Section: .. / 0704-advisories /
| /// File Name: |
ZDI-07-015.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Groupwise WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists in the GWINTER.exe process bound by default on TCP ports 7205 and 7211. During the handling of an HTTP Basic authentication request, the process copies user-supplied base64 data into a fixed length stack buffer. Sending at least 336 bytes will trigger a stack based buffer overflow due to a vulnerable base64_decode() call. Exploitation of this issue can result in arbitrary code execution.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2766 | | Related CVE(s): | CVE-2007-2171 | | Last Modified: | Apr 19 06:51:15 2007 |
| MD5 Checksum: | 4e3ce67379b834263e2437fa61773ffb |
|
| /// File Name: |
sa24974.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for webcalendar. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24974/ | | File Size: | 2758 | | Last Modified: | Apr 23 16:27:41 2007 |
| MD5 Checksum: | 9b54814a4fb93793a0351c899bf7da1d |
|
| /// File Name: |
sa24782.txt |
Description:
|
Secunia Security Advisory - Trustix has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) and compromise a vulnerable system, and by malicious people to bypass certain security restrictions and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24782/ | | File Size: | 2756 | | Last Modified: | Apr 7 21:35:58 2007 |
| MD5 Checksum: | 7abbb687793edd62bcee5a9aa2c02cea |
|
| /// File Name: |
sa24711.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in Netscape, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24711/ | | File Size: | 2753 | | Last Modified: | Apr 5 00:36:24 2007 |
| MD5 Checksum: | 1c41cc8c0791d914e939fe501d9a91de |
|
| /// File Name: |
sa24845.txt |
Description:
|
Secunia Security Advisory - Jon Oberheide has reported two vulnerabilities in CoSign, which can be exploited by malicious users to hijack other user sessions and by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24845/ | | File Size: | 2749 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 0ab6b72d1b26bf9c4710117c4b317d7e |
|
| /// File Name: |
sa24776.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for freetype2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/24776/ | | File Size: | 2741 | | Last Modified: | Apr 7 21:35:58 2007 |
| MD5 Checksum: | 67599ebbdafdd71d1a6f17f4ae5e4597 |
|
| /// File Name: |
ZDI-07-013.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on systems with affected installations of the Kaspersky Anti-Virus Engine. User interaction is not required to exploit this vulnerability. The specific flaw exists in the engine's handling of the ARJ archive format. The Kaspersky engine copies data from scanned archives into an unchecked heap-based buffer. This results in heap corruption when a malformed ARJ archive is processed by an application that utilizes the engine. This corruption can be exploited to execute arbitrary code.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2741 | | Related CVE(s): | CVE-2007-0445 | | Last Modified: | Apr 8 01:34:15 2007 |
| MD5 Checksum: | fdc2beeaf16d503b4abd7949e28a77fc |
|
| /// File Name: |
sa24764.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in various NetSight products, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24764/ | | File Size: | 2728 | | Last Modified: | Apr 7 21:35:58 2007 |
| MD5 Checksum: | 6d91c845a29d1853e93fdf8af13981c3 |
|
| /// File Name: |
glsa-200704-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-08 - DokuWiki does not sanitize user input to the GET variable 'media' in the fetch.php file. Versions less than 20061106 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2722 | | Related CVE(s): | CVE-2006-6965 | | Last Modified: | Apr 13 00:53:35 2007 |
| MD5 Checksum: | 19caec818580be8d3bd5afb1ac41e8a8 |
|
| /// File Name: |
ZDI-07-021.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of GraceNote's CDDBControl ActiveX Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
| | Author: | Peter Vreugdenhil | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2715 | | Related CVE(s): | CVE-2007-0443 | | Last Modified: | Apr 23 05:42:34 2007 |
| MD5 Checksum: | bdd2b2d2f6f7aed716c8b315cf37b6a6 |
|
| /// File Name: |
glsa-200704-21.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-21 - iDefense Labs have reported a stack-based buffer overflow in the cab_unstore() function when processing negative values in .cab files. Multiple file descriptor leaks have also been reported in chmunpack.c, pdf.c and dblock.c when processing .chm files. Versions less than 0.90.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2714 | | Related CVE(s): | CVE-2007-1745, CVE-2007-1997 | | Last Modified: | Apr 25 07:20:52 2007 |
| MD5 Checksum: | 9ca85857020ac621149fa4c06bcc0e1c |
|
| /// File Name: |
sa24861.txt |
Description:
|
