Section: .. / 0708-advisories /
| /// File Name: |
USN-507-1.txt |
Description:
|
Ubuntu Security Notice 507-1 - It was discovered that the TCP wrapper library was incorrectly allowing connections to services that did not specify server-side connection details. Remote attackers could connect to services that had been configured to block such connections. This only affected Ubuntu Feisty.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3608 | | Last Modified: | Aug 30 10:12:46 2007 |
| MD5 Checksum: | af6c4b0f9373ea115dd1700086c18346 |
|
| /// File Name: |
kde357-dos.txt |
Description:
|
KDE's Konqueror versions 3.5.7 and below suffer from a denial of service vulnerability.
| | Author: | Thomas Waldegger | | Homepage: | http://buha.info/board/ | | File Size: | 3606 | | Last Modified: | Aug 8 06:58:07 2007 |
| MD5 Checksum: | 40a2b81559278a98990ee22636d8c909 |
|
| /// File Name: |
sa26543.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some security issues, which can be exploited by malicious, local users to cause a DoS (Denial of Service), and some vulnerabilities, which can be exploited by malicious people to poison the DNS cache, cause a DoS, or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26543/ | | File Size: | 3567 | | Last Modified: | Aug 21 05:18:38 2007 |
| MD5 Checksum: | 9d5e7531d69c3f268595bda4970cb1cf |
|
| /// File Name: |
sa26444.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Virtual PC and Virtual Server, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26444/ | | File Size: | 3565 | | Last Modified: | Aug 15 04:09:30 2007 |
| MD5 Checksum: | 0ce87eb6caede1bbdb9a75124460c8f8 |
|
| /// File Name: |
fileinfo-multi.txt |
Description:
|
Fileinfo version 2.0.9, the lister plugin for Total Commander, suffers from input validation vulnerabilities. Prior versions may also be affected.
| | Author: | Gynvael Coldwind | | File Size: | 3561 | | Last Modified: | Aug 21 22:17:10 2007 |
| MD5 Checksum: | 2803367de07306144f6b3c62e2f01195 |
|
| /// File Name: |
08.20.07-1.txt |
Description:
|
iDefense Security Advisory 08.20.07 - Local exploitation of an insecure permission vulnerability in multiple Check Point Zone Labs products allows attackers to escalate privileges or disable protection. The vulnerability specifically exists in the default file Access Control List (ACL) settings that are applied during installation. When an administrator installs any of the Zone Labs ZoneAlarm tools, the default ACL allows any user to modify the installed files. Some of the programs run as system services. This allows a user to simply replace an installed ZoneAlarm file with their own code that will later be executed with system-level privileges. iDefense has confirmed the existence of this vulnerability in ZoneAlarm Security Suite 5.5.062.004 and 6.5.737. It is strongly suspected that other versions of ZoneAlarm and other Zone Labs products are affected by this.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3548 | | Related CVE(s): | CVE-2005-2932 | | Last Modified: | Aug 21 22:08:39 2007 |
| MD5 Checksum: | d7dd896aaf7baf1b202ed833bfdac86e |
|
| /// File Name: |
EEYE-META.txt |
Description:
|
eEye Digital Security has discovered a heap overflow vulnerability in the way the Windows Graphical Device Interface (GDI) processes Windows metafiles. If an application attempts to display a malicious metafile in a particular way, a heap overflow will occur and result in the execution of arbitrary code, with the privileges of the user who ran the application.
| | Author: | Yuji Ukai | | Homepage: | http://www.eeye.com/ | | File Size: | 3545 | | Last Modified: | Aug 15 05:52:25 2007 |
| MD5 Checksum: | 9e707c6278e188ec419fcf7199605bd1 |
|
| /// File Name: |
sa26510.txt |
Description:
|
Secunia Security Advisory - Some security issues have been reported in the Drupal Project and Project issue tracking modules, which can be exploited by malicious users to disclose sensitive information and bypass certain access restrictions.
