Section: .. / 0607-advisories /
| /// File Name: |
sa21195.txt |
Description:
|
Secunia Security Advisory - Jaime Blasco has reported a vulnerability in Siemens Speedstream 2624, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21195/ | | File Size: | 2238 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | 2692c742d4254db326688d3bf36b956e |
|
| /// File Name: |
sa21196.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported a vulnerability in libmikmod, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21196/ | | File Size: | 2321 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | 4b6abced944c242aa0250df484be9b97 |
|
| /// File Name: |
sa21198.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for gimp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21198/ | | File Size: | 2040 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | 4bce5614d59b973f31f397c95cec8c9e |
|
| /// File Name: |
sa21199.txt |
Description:
|
Secunia Security Advisory - Tan Chew Keong has reported a vulnerability in PowerArchiver, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21199/ | | File Size: | 2755 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | 59a8c2c46e46a745f91a39733ed02d61 |
|
| /// File Name: |
sa21204.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21204/ | | File Size: | 1977 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | c1e81668f47cd7626ebfb77a7b7c2c34 |
|
| /// File Name: |
glsa-200607-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200607-08 - Henning Makholm discovered that the xcf_load_vector() function is vulnerable to a buffer overflow when loading a XCF file with a large num_axes value. Versions less than 1.2.12 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2530 | | Last Modified: | Jul 24 03:00:35 2006 |
| MD5 Checksum: | 1b971bbc3150e5912025970097feeb5c |
|
| /// File Name: |
dsa-1120-1.txt |
Description:
|
Debian Security Advisory 1118-1 - A massive slew of vulnerabilities have been patched in mozilla-firefox for Debian.
| | Homepage: | http://www.debian.org/security | | File Size: | 13140 | | Related CVE(s): | CVE-2006-1942, CVE-2006-2775, CVE-2006-2776, CVE-2006-2777, CVE-2006-2778, CVE-2006-2779, CVE-2006-2780, CVE-2006-2781, CVE-2006-2782, CVE-2006-2783, CVE-2006-2784, CVE-2006-2785, CVE-2006-2786, CVE-2006-2787 | | Last Modified: | Jul 24 02:55:36 2006 |
| MD5 Checksum: | 18cb6e34f4ab06359356d981e72a0875 |
|
| /// File Name: |
dsa-1119-1.txt |
Description:
|
Debian Security Advisory 1119-1 - Akira Tanaka discovered a vulnerability in Hiki Wiki, a Wiki engine written in Ruby that allows remote attackers to cause a denial of service via high CPU consumption using by performing a diff between large and specially crafted Wiki pages.
| | Homepage: | http://www.debian.org/security | | File Size: | 2894 | | Related CVE(s): | CVE-2006-3379 | | Last Modified: | Jul 24 02:53:28 2006 |
| MD5 Checksum: | bdd743b1f993dadac0d3c51831a81874 |
|
| /// File Name: |
dsa-1118-1.txt |
Description:
|
Debian Security Advisory 1118-1 - A massive slew of vulnerabilities have been patched in Mozilla for Debian.
| | Homepage: | http://www.debian.org/security | | File Size: | 32339 | | Related CVE(s): | CVE-2006-1942, CVE-2006-2775, CVE-2006-2776, CVE-2006-2777, CVE-2006-2778, CVE-2006-2779, CVE-2006-2780, CVE-2006-2781, CVE-2006-2782, CVE-2006-2783, CVE-2006-2784, CVE-2006-2785, CVE-2006-2786, CVE-2006-2787 | | Last Modified: | Jul 24 02:51:29 2006 |
| MD5 Checksum: | 849c2b82ab525b0e613ff0cbf78f0e9e |
|
| /// File Name: |
NDSA20060705.txt |
Description:
|
Nth Dimension Security Advisory (NDSA20060705) - The IPCalc CGI wrapper version 0.40 is vulnerable to Javascript injection within the request URL.
| | Author: | Tim Brown | | Homepage: | http://www.nth-dimension.org.uk/ | | File Size: | 1196 | | Last Modified: | Jul 24 02:50:15 2006 |
| MD5 Checksum: | b16a4f82c57c15e40d16fd8cee94099f |
|
| /// File Name: |
major_rls24.txt |
Description:
|
Fire-Mouse TopList versions 1.1 and below suffer from a cross site scripting flaw.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2068 | | Last Modified: | Jul 24 02:47:43 2006 |
| MD5 Checksum: | 76a53540d673bca18992f950d154dc70 |
|
| /// File Name: |
major_rls25.txt |
Description:
|
Advanced Guestbook version 2.4 for phpBB suffers from SQL injection and cross site scripting flaws.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2351 | | Last Modified: | Jul 24 02:47:04 2006 |
| MD5 Checksum: | d59a1906bd7a7e5b189bded813cdfc10 |
|
| /// File Name: |
07.20.06.txt |
Description:
|
iDefense Security Advisory 07.20.06 - Local exploitation of an integer overflow vulnerability in Sun Microsystems Inc. Solaris allows attackers to read kernel memory from a non-privileged userspace process.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3281 | | Last Modified: | Jul 24 01:44:01 2006 |
| MD5 Checksum: | 463dbec26cb7e78c893a9acb057e4243 |
|
| /// File Name: |
sa-apacheTomcat.txt |
Description:
|
ScanAlert Security Advisory - Apache Tomcat can be forced to reveal a complete directory listing for any directory by requesting a mapped file extension prepended with a semicolon, a reserved character. The file does not need to exist. 5.x versions below 5.5.17 may be susceptible to this flaw.
