 6. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | Related Exploit: | aix53-pioout.txt | | File Size: | 3364 | | Related CVE(s): | CVE-2007-4003 | | Last Modified: | Jul 28 03:57:56 2007 |
| MD5 Checksum: | 9d36562bc15ad8623f7986b460f30dcd |
|
| /// File Name: |
sa26043.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Unified Communications Manager (CUCM), which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26043/ | | File Size: | 3344 | | Last Modified: | Jul 13 02:55:11 2007 |
| MD5 Checksum: | 123f1c4fe4e3411fc16e7456cbd26e68 |
|
| /// File Name: |
sa26024.txt |
Description:
|
Secunia Security Advisory - A weakness has been reported in Sun Solaris, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/26024/ | | File Size: | 3329 | | Last Modified: | Jul 12 01:06:45 2007 |
| MD5 Checksum: | 11ac90112b89b382a886ffb6106564d4 |
|
| /// File Name: |
n.runs-SA-2007.017.txt |
Description:
|
ESET NOD32 Antivirus suffers from an integer overflow vulnerability when handling ASPACK packed files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3326 | | Last Modified: | Jul 23 06:03:08 2007 |
| MD5 Checksum: | f0e6061c2d07e91c0bc55db2cb71b0e1 |
|
| /// File Name: |
MDKSA-2007-142.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was discovered in the the Apache mod_status module that could lead to a cross-site scripting attack on sites where the server-status page was publically accessible and ExtendedStatus was enabled. The Apache server also did not verify that a process was an Apache child process before sending it signals. A local attacker with the ability to run scripts on the server could manipulate the scoreboard and cause arbitrary processes to be terminated.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3318 | | Related CVE(s): | CVE-2007-3304, CVE-2006-5752 | | Last Modified: | Jul 7 06:32:02 2007 |
| MD5 Checksum: | d0d53339ab9cf691e657bf11a87707a9 |
|
| /// File Name: |
07.24.07-2.txt |
Description:
|
iDefense Security Advisory 07.24.07 - Remote exploitation of a design error vulnerability in Computer Associates International Inc.'s (CA) eTrust Intrusion Detection allows attackers to execute arbitrary code. iDefense has confirmed that CA eTrust Intrusion Detection version 3.0.5 on Windows is vulnerable. The file version of caller.dll tested was 3.0.5.55.
| | Author: | Sebastian Apelt | | Homepage: | http://www.idefense.com/ | | File Size: | 3291 | | Related CVE(s): | CVE-2007-3302 | | Last Modified: | Jul 25 06:43:52 2007 |
| MD5 Checksum: | 9d2f71feb74c13277bfb86cb0ac81e17 |
|
| /// File Name: |
07.11.07-1.txt |
Description:
|
iDefense Security Advisory 07.11.07 - Remote exploitation of a heap overflow vulnerability in Symantec Backup Exec could allow an unauthenticated attacker to create a denial of service condition or potentially execute arbitrary code. The flaw specifically exists within the RPC server that listens on TCP port 6106. When handling requests using the "ncacn_ip_tcp" protocol, the service will copy a user supplied amount of data into a fixed-size heap buffer. iDefense confirmed the existence of this vulnerability in Symantec Backup Exec 10d with all current hot-fixes and service packs applied. Other versions are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3291 | | Related CVE(s): | CVE-2007-3509 | | Last Modified: | Jul 12 04:11:03 2007 |
| MD5 Checksum: | 4cc94feac32d16129426e23162440125 |
|
| /// File Name: |
ZDI-07-042.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Ipswitch IMail and ICS server. Authentication is not required to exploit this vulnerability. The specific flaw resides in IMailsec.dll while attempting to authenticate users. The affected component is used by multiple services that listen on a default installation. The authentication mechanism copies user-supplied data into fixed length heap buffers using the lstrcpyA() function. The unbounded copy operation can cause a memory corruption resulting in an exploitable condition.
