Section: .. / 0704-advisories /
| /// File Name: |
sa24821.txt |
Description:
|
Secunia Security Advisory - irvian has reported a vulnerability in Pixaria Gallery, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24821/ | | File Size: | 2227 | | Last Modified: | Apr 16 18:29:53 2007 |
| MD5 Checksum: | ca53b71eebfd0dae55c800576825ee01 |
|
| /// File Name: |
sa24775.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Open Business Management, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24775/ | | File Size: | 2070 | | Last Modified: | Apr 16 18:29:53 2007 |
| MD5 Checksum: | d10b186cd520ac790f6f5fea324bfefa |
|
| /// File Name: |
04.12.07-1.txt |
Description:
|
iDefense Security Advisory 04.12.07 - Remote exploitation of a buffer overflow vulnerability in pfs_mountd.rpc included in multiple versions of Hewlett Packard Co. HP-UX allows for remote root access. If a remote user sends two specially crafted packets over UDP, the buffer overflow is triggered. One must first send a call to procedure 5, and soon thereafter send the actual payload to procedure 2. Due to the closed nature of the pfs_mountd.rpc protocol specification, it is unclear at this time what functions the respective procedures actually perform. iDefense has confirmed the existence of this vulnerability in HP-UX 11.11i. It is suspected that previous versions are also vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3655 | | Last Modified: | Apr 13 01:05:32 2007 |
| MD5 Checksum: | 30ef5baf243b4e964bc645d9aeb659c5 |
|
| /// File Name: |
SSRT071339.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in HP-UX with the Portable File System (PFS). The vulnerability could be exploited remotely to gain an increase in privilege.
| | Homepage: | http://www.hp.com | | File Size: | 7552 | | Last Modified: | Apr 13 01:01:42 2007 |
| MD5 Checksum: | ca99600abe0585d9284e3833de055347 |
|
| /// File Name: |
cisco-sa-20070412-wcs.txt |
Description:
|
Cisco Security Advisory - The Cisco Wireless Control System (WCS) works in conjunction with Cisco Aironet Lightweight Access Points, Cisco Wireless LAN Controllers, and the Cisco Wireless Location Appliance by providing tools for wireless LAN planning and design, system configuration, location tracking, security monitoring, and wireless LAN management. Cisco WCS contains multiple vulnerabilities that can result in information disclosure, privilege escalation, and unauthorized access through fixed authentication credentials.
| | Homepage: | http://www.cisco.com/ | | File Size: | 17380 | | Last Modified: | Apr 13 00:56:22 2007 |
| MD5 Checksum: | fdc7095a687300e82da9ab6dc7ded61d |
|
| /// File Name: |
cisco-sa-20070412-wlc.txt |
Description:
|
Cisco Security Advisory - The Cisco Wireless LAN Controller (WLC) manages Cisco Aironet access points using the Lightweight Access Point Protocol (LWAPP). The WLC contains multiple vulnerabilities that could result in a denial of service (DoS) condition, information disclosure, or access control list changes, or allow an attacker to gain full administrative access.
| | Homepage: | http://www.cisco.com/ | | File Size: | 20655 | | Last Modified: | Apr 13 00:55:38 2007 |
| MD5 Checksum: | 03ab9874194bb1b04caf052982f403e5 |
|
| /// File Name: |
SSRT071354.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com | | File Size: | 8293 | | Last Modified: | Apr 13 00:54:47 2007 |
| MD5 Checksum: | bbe10b19f8bafbdcb8782b1cd2f2793e |
|
| /// File Name: |
SSRT061120.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited by a local user to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com | | File Size: | 6144 | | Last Modified: | Apr 13 00:54:18 2007 |
| MD5 Checksum: | 1f9c8670f4e3e450080df90375d4040f |
|
| /// File Name: |
glsa-200704-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-08 - DokuWiki does not sanitize user input to the GET variable 'media' in the fetch.php file. Versions less than 20061106 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2722 | | Related CVE(s): | CVE-2006-6965 | | Last Modified: | Apr 13 00:53:35 2007 |
| MD5 Checksum: | 19caec818580be8d3bd5afb1ac41e8a8 |
|
| /// File Name: |
SSRT071312.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with a Mercury Quality Center ActiveX control. The vulnerability could be exploited by a remote unauthorized user to execute arbitrary code on a Windows client running the ActiveX control.
