Section: .. / 0711-advisories /
| /// File Name: |
realpdos.txt |
Description:
|
Realplayer 11 suffers from a denial of service condition related to ActiveX.
| | Author: | Abed Adonis | | Homepage: | http://www.safehack.com/ | | File Size: | 4093 | | Last Modified: | Dec 2 15:35:28 2007 |
| MD5 Checksum: | 5602ec9844f03bb434ca6ddf3914db67 |
|
| /// File Name: |
glsa-200711-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-05 - Tim Brown discovered these multiple issues: the translation module does not properly sanitize the value to the dir parameter; the translation module also does not sanitize the values of the edit and value parameters which it passes to eval() and include(); the log-in command does not validate the URL to redirect users to after logging in; SiteBar also contains several cross-site scripting vulnerabilities. Versions less than 3.3.9 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 4062 | | Related CVE(s): | CVE-2007-5491, CVE-2007-5492, CVE-2007-5692, CVE-2007-5693, CVE-2007-5694, CVE-2007-5695 | | Last Modified: | Nov 6 23:21:59 2007 |
| MD5 Checksum: | 653c13956ffb694b4e066882a76b4281 |
|
| /// File Name: |
sa27642.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for xpdf. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27642/ | | File Size: | 4055 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | 2381aae36058bfba669da3fa1e731cdb |
|
| /// File Name: |
sa27733.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27733/ | | File Size: | 4050 | | Last Modified: | Nov 27 10:53:31 2007 |
| MD5 Checksum: | f651be06a31b37f6e78feeaa69c3db1b |
|
| /// File Name: |
TA07-319A.txt |
Description:
|
Technical Cyber Security Alert TA07-319A - Apple has released Mac OS X 10.4.11 and Security Update 2007-008 to address multiple vulnerabilities affecting Apple Mac OS X and Mac OS X Server. The most serious of these vulnerabilities may allow a remote attacker to execute arbitrary code. Attackers may take advantage of the less serious vulnerabilities to bypass security restrictions or cause a denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4043 | | Last Modified: | Nov 16 02:24:07 2007 |
| MD5 Checksum: | 89ab9961b2b4060afaa56c9d1e3ec030 |
|
| /// File Name: |
glsa-200711-29.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-29 - Two vulnerabilities have been reported in nmbd. Alin Rad Pop (Secunia Research) discovered a boundary checking error in the reply_netbios_packet() function which could lead to a stack-based buffer overflow. The Samba developers discovered a boundary error when processing GETDC logon requests also leading to a buffer overflow. Versions less than 3.0.26a-r2 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 4043 | | Related CVE(s): | CVE-2007-4572, CVE-2007-5398 | | Last Modified: | Nov 26 17:39:07 2007 |
| MD5 Checksum: | 59576880c4488e87c92b0899e49e96d3 |
|
| /// File Name: |
11.14.07-1.txt |
Description:
|
iDefense Security Advisory 11.14.07 - Local exploitation of a heap based buffer overflow in Apple Inc.'s OS X may allow an attacker to execute arbitrary code in kernel context. The vulnerability exists within a function responsible for sending an ASP (AppleTalk Session Protocol) message on an AppleTalk socket. When allocating a buffer, the kernel uses a user provided integer to perform an arithmetic operation that calculates the number of bytes to allocate. This calculation can overflow, leading to the allocation of a buffer of insufficient size. This results in an exploitable heap based buffer overflow within the kernel. iDefense has confirmed the existence of this vulnerability in Mac OS X 10.4.10, Workstation and Server editions. Previous versions may also be affected.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 4022 | | Related CVE(s): | CVE-2007-4269 | | Last Modified: | Nov 14 21:18:12 2007 |
| MD5 Checksum: | 5bd7873cfc1a981a20a28fff6f9c381f |
|
| /// File Name: |
11.09.07-2.txt |
Description:
|
iDefense Security Advisory 11.09.07 - Local exploitation of a directory traversal vulnerability in IBM Corp.'s Informix Dynamic Server allows attackers to elevate privileges to root. This vulnerability exists due to insufficient checking for directory traversal sequences when processing the DBLANG environment variable. By using values containing directory traversal specifiers, such as "../", an attacker can cause set-uid binaries to use Native Language Support (NLS) message files under their control. iDefense confirmed the existence of this vulnerability in IBM Corp.'s Informix Dynamic Server version 10.00 UC6TL installed on a Linux system. Other versions are also suspected as vulnerable. Versions for other supported Unix systems should also be considered vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3995 | | Related CVE(s): | CVE-2007-5670 | | Last Modified: | Nov 9 18:09:25 2007 |