Secunia Security Advisory - Alexander Klink has reported some vulnerabilities and weaknesses in DropAFew, which can be exploited by malicious users to conduct SQL injection attacks, disclose potentially sensitive information and bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24861/ | | File Size: | 2709 | | Last Modified: | Apr 12 03:03:40 2007 |
| MD5 Checksum: | 71ad52dbbc05be133d8db2026cd450c8 |
|
| /// File Name: |
sa24721.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in ImageMagick, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24721/ | | File Size: | 2709 | | Last Modified: | Apr 5 04:08:29 2007 |
| MD5 Checksum: | 77f2f26798265e2db89459e33cdaaac0 |
|
| /// File Name: |
sa24742.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Yahoo! Messenger, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24742/ | | File Size: | 2706 | | Last Modified: | Apr 5 00:36:24 2007 |
| MD5 Checksum: | aa319a23f2e3654019274cfe54f7f5d9 |
|
| /// File Name: |
sa24779.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in various ACDSee products, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24779/ | | File Size: | 2696 | | Last Modified: | Apr 7 21:35:58 2007 |
| MD5 Checksum: | c205d5f4b929881acf3910edb6fbe536 |
|
| /// File Name: |
major_rls39.txt |
Description:
|
The onelook onebyone CMS suffers from a session fixation issue.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2695 | | Last Modified: | Apr 8 02:45:54 2007 |
| MD5 Checksum: | 418089f35e57f23c1563780cc6a5cb75 |
|
| /// File Name: |
sa24843.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in PunBB, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24843/ | | File Size: | 2690 | | Last Modified: | Apr 12 20:33:34 2007 |
| MD5 Checksum: | 5ad3e6757bac4d940806b682ed558e93 |
|
| /// File Name: |
ZDI-07-012.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Yahoo Messenger. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2672 | | Related CVE(s): | CVE-2007-1680 | | Last Modified: | Apr 5 02:43:44 2007 |
| MD5 Checksum: | 087c20fe0dcdd0e4ca3ac5128cdbc03c |
|
| /// File Name: |
sa24692.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in HP Mercury Quality Center, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24692/ | | File Size: | 2671 | | Last Modified: | Apr 3 01:13:40 2007 |
| MD5 Checksum: | fff4d2c2b8e614d9e7eecd1d5095347a |
|
| /// File Name: |
glsa-200704-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-09 - xine-lib does not check boundaries on data being read into buffers from DMO video files in code that is shared with MPlayer (DMO_VideoDecoder.c). Versions less than 1.1.4-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2671 | | Related CVE(s): | CVE-2007-1246 | | Last Modified: | Apr 17 06:15:07 2007 |
| MD5 Checksum: | 213bb3dba356828e8cabb5b25f66ef0a |
|
| /// File Name: |
sa24933.txt |
Description:
|
Secunia Security Advisory - Patrick Webster has reported a vulnerability in webMethods Glue, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24933/ | | File Size: | 2667 | | Last Modified: | Apr 19 02:36:06 2007 |
| MD5 Checksum: | b92e817fffd01fb446c8b70d1f8e0ccf |
|
| /// File Name: |
sa24948.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Mozilla 1.7 for Sun Solaris, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24948/ | | File Size: | 2666 | | Last Modified: | Apr 20 08:48:40 2007 |
| MD5 Checksum: | 0d7b55432b98fe53893ee638f255ffdd |
|
| /// File Name: |
ZDI-07-017.txt |
Description:
|
A vulnerability allows remote attackers to download any existing document in the APPS.FND_DOCUMENTS table on vulnerable installations of Oracle E-Business Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists in the ADI_BINARY component of the E-Business Suite. The component exposes a parameter that can also be passed to ADI_DISPLAY_REPORT to allow an attacker to view any document in the APPS.FND_DOCUMENTS table. An attacker can cycle through all document IDs to display each document that exists.
| | Author: | Joxean Koret | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2662 | | Related CVE(s): | CVE-2007-2135 | | Last Modified: | Apr 19 06:53:05 2007 |
| MD5 Checksum: | be349cccba1bb4fa66f12b2b285cc0b8 |
|
| /// File Name: |
major_rls41.txt |
Description:
|
The online booking script called courts online suffers from a session fixation issue.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2657 | | Last Modified: | Apr 8 02:47:30 2007 |
| MD5 Checksum: | bb65ba5800bc0c99cd61eaa6d5e1062e |
|
| /// File Name: |
sa24992.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in Pagode, which can be exploited by malicious people to compromise a vulnerable system or to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24992/ | | File Size: | 2654 | | Last Modified: | Apr 25 05:31:31 2007 |
| MD5 Checksum: | 8a7e86819e8240d094dc110bf52aca6c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
