Section: .. / 0603-advisories /
| /// File Name: |
sa19246.txt |
Description:
|
Secunia Security Advisory - Paul Craig has discovered a vulnerability in Horde, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/19246/ | | File Size: | 1935 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | ff928daf8954a1b4e12e2af3e74f2459 |
|
| /// File Name: |
sa19240.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for webcalendar. This fixes some vulnerabilities, which can be exploited by malicious users to manipulate certain information and conduct SQL injection attacks, and by malicious people to conduct HTTP response splitting attacks.
| | Homepage: | http://secunia.com/advisories/19240/ | | File Size: | 2542 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | ff410c9c882116c32e668182c1229f8b |
|
| /// File Name: |
sa19238.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some security issues in Avaya Modular Messaging, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/19238/ | | File Size: | 1766 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 121dcf0bc7c81956de5e068c4de7ef67 |
|
| /// File Name: |
sa19235.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in IBM AIX, which has an unknown impact.
| | Homepage: | http://secunia.com/advisories/19235/ | | File Size: | 1673 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 8bef2c1b813806c902cc521ba9002831 |
|
| /// File Name: |
sa19233.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Funkwerk X2300, which potentially can be exploited by malicious people to cause a DoS (Denial of Service), and with an unknown impact.
| | Homepage: | http://secunia.com/advisories/19233/ | | File Size: | 1804 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | c07813774ce24f412fd2df696941ed70 |
|
| /// File Name: |
sa19229.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Adobe Document Server and Adobe Graphics Server, which can be exploited by malicious people to gain knowledge of potentially sensitive information, overwrite arbitrary files, or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19229/ | | File Size: | 2921 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 2908bee2525a538c1e07b5f4b2b600ba |
|
| /// File Name: |
sa19221.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in glFTPd, which potentially can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19221/ | | File Size: | 1631 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 83bf404f9c9eada97ebdf3e58e886336 |
|
| /// File Name: |
sa19194.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for crossfire. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19194/ | | File Size: | 11067 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 0befed19003acd9fa2021c38b09f77c9 |
|
| /// File Name: |
sa19193.txt |
Description:
|
Secunia Security Advisory - SCO has issued updates for multiple packages. These fix various vulnerabilities, which can be exploited by malicious people to potentially cause a DoS (Denial of Service) and to compromise a user's system or vulnerable system.
| | Homepage: | http://secunia.com/advisories/19193/ | | File Size: | 2059 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 14eb8039bef418cea79c547c2a96d6cd |
|
| /// File Name: |
sa19185.txt |
Description:
|
Secunia Security Advisory - The SmoothWall Open Source Project has issued an update for multiple packages. This fixes various vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges, and by malicious people to potentially bypass certain security restrictions and conduct HTTP request smuggling attacks.
| | Homepage: | http://secunia.com/advisories/19185/ | | File Size: | 2308 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 751f806385d0b8224645f7f9953750a8 |
|
| /// File Name: |
sa19170.txt |
Description:
|
Secunia Security Advisory - Joey Hess has reported a vulnerability in Debian, which can be exploited by malicious, local users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/19170/ | | File Size: | 2147 | | Last Modified: | Mar 15 20:10:22 2006 |
| MD5 Checksum: | 3414b1d0dd4e1a4e700385b2edde80f8 |
|
| /// File Name: |
20060314-1.txt |
Description:
|
A vulnerability exists in Microsoft Excel which can be exploited to run a code of attacker's choice on user's PC. Sufficient data validation is not performed when parsing "Named Range" definitions in the document file, which makes it possible to produce a negative 32-bit value that is later used as a length parameter for the msvcrt.memmove() function. As a result, a large chunk of memory is copied overwriting critical memory ranges, including the stack space. All tests were performed using Microsoft Excel 2003 (11.6560.6568) on Windows XP and Windows 2000 Pro platforms. It is likely that all MS Excel products are vulnerable.
| | Homepage: | http://www.hexview.com/ | | File Size: | 4563 | | Related OSVDB(s): | 21568 | | Related CVE(s): | CVE-2005-4131 | | Last Modified: | Mar 15 05:28:36 2006 |
| MD5 Checksum: | b16e2b0f4e9f88a71662e71adb50785f |
|
| /// File Name: |
CodeScan-Horde.txt |
Description:
|
Horde versions 3.09 and below suffer from a unauthenticated arbitrary file reading vulnerability.
| | Author: | CodeScan | | Homepage: | http://www.codescan.com/ | | File Size: | 3787 | | Last Modified: | Mar 15 05:26:52 2006 |
| MD5 Checksum: | 466ded4592eec15dbe5071b09396dbf2 |
|
| /// File Name: |
CodeScan-ASPPortal.txt |
Description:
|
ASPPortal version 3.00 is susceptible to more than ten SQL injection vulnerabilities.
