Section: .. / 0708-advisories /
| /// File Name: |
sa26325.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for poppler. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/26325/ | | File Size: | 18752 | | Last Modified: | Aug 9 02:51:33 2007 |
| MD5 Checksum: | bf47b97b85d3c99458062d40c50a70cf |
|
| /// File Name: |
USN-496-2.txt |
Description:
|
Ubuntu Security Notice 496-2 - USN-496-1 fixed a vulnerability in koffice. This update provides the corresponding updates for poppler, the library used for PDF handling in Gnome. Derek Noonburg discovered an integer overflow in the Xpdf function StreamPredictor::StreamPredictor(). By importing a specially crafted PDF file into KWord, this could be exploited to run arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 19266 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 10:07:51 2007 |
| MD5 Checksum: | 3e8891c25b0a5051bf52ab27fde68e06 |
|
| /// File Name: |
08.07.07-2.txt |
Description:
|
iDefense Security Advisory 08.07.07 - Remote exploitation of a heap overflow vulnerability in Apple Inc.'s mDNSResponder application may allow attackers to execute arbitrary code with root privileges. The vulnerability exists within the Legacy NAT Traversal code. Unlike the core of the mDNSResponder service, this area of code does not rely on Multicast UDP. It listens on a dynamically allocated Unicast UDP port. The vulnerability occurs when parsing a malformed HTTP request. This results in an exploitable heap overflow. iDefense has confirmed the existence of this vulnerability in Mac OS X version 10.4.10, Server and Workstation, with mDNSResponder version 108.5. Previous versions may also be affected.
| | Author: | Neil Kettle | | Homepage: | http://www.idefense.com/ | | File Size: | 3451 | | Related CVE(s): | CVE-2007-3744 | | Last Modified: | Aug 8 10:07:00 2007 |
| MD5 Checksum: | 4b45f03094f51eb2ad0bf0fa50c47eaa |
|
| /// File Name: |
ASA-2007-019.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk Skinny channel driver, chan_skinny, has a remotely exploitable crash vulnerability. A segfault can occur when Asterisk receives a "CAPABILITIES_RES_MESSAGE" packet where the capabilities count is greater than the total number of items in the capabilities_res_message array. Note that this requires an authenticated session.
| | Author: | Wei Wang, Jason Parker | | Homepage: | http://www.asterisk.org/security | | File Size: | 8963 | | Last Modified: | Aug 8 10:05:50 2007 |
| MD5 Checksum: | e798ca193e72739ce8e5faa034a34d2a |
|
| /// File Name: |
dsa-1352-1.txt |
Description:
|
Debian Security Advisory 1352-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened. pdfkit.framework includes a copy of the xpdf code and required an update as well.
| | Homepage: | http://www.debian.org/security | | File Size: | 5172 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 10:03:21 2007 |
| MD5 Checksum: | 3cabb4059d5c1c5a9dee2614e03a023a |
|
| /// File Name: |
dsa-1351-1.txt |
Description:
|
Debian Security Advisory 1351-1 - Tavis Ormandy discovered that bochs, a highly portable IA-32 PC emulator, is vulnerable to a buffer overflow in the emulated NE2000 network device driver, which may lead to privilege escalation.
| | Homepage: | http://www.debian.org/security | | File Size: | 27508 | | Related CVE(s): | CVE-2007-2893 | | Last Modified: | Aug 8 10:02:47 2007 |
| MD5 Checksum: | b355f33b1d184bfa2fc585b248dcfb59 |
|
| /// File Name: |
08.07.07-1.txt |
Description:
|
iDefense Security Advisory 08.07.07 - Remote exploitation of a buffer overflow vulnerability in ldcconn allows attackers to execute arbitrary code with root privileges. By sending a long string to the TCP port that ldcconn listens on, a buffer overflow is triggered. No authentication or data validation is performed. iDefense confirmed the existence of this vulnerability in HP-UX 11.11i. It is suspected that other versions are also vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3903 | | Last Modified: | Aug 8 10:00:40 2007 |
| MD5 Checksum: | 74d1ebba3dba3848decd2b5aede69fa5 |
|
| /// File Name: |
ZDI-07-045.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through the spools named pipe. Several RPC functions exposed by this DLL do not properly verify argument sizes and subsequently copy user-supplied data to a stack-based buffer resulting in an exploitable overflow.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3179 | | Last Modified: | Aug 8 09:39:11 2007 |
| MD5 Checksum: | cd418df7def7fa08d91aa73fdbe6c118 |
|
| /// File Name: |
konq-spoof.txt |
Description:
|
Konqueror version 3.5.7 suffers from a URL address spoofing vulnerability.
| | Author: | Robert Swiecki | | Homepage: | http://alt.swiecki.net/ | | File Size: | 1096 | | Last Modified: | Aug 8 09:37:42 2007 |
| MD5 Checksum: | db4642e8f59aab6d9cd54bd2d9e9ce27 |
|
| /// File Name: |
ezphotosales-multi.txt |
Description:
|
EZPhotoSales version 1.9.3 suffers from cross site scripting and php shell upload vulnerabilities.
| | Author: | Seth Fogie | | Homepage: | http://www.airscanner.com | | File Size: | 2428 | | Last Modified: | Aug 8 09:33:46 2007 |
| MD5 Checksum: | cfe5e3a790d009e0a0861f78666dae22 |
|
| /// File Name: |
dsa-1350-1.txt |
Description:
|
Debian Security Advisory 1350-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened. tetex-bin includes a copy of the xpdf code and required an update as well.