| MD5 Checksum: | a34eb657aa0ca282313ff895926cc760 |
|
| /// File Name: |
glsa-200711-06.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-06 - Multiple cross-site scripting vulnerabilities have been discovered in mod_status and mod_autoindex. An error has been discovered in the recall_headers() function in mod_mem_cache. The mod_cache module does not properly sanitize requests before processing them. The Prefork module does not properly check PID values before sending signals. The mod_proxy module does not correctly check headers before processing them. Versions less than 2.2.6 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3980 | | Related CVE(s): | CVE-2006-5752, CVE-2007-1862, CVE-2007-1863, CVE-2007-3304, CVE-2007-3847, CVE-2007-4465 | | Last Modified: | Nov 7 15:27:55 2007 |
| MD5 Checksum: | d0a654e53e1d16a9c2a5fa25a6c1337f |
|
| /// File Name: |
TA07-317A.txt |
Description:
|
Technical Cyber Security Alert TA07-317A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows and Microsoft Windows DNS Server. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary commands or to cause a Windows DNS server to provide incorrect DNS responses.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3975 | | Last Modified: | Nov 14 00:26:42 2007 |
| MD5 Checksum: | abf903fcb717f2ac6de1f00ee75983b9 |
|
| /// File Name: |
sa27601.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for flac. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27601/ | | File Size: | 3974 | | Last Modified: | Nov 23 18:42:38 2007 |
| MD5 Checksum: | 11d6bb577d80d909de2bcbdf56b6fd57 |
|
| /// File Name: |
sa27756.txt |
Description:
|
Secunia Security Advisory - SUSE has issued updates for multiple packages. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, malicious users to cause a DoS (Denial of Service), and by malicious people to conduct spoofing and cross-site scripting attacks, cause a DoS, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27756/ | | File Size: | 3928 | | Last Modified: | Nov 26 11:56:43 2007 |
| MD5 Checksum: | d77f12be10eee6c497c8d479ce8480bc |
|
| /// File Name: |
11.09.07-1.txt |
Description:
|
iDefense Security Advisory 11.09.07 - Remote exploitation of multiple buffer overflow vulnerabilities in AOL's AmpX ActiveX control could allow attackers to execute arbitrary code with the credentials of the user visiting a malicious website. Several methods within the vulnerable ActiveX control (CLSID B49C4597-8721-4789-9250-315DFBD9F525) were found to be vulnerable to stack-based buffer overflows. In each case, variable length attacker supplied data is copied into a fixed-size stack buffer using the strcpy() function. Since no input validation is performed, it is possible to corrupt stack memory, resulting in an exploitable condition. iDefense has confirmed the existence of this vulnerability in version 2.6.1.11 of America Online's AmpX.dll. Other versions are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3927 | | Related CVE(s): | CVE-2007-5755 | | Last Modified: | Nov 9 18:07:31 2007 |
| MD5 Checksum: | 8a8729cd693564fd75b4df22dc3d79b3 |
|
| /// File Name: |
USN-545-1.txt |
Description:
|
Ubuntu Security Notice 545-1 - Alin Rad Pop discovered that AbiWord's Link Grammar parser did not correctly handle overly-long words. If a user were tricked into opening a specially crafted document, AbiWord, or other applications using Link Grammar, could be made to crash.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3920 | | Related CVE(s): | CVE-2007-5395 | | Last Modified: | Nov 26 22:58:31 2007 |
| MD5 Checksum: | e957ca3d108f1b1bd40f7b6c2d1138b6 |
|
| /// File Name: |
glsa-200711-26.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-26 - Joachim Schrod discovered several buffer overflow vulnerabilities and an insecure temporary file creation in the dvilj application that is used by dvips to convert DVI files to printer formats. Bastien Roucaries reported that the dvips application is vulnerable to two stack-based buffer overflows when processing DVI documents with long \href{} URIs. teTeX also includes code from Xpdf that is vulnerable to a memory corruption and two heap-based buffer overflows (GLSA 200711-22); and it contains code from T1Lib that is vulnerable to a buffer overflow when processing an overly long font filename (GLSA 200710-12). Versions less than 3.0_p1-r6 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3879 | | Related CVE(s): | CVE-2007-5935, CVE-2007-5936, CVE-2007-5937 | | Last Modified: | Nov 26 17:12:03 2007 |