| | Homepage: | http://secunia.com/advisories/26510/ | | File Size: | 3536 | | Last Modified: | Aug 21 05:18:38 2007 |
| MD5 Checksum: | 7a54f340aea3d4aa3276f3ce34cdda26 |
|
| /// File Name: |
08.15.07-1.txt |
Description:
|
iDefense Security Advisory 08.15.07 - Remote exploitation of a buffer overflow vulnerability within Environmental Systems Research Institute (ESRI) Inc.'s ArcSDE service allows attackers to crash the service or potentially execute arbitrary code. This vulnerability specifically exists due to insufficient buffer space when representing user-supplied numeric values in ASCII. Certain requests result in an sprintf() call using a static-sized 8 byte stack buffer. If an attacker supplies a number that's ASCII value cannot be represented within 8 bytes, a stack-based buffer overflow occurs. The vendor has confirmed that version 9.2 of ArcSDE, as bundled with ArcGIS, is vulnerable to this attack. All versions are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3533 | | Related CVE(s): | CVE-2007-4278 | | Last Modified: | Aug 16 10:45:46 2007 |
| MD5 Checksum: | efc19a0f0f68db26f16302283e1efab6 |
|
| /// File Name: |
glsa-200708-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-13 - Amit Klein from Trusteer reported that the random number generator of ISC BIND leads, half the time, to predictable (1 chance to 8) query IDs in the resolver routine or in zone transfer queries. Additionally, the default configuration file has been strengthen with respect to the allow-recursion{} and the allow-query{} options. Versions less than 9.4.1_p1 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3519 | | Related CVE(s): | CVE-2007-2925, CVE-2007-2926 | | Last Modified: | Aug 20 03:44:52 2007 |
| MD5 Checksum: | cffd6d1ac35b3bf07e61abba385f8390 |
|
| /// File Name: |
sa26471.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in IBM DB2, some of which have an unknown impact, while others can potentially be exploited to bypass certain security restrictions or perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/26471/ | | File Size: | 3511 | | Last Modified: | Aug 17 03:17:23 2007 |
| MD5 Checksum: | 07f59a0f1fbfaa3911f3a032c190335b |
|
| /// File Name: |
tlbinf32-exec.txt |
Description:
|
The TypeLib Information object library, implemented in TlbInf32.dll, suffers from a code execution vulnerability.
| | Author: | Brett Moore | | Homepage: | http://security-assessment.com/ | | File Size: | 3496 | | Last Modified: | Aug 16 10:54:07 2007 |
| MD5 Checksum: | 8b8dc31409539f5c54ad3f777ade2d98 |
|
| /// File Name: |
glsa-200708-17.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-17 - An error known as a virtual function call on an invalid pointer has been discovered in the JavaScript engine. Furthermore, iDefense Labs reported that an already-freed pointer may be still used under unspecified circumstances in the BitTorrent support. At last, minor other errors have been discovered, relative to memory read protection (Opera Advisory 861) and URI displays. Versions less than 9.23 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3493 | | Related CVE(s): | CVE-2007-3142, CVE-2007-3819, CVE-2007-3929, CVE-2007-4367 | | Last Modified: | Aug 24 03:28:38 2007 |
| MD5 Checksum: | d8561958b8a8d45ae0895de9887829c7 |
|
| /// File Name: |
ZDI-07-048.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of various Microsoft software User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the substringData() method available on the TextNode JavaScript object. When specific parameters are passed to the method, an integer overflow occurs causing incorrect memory allocation. If this event occurs after a different ActiveX object has been instantiated, an exploitable condition is created when the ActiveX object is deallocated which can result in the execution of arbitrary code.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3487 | | Related CVE(s): | CVE-2007-2223, CVE-2007-2224 | | Last Modified: | Aug 15 06:08:06 2007 |
| MD5 Checksum: | 9a7d42f20417e9c389822017a06dc9e5 |
|
| /// File Name: |
sa26287.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Apple iPhone, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, and potentially to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26287/ | | File Size: | 3486 | | Last Modified: | Aug 8 06:01:26 2007 |
| MD5 Checksum: | 7e63a4d16c78dd7d075ad8ff2749f9da |
|
| /// File Name: |
08.20.07-3.txt |
Description:
|
iDefense Security Advisory 08.20.07 - Remote exploitation of buffer overflow vulnerability in Trend Micro Inc.'s SSAPI Engine could allow attackers to execute arbitrary code with system level privileges. Trend Micro products which include the VST functionality are vulnerable to a stack-based buffer overflow in the vstlib32.dll library. This overflow is triggered when an attacker creates a file on the local file system with an overly long path. When vstlib32 receives the ReadDirectoryChangesW callback notification from the Operating System, a stack based buffer overflow will occur. iDefense confirmed the existence of this vulnerability in vstlib32.dll version 1.2.0.1012. This file is known to be included in several of Trend Micro's products such as PC-Cillin Internet Security 2007 and their AntiSpyware products.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3479 | | Related CVE(s): | CVE-2007-3873 | | Last Modified: | Aug 21 23:12:28 2007 |
| MD5 Checksum: | 192695eb948f31d52f3f2e83436ab79d |
|
| /// File Name: |
sa26288.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Mozilla products, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26288/ | | File Size: | 3455 | | Last Modified: | Aug 1 02:35:42 2007 |
| MD5 Checksum: | 6534002ad04db1866c570b878b7f5410 |
|
| /// File Name: |
08.07.07-2.txt |
Description:
|
iDefense Security Advisory 08.07.07 - Remote exploitation of a heap overflow vulnerability in Apple Inc.'s mDNSResponder application may allow attackers to execute arbitrary code with root privileges. The vulnerability exists within the Legacy NAT Traversal code. Unlike the core of the mDNSResponder service, this area of code does not rely on Multicast UDP. It listens on a dynamically allocated Unicast UDP port. The vulnerability occurs when parsing a malformed HTTP request. This results in an exploitable heap overflow. iDefense has confirmed the existence of this vulnerability in Mac OS X version 10.4.10, Server and Workstation, with mDNSResponder version 108.5. Previous versions may also be affected.