| | Author: | CodeScan | | Homepage: | http://www.codescan.com/ | | File Size: | 3250 | | Last Modified: | Mar 15 05:25:45 2006 |
| MD5 Checksum: | c860d8901642d841f974a0fee1c82f05 |
|
| /// File Name: |
FSA-2006-09.txt |
Description:
|
Fortinet Security Advisory: FSA-2006-09 - Fortinet Security Research Team (FSRT) has discovered a improper stack overflow vulnerability in the Microsoft Excel software. This vulnerability is due to Microsoft Excel's manipulation of opcode 0x0218, when provided with a large Formula Size, it will cause a stack overflow. An remote attacker could construct a .xls file and put it on controlled web site. When the user opens the .xls file with Microsoft Internet Explorer, the browser will call Microsoft Excel to open the .xls file automatically, and this will cause Microsoft Excel to crash. If excel file is specially crafted, it may allow attackers to execute arbitrary code on the affected system.
| | Author: | Fortinet Research | | File Size: | 2249 | | Related CVE(s): | CVE-2006-0029 | | Last Modified: | Mar 15 05:12:55 2006 |
| MD5 Checksum: | 7f04f1cdbfec2de0c5fbc47a74070042 |
|
| /// File Name: |
FSA-2006-08.txt |
Description:
|
Fortinet Security Advisory: FSA-2006-08 - Fortinet Security Research Team (FSRT) has discovered a improper memory access vulnerability in the Microsoft Excel software. This vulnerability is due to Microsoft Excel's manipulation of opcode 0x001D, when provided with a random Column Index, it will cause a Improper Memory Access. An remote attacker could construct a .xls file and put it on controlled web site. When the user opens the .xls file with Microsoft Internet Explorer, the browser will call Microsoft Excel to open the .xls file automatically, and this will cause Microsoft Excel to crash. If excel file is specially crafted, it may allow attackers to execute arbitrary code on the affected system.
| | Author: | Fortinet Research | | File Size: | 2263 | | Related CVE(s): | CVE-2006-0029 | | Last Modified: | Mar 15 05:11:55 2006 |
| MD5 Checksum: | 763cd180954f9925d3e3c7a4144af1c1 |
|
| /// File Name: |
sa19218.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Flash Player, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19218/ | | File Size: | 3148 | | Last Modified: | Mar 15 05:10:17 2006 |
| MD5 Checksum: | c2214db79d3b38356323af82331a3ac0 |
|
| /// File Name: |
sa19138.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in Microsoft Office, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19138/ | | File Size: | 7395 | | Last Modified: | Mar 15 05:10:17 2006 |
| MD5 Checksum: | ae71ea47da988f960508986ffba7a688 |
|
| /// File Name: |
SYMSA-2006-001.txt |
Description:
|
Symantec Security Advisory SYMSA-2006-001 - There exists a buffer overflow in Microsoft Word, Excel, PowerPoint, and Outlook in the parsing of the routing slip metadata. The result is that when a user closes a malicious document, arbitrary code can be executed on the host in question.
| | Author: | Ollie Whitehouse | | Homepage: | http://www.symantec.com | | File Size: | 5419 | | Related CVE(s): | CVE-2006-0009 | | Last Modified: | Mar 15 05:08:15 2006 |
| MD5 Checksum: | a69cef5925d6e6865d2d5d2810246afe |
|
| /// File Name: |
rapidshare.de.txt |
Description:
|
The file hosting company rapidshare.de suffers from XSS.
| | Author: | Ironfist | | File Size: | 1322 | | Last Modified: | Mar 14 23:52:57 2006 |
| MD5 Checksum: | c4275e083dd97c87bc2b3fba39548fc3 |
|
| /// File Name: |
MS06-012.txt |
Description:
|
Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in Microsoft Excel which may allow an remote attacker to execute arbitrary code on a user's system via the Internet Explorer Excel plugin.
| | Author: | NGSSoftware Insight Security Research | | Homepage: | http://www.ngssoftware.com | | File Size: | 864 | | Last Modified: | Mar 14 23:44:35 2006 |
| MD5 Checksum: | 74e04a355de6fa3a5a7846efe3064f28 |
|
| /// File Name: |
EV0091.txt |
Description:
|
CyBoards PHP Lite v1.25 suffers from SQL injection in post.php if magic_quotes_gpc is turned off.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1124 | | Last Modified: | Mar 14 23:41:57 2006 |
| MD5 Checksum: | 0bc13481d404abe8ca63f3acdc600b6b |
|
| /// File Name: |
ZDI-06-004.txt |
Description:
|
ZDI-06-004: Microsoft Excel File Format Parsing Vulnerability - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2930 | | Last Modified: | Mar 14 23:40:18 2006 |
| MD5 Checksum: | 2617b7f781934d3a726c47c2122032bc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
