Section: .. / 0709-advisories /
| /// File Name: |
sa26722.txt |
Description:
|
Secunia Security Advisory - IBM has acknowledged a vulnerability in IBM HTTP Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26722/ | | File Size: | 2230 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | 8a6a6d732d35c17dc27819da0eee70bd |
|
| /// File Name: |
sa26727.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for eggdrop. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26727/ | | File Size: | 2479 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | 84128d249e7b712d13e0528aaf4ca823 |
|
| /// File Name: |
sa26728.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26728/ | | File Size: | 3787 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | 47472c89e50504274499d919d3a22b3a |
|
| /// File Name: |
sa26729.txt |
Description:
|
Secunia Security Advisory - Will Dormann has reported some vulnerabilities in ER Mapper ECW JPEG 2000 Plug-ins, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26729/ | | File Size: | 2513 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | ab159e0b0d61b171d09406ee259001f5 |
|
| /// File Name: |
sa26731.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a security issue in Avaya CMS and IR, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26731/ | | File Size: | 2400 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | 7ea7f2cd165c49229de69ab268cfaf79 |
|
| /// File Name: |
sa26734.txt |
Description:
|
Secunia Security Advisory - Gynvael Coldwind has reported a vulnerability in Total Commander, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26734/ | | File Size: | 2721 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | 0fa60f0af8013128460492add262ed73 |
|
| /// File Name: |
sa26737.txt |
Description:
|
Secunia Security Advisory - Gynvael Coldwind has discovered a vulnerability in Magellan Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26737/ | | File Size: | 2567 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | e63754f38f45d0337aff6e2a00df4936 |
|
| /// File Name: |
sa26739.txt |
Description:
|
Secunia Security Advisory - Gynvael Coldwind has reported a vulnerability in Unreal Commander, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26739/ | | File Size: | 2606 | | Last Modified: | Sep 7 19:03:37 2007 |
| MD5 Checksum: | fb8e6b623a80ec25c978a53f8a2359fd |
|
| /// File Name: |
MDKSA-2007-177.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was found in MySQL's authentication protocol, making it possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash. Another flaw was discovered in MySQL that allowed remote authenticated users to gain update privileges for a table in another database via a view that refers to the external table.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10090 | | Related CVE(s): | CVE-2007-3780, CVE-2007-3782 | | Last Modified: | Sep 7 03:14:37 2007 |
| MD5 Checksum: | bca4ce77541163f6924dfe742318bcab |
|
| /// File Name: |
MDKSA-2007-176.txt |
Description:
|
Mandriva Linux Security Advisory - konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed. KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property. Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote attackers to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 20650 | | Related CVE(s): | CVE-2007-3820, CVE-2007-4224, CVE-2007-4225 | | Last Modified: | Sep 7 03:13:18 2007 |
| MD5 Checksum: | 8845b54a33c277e691a99e611d053b84 |
|
| /// File Name: |
MDKSA-2007-175.txt |
Description:
|
Mandriva Linux Security Advisory - A stack-based buffer overflow in mod/server.mod/servrmsg.c in Eggdrop 1.6.18, and possibly earlier, allows user-assisted, malicious remote IRC servers to execute arbitrary code via a long private message.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3170 | | Related CVE(s): | CVE-2007-2807 | | Last Modified: | Sep 7 03:11:24 2007 |
| MD5 Checksum: | 3687e9f27fa10ac57e1f8b1947384053 |
|
| /// File Name: |
MDKSA-2007-174.txt |
Description:
|
Mandriva Linux Security Advisory - A stack buffer overflow vulnerability was discovered in the RPC library used by Kerberos' kadmind program by Tenable Network Security. A remote unauthenticated user who could access kadmind would be able to trigger the flaw and cause it to crash. This issue is only applicable to Kerberos 1.4 and higher. Garrett Wollman found an uninitialized pointer vulnerability in kadmind which a remote unauthenticated attacker able to access kadmind could exploit to cause kadmind to crash. This issue is only applicable to Kerberos 1.5 and higher.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7677 | | Related CVE(s): | CVE-2007-3999, CVE-2007-4000 | | Last Modified: | Sep 7 03:10:16 2007 |
| MD5 Checksum: | ed25422ca73141a520a9ab37659008d4 |
|
| /// File Name: |
dsa-1369-1.txt |
Description:
|
Debian Security Advisory 1369-1 - Sumit I. Siddharth discovered that Gforge, a collaborative development tool performs insufficient input sanitizing, which allows SQL injection.
