Section: .. / 0701-advisories /
| /// File Name: |
MDKSA-2007-018.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 9239 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:38:03 2007 |
| MD5 Checksum: | 69ae94aa93c138862434d5b655b9884b |
|
| /// File Name: |
SSRT071296.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com | | File Size: | 9212 | | Last Modified: | Jan 19 20:53:35 2007 |
| MD5 Checksum: | dd704151be6181f79c1886b413b915c5 |
|
| /// File Name: |
sa23906.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for geoip-bin. This fixes a vulnerability, which can be exploited by malicious people to overwrite arbitrary files on a user's system.
| | Homepage: | http://secunia.com/advisories/23906/ | | File Size: | 9191 | | Last Modified: | Jan 26 20:46:45 2007 |
| MD5 Checksum: | 03d3fc58c6005118a6aaf424884b3a9a |
|
| /// File Name: |
sa23815.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for koffice. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23815/ | | File Size: | 9014 | | Last Modified: | Jan 19 19:09:28 2007 |
| MD5 Checksum: | 01a3d1d66349817d959ae4b42a28c888 |
|
| /// File Name: |
sa23943.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23943/ | | File Size: | 8895 | | Last Modified: | Jan 30 22:46:19 2007 |
| MD5 Checksum: | 4e84470b7fa14bc18514d0775b13dcda |
|
| /// File Name: |
sa23589.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23589/ | | File Size: | 8870 | | Last Modified: | Jan 3 18:45:45 2007 |
| MD5 Checksum: | 30305c8f656b1682c20dd8c61126e2a0 |
|
| /// File Name: |
SSRT051035.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could be exploited remotely by an unauthorized user to execute arbitrary code with the permissions of the NNM server.
| | Homepage: | http://www.hp.com | | File Size: | 8806 | | Last Modified: | Jan 13 19:17:45 2007 |
| MD5 Checksum: | ca129eb7ebc519763716216fdaa717dd |
|
| /// File Name: |
SSRT061174.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could be exploited remotely by an unauthorized user to gain read access to files with the permissions of the NNM server.
| | Homepage: | http://www.hp.com | | File Size: | 8764 | | Last Modified: | Jan 13 19:17:06 2007 |
| MD5 Checksum: | fb3bd40d6459644be8382ac5de991065 |
|
| /// File Name: |
USN-412-1.txt |
Description:
|
Ubuntu Security Notice 412-1 - Dean Gaudet discovered that the GeoIP update tool did not validate the filename responses from the update server. A malicious server, or man-in-the-middle system posing as a server, could write to arbitrary files with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 8694 | | Related CVE(s): | CVE-2007-0159 | | Last Modified: | Jan 24 01:53:16 2007 |
| MD5 Checksum: | 653f02e2b2630a6f8030c87bb00e6097 |
|
| /// File Name: |
sa23873.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for libsoup. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23873/ | | File Size: | 8271 | | Last Modified: | Jan 26 20:46:45 2007 |
| MD5 Checksum: | e4f8a7d3b6face981fe3b622e157eb02 |
|
| /// File Name: |
sa23839.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for kdegraphics. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23839/ | | File Size: | 8235 | | Last Modified: | Jan 23 22:46:18 2007 |
| MD5 Checksum: | fee54cd9ed260c50fef97b679c186b46 |
|
| /// File Name: |
corsaire-chainkey.txt |
Description:
|
Corsaire Security Advisory - The aim of this document is to clearly define an issue that exists with the ChainKey Java Code Protection product, that will allow an attacker to circumvent the encryption protection and de-compile any protected Java application.