| MD5 Checksum: | 939fb5b05b883ecc852b7f833900b729 |
|
| /// File Name: |
sa27685.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27685/ | | File Size: | 3865 | | Last Modified: | Nov 23 18:42:38 2007 |
| MD5 Checksum: | 29609f3201f200aee5fcd783be4b5a14 |
|
| /// File Name: |
11.14.07-2.txt |
Description:
|
iDefense Security Advisory 11.14.07 - Local exploitation of a stack based buffer overflow in Apple Inc.'s OS X may allow an attacker to execute arbitrary code in kernel context. The vulnerability exists within the function responsible for adding an AppleTalk zone to an interface's routing table. A zone can be thought of as something similar to a Windows Domain. iDefense has confirmed the existence of this vulnerability in Mac OS X 10.4.10, Workstation and Server editions. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3858 | | Related CVE(s): | CVE-2007-4267 | | Last Modified: | Nov 14 21:19:25 2007 |
| MD5 Checksum: | ea8d9166977c7f47a836f402e57a0fd4 |
|
| /// File Name: |
11.12.07-1.txt |
Description:
|
iDefense Security Advisory 11.12.07 - Local exploitation of an invalid array indexing vulnerability in the NPF.SYS device driver of WinPcap allows attackers to execute arbitrary code in kernel context. The problem specifically exists within the bpf_filter_init function. In several places throughout this function, values supplied from a potential attacker are used as array indexes without proper bounds checking. By making IOCTL requests with specially chosen values, attackers are able to corrupt the stack, or pool memory, within the kernel. iDefense has confirmed the existence of this vulnerability in version 4.0.1 of WinPcap as included in Wireshark 0.99.6a. The version of NPF.SYS tested was 4.0.0.901. iDefense suspects older versions to also be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3806 | | Related CVE(s): | CVE-2007-5756 | | Last Modified: | Nov 12 23:26:43 2007 |
| MD5 Checksum: | ccb4207f94afc8cd90c0b5776dc0c638 |
|
| /// File Name: |
sa27565.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for horde3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct phishing and cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/27565/ | | File Size: | 3803 | | Last Modified: | Nov 16 02:06:37 2007 |
| MD5 Checksum: | 3b2c86f20e61670024d9b45272d40a79 |
|
| /// File Name: |
sa27595.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for phpmyadmin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/27595/ | | File Size: | 3797 | | Last Modified: | Nov 23 18:42:38 2007 |
| MD5 Checksum: | 28f2e5f26ac577568d57555d841179ac |
|
| /// File Name: |
sa27516.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for proftpd. This fixes a security issue, which potentially can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27516/ | | File Size: | 3789 | | Last Modified: | Nov 6 22:14:24 2007 |
| MD5 Checksum: | 4f323d2cded6bd7f49348a8906b58533 |
|
| /// File Name: |
sa27550.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in BtitTracker, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks and to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27550/ | | File Size: | 3786 | | Last Modified: | Nov 15 11:27:52 2007 |
| MD5 Checksum: | 50e0677900c5b676f37eb53f9b551b1f |
|
| /// File Name: |
sa27584.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to poison the DNS cache.
| | Homepage: | http://secunia.com/advisories/27584/ | | File Size: | 3772 | | Last Modified: | Nov 14 19:18:42 2007 |
| MD5 Checksum: | ae6262d001fc39858e1bdea5ab38f5cf |
|
| /// File Name: |
sa27615.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for cups. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27615/ | | File Size: | 3758 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | 7f0abb50669b3ef4942166184c1ef127 |
|
| /// File Name: |
11.12.07-2.txt |
Description:
|
iDefense Security Advisory 11.12.07 - Local exploitation of an input validation error vulnerability within Novell NetWare Client could allow an unprivileged attacker to execute arbitrary code within the kernel. iDefense has confirmed the existence of this vulnerability in nwfilter.sys, file version 4.91.1.1, as included with Novell's NetWare Client 4.91 SP4. Other versions are suspected vulnerable as well.
| | Author: | Stephen Fewer | | Homepage: | http://www.idefense.com/ | | File Size: | 3709 | | Related CVE(s): | CVE-2007-5667 | | Last Modified: | Nov 14 01:44:58 2007 |
| MD5 Checksum: | 1649d7033630962f4294717eba16002e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
