Section: .. / 0603-advisories /
| /// File Name: |
SSRT050979.txt |
Description:
|
HPSBTU02100 SSRT050979 rev.1 - HP Tru64 UNIX IPSEC/ISAKMP Remote Denial of Service (DoS) - Multiple potential vulnerabilities have been identified on HP Tru64 UNIX operating systems running IPSEC, which uses the Internet Security Association and Key Management Protocol (ISAKMP). The vulnerabilities could be exploited remotely to cause Denial of Service (DoS) .
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 6226 | | Last Modified: | Mar 9 04:53:12 2006 |
| MD5 Checksum: | f2da1b8bff53e9c86df505e9833d9a54 |
|
| /// File Name: |
sa19279.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for xine-lib. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19279/ | | File Size: | 6200 | | Last Modified: | Mar 18 22:11:21 2006 |
| MD5 Checksum: | 791b1f998dd662a5e63a6abd1fa8c5ad |
|
| /// File Name: |
vBookie.txt |
Description:
|
On vBulletin, with vBookie installed, it is not possible to donate a negative amount of VChips to yourself or another user; however is it possible to alter the input string to get around this limitation and donate any amount you want to your account, or that of another registered user.
| | Author: | admin | | Homepage: | http://ukgamblingforums.co.uk/vChipsHack.jsp | | File Size: | 6100 | | Last Modified: | Mar 14 21:03:59 2006 |
| MD5 Checksum: | aa0d11d03df114ed5098affe021a70a9 |
|
| /// File Name: |
sa19091.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for xpdf. This fixes some potential vulnerabilities with unknown impacts.
| | Homepage: | http://secunia.com/advisories/19091/ | | File Size: | 6008 | | Last Modified: | Mar 2 22:01:19 2006 |
| MD5 Checksum: | b56488f860651a712d8f78a655c3c379 |
|
| /// File Name: |
dsa-1011-1.txt |
Description:
|
Debian Security Advisory DSA 1011-1 - Several vulnerabilities have been discovered in the Debian vserver support for Linux.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5996 | | Last Modified: | Mar 21 22:41:51 2006 |
| MD5 Checksum: | ffba6cdf282073b6ce83c4fac649e978 |
|
| /// File Name: |
SSRT5953.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running /sbin/passwd which could be locally exploited to create a Denial of Service (DoS).
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 5946 | | Last Modified: | Apr 1 08:59:50 2006 |
| MD5 Checksum: | 35379522f364702cbe7c0509dc32b776 |
|
| /// File Name: |
netcoolLeak.txt |
Description:
|
Another credential leak was found in the Netcool/NeuSecure Security Information Management platform which allows for remote backend database access with administrative privileges by an unauthenticated remote user.
| | Author: | Dimitry Snezhkov | | File Size: | 5887 | | Last Modified: | Mar 9 05:36:07 2006 |
| MD5 Checksum: | 7abf0cff0bf78afdc44b2ddf1fdf2bb2 |
|
| /// File Name: |
phpNukeXSS.txt |
Description:
|
A cross site scripting vulnerability exists in PHP-NUKE Submit-News.
| | Author: | 0o_zeus_o0 | | Homepage: | http://www.elitemexico.org | | File Size: | 5699 | | Last Modified: | Mar 3 09:11:55 2006 |
| MD5 Checksum: | 081329f54ad57971720188b76e7aeee2 |
|
| /// File Name: |
MDKSA-20060035-1.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the PHP gd extension in versions prior to 4.4.1 could allow a remote attacker to bypass safe_mode and open_basedir restrictions via unknown attack vectors.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5663 | | Last Modified: | Mar 10 01:23:25 2006 |
| MD5 Checksum: | 1970a235a2024637bb6f04418d6248a5 |
|
| /// File Name: |
MDKSA-2006-035-1.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the PHP gd extension in versions prior to 4.4.1 could allow a remote attacker to bypass safe_mode and open_basedir restrictions via unknown attack vectors.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5663 | | Last Modified: | Mar 10 01:48:11 2006 |
| MD5 Checksum: | 1970a235a2024637bb6f04418d6248a5 |
|
| /// File Name: |
dsa-999-1.txt |
Description:
|
Debian Security Advisory DSA 999-1 - Several security related problems have been discovered in lurker, an archive tool for mailing lists with integrated search engine. The Common Vulnerability and Exposures project identifies the following problems:
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5656 | | Last Modified: | Mar 14 23:36:26 2006 |
| MD5 Checksum: | ccb450c94f8116ce56730b5241295c48 |
|
| /// File Name: |
dsa-1000-1.txt |
Description:
|
Debian Security Advisory DSA 1000-1 - An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU consumption.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5654 | | Last Modified: | Mar 14 23:37:55 2006 |
| MD5 Checksum: | 9df2c945ce0f6f9181855d129e92144a |
|
| /// File Name: |
FreeBSD-SA-06-10.nfs.txt |
Description:
|
FreeBSD Security Advisory FreeBSD-SA-06:10.nfs - A part of the NFS server code charged with handling incoming RPC messages via TCP had an error which, when the server received a message with a zero-length payload, would cause a NULL pointer dereference which results in a kernel panic. The kernel will only process the RPC messages if a userland nfsd daemon is running.