| | Homepage: | http://www.hp.com | | File Size: | 5860 | | Last Modified: | Apr 13 00:18:06 2007 |
| MD5 Checksum: | b7a5e243cb8d8c4a0e78816c6ca098a7 |
|
| /// File Name: |
INFIGO-2007-08.txt |
Description:
|
During an audit of Enterprise Security Analyzer, multiple remote buffer overflows have been discovered in the ESA server (TCP port 10616). There are various stack and heap overflows in multiple ESA requests. The vulnerability has been identified in the latest available Enterprise Security Analyzer v2.5. Previous versions are believed to be vulnerable as well.
| | Author: | Leon Juranic | | Homepage: | http://www.infigo.hr/ | | File Size: | 2444 | | Last Modified: | Apr 13 00:14:26 2007 |
| MD5 Checksum: | ffc6bd13c8fa53d2bc030730ecd5d6b2 |
|
| /// File Name: |
USN-452-1.txt |
Description:
|
Ubuntu Security Notice 452-1 - The Qt library did not correctly handle truncated UTF8 strings, which could cause some applications to incorrectly filter malicious strings. If a Konqueror user were tricked into visiting a web site containing specially crafted strings, normal XSS prevention could be bypassed allowing a remote attacker to steal confidential data.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 48542 | | Related CVE(s): | CVE-2007-0242 | | Last Modified: | Apr 13 00:04:01 2007 |
| MD5 Checksum: | 9817c5f2fd3da7a0d55c099e744cfa98 |
|
| /// File Name: |
04.11.07-1.txt |
Description:
|
iDefense Security Advisory 04.11.07 - Local exploitation of multiple vulnerabilities within Apache Software Foundation's suexec utility could allow an attacker to execute arbitrary code as another user. iDefense has confirmed the existence of these vulnerabilities in the suexec binary distributed with the version 2.2.3 of the Apache httpd in Red Hat Inc.'s Fedora Core 4. This distribution is not vulnerable in the default configuration, as exploitation requires additional, but common, configuration changes to be made to the system. It is suspected that all previous versions of suexec are vulnerable, including the 1.3.x versions.
| | Homepage: | http://www.idefense.com/ | | File Size: | 6374 | | Related CVE(s): | CVE-2007-1741 | | Last Modified: | Apr 13 00:03:08 2007 |
| MD5 Checksum: | 2777bbac6bc0954fb4df94de09daabd8 |
|
| /// File Name: |
MDKSA-2007-083.txt |
Description:
|
Mandriva Linux Security Advisory - PerlRun.pm in Apache mod_perl 1.30 and earlier, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6386 | | Related CVE(s): | CVE-2007-1349 | | Last Modified: | Apr 13 00:01:51 2007 |
| MD5 Checksum: | 398aa9b0fd25844eb81ae810895b7b13 |
|
| /// File Name: |
MDKSA-2007-082.txt |
Description:
|
Mandriva Linux Security Advisory - The ath_rate_sample function in the ath_rate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service (failed KASSERT and system crash) by moving a connected system to a location with low signal strength, and possibly other vectors related to a race condition between interface enabling and packet transmission. MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service (system crash) via unspecified vectors that lead to a kernel panic in the ieee80211_input function, related to packets coming from a malicious WinXP system. MadWifi before 0.9.3 does not properly handle reception of an AUTH frame by an IBSS node, which allows remote attackers to cause a denial of service (system crash) via a certain AUTH frame. ieee80211_input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements (CSA IEs), which allows remote attackers to cause a denial of service (loss of communication) via a Channel Switch Count less than or equal to one, triggering a channel change. ieee80211_output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information (related to network structure), and possibly cause a denial of service (disrupted authentication) and conduct spoofing attacks.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5529 | | Related CVE(s): | CVE-2006-7180, CVE-2006-7179, CVE-2006-7178, CVE-2006-7177, CVE-2005-4835 | | Last Modified: | Apr 13 00:01:09 2007 |
| MD5 Checksum: | d5e7bd2739729620e8387df565fe1697 |
|
| /// File Name: |
major_rls43.txt |
Description:
|
@Mail version 5.0 suffers from cross site scripting and cookie manipulation issues.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 1971 | | Last Modified: | Apr 12 23:52:52 2007 |
| MD5 Checksum: | 4d7bd61c4d9013b824d76a637a1b4810 |
|
| /// File Name: |
13070411.txt |
Description:
|
PunBB versions 1.2.14 and below suffer from multiple vulnerabilities.
