Section: .. / 0711-advisories /
| /// File Name: |
sa27855.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks or potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27855/ | | File Size: | 3347 | | Last Modified: | Nov 30 00:36:59 2007 |
| MD5 Checksum: | ad89063dcfaa50b1470a8115d8aaff0e |
|
| /// File Name: |
sa27630.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in phpMyAdmin, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/27630/ | | File Size: | 3342 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | 19171d7665efcee3c30097c63c340cf9 |
|
| /// File Name: |
11.06.07-1.txt |
Description:
|
iDefense Security Advisory 11.06.07 - Local exploitation of a design error vulnerability in Microsoft's DebugView could allow attackers to execute arbitrary kernel code. As part of its design, DebugView loads a kernel module Dbgv.sys. This module includes functionality that can be abused to copy user supplied data into the kernel, to controlled addresses. This allows malicious users to inject arbitrary code into the running kernel. iDefense confirmed the existence of this vulnerability in Microsoft DebugView version 4.64. The specific file version of Dbgv.sys is 4.60.0.0. This file is deleted automatically after being loaded and will not be found on disk. Previous versions are suspected to be vulnerable as well.
| | Author: | Stephen Fewer | | Homepage: | http://www.idefense.com/ | | File Size: | 3322 | | Related CVE(s): | CVE-2007-4223 | | Last Modified: | Nov 6 23:19:20 2007 |
| MD5 Checksum: | 87ee8e8b4f4b5d6e9b73f52c5547ba4f |
|
| /// File Name: |
sa27450.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Samba, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27450/ | | File Size: | 3311 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | ebe4eaabe22f3313a6e24a54739d0b39 |
|
| /// File Name: |
dsa-1405-1.txt |
Description:
|
Debian Security Advisory 1405-1 - It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies.
| | Homepage: | http://www.debian.org/security | | File Size: | 3301 | | Related CVE(s): | CVE-2007-5741 | | Last Modified: | Nov 9 20:25:10 2007 |
| MD5 Checksum: | 580ddeefe92d83875b885acbb1cff022 |
|
| /// File Name: |
11.07.07-1.txt |
Description:
|
iDefense Security Advisory 11.07.07 - Remote exploitation of a buffer overflow in the XDB.XDB_PITRIG_PKG.PITRIG_DROPMETADATA procedure in Oracle Corp.'s Database 10gR2 could allow a user with an authenticated session to execute arbitrary code in the context of the database account. iDefense has confirmed this vulnerability on Oracle Database 10g Release 2 with all Critical Patch Updates as of February 2007. Previous versions are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3300 | | Related CVE(s): | CVE-2007-4517 | | Last Modified: | Nov 7 19:16:25 2007 |
| MD5 Checksum: | a291bd96c2b3f9110f82d58663e9caab |
|
| /// File Name: |
sa27518.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for pwlib. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27518/ | | File Size: | 3300 | | Last Modified: | Nov 6 01:44:25 2007 |
| MD5 Checksum: | f8ad575d2adc22d0cde294c4a710e8ec |
|
| /// File Name: |
sa27488.txt |
Description:
|
Secunia Security Advisory - A weakness has been reported in Symantec AntiVirus for Macintosh and Norton AntiVirus for Macintosh, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27488/ | | File Size: | 3293 | | Last Modified: | Nov 5 11:03:55 2007 |
| MD5 Checksum: | e14e7c105f7c802aae4a9887f5aded84 |
|
| /// File Name: |
glsa-200711-16.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-16 - Alin Rad Pop (Secunia Research) discovered an off-by-one error in the ippReadIO() function when handling Internet Printing Protocol (IPP) tags that might allow to overwrite one byte on the stack. Versions less than 1.2.12-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3287 | | Related CVE(s): | CVE-2007-4351 | | Last Modified: | Nov 12 23:36:46 2007 |
| MD5 Checksum: | b80fe36cdf462f5ee677cccb59c25326 |
|
| /// File Name: |
sa27716.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for java-1_5_0-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, manipulate data, disclose sensitive/system information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27716/ | | File Size: | 3275 | | Last Modified: | Nov 20 11:17:55 2007 |
| MD5 Checksum: | 9377cb21f92049a96392f7dd74cd693e |
|
| /// File Name: |
sa27469.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in SonicWALL SSL VPN, which can be exploited by malicious people to delete arbitrary files or to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27469/ | | File Size: | 3265 | | Last Modified: | Nov 2 22:36:00 2007 |
| MD5 Checksum: | a4d2d6133695959d05c7a900e417beeb |
|
| /// File Name: |
sa27770.txt |
Description:
|
Secunia Security Advisory - Blue Coat has acknowledged a weakness in multiple Blue Coat products, which can be exploited by malicious, local users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/27770/ | | File Size: | 3262 | | Last Modified: | Nov 27 21:51:05 2007 |
| MD5 Checksum: | c2ed59d033a332b72fb26d0d211b923d |
|
| /// File Name: |
sa27531.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for perl. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27531/ | | File Size: | 3248 | | Last Modified: | Nov 6 22:14:24 2007 |
| MD5 Checksum: | 079e23946856dc0aa6587f8e9aa32561 |
|
| /// File Name: |
FreeBSD-SA-07-10.gtar.txt |
Description:
|
FreeBSD Security Advisory - Insufficient sanity checking of paths containing '.' and '..' allows gtar to overwrite arbitrary files on the system.
