Section: .. / 0603-advisories /
| /// File Name: |
dsa-1000-1.txt |
Description:
|
Debian Security Advisory DSA 1000-1 - An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU consumption.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5654 | | Last Modified: | Mar 14 23:37:55 2006 |
| MD5 Checksum: | 9df2c945ce0f6f9181855d129e92144a |
|
| /// File Name: |
dsa-1001-1.txt |
Description:
|
Debian Security Advisory DSA 1001-1 - It was discovered that Crossfire, a multiplayer adventure game, performs insufficient bounds checking on network packets when run in "oldsocketmode", which may possibly lead to the execution of arbitrary code.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 12521 | | Last Modified: | Mar 14 23:37:20 2006 |
| MD5 Checksum: | a381cfe35262e005f058d5ea58f5251d |
|
| /// File Name: |
dsa-999-1.txt |
Description:
|
Debian Security Advisory DSA 999-1 - Several security related problems have been discovered in lurker, an archive tool for mailing lists with integrated search engine. The Common Vulnerability and Exposures project identifies the following problems:
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5656 | | Last Modified: | Mar 14 23:36:26 2006 |
| MD5 Checksum: | ccb450c94f8116ce56730b5241295c48 |
|
| /// File Name: |
dsa-998-1.txt |
Description:
|
Debian Security Advisory DSA 998-1 - Derek Noonburg has fixed several potential vulnerabilities in xpdf, which are also present in libextractor, a library to extract arbitrary meta-data from files.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 9412 | | Last Modified: | Mar 14 23:34:35 2006 |
| MD5 Checksum: | 58a4972643a058147e8aba5ac96a8bf3 |
|
| /// File Name: |
DMA-2006-0313a.txt |
Description:
|
DMA[2006-0313a] - Apple OSX Mail.app RFC1740 Real Name Buffer Overflow - After applying Security Update 2006-001 Mail.app becomes vulnerable to a buffer overflow that may be triggered via a properly formatted MIME Encapsuled Macintosh file. Sending a file in the AppleDouble format with a long Real Name entry will invoke the overflow. Reading through RFC1740 should provide enough information to trigger the issue. The overflow is triggered by the file that contains the AppleDouble header information.
| | Author: | Kevin Finisterre | | Homepage: | http://www.digitalmunition.com/DMA[2006-0313a].txt | | Related Exploit: | SuperTastey.pl | | File Size: | 7854 | | Last Modified: | Mar 14 23:24:53 2006 |
| MD5 Checksum: | ecf75713c657587ff99ac0445f2f3d28 |
|
| /// File Name: |
DRUPAL-SA-2006-004.txt |
Description:
|
Drupal security advisory - Linefeeds and carriage returns were not being stripped from email headers, raising the possibility of bogus headers being inserted into outgoing email. This could lead to Drupal sites being used to send unwanted email.
| | Author: | Uwe Hermann | | Homepage: | http://www.hermann-uwe.de | | File Size: | 2038 | | Last Modified: | Mar 14 23:18:10 2006 |
| MD5 Checksum: | 23c5f84801e924d2557127a4cb280e67 |
|
| /// File Name: |
DRUPAL-SA-2006-003.txt |
Description:
|
Drupal security advisory - If someone creates a clever enough URL and convinces you to click on it, and you later log in but you do not log off then the attacker may be able to impersonate you.
| | Author: | Uwe Hermann | | Homepage: | http://www.hermann-uwe.de | | File Size: | 2204 | | Last Modified: | Mar 14 23:17:42 2006 |
| MD5 Checksum: | 82c398f3b206cdd5cf52c14c0c661178 |
|
| /// File Name: |
DRUPAL-SA-2006-002.txt |
Description:
|
Drupal security advisory - Some user input sanity checking was missing. This could lead to possible cross-site scripting (XSS) attacks.
| | Author: | Uwe Hermann | | Homepage: | http://www.hermann-uwe.de | | File Size: | 1946 | | Last Modified: | Mar 14 23:09:15 2006 |
| MD5 Checksum: | 0d0fc2357d0647f1a7f5e682c944eded |
|
| /// File Name: |
DRUPAL-SA-2006-001.txt |
Description:
|
Drupal security advisory - If you use menu.module to create a menu item, the page you point to will be accessible to all, even if it is an admin page.
