Section: .. / 0710-advisories /
| /// File Name: |
sa26972.txt |
Description:
|
Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in Altnet Download Manager included in Kazaa, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26972/ | | File Size: | 2158 | | Last Modified: | Oct 3 20:36:17 2007 |
| MD5 Checksum: | a35de7f10442bfd4ac4dc37915c4973e |
|
| /// File Name: |
sa27038.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for elinks. This fixes a weakness, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/27038/ | | File Size: | 6277 | | Last Modified: | Oct 3 20:36:17 2007 |
| MD5 Checksum: | 0852e6a6024e442092d64f218042e312 |
|
| /// File Name: |
sa27030.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in rPath rMake, which can be exploited by malicious, local users to cause a Denial of Service (DoS) or potentially to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27030/ | | File Size: | 2547 | | Last Modified: | Oct 3 20:36:05 2007 |
| MD5 Checksum: | 71d5e031f0ddd498bd01451251b02f4a |
|
| /// File Name: |
sa26951.txt |
Description:
|
Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in CenterTools DriveLock, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26951/ | | File Size: | 2635 | | Last Modified: | Oct 3 19:27:06 2007 |
| MD5 Checksum: | c231c13e7094685a5115f845ef0c86b7 |
|
| /// File Name: |
sa27047.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for xen. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27047/ | | File Size: | 2297 | | Last Modified: | Oct 3 19:23:33 2007 |
| MD5 Checksum: | ca4cd3bf7d499634067b0374f2f864dd |
|
| /// File Name: |
10.02.07-2.txt |
Description:
|
iDefense Security Advisory 10.02.07 - Local exploitation of an integer signedness error in Sun Microsystem's Solaris could allow attackers to disclose sensitive information from memory. iDefense has confirmed the existence of this vulnerability in Solaris 10 on x86 and SPARC. It is suspected that earlier versions are also affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3165 | | Last Modified: | Oct 3 19:23:17 2007 |
| MD5 Checksum: | 9404e9c2ad59fb451666c20c0f9a20c7 |
|
| /// File Name: |
sa26994.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26994/ | | File Size: | 6947 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | e7364b8395d8001064797e1ed50c1910 |
|
| /// File Name: |
sa27019.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a vulnerability in Avaya CMS, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27019/ | | File Size: | 2198 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | 843b46191394ea8ab9a05ffaa92ebcef |
|
| /// File Name: |
sa27031.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for openssl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27031/ | | File Size: | 19491 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | 9e5337c2739fc3a55fd7b939345bc46f |
|
| /// File Name: |
sa27040.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the X.Org X11 X Font Server (XFS), which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27040/ | | File Size: | 3120 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | 925842320878aa5e8d3b1679c626ea3c |
|
| /// File Name: |
sa27050.txt |
Description:
|
Secunia Security Advisory - 0in has discovered a vulnerability in Poppawid, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27050/ | | File Size: | 2438 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | 4c66edcf64efd168bef5c6809cfe4083 |
|
| /// File Name: |
sa27056.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Irrlicht, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27056/ | | File Size: | 2194 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | 60a8b5de2fd5796884f5d5f3d1924d2c |
|
| /// File Name: |
sa27059.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a vulnerability in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27059/ | | File Size: | 2611 | | Last Modified: | Oct 3 19:13:39 2007 |
| MD5 Checksum: | a6ec955d3577da55ef2f2a0708cc967c |
|
| /// File Name: |
sa27003.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Arbor Networks Peakflow SP, which can be exploited by malicious users to bypass certain security restrictions and conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/27003/ | | File Size: | 2725 | | Last Modified: | Oct 3 16:39:01 2007 |
| MD5 Checksum: | c0e467538073b161647e77b67dff0865 |
|
| /// File Name: |
sa27029.txt |
Description:
|
Secunia Security Advisory - Francesco Ongaro and Antonio Parata have discovered a vulnerability in Original Photo Gallery, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27029/ | | File Size: | 2435 | | Last Modified: | Oct 3 16:39:01 2007 |
| MD5 Checksum: | 529d68f05e050b521e7880292d182faf |
|
| /// File Name: |
sa27043.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for nfs-utils-lib. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27043/ | | File Size: | 2247 | | Last Modified: | Oct 3 16:39:01 2007 |
| MD5 Checksum: | 8f4a98327ab05c333eb3b0e4135f1152 |
|
| /// File Name: |
sa27049.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for quagga. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27049/ | | File Size: | 7646 | | Last Modified: | Oct 3 16:39:01 2007 |
| MD5 Checksum: | 7d766d8ba24dec69ded3d7c1e5926669 |
|
| /// File Name: |
sa27060.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in XFree86, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27060/ | | File Size: | 2397 | | Last Modified: | Oct 3 16:39:01 2007 |
| MD5 Checksum: | d6f9a9e515d5474bbb8c34eb078c23f2 |
|
| /// File Name: |
dsa-1380-1.txt |
Description:
|
Debian Security Advisory 1380-1 - Kalle Olavi Niemitalo discovered that elinks, an advanced text-mode WWW browser, sent HTTP POST data in cleartext when using an HTTPS proxy server potentially allowing private information to be disclosed.