| | Author: | Joseph Pierini | | Homepage: | http://www.scanalert.com/ | | File Size: | 2230 | | Last Modified: | Jul 24 01:08:52 2006 |
| MD5 Checksum: | 969b0c61c95e6209a525436a1129a0e7 |
|
| /// File Name: |
major_rls23.txt |
Description:
|
BLOG:CMS versions 4.0.0j and below suffer from a cross site scripting flaw.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 1902 | | Last Modified: | Jul 24 01:05:26 2006 |
| MD5 Checksum: | 9645bced667496bc069569f8a233f593 |
|
| /// File Name: |
dsa-1117-1.txt |
Description:
|
Debian Security Advisory 1117-1 - It was discovered that the GD graphics library performs insufficient checks of the validity of GIF images, which might lead to denial of service by tricking the application into an infinite loop.
| | Homepage: | http://www.debian.org/security | | File Size: | 13499 | | Related CVE(s): | CVE-2006-2906 | | Last Modified: | Jul 24 01:03:20 2006 |
| MD5 Checksum: | 27fedbaf17245057da83e2551ea713cb |
|
| /// File Name: |
dsa-1116-1.txt |
Description:
|
Debian Security Advisory 1116-1 - Henning Makholm discovered a buffer overflow in the XCF loading code of Gimp, an image editing program. Opening a specially crafted XCF image might cause the application to execute arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 14888 | | Related CVE(s): | CVE-2006-3404 | | Last Modified: | Jul 24 01:02:46 2006 |
| MD5 Checksum: | 0a8548a6053d11a9bc1e848a2e04f8b8 |
|
| /// File Name: |
Savant2.txt |
Description:
|
Savant2 suffers from a remote file inclusion vulnerability.
| | Author: | botan | | File Size: | 1812 | | Last Modified: | Jul 24 01:02:12 2006 |
| MD5 Checksum: | ce6ef08a703c8873936ef08266f0a4e6 |
|
| /// File Name: |
USN-321-1.txt |
Description:
|
Ubuntu Security Notice 321-1 - Jean-David Maillefer discovered a format string bug in the date_format() function's error reporting. By calling the function with invalid arguments, an authenticated user could exploit this to crash the server.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3822 | | Related CVE(s): | CVE-2006-3469 | | Last Modified: | Jul 24 00:55:43 2006 |
| MD5 Checksum: | eaa93b60759dd9f23239c1904a434a9f |
|
| /// File Name: |
dsa-1115-1.txt |
Description:
|
Debian Security Advisory 1115-1 - Evgeny Legerov discovered that gnupg, the GNU privacy guard, a free PGP replacement contains an integer overflow that can cause a segmentation fault and possibly overwrite memory via a large user ID strings.
| | Homepage: | http://www.debian.org/security | | File Size: | 8799 | | Related CVE(s): | CVE-2006-3082 | | Last Modified: | Jul 24 00:54:46 2006 |
| MD5 Checksum: | 361a5b0d627dcc358b662ca68a8deb7f |
|
| /// File Name: |
dsa-1114-1.txt |
Description:
|
Debian Security Advisory 1114-1 - Andreas Seltenreich discovered a buffer overflow in hashcash, a postage payment scheme for email that is based on hash calculations, which could allow attackers to execute arbitrary code via specially crafted entries.
| | Homepage: | http://www.debian.org/security | | File Size: | 4992 | | Related CVE(s): | CVE-2006-3251 | | Last Modified: | Jul 24 00:51:29 2006 |
| MD5 Checksum: | 27086c7c341c00f6eec1a11b76b53775 |
|
| /// File Name: |
MDKSA-2006-130.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-130 - KDE Konqueror 3.5.1 and earlier allows remote attackers to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argument.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 3282 | | Related CVE(s): | CVE-2006-3672 | | Last Modified: | Jul 24 00:50:40 2006 |
| MD5 Checksum: | f4988f997d45ae129cb90cdfee6dece1 |
|
| /// File Name: |
glsa-200607-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200607-07 - There is a stack based overflow in the libmms library included with xine-lib which can be triggered by malicious use of the send_command, string_utf16, get_data and get_media_packet functions. Versions less than 1.1.2-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2578 | | Last Modified: | Jul 24 00:34:37 2006 |
| MD5 Checksum: | d3fac526730b264824eb6dadeadd1255 |
|
| /// File Name: |
SSRT061201.txt |
Description:
|
HP Security Bulletin - Oracle(R) has issued a Critical Patch Update which contains solutions for a number of potential security vulnerabilities. These vulnerabilities may be exploited locally or remotely to compromise the confidentiality, availability or integrity of Oracle for OpenView (OfO).
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 8082 | | Last Modified: | Jul 24 00:34:19 2006 |
| MD5 Checksum: | ae5d50e42dc703f6210c72c32d054222 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
