Section: .. / 0712-advisories /
| /// File Name: |
sa28008.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for sitebar. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to disclose potentially sensitive information and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28008/ | | File Size: | 3878 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 0a868af7532208be3c2fb109595f1608 |
|
| /// File Name: |
sa28010.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Microsoft DirectX, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28010/ | | File Size: | 5268 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | bf41702d7fdcd850ac6ef3118db72cef |
|
| /// File Name: |
sa28011.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28011/ | | File Size: | 2874 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 2512f590a6b7481e2309e6bb8f8a2d10 |
|
| /// File Name: |
sa28015.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows Vista, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28015/ | | File Size: | 2658 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 800fc135320541d9def06c43b39c27c7 |
|
| /// File Name: |
sa28018.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun StarOffice and StarSuite, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28018/ | | File Size: | 2216 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | d51cb2272d7ec0ad9698848391948241 |
|
| /// File Name: |
sa28024.txt |
Description:
|
Secunia Security Advisory - DoZ has discovered some vulnerabilities in bitweaver, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28024/ | | File Size: | 2471 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 25a7de0dd3272fecb3b1e49a997d042a |
|
| /// File Name: |
sa28027.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for python. This fixes some security issues and a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28027/ | | File Size: | 2765 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 28d0b6bbd7e2e11e2cffb32d3428bcbe |
|
| /// File Name: |
sa28031.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in BadBlue, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28031/ | | File Size: | 2926 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | c7084aa21e8bdf504ad305b692628e04 |
|
| /// File Name: |
sa28032.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in BarracudaDrive Web Server, which can be exploited by malicious users to manipulate certain data and cause a DoS (Denial of Service), and by malicious people to conduct script insertion attacks and disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/28032/ | | File Size: | 3509 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | b6547a569ae225a6edae307ec0ca2bd6 |
|
| /// File Name: |
sa28034.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Windows Media Format Runtime / Windows Media Services, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28034/ | | File Size: | 6146 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 6dab1acbfb5d3f79bba756d9168c021a |
|
| /// File Name: |
sa28035.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cybozu Office, which can be exploited by malicious people to conduct cross-site scripting attacks, HTTP header injection attacks, or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28035/ | | File Size: | 3198 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | fc2ad7e36d0f947a6978a7ef5bfbc262 |
|
| /// File Name: |
sa28036.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28036/ | | File Size: | 5437 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 779bd7abb095a1e63de2641eb6c1138f |
|
| /// File Name: |
sa28042.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for e2fsprogs. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/28042/ | | File Size: | 2943 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 51d344b1e58b4c8096b4b29d5caf74d2 |
|
| /// File Name: |
sa28043.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for poppler. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/28043/ | | File Size: | 4698 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 983635e082e55acf1c44221a44231f82 |
|
| /// File Name: |
sa28045.txt |
Description:
|
Secunia Security Advisory - Mesut Timur has reported some vulnerabilities in Falt4 CMS, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/28045/ | | File Size: | 2743 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | e8c2728c86a5c2eca7caa9ec18ccf07d |
|
| /// File Name: |
sa28047.txt |
Description:
|
Secunia Security Advisory - MhZ91 has reported some vulnerabilities in Falcon Series One, which can be exploited by malicious people to conduct script insertion and cross-site request forgery attacks and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28047/ | | File Size: | 3296 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | ca552490d5a1656d139065e5d22ab508 |
|
| /// File Name: |
sa28049.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cybozu products, which can be exploited by malicious people to conduct cross-site scripting and HTTP header injection attacks.
| | Homepage: | http://secunia.com/advisories/28049/ | | File Size: | 3022 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | e0834130ed081bc8259c5b023b6c1b67 |
|
| /// File Name: |
sa28050.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for python. This fixes a security issue and a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28050/ | | File Size: | 2607 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 09f9b9fe5c689b29bb94b40e2f8767bf |
|
| /// File Name: |
sa27946.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for xorg-x11-xfs. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/27946/ | | File Size: | 3150 | | Last Modified: | Dec 10 20:32:38 2007 |
| MD5 Checksum: | 9c73bcd26cde2eff0ea253b448d2cab9 |
|
| /// File Name: |
sa28021.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for emul-linux-x86-qtlibs. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/28021/ | | File Size: | 2345 | | Last Modified: | Dec 10 20:32:27 2007 |
| MD5 Checksum: | eef05a04568c35018baf7677c8caa656 |
|
| /// File Name: |
MDKSA-2007-243.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in MySQL prior to 5.0.45 did not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, allowing remote authenticated users to obtain sensitive information such as the table structure. A vulnerability in the InnoDB engine in MySQL allowed remote authenticated users to cause a denial of service (database crash) via certain CONTAINS operations on an indexed column, which triggered an assertion error. Using RENAME TABLE against a table with explicit DATA DIRECTORY and INDEX DIRECTORY options could be used to overwrite system table information by replacing the file to which a symlink pointed to.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 12890 | | Related CVE(s): | CVE-2007-5925, CVE-2007-5969, CVE-2007-3781 | | Last Modified: | Dec 10 20:32:21 2007 |
| MD5 Checksum: | 119982336fda1ac9f91108e528720a41 |
|
| /// File Name: |
MDKSA-2007-242.txt |
Description:
|
Mandriva Linux Security Advisory - Rafal Wojtczuk of McAfee AVERT Research found that e2fsprogs contained multiple integer overflows in memory allocations, based on sizes taken directly from filesystem information. These flaws could result in heap-based overflows potentially allowing for the execution of arbitrary code.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6614 | | Related CVE(s): | CVE-2007-5497 | | Last Modified: | Dec 10 20:30:47 2007 |
| MD5 Checksum: | 42458e5239abe8645204d05adff4bd1d |
|
| /// File Name: |
ZDI-07-072.txt |
Description:
|
Vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Novell NetMail. User interaction is not required to exploit this vulnerability. The specific flaws exist in the AntiVirus agent which listens on a random high TCP port. The avirus.exe service protocol reads a user-supplied ASCII integer value as an argument to a memory allocation routine. The specified size is added to without any integer overflow checks and can therefore result in an under allocation. A subsequent memory copy operation can then corrupt the heap and eventually result in arbitrary code execution. Novell NetMail version 3.5.2 is affected.
| | Author: | Tenable Network Security | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3196 | | Related CVE(s): | CVE-2007-6302 | | Last Modified: | Dec 10 20:15:11 2007 |
| MD5 Checksum: | df7e4d6dd1b17c15d1b0b235ca44924c |
|
| /// File Name: |
dsa-1427-1.txt |
Description:
|
Debian Security Advisory 1427-1 - Alin Rad Pop discovered that Samba, a LanManager-like file and printer server for Unix, is vulnerable to a buffer overflow in the nmbd code which handles GETDC mailslot requests, which might lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 42514 | | Related CVE(s): | CVE-2007-6015 | | Last Modified: | Dec 10 20:12:53 2007 |
| MD5 Checksum: | 99638cc68760f1e9169021824c12ff91 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