| | Author: | Neil Kettle | | Homepage: | http://www.idefense.com/ | | File Size: | 3451 | | Related CVE(s): | CVE-2007-3744 | | Last Modified: | Aug 8 10:07:00 2007 |
| MD5 Checksum: | 4b45f03094f51eb2ad0bf0fa50c47eaa |
|
| /// File Name: |
sa26439.txt |
Description:
|
Secunia Security Advisory - Three vulnerabilities have been reported in Microsoft Windows Vista, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26439/ | | File Size: | 3411 | | Last Modified: | Aug 15 04:09:30 2007 |
| MD5 Checksum: | 7d7521c51c1704bf1e41c7c05570060f |
|
| /// File Name: |
linux-signal.txt |
Description:
|
The Linux 2.4 and 2.6 kernel series suffer from a flaw where an unprivileged local user may send arbitrary signals to a child process despite security restrictions.
| | Author: | Wojciech Purczynski | | File Size: | 3357 | | Last Modified: | Aug 14 19:57:17 2007 |
| MD5 Checksum: | 23b2c89639dc24156d051cc99606bf03 |
|
| /// File Name: |
TISA2007-13-Public.txt |
Description:
|
Team Intell Security Advisory TISA2007-13-Public - Multiple eScan products suffer from insecure file permissions.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 3337 | | Last Modified: | Aug 30 10:11:03 2007 |
| MD5 Checksum: | 5ca43c150a8716ff8903d7c997b8bf79 |
|
| /// File Name: |
n.runs-SA-2007.026.txt |
Description:
|
A remotely exploitable vulnerability has been discovered in the file parsing engine of Sophos AntiVirus versions prior to 2.48.0. The bug exists during the file parsing of GZIP packed files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3336 | | Last Modified: | Aug 25 21:08:49 2007 |
| MD5 Checksum: | 6d3d292b053123433e13560f96dea207 |
|
| /// File Name: |
sa26395.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26395/ | | File Size: | 3328 | | Last Modified: | Aug 14 02:06:50 2007 |
| MD5 Checksum: | 153abc8e3b831f220ec7c91be16c45f7 |
|
| /// File Name: |
glsa-200708-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-12 - Wireshark doesn't properly handle chunked encoding in HTTP responses, iSeries capture files, certain types of DCP ETSI packets, and SSL or MMS packets. An off-by-one error has been discovered in the DHCP/BOOTP dissector when handling DHCP-over-DOCSIS packets. Versions less than 0.99.6 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3313 | | Related CVE(s): | CVE-2007-3389, CVE-2007-3390, CVE-2007-3391, CVE-2007-3392, CVE-2007-3393 | | Last Modified: | Aug 17 08:07:59 2007 |
| MD5 Checksum: | cc88b54041517dcd6ccb51035dc695b2 |
|
| /// File Name: |
MDKSA-2007-166.txt |
Description:
|
Mandriva Linux Security Advisory - Sebastian Krahmer of the SUSE Security Team discovered an off-by-one buffer overflow within rsync. It is not clear if this problem is exploitable, however updates are available to correct the issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3306 | | Related CVE(s): | CVE-2007-4091 | | Last Modified: | Aug 20 03:47:03 2007 |
| MD5 Checksum: | 427c05c108ba9ee5b67aed86140e0fc1 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