| | Author: | Uwe Hermann | | Homepage: | http://www.hermann-uwe.de | | File Size: | 1890 | | Last Modified: | Mar 14 23:08:43 2006 |
| MD5 Checksum: | 41bef9b37bbb459f57ed2c0c86afb5c1 |
|
| /// File Name: |
MDKSA-2006-055.txt |
Description:
|
Mandriva Linux Security Advisory - Another vulnerability, different from that fixed in MDKSA-2006:043 (CVE-2006-0455), was discovered in gnupg in the handling of signature files.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3582 | | Last Modified: | Mar 14 23:06:28 2006 |
| MD5 Checksum: | 4d0ea217910bcc33c1995bedc2b8c85e |
|
| /// File Name: |
vBookie.txt |
Description:
|
On vBulletin, with vBookie installed, it is not possible to donate a negative amount of VChips to yourself or another user; however is it possible to alter the input string to get around this limitation and donate any amount you want to your account, or that of another registered user.
| | Author: | admin | | Homepage: | http://ukgamblingforums.co.uk/vChipsHack.jsp | | File Size: | 6100 | | Last Modified: | Mar 14 21:03:59 2006 |
| MD5 Checksum: | aa0d11d03df114ed5098affe021a70a9 |
|
| /// File Name: |
sa19245.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and session fixation attacks, and manipulate outgoing mails.
| | Homepage: | http://secunia.com/advisories/19245/ | | File Size: | 2582 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 0e5c5551d7f5c597834cfdb441da015f |
|
| /// File Name: |
sa19244.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19244/ | | File Size: | 2079 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 30c915654744e5a5d4e301150d70f956 |
|
| /// File Name: |
sa19241.txt |
Description:
|
Secunia Security Advisory - Sebastian Krahmer has reported a vulnerability in Log4net, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19241/ | | File Size: | 1818 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 1ece90ce5f584bc895760c4e2de5f61c |
|
| /// File Name: |
sa19239.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in mod_python, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/19239/ | | File Size: | 1931 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 92ad0a12e60ddece94ec1665a6e464be |
|
| /// File Name: |
sa19237.txt |
Description:
|
Secunia Security Advisory - landser has discovered a vulnerability in CrossFire, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19237/ | | File Size: | 1917 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 766dee26a8431521a4bddd1d56e5eac3 |
|
| /// File Name: |
sa19230.txt |
Description:
|
Secunia Security Advisory - SGI has issued a patch for SGI Advanced Linux Environment. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service), conduct cross-site scripting attacks, and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19230/ | | File Size: | 1940 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 6ef31a4be1cfeea0c4f613b02f3f1878 |
|
| /// File Name: |
sa19219.txt |
Description:
|
Secunia Security Advisory - Aliaksandr Hartsuyeu has reported a vulnerability in Vegas Forum, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/19219/ | | File Size: | 1804 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 8371ff32c6059e2c736fd120313e06f3 |
|
| /// File Name: |
sa19210.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for bomberclone. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19210/ | | File Size: | 4555 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | df0d51c07525817bb9f692de6b3b6588 |
|
| /// File Name: |
sa19203.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for gnupg. This fixes a vulnerability and a security issue, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19203/ | | File Size: | 2094 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 1dc9c9f472d35798eac9925dd54b83ad |
|
| /// File Name: |
sa19201.txt |
Description:
|
Secunia Security Advisory - Aliaksandr Hartsuyeu has discovered multiple vulnerabilities in DSLogin, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/19201/ | | File Size: | 1954 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 9364178a43c58fc6b99c34d5316840fa |
|
| /// File Name: |
sa19164.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for libextractor. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19164/ | | File Size: | 8264 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 47df80db5d6a7bfbb1b734b7e60a2140 |
|
| /// File Name: |
sa19145.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for lurker. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and disclose and manipulate sensitive information.
| | Homepage: | http://secunia.com/advisories/19145/ | | File Size: | 4262 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 0d2f5503dc7f34c08d514755705db48b |
|
| /// File Name: |
sa19139.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for libapreq2-perl. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19139/ | | File Size: | 4619 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 5118d5cedc3ae586374e6358ba6a1bda |
|
| /// File Name: |
sa19049.txt |
Description:
|
Secunia Security Advisory - Remco Verhoef has reported a vulnerability in Gemini, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/19049/ | | File Size: | 1934 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 4dad13090f877513a6205dae10748b3c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