| | Homepage: | http://www.debian.org/security | | File Size: | 6792 | | Related CVE(s): | CVE-2007-5034 | | Last Modified: | Oct 2 20:31:53 2007 |
| MD5 Checksum: | 69cd282fc888fb0462f9333dbb97be6c |
|
| /// File Name: |
10.02.07-1.txt |
Description:
|
iDefense Security Advisory 10.02.07 - Remote exploitation of a multiple vulnerabilities in X.Org Foundation's X Font Server, as included in various vendors' operating system distributions, could allow an attacker to execute arbitrary code. iDefense has confirmed the existence of these vulnerabilities in XFS version X11R7.2-1.0.4. Previous versions may also be affected.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 4248 | | Related CVE(s): | CVE-2007-4568 | | Last Modified: | Oct 2 20:30:33 2007 |
| MD5 Checksum: | 0532b9913a377b17570bf93248afe912 |
|
| /// File Name: |
TPTI-07-17.txt |
Description:
|
Vulnerabilities allow a remote attacker to inject arbitrary SQL into the backend database on vulnerable installations of CA BrightStor Hierarchical Storage Manager. Authentication is not required to exploit these vulnerabilities. The specific flaws exist in the CsAgent service that listens by default on TCP port 2000. An opcode parsing switch statement multiplexes data funneling across various vulnerable routines. At least 7 out of the available 68 opcodes are vulnerable to SQL injections.
| | Author: | Aaron Portnoy | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2100 | | Related CVE(s): | CVE-2007-5084 | | Last Modified: | Oct 2 20:29:04 2007 |
| MD5 Checksum: | 9840fb7ea9adf38d8b25253227e70943 |
|
| /// File Name: |
TPTI-07-016.txt |
Description:
|
Vulnerabilities allow a remote attacker to execute arbitrary code on vulnerable installations of Computer Associates' BrightStor Hierarchical Storage Manager. Authentication is not required to exploit these vulnerabilities. The specific flaws exist in the CsAgent service that listens by default on TCP port 2000. An opcode parsing switch statement multiplexes data funneling across various vulnerable routines. A user-supplied DWORD size value is assumed by the vulnerable agent to contain the correct length of the subsequent data and is passed directly to memory allocation routines. At least 26 out of the available 68 opcodes are vulnerable to various overflows that allow for remote code execution due to insecure data copy operations.
| | Author: | Aaron Portnoy | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2444 | | Related CVE(s): | CVE-2007-5082 | | Last Modified: | Oct 2 20:27:55 2007 |
| MD5 Checksum: | b45214555ac98338dbf353986bcee9d2 |
|
| /// File Name: |
sa27017.txt |
Description:
|
Secunia Security Advisory - shinnai has discovered a vulnerability in EDraw Office Viewer Component, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27017/ | | File Size: | 2511 | | Last Modified: | Oct 2 20:23:36 2007 |
| MD5 Checksum: | 5c5762ea1fbba242d900042d537e106a |
|
| /// File Name: |
dsa-1379-1.txt |
Description:
|
Debian Security Advisory 1379-1 - An off-by-one error has been identified in the SSL_get_shared_ciphers() routine in the libssl library from OpenSSL, an implementation of Secure Socket Layer cryptographic libraries and utilities. This error could allow an attacker to crash an application making use of OpenSSL's libssl library, or potentially execute arbitrary code in the security context of the user running such an application.
| | Homepage: | http://www.debian.org/security | | File Size: | 20892 | | Related CVE(s): | CVE-2007-5135 | | Last Modified: | Oct 2 20:21:25 2007 |
| MD5 Checksum: | 3f5aa96b7fa0f56cd5a7c9bd5759073e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
