Section: .. / 0708-advisories /
| /// File Name: |
baidu-exec.txt |
Description:
|
The ActiveX control BaiduBar.dll in Baidu Soba suffers from a remote code execution vulnerability
| | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 4538 | | Last Modified: | Aug 8 07:06:36 2007 |
| MD5 Checksum: | 4539f57d904fff3e42c14587fd32339e |
|
| /// File Name: |
lfsfp.txt |
Description:
|
Live For Speed versions 0.5X10 and below suffer from multiple buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | lfsfp.zip | | File Size: | 4526 | | Last Modified: | Aug 15 06:23:28 2007 |
| MD5 Checksum: | 230d3bc49f1922554443690d579c2f02 |
|
| /// File Name: |
minimofirefox.txt |
Description:
|
Minimo version 0.2 and below and Firefox 2.0.0.6 suffer from an abuse vulnerability in their password manager feature.
| | Author: | Seth Fogie | | Homepage: | http://www.airscanner.com | | File Size: | 4458 | | Last Modified: | Aug 8 08:33:47 2007 |
| MD5 Checksum: | 39f2cf54e87ed4ee6ec40272a72b0097 |
|
| /// File Name: |
sa26642.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in PHP, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26642/ | | File Size: | 4427 | | Last Modified: | Aug 31 18:50:26 2007 |
| MD5 Checksum: | 4d9e26617afcf2b65884e778cb00801c |
|
| /// File Name: |
SYMSA-2007-007.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2007-007 - Treo Smartphones running the Palm OS are vulnerable to a remote Denial of Service attack while connected to data networks allowing inbound ICMP traffic. It is possible for an attacker to launch this attack from the Internet by sending specially crafted ICMP requests at the targeted phone's assigned IP address.
| | Author: | J.R. Wikes | | Homepage: | http://www.symantec.com/research | | File Size: | 4401 | | Related CVE(s): | CVE-2007-4213 | | Last Modified: | Aug 21 05:22:21 2007 |
| MD5 Checksum: | 7cead007b01ed150c7003d1fc526b74c |
|
| /// File Name: |
08.27.07-2.txt |
Description:
|
iDefense Security Advisory 08.27.07 - Remote exploitation of multiple buffer overflow vulnerabilities within Motorola Inc.'s Timbuktu allows attackers to crash the service or potentially execute arbitrary code with SYSTEM privileges. iDefense has confirmed the existence of these vulnerabilities within version 8.6.3.1367 of Motorola Inc.'s Timbuktu Pro for Windows. Older versions are suspected to be vulnerable.
| | Author: | Titon | | Homepage: | http://www.idefense.com/ | | File Size: | 4318 | | Related CVE(s): | CVE-2007-4221 | | Last Modified: | Aug 27 17:28:16 2007 |
| MD5 Checksum: | 1429829150418ac56a8f20217cf4ad95 |
|
| /// File Name: |
sa26523.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Trend Micro ServerProtect, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26523/ | | File Size: | 4317 | | Last Modified: | Aug 23 17:47:08 2007 |
| MD5 Checksum: | 174b98e158e9c19dea041a3098fe0592 |
|
| /// File Name: |
vmwarevix-vuln.txt |
Description:
|
VMWware suffers from a poor guest isolation design.
| | Homepage: | http://www.vmware.com/ | | File Size: | 4302 | | Last Modified: | Aug 31 18:36:33 2007 |
| MD5 Checksum: | 6f1db85eb6f7a1f8d6ed25f9064ddba3 |
|
| /// File Name: |
rfactox.txt |
Description:
|
rFactor versions 1.250 and below suffer from buffer overflow and code execution vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 4238 | | Last Modified: | Aug 20 03:39:56 2007 |
| MD5 Checksum: | c9041a244dba6f8dfc2b71e0c1ab4127 |
|
| /// File Name: |
sa26449.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26449/ | | File Size: | 4222 | | Last Modified: | Aug 15 04:09:30 2007 |
| MD5 Checksum: | 0f520f8e8c3915d9506e8d2e068da034 |
|
| /// File Name: |
sa26433.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Windows Media Player, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26433/ | | File Size: | 4213 | | Last Modified: | Aug 15 04:09:30 2007 |
| MD5 Checksum: | ff2727a8be60987aa61e5e8e69b10d07 |
|
| /// File Name: |
sa26513.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in ZoneAlarm products, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26513/ | | File Size: | 4194 | | Last Modified: | Aug 21 22:53:26 2007 |
| MD5 Checksum: | da6958f129dfedc7f16b6fb1fa11894f |
|
| /// File Name: |
FreeBSD-SA-07-06.tcpdump.txt |
Description:
|
FreeBSD Security Advisory - By crafting malicious BGP packets, an attacker could exploit a vulnerability in tcpdump allowing them to execute code or crash the process.