| | Author: | Evgeny Legerov. | | Homepage: | http://www.freebsd.org/security/ | | File Size: | 5606 | | Related CVE(s): | CVE-2006-0900 | | Last Modified: | Mar 3 04:18:49 2006 |
| MD5 Checksum: | ee30ed632966c7ffab3f51db0f0ca472 |
|
| /// File Name: |
dsa-997-1.txt |
Description:
|
Debian Security Advisory DSA 997-1 - Stefan Cornelius of Gentoo Security discovered that bomberclone, a free Bomberman-like game, crashes when receiving overly long error packets, which may also allow remote attackers to execute arbitrary code.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5557 | | Last Modified: | Mar 13 22:11:24 2006 |
| MD5 Checksum: | 92ea9c1449ffc159a75282eb3f095105 |
|
| /// File Name: |
FLSA-2006-176751.txt |
Description:
|
Fedora Legacy Update Advisory - A flaw was discovered in gpdf. An attacker could construct a carefully crafted PDF file that would cause gpdf to consume all available disk space in /tmp when opened.
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 5554 | | Last Modified: | Mar 9 04:22:49 2006 |
| MD5 Checksum: | 86c6987a46a2cf01ce1c6017ab7b6e9c |
|
| /// File Name: |
MDKSA-2006-056.txt |
Description:
|
Mandriva Linux Security Advisory - MDKSA-2006:056 Versions of Xorg 6.9.0 and greater have a bug in xf86Init.c, which allows non-root users to use the -modulepath, -logfile and -configure options. This allows loading of arbitrary modules which will execute as the root user, as well as a local DoS by overwriting system files.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5550 | | Last Modified: | Mar 21 23:05:39 2006 |
| MD5 Checksum: | aff489e9584155d20d9137feb6117ce5 |
|
| /// File Name: |
FLSA-2006-168516.txt |
Description:
|
Fedora Legacy Update Advisory - An integer overflow flaw was found in PCRE, triggered by a maliciously crafted regular expression. On systems that accept arbitrary regular expressions from untrusted users, this could be exploited to execute arbitrary code with the privileges of the application using the library.
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 5501 | | Last Modified: | Mar 9 04:22:14 2006 |
| MD5 Checksum: | 48d75466e1b2540996eca46a1a56c18b |
|
| /// File Name: |
SYMSA-2006-001.txt |
Description:
|
Symantec Security Advisory SYMSA-2006-001 - There exists a buffer overflow in Microsoft Word, Excel, PowerPoint, and Outlook in the parsing of the routing slip metadata. The result is that when a user closes a malicious document, arbitrary code can be executed on the host in question.
| | Author: | Ollie Whitehouse | | Homepage: | http://www.symantec.com | | File Size: | 5419 | | Related CVE(s): | CVE-2006-0009 | | Last Modified: | Mar 15 05:08:15 2006 |
| MD5 Checksum: | a69cef5925d6e6865d2d5d2810246afe |
|
| /// File Name: |
gallery202.txt |
Description:
|
Gallery2 versions 2.0.2 and below suffer from IP spoofing, script injection, and arbitrary file access flaws.
| | Author: | James Bercegay | | Homepage: | http://www.gulftech.org | | File Size: | 5292 | | Last Modified: | Mar 6 08:07:35 2006 |
| MD5 Checksum: | 7d0a2dda5502843362cd35e72b4b2455 |
|
| /// File Name: |
aa2k6x.txt |
Description:
|
Alien Arena 2006 Gold Edition versions 5.00 and below suffer from format string and buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | aa2k6x.zip | | File Size: | 5205 | | Last Modified: | Mar 9 05:20:29 2006 |
| MD5 Checksum: | a417e8140e93aa291ab0fe5109b1f627 |
|
| /// File Name: |
sa19064.txt |
Description:
|
Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
| | Homepage: | http://secunia.com/advisories/19064/ | | File Size: | 5195 | | Last Modified: | Mar 2 22:01:19 2006 |
| MD5 Checksum: | a43078766a12320f1b592a6fc75cbcdc |
|
| /// File Name: |
dsa-990-1.txt |
Description:
|
Debian Security Advisory DSA 990-1 - A denial of service condition has been discovered in bluez-hcidump, a utility that analyses Bluetooth HCI packets, which can be triggered remotely.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5108 | | Related CVE(s): | CVE-2006-0670 | | Last Modified: | Mar 11 03:31:51 2006 |
| MD5 Checksum: | 85574ec19efc9de70695b534faf8000e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
