Section: .. / 0704-advisories /
| /// File Name: |
sa22251.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in CinePlayer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22251/ | | File Size: | 2386 | | Last Modified: | Apr 12 03:03:40 2007 |
| MD5 Checksum: | 616584d053a258dbaa9b44a4ea90b6de |
|
| /// File Name: |
USN-451-1.txt |
Description:
|
Ubuntu Security Notice 451-1 - The kernel key management code did not correctly handle key reuse. A local attacker could create many key requests, leading to a denial of service. The kernel NFS code did not correctly validate NFSACL2 ACCESS requests. If a system was serving NFS mounts, a remote attacker could send a specially crafted packet, leading to a denial of service. When dumping core, the kernel did not correctly handle PT_INTERP processes. A local attacker could create situations where they could read the contents of otherwise unreadable executable programs.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 95308 | | Related CVE(s): | CVE-2007-0006, CVE-2007-0772, CVE-2007-0958 | | Last Modified: | Apr 11 07:00:57 2007 |
| MD5 Checksum: | 22fcefde27a7d2c98a15b20e8b6963f4 |
|
| /// File Name: |
MDKSA-2007-080-1.txt |
Description:
|
Mandriva Linux Security Advisory - Local exploitation of a memory corruption vulnerability in the X.Org and XFree86 X server could allow an attacker to execute arbitrary code with privileges of the X server, typically root. iDefense reported two integer overflows in the way X.org handled various font files. A malicious local user could exploit these issues to potentially execute arbitrary code with the privileges of the X.org server.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4174 | | Related CVE(s): | CVE-2007-1003, CVE-2007-1351, CVE-2007-1352 | | Last Modified: | Apr 11 06:58:06 2007 |
| MD5 Checksum: | 3857c812f92656bf7d1e2fc62b46d023 |
|
| /// File Name: |
MDKSA-2007-081-1.txt |
Description:
|
Mandriva Linux Security Advisory - iDefense integer overflows in the way freetype handled various font files. A malicious local user could exploit these issues to potentially execute arbitrary code.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2808 | | Related CVE(s): | CVE-2007-1351 | | Last Modified: | Apr 11 06:53:11 2007 |
| MD5 Checksum: | 4a4a4eb94fddd4e351b22983a9bf3adf |
|
| /// File Name: |
TA07-100A.txt |
Description:
|
Technical Cyber Security Alert TA07-100A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows and Microsoft Content Management Server. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4085 | | Last Modified: | Apr 11 06:52:16 2007 |
| MD5 Checksum: | 1d5870a076e87dd1d9757cff7f4ec740 |
|
| /// File Name: |
MDKSA-2007-077-1.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was found in the username handling of the MIT krb5 telnet daemon. A remote attacker that could access the telnet port of a target machine could login as root without requiring a password. Buffer overflows in the kadmin server daemon were discovered that could be exploited by a remote attacker able to access the KDC. Successful exploitation could allow for the execution of arbitrary code with the privileges of the KDC or kadmin server processes. Finally, a double-free flaw was discovered in the GSSAPI library used by the kadmin server daemon, which could lead to a denial of service condition or the execution of arbitrary code with the privileges of the KDC or kadmin server processes.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4627 | | Related CVE(s): | CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 | | Last Modified: | Apr 11 06:51:27 2007 |
| MD5 Checksum: | c14f21429b7ee650b576ef36751fb480 |
|
| /// File Name: |
04.10.07-1.txt |
Description:
|
iDefense Security Advisory 04.10.07 - Remote exploitation of a buffer overflow vulnerability in the Universal Plug-and-Play (UPnP) component of Microsoft Windows could allow an attacker to execute code in the context of the vulnerable service. The vulnerability specifically exists in the handling of HTTP headers sent to the UPnP control point as part of a request or notification. Because it processes certain fields without checking if there is enough storage space, a malicious request may cause a stack-based buffer overflow, potentially resulting in code execution.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 4866 | | Related CVE(s): | CVE-2007-1204 | | Last Modified: | Apr 11 06:49:54 2007 |
| MD5 Checksum: | d3f3aeb459678c191f6ad6d63656eb56 |
|
| /// File Name: |
secunia-maurl.txt |
Description:
|
Secunia Research has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in Microsoft Agent (agentsvr.exe) when processing specially crafted URLs passed as arguments to certain methods. Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious website with Internet Explorer.
| | Author: | JJ Reyes, Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 3968 | | Related CVE(s): | CVE-2007-1205 | | Last Modified: | Apr 11 06:46:46 2007 |
| MD5 Checksum: | ec7b10e3a00800dbdc1894e53024a6bd |
|
| /// File Name: |
EEYE-csrss.txt |
Description:
|
eEye Digital Security has discovered a local privilege escalation vulnerability in Windows Vista that allows a program executing without privileges to fully compromise an affected system. A malicious user or malware program could exploit this vulnerability to execute arbitrary code with SYSTEM privileges within the CSRSS process, permitting the bypass of Vista's vaunted user privilege limitations and administrator approval mode. By establishing and closing multiple connections to CSRSS's "ApiPort", an application may cause a private data structure within CSRSS that describes its process to be used after it has been freed, creating an exploitable "dangling pointer" condition. This vulnerability is entirely separate from the CSRSS NtRaiseHardError message box flaw publicly disclosed in December 2006, although both affect code within the CSRSS process. It is interesting to note that this vulnerability only affects Windows Vista, due to new, flawed code added to CSRSRV.DLL in support of functionality introduced in Vista.
