Section: .. / 0507-advisories /
| /// File Name: |
sa16007.txt |
Description:
|
Secunia Security Advisory - Diabolic Crab has reported some vulnerabilities in Dragonfly Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/16007/ | | File Size: | 2206 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | 7f324d35951f00a3607c6b897de1fd52 |
|
| /// File Name: |
sa15879.txt |
Description:
|
Secunia Security Advisory - Stefan Lochbihler has discovered a vulnerability in PHPsFTPd, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/15879/ | | File Size: | 2082 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | 08141df1e67f49f3039312faf411a065 |
|
| /// File Name: |
sa15816.txt |
Description:
|
Secunia Security Advisory - priestmaster has discovered a vulnerability in PHPCounter, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/15816/ | | File Size: | 2239 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | c9231f27d76c193273df30bebb3eef5f |
|
| /// File Name: |
sa15780.txt |
Description:
|
Secunia Security Advisory - blahplok has reported a vulnerability in WPS Web-Portal-System, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/15780/ | | File Size: | 2066 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | f5cddb767dd5a8e6498a15488ccd4910 |
|
| /// File Name: |
sa15778.txt |
Description:
|
Secunia Security Advisory - Shalom Carmel has reported a vulnerability in Lotus Domino, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/15778/ | | File Size: | 2531 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | 912cec66a1f35893173f74c3fe2de3b3 |
|
| /// File Name: |
sa15761.txt |
Description:
|
Secunia Security Advisory - Nortel Networks has acknowledged some vulnerabilities in various products, which can be exploited by malicious people to cause various types of DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/15761/ | | File Size: | 5302 | | Last Modified: | Jul 14 18:58:53 2005 |
| MD5 Checksum: | d3d212057c14731f6ef9375cbedba3cf |
|
| /// File Name: |
TA05-194A.txt |
Description:
|
Technical Cyber Security Alert TA05-194A - Various Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include unauthenticated, remote code execution, information disclosure, and denial of service.
| | Homepage: | http://www.cert.org | | File Size: | 7840 | | Last Modified: | Jul 14 09:18:49 2005 |
| MD5 Checksum: | a6c160b657e299040f0147f948873116 |
|
| /// File Name: |
integrigyOracle.txt |
Description:
|
A number of high risk SQL injection and parameter manipulation security vulnerabilities in the Oracle E-Business Suite 11i have been corrected by Oracle's July, 2005 release of security patches.
| | Author: | Stephen Kost | | Homepage: | http://www.integrigy.com/ | | File Size: | 2991 | | Last Modified: | Jul 14 09:03:53 2005 |
| MD5 Checksum: | d8d98f6ad55a578fe1da656c4ddf9177 |
|
| /// File Name: |
cisco-sa-20050713-csa.txt |
Description:
|
Cisco Security Advisory - Cisco Security Agent (CSA) is a network security software agent that provides threat protection for server and desktop computing systems. A malicious attacker may be able to send a crafted IP packet to a Windows workstation or server running CSA 4.5 which may cause the device to halt and/or reload.
| | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20050713-csa.shtml | | File Size: | 8320 | | Last Modified: | Jul 14 08:53:23 2005 |
| MD5 Checksum: | 4c6b49eaadf59e1c244ffe2963cb62db |
|
| /// File Name: |
cisco-sa-20050713-ons.txt |
Description:
|
Cisco Security Advisory - The Cisco ONS 15216 OADM (Optical Add/Drop Multiplexer) contains a vulnerability in the handling of telnet sessions that can cause a denial-of-service condition in the management plane. Traffic going through the Cisco ONS 15216 OADM (i.e. transit traffic), is not affected when the management plane is under a denial-of-service condition. However, clearing the denial-of-service condition on the management plane requires resetting the device, which impacts transit traffic.
| | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20050713-ons.shtml | | File Size: | 10993 | | Last Modified: | Jul 14 08:52:30 2005 |
| MD5 Checksum: | f5e9e7d1760c1b95781c5dbf517dd4c4 |
|
| /// File Name: |
AKSEC2003-006-4.txt |
Description:
|
Red-Database-Security GmbH Advisory - Oracle Forms 4.5, 6.0, 6i, and 9i suffer from an insecure file handling vulnerability.
| | Author: | Alexander Kornbrust | | File Size: | 1815 | | Last Modified: | Jul 14 08:49:53 2005 |
| MD5 Checksum: | e39f324207c12fc43e92605857b13548 |
|
| /// File Name: |
AKSEC2003-006-3.txt |
Description:
|
Red-Database-Security GmbH Advisory - Oracle Formsbuilder version 9.0.4 fails to remove files from a temporary directory after closing. These files hold passwords.
| | Author: | Alexander Kornbrust | | File Size: | 2074 | | Last Modified: | Jul 14 08:48:26 2005 |
| MD5 Checksum: | 2cef080dc4e7896f94e564725ae681e4 |
|
| /// File Name: |
AKSEC2003-006-2.txt |
Description:
|
Red-Database-Security GmbH Advisory - Oracle JDeveloper versions 9.0.4, 9.0.5, and 10.1.2 suffer from a security issue where they store passwords in the clear.
| | Author: | Alexander Kornbrust | | File Size: | 2288 | | Last Modified: | Jul 14 08:43:23 2005 |
| MD5 Checksum: | 608c9ca6dec15c8f0b02322d92daae0b |
|
| /// File Name: |
AKSEC2003-006-1.txt |
Description:
|
Red-Database-Security GmbH Advisory - Oracle JDeveloper versions 9.0.4, 9.0.5, and 10.1.2 suffer from a security issue where they pass a plaintext password to sqlplus.