| | Author: | Sebastian Apelt | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3289 | | Related CVE(s): | CVE-2007-2795 | | Last Modified: | Jul 25 06:31:47 2007 |
| MD5 Checksum: | e595d01aebe1824018e5170a0c039dc9 |
|
| /// File Name: |
07.18.07-2.txt |
Description:
|
iDefense Security Advisory 07.18.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Ipswitch Inc.'s IMail Server 2006 could allow attackers to execute arbitrary code. IMail includes an IMAP daemon that users can use to access their email. The "Search" IMAP command contains an exploitable stack-based buffer overflow vulnerability. Additionally, the "Search charset" contains an exploitable heap-based buffer overflow vulnerability. iDefense has confirmed the existence of these vulnerabilities in IMail Server 2006. The vulnerable executable used was version 6.8.8.1 of imapd32.exe.
| | Author: | Manuel Santamarina Suarez | | Homepage: | http://www.idefense.com/ | | File Size: | 3282 | | Last Modified: | Jul 19 05:28:10 2007 |
| MD5 Checksum: | 1e0ce85fd16d67c016ab72edc74b38c8 |
|
| /// File Name: |
sa26029.txt |
Description:
|
Secunia Security Advisory - Neel Mehta has reported some vulnerabilities in McAfee ePolicy Orchestrator and ProtectionPilot, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26029/ | | File Size: | 3281 | | Last Modified: | Jul 12 01:06:45 2007 |
| MD5 Checksum: | 023f5b14c02d7a4efdc6f4d1ccce3549 |
|
| /// File Name: |
07.26.07-2.txt |
Description:
|
iDefense Security Advisory 07.26.07 - Local exploitation of a stack-based buffer overflow vulnerability in the 'capture' program, as included with IBM Corp.'s AIX operating system, allows an attacker to execute arbitrary code with root privileges. The vulnerability exists within the code that parses terminal control sequences. A long series of control sequences will trigger an exploitable stack-based buffer overflow. iDefense has confirmed the existence of this vulnerability in AIX version 5.3 with service pack 6. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | Related Exploit: | aix53-capture.txt | | File Size: | 3278 | | Related CVE(s): | CVE-2007-3333 | | Last Modified: | Jul 28 04:00:31 2007 |
| MD5 Checksum: | 6e43f4b6fd2d9f067af9b6d7d199bda2 |
|
| /// File Name: |
sa26220.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/26220/ | | File Size: | 3267 | | Last Modified: | Jul 27 05:17:23 2007 |
| MD5 Checksum: | 9846a0a8063af09350d661951897ea4b |
|
| /// File Name: |
sa26177.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for ImageMagick. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26177/ | | File Size: | 3262 | | Last Modified: | Jul 24 02:06:33 2007 |
| MD5 Checksum: | fbd5988e49375cd2087612569789b117 |
|
| /// File Name: |
n.runs-SA-2007.016.txt |
Description:
|
ESET NOD32 Antivirus suffers from a heap corruption vulnerability during the parsing of .CAB files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3262 | | Last Modified: | Jul 23 06:02:20 2007 |
| MD5 Checksum: | c9d33a9cc3f409a0e231c14b048e0105 |
|
| /// File Name: |
07.23.07-1.txt |
Description:
|
iDefense Security Advisory 07.23.07 - Remote exploitation of a Denial of Service vulnerability in Ipswitch Inc.'s IM Server daemon allows unauthenticated attackers to crash the service. iDefense has confirmed the existence of the vulnerability in version 2.0.5.30 of Ipswitch Inc's IM Server. Previous versions are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3262 | | Last Modified: | Jul 24 06:09:48 2007 |
| MD5 Checksum: | 273de42076683fa130b593c0b5020877 |
|
| /// File Name: |
n.runs-SA-2007.018.txt |
Description:
|
ESET NOD32 Antivirus suffers from a divide by zero vulnerability when parsing ASPACK and FSG packed files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3246 | | Last Modified: | Jul 23 06:04:09 2007 |
| MD5 Checksum: | 5711796b31ae2bd7ce430dbcf7620aa0 |
|
| /// File Name: |
ZDI-07-041.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on affected installations of Panda AdminSecure. Authentication is not required to exploit this vulnerability.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3246 | | Related CVE(s): | CVE-2007-3026 | | Last Modified: | Jul 25 06:30:18 2007 |
| MD5 Checksum: | 684a05286a2436521a88c1ca8d97400c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