| | Homepage: | http://security.freebsd.org/ | | File Size: | 4183 | | Related CVE(s): | CVE-2007-3798 | | Last Modified: | Aug 8 07:00:58 2007 |
| MD5 Checksum: | 1bd850f1efce8de400f13f7c5649dc81 |
|
| /// File Name: |
sa26620.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, cause a DoS (Denial of Service), and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/26620/ | | File Size: | 4141 | | Last Modified: | Aug 30 02:11:25 2007 |
| MD5 Checksum: | f522c89366fa24e875ed7cd02fd752b3 |
|
| /// File Name: |
sa22588.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, where some have unknown impacts and others can can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct spoofing attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/22588/ | | File Size: | 4109 | | Last Modified: | Aug 8 06:01:26 2007 |
| MD5 Checksum: | c95a2d39fddb94557e6e68ed0c59448f |
|
| /// File Name: |
sa26539.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and security issues have been reported in BEA Weblogic, which can be exploited by malicious people to gain access to sensitive information or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26539/ | | File Size: | 4098 | | Last Modified: | Aug 30 02:11:25 2007 |
| MD5 Checksum: | a28886ecc41d65097b64dd890ff55c5f |
|
| /// File Name: |
NGS-cvpnd.txt |
Description:
|
NGS has discovered a local privilege escalation vulnerability in the Cisco VPN client. Versions below 5.0.01.0600 are affected.
| | Author: | Dominic Beecher | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 4035 | | Last Modified: | Aug 17 07:45:46 2007 |
| MD5 Checksum: | 2a2d3b20b94c9d2a58e8b903bfeab3bf |
|
| /// File Name: |
08.16.07-4.txt |
Description:
|
iDefense Security Advisory 08.16.07 - Local exploitation of a directory creation vulnerability in IBM Corp.'s DB2 Universal Database could allow attackers to elevate privileges to the superuser. This vulnerability exists due to insecure directory creation within setuid-binaries included with DB2. While creating specific directory structures, attacker created symbolic links will be followed. This allows world-writable directories to be created anywhere on the file system. iDefense confirmed the existence of this vulnerability in version 9.1 Fix Pack 2 of IBM Corp.'s DB2 Universal Database installed on a Linux system. All prior versions, as well as builds for other UNIX-based operating systems, are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3997 | | Related CVE(s): | CVE-2007-4273 | | Last Modified: | Aug 17 08:22:17 2007 |
| MD5 Checksum: | e7074858185112623a7ed4e554ff2dd6 |
|
| /// File Name: |
MDKSA-2007-158.txt |
Description:
|
Mandriva Linux Security Advisory - Maurycy Prodeus found an integer overflow vulnerability in the way various PDF viewers processed PDF files. An attacker could create a malicious PDF file that could cause xpdf to crash and possibly execute arbitrary code open a user opening the file.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3978 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 14 19:42:47 2007 |
| MD5 Checksum: | a1ece8107dd103f05f3f507001a088dd |
|
| /// File Name: |
MDKSA-2007-156.txt |
Description:
|
Mandriva Linux Security Advisory - M Joonas Pihlaja discovered several vulnerabilities in the Imlib2 graphics library. The load() function of several of the Imlib2 image loaders does not check the width and height of an image before allocating memory. As a result, a carefully crafted image file can trigger a segfault when an application using Imlib2 attempts to view the image. The tga loader fails to bounds check input data to make sure the input data does not load outside the memory mapped region. The RLE decoding loops of the load() function in the tga loader does not check that the count byte of an RLE packet does not cause a heap overflow of the pixel buffer. The load() function of the pnm loader writes arbitrary length user data into a fixed size stack allocated buffer buf[] without bounds checking.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3971 | | Related CVE(s): | CVE-2006-4806, CVE-2006-4807, CVE-2006-4808, CVE-2006-4809 | | Last Modified: | Aug 14 02:19:17 2007 |