| | Author: | Alexander Kornbrust | | File Size: | 1513 | | Last Modified: | Jul 14 08:42:30 2005 |
| MD5 Checksum: | a576fbd781d4c8559863c28d5fa3a865 |
|
| /// File Name: |
WPS-070.txt |
Description:
|
WPS Web-Portal-System version 0.7.0 suffers from a remote command execution vulnerability in wps_shop.cgi due to proper variable sanitization.
| | Author: | blahplok | | File Size: | 1199 | | Last Modified: | Jul 14 08:27:05 2005 |
| MD5 Checksum: | f18abe630f96a81afc76779ee7d5e115 |
|
| /// File Name: |
glsa-200507-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200507-12 - Bugzilla allows any user to modify the flags of any bug (CAN-2005-2173). Bugzilla inserts bugs into the database before marking them as private, in connection with MySQL replication this could lead to a race condition (CAN-2005-2174). Versions less than 2.18.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3040 | | Related CVE(s): | CAN-2005-2173, CAN-2005-2174 | | Last Modified: | Jul 14 08:00:26 2005 |
| MD5 Checksum: | bd222c90ef9d2a19afe2363aba263912 |
|
| /// File Name: |
dsa-746-1.txt |
Description:
|
Debian Security Advisory DSA 746-1 - A vulnerability had been identified in the xmlrpc library included with phpgroupware, a web-based application including email, calendar and other groupware functionality. This vulnerability could lead to the execution of arbitrary commands on the server running phpgroupware.
| | Homepage: | http://security.debian.org/ | | File Size: | 11645 | | Related CVE(s): | CAN-2005-1921 | | Last Modified: | Jul 14 08:00:09 2005 |
| MD5 Checksum: | 486e90d73b6508b1ae7c02ab8206bea4 |
|
| /// File Name: |
dsa-756-1.txt |
Description:
|
Debian Security Advisory DSA 756-1 - Several vulnerabilities have been discovered in Squirrelmail, a commonly used webmail system. Martijn Brinkers discovered cross-site scripting vulnerabilities that allow remote attackers to inject arbitrary web script or HTML in the URL and e-mail messages. James Bercegay of GulfTech Security discovered a vulnerability in the variable handling which could lead to attackers altering other people's preferences and possibly reading them, writing files at any location writable for www-data and cross site scripting.
| | Homepage: | http://security.debian.org/ | | File Size: | 4264 | | Related CVE(s): | CAN-2005-1769, CAN-2005-2095 | | Last Modified: | Jul 14 07:59:13 2005 |
| MD5 Checksum: | 71285b15f8317b48300c1f58d972090c |
|
| /// File Name: |
dsa-755-1.txt |
Description:
|
Debian Security Advisory DSA 755-1 - Frank Warmerdam discovered a stack-based buffer overflow in libtiff, the Tag Image File Format library for processing TIFF graphics files that can lead to the executionof arbitrary code via malformed TIFF files.
| | Homepage: | http://security.debian.org/ | | File Size: | 8109 | | Related CVE(s): | CAN-2005-1544 | | Last Modified: | Jul 14 07:55:27 2005 |
| MD5 Checksum: | a75995fedf8aba259878713089c8ce48 |
|
| /// File Name: |
dsa-754-1.txt |
Description:
|
Debian Security Advisory DSA 754-1 - Eric Romang discovered that centericq, a text-mode multi-protocol instant messenger client, creates some temporary files with predictable filenames and is hence vulnerable to symlink attacks by local attackers.
| | Homepage: | http://security.debian.org/ | | File Size: | 10471 | | Related CVE(s): | CAN-2005-1914 | | Last Modified: | Jul 14 07:53:37 2005 |
| MD5 Checksum: | c048fafa67e00ddeef37243ae95308eb |
|
| /// File Name: |
AD20050713.txt |
Description:
|
Darwin Streaming Server is distributed with a web-based admin application that allows it to be configured through a web browser. Version 5.5 and below of the Windows 2000/2003 Server distribution of this package is vulnerable to a denial of service.
| | Author: | Sowhat | | Homepage: | http://secway.org/ | | File Size: | 1465 | | Last Modified: | Jul 14 07:49:16 2005 |
| MD5 Checksum: | 23f820319e8487803b8b02f173f81e4b |
|
| /// File Name: |
sa16062.txt |
Description:
|
Secunia Security Advisory - moz_bug_r_a4 has reported a vulnerability in Thunderbird, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/16062/ | | File Size: | 2282 | | Last Modified: | Jul 14 07:33:32 2005 |
| MD5 Checksum: | 5f0cb9998024f360f799aecfa009a7da |
|
| /// File Name: |
sa16061.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Solaris and SEAM, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/16061/ | | File Size: | 2297 | | Last Modified: | Jul 14 07:33:32 2005 |
| MD5 Checksum: | 70f9a671d8d4f9d3b42df426e5fadb7d |
|
| /// File Name: |
sa16060.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Solaris and SEAM, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/16060/ | | File Size: | 2434 | | Last Modified: | Jul 14 07:33:32 2005 |
| MD5 Checksum: | 5d556792ba38360c1969ae7035c6aeb6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