| | Author: | DarkFig | | Related Exploit: | 13070411-sploit.txt | | File Size: | 8349 | | Last Modified: | Apr 12 21:07:34 2007 |
| MD5 Checksum: | 44f0fd6a87a7b5aec7009cb96334dc69 |
|
| /// File Name: |
cosign-vuln-2007-002.txt |
Description:
|
A remotely exploitable vulnerability has been discovered that allows attackers who are already authenticated via cosign to assume the identity of an arbitrary user on a cosign-protected service. Organizations that run their own central cosign weblogin server should upgrade their weblogin server to cosign 2.0.2a, cosign 1.9.4b, or back-port the patch available at http://weblogin.org/download.html to the version of cosign they are running.
| | Author: | Jon Oberheide | | File Size: | 10551 | | Last Modified: | Apr 12 21:05:54 2007 |
| MD5 Checksum: | 57cbaedc206501891415eefa6f3dbc58 |
|
| /// File Name: |
cosign-vuln-2007-001.txt |
Description:
|
A remotely exploitable vulnerability has been discovered that allows attackers to bypass cosign weblogin server authentication and assume the identity of an arbitrary user on a cosign-protected service. Organizations that run their own central cosign weblogin server should upgrade their weblogin server to cosign 2.0.2a, cosign 1.9.4b, or back-port the patch available at http://weblogin.org/download.html to the version of cosign they are running.
| | Author: | Jon Oberheide | | File Size: | 9058 | | Last Modified: | Apr 12 21:05:03 2007 |
| MD5 Checksum: | f76901f72b381318ad82600bee10a67d |
|
| /// File Name: |
sa24877.txt |
Description:
|
Secunia Security Advisory - A vulnerability with an unknown impact has been reported in Opera.
| | Homepage: | http://secunia.com/advisories/24877/ | | File Size: | 2121 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | fc88149fee33c7a6a1948ae9d99cadcf |
|
| /// File Name: |
sa24876.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Openads, which can be exploited by malicious people to conduct HTTP header injection attacks.
| | Homepage: | http://secunia.com/advisories/24876/ | | File Size: | 2257 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 0f7793ad8fbab8ca88e208ad40c84968 |
|
| /// File Name: |
sa24874.txt |
Description:
|
Secunia Security Advisory - the_Edit0r has discovered a vulnerability in TuMusika Evolution, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24874/ | | File Size: | 2162 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 14eb4a4177b59f248686f08d24b7f77a |
|
| /// File Name: |
sa24872.txt |
Description:
|
Secunia Security Advisory - the_Edit0r has discovered a security issue in FAC Guestbook, which can be exploited by malicious people to gain knowledge of potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/24872/ | | File Size: | 2150 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 5157dd33fd24795f6ba24124c7f114e1 |
|
| /// File Name: |
sa24858.txt |
Description:
|
Secunia Security Advisory - Dj7xpl has discovered a vulnerability in RicarGBooK, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24858/ | | File Size: | 2134 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 75b779378d9136aed9ed700ec307ac78 |
|
| /// File Name: |
sa24854.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Adobe Bridge, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24854/ | | File Size: | 2363 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 2f5c191975b88796dae0df28015b5824 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