| MD5 Checksum: | d4af1e18a20cc3f1ee01cf9799dbf0e9 |
|
| /// File Name: |
bv2x.txt |
Description:
|
Babo Violent 2 versions 2.08.00 and below suffer from multiple vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | bv2x.zip | | File Size: | 3967 | | Last Modified: | Aug 15 06:27:20 2007 |
| MD5 Checksum: | cdc86f19a3b8fc437bf33fa864d86c31 |
|
| /// File Name: |
08.16.07-2.txt |
Description:
|
iDefense Security Advisory 08.16.07 - Local exploitation of a directory traversal vulnerability in IBM Corp.'s DB2 Universal Database allows attackers to cause a denial of service (DoS) condition or elevate privileges to root. Some DB2 binaries that are installed setuid-root will save event information to a log file. When creating the full path to the destination file, an environment variable is concatenated with "/tmp/". Since there is no checking for path traversal strings, such as "../", within the environment variable, an attacker is able to create arbitrary files on the system. iDefense confirmed the existence of this vulnerability in version 9.1 Fix Pack 2 of IBM Corp.'s DB2 Universal Database installed on a Linux system. All prior versions, as well as builds for other UNIX-based operating systems, are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3960 | | Related CVE(s): | CVE-2007-4271 | | Last Modified: | Aug 17 08:19:00 2007 |
| MD5 Checksum: | d9c108b924ba8ae4d0455dbfaa0f0745 |
|
| /// File Name: |
08.16.07-5.txt |
Description:
|
iDefense Security Advisory 08.16.07 - Local exploitation of multiple untrusted search path vulnerabilities in IBM Corp.'s DB2 Universal Database could allow attackers to elevate privileges to the superuser. These vulnerabilities exist due to the execution of binaries or loading of libraries within untrusted paths. In each case, the path to a binary or library is generated based on an environment variable that is under attacker control. Additionally, the files to be executed or loaded are located in a directory under attacker control. iDefense confirmed the existence of this vulnerability in version 9.1 Fix Pack 2 of IBM Corp.'s DB2 Universal Database installed on a Linux system. All prior versions, as well as builds for other UNIX-based operating systems, are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3959 | | Related CVE(s): | CVE-2007-4275 | | Last Modified: | Aug 17 08:23:44 2007 |
| MD5 Checksum: | b11f7e9a67d7aeac3783ed4668d0fd69 |
|
| /// File Name: |
TA07-235A.txt |
Description:
|
Technical Cyber Security Alert TA07-235A - Multiple buffer overflow vulnerabilities and an integer overflow vulnerability have been discovered in the RPC interfaces used by various components in Trend Micro's ServerProtect software package. These vulnerabilities could be exploited by a remote attacker with the ability to supply a specially crafted RPC request to the system running the affected software.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3936 | | Last Modified: | Aug 24 03:31:01 2007 |
| MD5 Checksum: | 56b3ab279658bd0f3461745c2ff36629 |
|
| /// File Name: |
08.14.07-2.txt |
Description:
|
iDefense Security Advisory 08.14.07 - Remote exploitation of a buffer overflow vulnerability within Microsoft Corp.'s XML Core Services may allow an attacker to execute arbitrary code in the context of the current user. The vulnerability specifically exists in incorrect checking being performed on the length argument to the substringData() method of an XMLDOM object. When certain length values are supplied, a large region of memory is copied into a buffer of insufficient size. iDefense confirmed the existence of this vulnerability using Internet Explorer 6.x on Windows XP SP2. It is suspected that other versions are also affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3933 | | Related CVE(s): | CVE-2007-2223 | | Last Modified: | Aug 15 06:36:51 2007 |
| MD5 Checksum: | 16d231b15a7d57fa94999dca7d16f492 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