| | Author: | Stephen de Vries | | Homepage: | http://www.corsaire.com/ | | File Size: | 8182 | | Related CVE(s): | CVE-2007-0014 | | Last Modified: | Jan 13 19:59:09 2007 |
| MD5 Checksum: | a947f900a295b970a1717f7650f7279b |
|
| /// File Name: |
sa23777.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for libgtop2. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/23777/ | | File Size: | 7875 | | Last Modified: | Jan 15 20:56:26 2007 |
| MD5 Checksum: | dacf865cb892bd88ff2f0e3330b33825 |
|
| /// File Name: |
dsa-1247-1.txt |
Description:
|
Debian Security Advisory 1247-1 - An off-by-one error leading to a heap-based buffer overflow has been identified in libapache-mod-auth-kerb, an Apache module for Kerberos authentication. The error could allow an attacker to trigger an application crash or potentially execute arbitrary code by sending a specially crafted kerberos message.
| | Homepage: | http://www.debian.org/security | | File Size: | 7740 | | Related CVE(s): | CVE-2006-5989 | | Last Modified: | Jan 13 17:03:05 2007 |
| MD5 Checksum: | 7f7de90945a1fe95f8ba92652f174884 |
|
| /// File Name: |
USN-411-1.txt |
Description:
|
Ubuntu Security Notice 411-1 - Roland Lezuo and Josselin Mouette discovered that the HTTP server code in libsoup did not correctly verify request headers. Remote attackers could crash applications using libsoup by sending a crafted HTTP request, resulting in a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7696 | | Related CVE(s): | CVE-2006-5876 | | Last Modified: | Jan 24 01:47:15 2007 |
| MD5 Checksum: | 7af98aa271c19c91faa41f5e181be4f5 |
|
| /// File Name: |
mhw-hpj.txt |
Description:
|
Microsoft Help Workshop is prone to stack based memory corruption vulnerability during processing (.HPJ) help project files. This vulnerability could be exploited to execute arbitrary code within the remote user context.
| | Author: | porkythepig | | Related Exploit: | hpj-x01.cpp | | File Size: | 7693 | | Last Modified: | Jan 19 23:01:19 2007 |
| MD5 Checksum: | 10e385a63f772a786eac3b5a0a126d62 |
|
| /// File Name: |
MDKSA-2007-025.txt |
Description:
|
Mandriva Linux Security Advisory - A slew of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7667 | | Related CVE(s): | CVE-2005-3272, CVE-2006-0741, CVE-2006-2446, CVE-2006-3741, CVE-2006-4145, CVE-2006-4535, CVE-2006-4813, CVE-2006-4997, CVE-2006-5619, CVE-2006-5749, CVE-2006-5754, CVE-2006-6106 | | Last Modified: | Jan 24 01:45:58 2007 |
| MD5 Checksum: | 9dc785a338a7a22a6ebea219e0f480e0 |
|
| /// File Name: |
FreeBSD-SA-07.01.jail.txt |
Description:
|
FreeBSD Security Advisory - jail(2) is susceptible to a symlink related vulnerability due to a lack of sanity checking.
| | Author: | Dirk Engling | | Homepage: | http://security.freebsd.org/ | | File Size: | 7617 | | Related CVE(s): | CVE-2007-0166 | | Last Modified: | Jan 13 19:12:57 2007 |
| MD5 Checksum: | d1a9cb5012bfa85ad24e4f4cd4c8bb87 |
|
| /// File Name: |
sa23829.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for xine-ui, xine-lib, xine-extra and xine-devel. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23829/ | | File Size: | 7609 | | Last Modified: | Jan 23 22:46:18 2007 |
| MD5 Checksum: | a03460ef1059650185dd1bcbb4d714c7 |
|
| /// File Name: |
MDKSA-2007-008.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in the RPC library in Kerberos 1.4.x and 1.5.x as used in the kadmind administration daemon calls an uninitialized function pointer in freed memory, which could allow a remote attacker to cause a Denial of Service and possibly execute arbitrary code via unspecified vectors.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7431 | | Related CVE(s): | CVE-2006-6143 | | Last Modified: | Jan 13 18:48:08 2007 |
| MD5 Checksum: | 20e4008e739a41c961b16595b8ec66fe |
|
| /// File Name: |
sa23808.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for tetex. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23808/ | | File Size: | 7431 | | Last Modified: | Jan 19 19:09:28 2007 |
| MD5 Checksum: | 422db3236a564862157403851f11e7c4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