| | Homepage: | http://www.debian.org/security | | File Size: | 9195 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 09:28:34 2007 |
| MD5 Checksum: | cad9e69d6d7884146a02903695c20b11 |
|
| /// File Name: |
SSRT071449.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to poison the DNS cache.
| | Homepage: | http://www.hp.com/ | | File Size: | 8000 | | Related CVE(s): | CVE-2007-2926 | | Last Modified: | Aug 8 09:22:58 2007 |
| MD5 Checksum: | 39021d82f847d79c5714b130df3847bc |
|
| /// File Name: |
dsa-1349-1.txt |
Description:
|
Debian Security Advisory 1349-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened. libextractor includes a copy of the xpdf code and required an update as well.
| | Homepage: | http://www.debian.org/security | | File Size: | 8753 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 09:17:12 2007 |
| MD5 Checksum: | 4e547b20a0fce299ec88f2efd0304a27 |
|
| /// File Name: |
multi-vulns.txt |
Description:
|
Windows Calendar (Vista) ICS file handling suffers from a denial of service vulnerability. Toolbar suffers from multiple vulnerabilities. OpenOffice version 2.2 suffers from a denial of service vulnerability when handling multiple file extensions.
| | Author: | Michal Bucko | | Homepage: | http://www.eleytt.com/ | | File Size: | 5729 | | Last Modified: | Aug 8 09:08:45 2007 |
| MD5 Checksum: | 7fab78447f051e2bad6df0cfd775b884 |
|
| /// File Name: |
dsa-1348-1.txt |
Description:
|
Debian Security Advisory 1348-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened.
| | Homepage: | http://www.debian.org/security | | File Size: | 14745 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 09:05:49 2007 |
| MD5 Checksum: | c29f5ddaed452ea9e3bf1f8e5ae1bd15 |
|
| /// File Name: |
dsa-1347-1.txt |
Description:
|
Debian Security Advisory 1347-1 - It was discovered that an integer overflow in the xpdf PDF viewer may lead to the execution of arbitrary code if a malformed PDF file is opened.
| | Homepage: | http://www.debian.org/security | | File Size: | 11321 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 09:05:20 2007 |
| MD5 Checksum: | 6e81cd34eb66063cb5d67128be2c9024 |
|
| /// File Name: |
dsa-1346-1.txt |
Description:
|
Debian Security Advisory 1346-1 - Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite. "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
| | Homepage: | http://www.debian.org/security | | File Size: | 15156 | | Related CVE(s): | CVE-2007-3844, CVE-2007-3845 | | Last Modified: | Aug 8 09:04:23 2007 |
| MD5 Checksum: | 169c1a4ce7ca948b6f5c0edb44f93133 |
|
| /// File Name: |
dsa-1345-1.txt |
Description:
|
Debian Security Advisory 1345-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
| | Homepage: | http://www.debian.org/security | | File Size: | 28062 | | Related CVE(s): | CVE-2007-3844, CVE-2007-3845 | | Last Modified: | Aug 8 09:03:39 2007 |
| MD5 Checksum: | e81402d558540bbe4e4efe53496addb7 |
|
| /// File Name: |
contentdm-xss.txt |
Description:
|
ContentDM appears to suffer from a cross site scripting vulnerability.
| | Author: | Rhys Phillips | | File Size: | 365 | | Last Modified: | Aug 8 09:00:54 2007 |
| MD5 Checksum: | b25682c0bc8b6b3a4f195e3e80022785 |
|
| /// File Name: |
dsa-1344-1.txt |
Description:
|
Debian Security Advisory 1344-1 - "moz_bug_r_a4" discovered that a regression in the handling of "about:blank" windows used by addons may lead to an attacker being able to modify the content of web sites. Jesper Johansson discovered that missing sanitizing of double-quotes and spaces in URIs passed to external programs may allow an attacker to pass arbitrary arguments to the helper program if the user is tricked into opening a malformed web page.
| | Homepage: | http://www.debian.org/security | | File Size: | 9868 | | Related CVE(s): | CVE-2007-3844, CVE-2007-3845 | | Last Modified: | Aug 8 08:41:31 2007 |
| MD5 Checksum: | 1b6b5a0421d7a7c2b6889a9caf645b64 |
|
| /// File Name: |
USN-495-1.txt |
Description:
|
Ubuntu Security Notice 495-1 - Several format string vulnerabilities have been discovered in Qt warning messages. By causing an application to process specially crafted input data which triggered Qt warnings, this could be exploited to execute arbitrary code with the privilege of the user running the application.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 39325 | | Related CVE(s): | CVE-2007-3388 | | Last Modified: | Aug 8 08:40:19 2007 |
| MD5 Checksum: | b5de8e5ea8c7de131c344ed8dd24fb7a |
|
| /// File Name: |
USN-496-1.txt |
Description:
|
Ubuntu Security Notice 496-1 - Derek Noonburg discovered an integer overflow in the Xpdf function StreamPredictor::StreamPredictor(). By importing a specially crafted PDF file into KWord, this could be exploited to run arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 36100 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 8 08:39:30 2007 |
| MD5 Checksum: | f67af0bc4a182e995415bdad3afa84db |
|
| /// File Name: |
minimofirefox.txt |
Description:
|
Minimo version 0.2 and below and Firefox 2.0.0.6 suffer from an abuse vulnerability in their password manager feature.
| | Author: | Seth Fogie | | Homepage: | http://www.airscanner.com | | File Size: | 4458 | | Last Modified: | Aug 8 08:33:47 2007 |
| MD5 Checksum: | 39f2cf54e87ed4ee6ec40272a72b0097 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