| | Homepage: | http://security.freebsd.org/ | | File Size: | 3247 | | Related CVE(s): | CVE-2007-4131 | | Last Modified: | Nov 30 01:09:59 2007 |
| MD5 Checksum: | bc93f9ccc2af18609b0279202b3894a1 |
|
| /// File Name: |
dsa-1405-2.txt |
Description:
|
Debian Security Advisory 1405-2 - The zope-cmfplone update in DSA 1405 introduced a regression. This update corrects this flaw.
| | Homepage: | http://www.debian.org/security | | File Size: | 3246 | | Related CVE(s): | CVE-2007-5741 | | Last Modified: | Nov 12 23:15:15 2007 |
| MD5 Checksum: | 347d7f36794b6872add8dd766ad92774 |
|
| /// File Name: |
sa27616.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for inotify-tools. This fixes a vulnerability, which potentially can be exploited by malicious users to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/27616/ | | File Size: | 3246 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | 93953e96191cf5eb28ef0ccf72923c92 |
|
| /// File Name: |
sa27631.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for link-grammar. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/27631/ | | File Size: | 3230 | | Last Modified: | Nov 16 02:06:08 2007 |
| MD5 Checksum: | f0ea4240b3ec52d91287cd6fd6f8be87 |
|
| /// File Name: |
MDKSA-2007-213.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple vulnerabilities were discovered by Tavis Ormandy and Will Drewry in the way that pcre handled certain malformed regular expressions. If an application linked against pcre, such as Konqueror, parses a malicious regular expression, it could lead to the execution of arbitrary code as the user running the application.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3228 | | Related CVE(s): | CVE-2007-1660 | | Last Modified: | Nov 8 18:52:19 2007 |
| MD5 Checksum: | 419f8570df845774c467abb9c94a6f4d |
|
| /// File Name: |
sa27475.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Macrovision products, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27475/ | | File Size: | 3225 | | Last Modified: | Nov 2 12:12:25 2007 |
| MD5 Checksum: | 8a12d20703cd365ae1c48cd95a942a72 |
|
| /// File Name: |
sa27513.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27513/ | | File Size: | 3199 | | Last Modified: | Nov 6 22:14:24 2007 |
| MD5 Checksum: | 0339300a3ea6bba91eeab14754e23c18 |
|
| /// File Name: |
sa27680.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for thunderbird. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27680/ | | File Size: | 3195 | | Last Modified: | Nov 20 11:17:55 2007 |
| MD5 Checksum: | 82d173af40238764ef99e8fab09d3863 |
|
| /// File Name: |
sa27559.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for zope-cmfplone. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27559/ | | File Size: | 3189 | | Last Modified: | Nov 16 02:52:19 2007 |
| MD5 Checksum: | 2fc8483fcf4bd21f6c82fb44d1f97b5e |
|
| /// File Name: |
sa27849.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Autonomy Keyview SDK, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27849/ | | File Size: | 3178 | | Last Modified: | Nov 30 00:36:59 2007 |
| MD5 Checksum: | bbe0b2f853eeef12ab2e066b4c89ba7f |
|
| /// File Name: |
glsa-200711-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-15 - Sean de Regge reported multiple integer overflows when processing FLAC media files that could lead to improper memory allocations resulting in heap-based buffer overflows. Versions less than 1.2.1-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3177 | | Related CVE(s): | CVE-2007-4619 | | Last Modified: | Nov 12 23:36:24 2007 |
| MD5 Checksum: | e8a6b3c13ae6bdef5e815020ef25e348 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