| | Author: | Derek Soeder | | Homepage: | http://www.eeye.com/ | | File Size: | 5539 | | Last Modified: | Apr 11 06:43:04 2007 |
| MD5 Checksum: | 142455a90333b87b5d6c76789dddf56e |
|
| /// File Name: |
EEYE-vdmzero.txt |
Description:
|
eEye Digital Security has discovered a local privilege escalation vulnerability in the Windows kernel that allows an unprivileged user with the ability to execute a program to fully compromise an affected system. All x86 versions of Windows up to and including Windows Server 2003 SP2 are vulnerable. The Windows kernel's Virtual DOS Machine (VDM) implementation features a race condition through which a malicious program can modify the first 4KB page of physical memory (also known as the "zero page"). The data in this region of memory is trusted and may be subsequently used by other Virtual DOS Machines, including a VDM instantiated by the Windows kernel as part of hibernating or effecting a blue-screen crash. Exploitation of this vulnerability therefore allows arbitrary code to run within other users' VDM processes, and even within the kernel if hibernation or a blue-screen can be provoked by any available means.
| | Author: | Derek Soeder | | Homepage: | http://www.eeye.com | | File Size: | 6573 | | Last Modified: | Apr 11 06:42:17 2007 |
| MD5 Checksum: | ec84677a8c896473eceed1a620424060 |
|
| /// File Name: |
sa24844.txt |
Description:
|
Secunia Security Advisory - John Martinelli has reported a vulnerability in DeskPRO, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24844/ | | File Size: | 2183 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | c71491f88ad04041afe23c7772f904f2 |
|
| /// File Name: |
sa24840.txt |
Description:
|
Secunia Security Advisory - Hamid Ebadi has reported a vulnerability in CompreXX, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24840/ | | File Size: | 2267 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 0c58ce3cb65de960185a4a7e80350a46 |
|
| /// File Name: |
sa24838.txt |
Description:
|
Secunia Security Advisory - hacker_X has discovered a vulnerability in Battle.net Clan Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/24838/ | | File Size: | 2267 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 717166ef602bd12f645f1cbd83b3579f |
|
| /// File Name: |
sa24836.txt |
Description:
|
Secunia Security Advisory - VietMafia has reported some vulnerabilities in AlstraSoft Video Share Enterprise, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to disclose or modify sensitive information.
| | Homepage: | http://secunia.com/advisories/24836/ | | File Size: | 2423 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | c1e15dbdafe7239d3cd713d7fb1daa45 |
|
| /// File Name: |
sa24834.txt |
Description:
|
Secunia Security Advisory - eEye Digital Security has reported a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24834/ | | File Size: | 3447 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | a353e61aa27162b8fa8c17ca9d1e0524 |
|
| /// File Name: |
sa24833.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for ipsec-tools. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24833/ | | File Size: | 7366 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 1d80a2dd045f915541bfdc2dee41bf3a |
|
| /// File Name: |
sa24832.txt |
Description:
|
Secunia Security Advisory - hackberry has reported a vulnerability in Request It : Song Request System, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24832/ | | File Size: | 2240 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 2cb8a9fe4f779ffbd2117ddd1dadbfb7 |
|
| /// File Name: |
sa24831.txt |
Description:
|
Secunia Security Advisory - John Martinelli has reported a vulnerability in QuizShock, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24831/ | | File Size: | 2179 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | c7e9b7eb4e57799bfb9defb963a3a328 |
|
| /// File Name: |
sa24830.txt |
Description:
|
Secunia Security Advisory - Two weaknesses have been reported in Apple AirPort Extreme Base Station, which can be exploited by malicious people to bypass certain security restrictions or to disclose certain sensitive information.
| | Homepage: | http://secunia.com/advisories/24830/ | | File Size: | 2587 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | e37900668a656cfd760a3afedb41f3ea |
|
| /// File Name: |
sa24825.txt |
Description:
|
Secunia Security Advisory - Liz0ziM has reported a vulnerability in eCardMAX HotEditor, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24825/ | | File Size: | 2453 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 034a6c215df347f1568665b014dc7bf8 |
|
| /// File Name: |
sa24823.txt |
Description:
|
Secunia Security Advisory - eEye Digital Security has reported a vulnerability in Windows Vista, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24823/ | | File Size: | 2570 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | a7b14cc9f0566a51537cb7fcd5cd901f |
|
| /// File Name: |
sa24822.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24822/ | | File Size: | 2567 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 4df6bbafae746fdcda28d4d4b25b8ab4 |
|
| /// File Name: |
sa24819.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Microsoft Content Management Server, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24819/ | | File Size: | 2791 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | f93a58612821f5f09e933bf240fe6344 |
|
| /// File Name: |
sa24818.txt |
Description:
|
Secunia Security Advisory - Dj7xpl has reported a vulnerability in PHP121 Instant Messenger, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24818/ | | File Size: | 2207 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 54fbf0a02b412b4bfb0896339d62fef0 |
|
| /// File Name: |
sa24816.txt |
Description:
|
Secunia Security Advisory - Will Dormann has reported some vulnerabilities in iPIX Image Well ActiveX control, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24816/ | | File Size: | 2183 | | Last Modified: | Apr 11 04:12:21 2007 |
| MD5 Checksum: | 0328ffd629cb644c3c25300208230295 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