| | Homepage: | http://www.debian.org/security | | File Size: | 8063 | | Related CVE(s): | CVE-2007-3913 | | Last Modified: | Sep 7 03:09:02 2007 |
| MD5 Checksum: | 45d89ac7a9ed6ac79c3363474491c76e |
|
| /// File Name: |
dsa-1367-2.txt |
Description:
|
Debian Security Advisory 1367-2 - It was discovered that a buffer overflow of the RPC library of the MIT Kerberos reference implementation allows the execution of arbitrary code. The original patch from DSA-1367-1 didn't address the problem fully.
| | Homepage: | http://www.debian.org/security | | File Size: | 20544 | | Related CVE(s): | CVE-2007-3999 | | Last Modified: | Sep 7 03:07:57 2007 |
| MD5 Checksum: | 70d0460c6663846831d0fe8654f23c50 |
|
| /// File Name: |
2007-005-itunes.txt |
Description:
|
iTunes version 7.3.x suffers from a heap overflow vulnerability in the album cover parsing functionality. This has been fixed in version 7.4.
| | Author: | David Thiel | | Homepage: | http://www.isecpartners.com/ | | File Size: | 1595 | | Last Modified: | Sep 7 03:07:01 2007 |
| MD5 Checksum: | 3a1a0d17230f12ce2f954fecbf886545 |
|
| /// File Name: |
sophos-xss.txt |
Description:
|
A malformed ZIP archive being analyzed by the Sophos AV client can trigger cross site scripting attacks. Version 6.5.4 R2 is affected.
| | Author: | Michael Jordon | | Homepage: | http://www.contextis.co.uk/ | | File Size: | 2690 | | Related CVE(s): | CVE-2007-4512 | | Last Modified: | Sep 7 02:42:34 2007 |
| MD5 Checksum: | 6bc4e9f923d9b4d798b9c1e9307a7108 |
|
| /// File Name: |
php524-dosiconv.txt |
Description:
|
PHP versions 5.2.4 and below are susceptible to a denial of service conditions in multiple iconv functions.
| | Author: | laurent gaffi | | File Size: | 2080 | | Last Modified: | Sep 7 02:08:32 2007 |
| MD5 Checksum: | 4cd85d870df139a1a311fe6f97ad8133 |
|
| /// File Name: |
sa26610.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for claws-mail. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26610/ | | File Size: | 4903 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | 57b80175193ce0be96c247486ab6d753 |
|
| /// File Name: |
sa26660.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and security issues have been reported in Interstage Application Server, which can be exploited by malicious people to conduct cross-site scripting attacks or bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26660/ | | File Size: | 3807 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | 8b953198c77f1e514ef9193ea3b321a3 |
|
| /// File Name: |
sa26663.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for gd and multiple php packages. This fixes some vulnerabilities, where some have an unknown impact and others can potentially be exploited to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26663/ | | File Size: | 2659 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | 15e4f7f47d7eeb1fb4a8b08f0a53f4fc |
|
| /// File Name: |
sa26673.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for star. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26673/ | | File Size: | 2104 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | 5a04608c5ff082bacf74792b11fef955 |
|
| /// File Name: |
sa26675.txt |
Description:
|
Secunia Security Advisory - Thomas de Grenier de Latour has discovered a vulnerability in the debian-goodies package for Debian Linux, which can be exploited by malicious, local users to perform actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/26675/ | | File Size: | 2758 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | 8920c376420d510c23df38ff8868ae14 |
|
| /// File Name: |
sa26677.txt |
Description:
|
Secunia Security Advisory - A weakness has been reported in Cisco Adaptive Security Appliance (ASA), which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/26677/ | | File Size: | 2634 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | b7f332febbf6a6e3eeb0e3dac325686c |
|
| /// File Name: |
sa26680.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26680/ | | File Size: | 4699 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | c3b656feec85e5cc8c317f104339183a |
|
| /// File Name: |
sa26689.txt |
Description:
|
Secunia Security Advisory - ajann has reported a vulnerability in the NeoRecruit component for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26689/ | | File Size: | 2536 | | Last Modified: | Sep 7 02:01:27 2007 |
| MD5 Checksum: | a451a0e7129a9627b75a0574ac1c8036 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
