Section: .. / 0711-advisories /
| /// File Name: |
sblog-csrf.txt |
Description:
|
sBlog version 0.7.3 Beta suffers from a cross site request forgery vulnerability.
| | Author: | Guns | | Homepage: | http://www.0x90.com.ar/ | | File Size: | 1703 | | Last Modified: | Nov 2 12:04:32 2007 |
| MD5 Checksum: | ba29c4cf0f8b494b577b5914ecfc6c5f |
|
| /// File Name: |
glsa-200711-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-03 - Merrick Manalastas and Nicklous Roberts have discovered multiple vulnerabilities in the WebDAV and Reupload modules. Versions less than 2.2.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2974 | | Related CVE(s): | CVE-2007-4650 | | Last Modified: | Nov 1 19:29:52 2007 |
| MD5 Checksum: | fca538bf60e1b808729a818070d619a2 |
|
| /// File Name: |
glsa-200711-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-02 - Jan Pechanec discovered that OpenSSH uses a trusted X11 cookie when it cannot create an untrusted one. Versions less than 4.7 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2976 | | Related CVE(s): | CVE-2007-4752 | | Last Modified: | Nov 1 19:29:36 2007 |
| MD5 Checksum: | 923a61c425ebd36a8682043f00698487 |
|
| /// File Name: |
glsa-200711-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200711-01 - Kalle Olavi Niemitalo discovered two boundary errors in fsplib code included in gFTP when processing overly long directory or file names. Versions less than 2.0.18-r6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3173 | | Related CVE(s): | CVE-2007-3961, CVE-2007-3962 | | Last Modified: | Nov 1 19:29:21 2007 |
| MD5 Checksum: | d1a24e7c8aaf28b4a5e6ef96ba68dbde |
|
| /// File Name: |
MDKSA-2007-204.txt |
Description:
|
Mandriva Linux Security Advisory - Alin Rad Pop of Secunia Research discovered a vulnerability in CUPS that can be exploited by malicious individuals to execute arbitrary code. This flaw is due to a boundary error when processing IPP (Internet Printing Protocol) tags.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8420 | | Related CVE(s): | CVE-2007-4351 | | Last Modified: | Nov 1 19:29:14 2007 |
| MD5 Checksum: | 44babeda85cd8ca51254fec4e4811a3f |
|
| /// File Name: |
MDKSA-2007-203.txt |
Description:
|
Mandriva Linux Security Advisory - Tavis Ormandy discovered a heap overflow flaw during video-to-video copy operations in the Cirrus VGA extension code that is used in Xen. A malicious local administrator of a guest domain could potentially trigger this flaw and execute arbitrary code outside of the domain. Tavis Ormandy also discovered insufficient input validation leading to a heap overflow in the NE2000 network driver in Xen. If the driver is in use, a malicious local administrator of a guest domain could potentially trigger this flaw and execute arbitrary code outside of the domain. Steve Kemp found that xen-utils used insecure temporary files within the xenmon tool that could allow local users to truncate arbitrary files. Joris van Rantwijk discovered a flaw in Pygrub, which is used as a boot loader for guest domains. A malicious local administrator of a guest domain could create a carefully-crafted grub.conf file which could trigger the execution of arbitrary code outside of that domain.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4426 | | Related CVE(s): | CVE-2007-4993, CVE-2007-3919, CVE-2007-1321, CVE-2007-5729, CVE-2007-5730, CVE-2007-1320 | | Last Modified: | Nov 1 19:26:48 2007 |
| MD5 Checksum: | ff8364f820413cda18b424722daf1611 |
|
| /// File Name: |
sa27426.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities with unknown impact have been reported in WORK system e-commerce.
| | Homepage: | http://secunia.com/advisories/27426/ | | File Size: | 2270 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | 97e3a511f8728fb751d45fb77a9af9b4 |
|
| /// File Name: |
sa27439.txt |
Description:
|
Secunia Security Advisory - SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27439/ | | File Size: | 2961 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | cdf743caf7426dbf893019dd575efaf5 |
|
| /// File Name: |
sa27440.txt |
Description:
|
Secunia Security Advisory - d3hydr8 has reported a vulnerability in CONTENTCustomizer, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/27440/ | | File Size: | 2613 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | 2041d66774e4647a23cfb58bfe2b31a9 |
|
| /// File Name: |
sa27468.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Novell BorderManager, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27468/ | | File Size: | 2851 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | cd4337af318941751d8b50ed3a8b8f19 |
|
| /// File Name: |
sa27470.txt |
Description:
|
Secunia Security Advisory - GoLd_M has discovered two vulnerabilities in ISPworker, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/27470/ | | File Size: | 2824 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | 03ed2cc992074e5ad6772ce43d8b2904 |
|
| /// File Name: |
sa27473.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in IBM Tivoli Continuous Data Protection for Files, which can be exploited by malicious, local users to compromise other systems.
| | Homepage: | http://secunia.com/advisories/27473/ | | File Size: | 2760 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | eaa172b30a4f0f934c353b6bdfa17f5b |
|
| /// File Name: |
sa27478.txt |
Description:
|
Secunia Security Advisory - IBM has acknowledged a security issue in WebSphere Application Server Community Edition, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27478/ | | File Size: | 2280 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | f10301eb569e04cb0760899372796fcc |
|
| /// File Name: |
sa27481.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been acknowledged in Apache Geronimo, which can be exploited by malicious users to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/27481/ | | File Size: | 2526 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | 65534a6820e583e04cd0c4d7526f1428 |
|
| /// File Name: |
sa27482.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Apache Geronimo, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27482/ | | File Size: | 2393 | | Last Modified: | Nov 1 19:23:50 2007 |
| MD5 Checksum: | 9282534a545e096966fc2a78a0f9a029 |
|
| /// File Name: |
sa27436.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a weakness, some security issues and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, and malicious users and malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27436/ | | File Size: | 2757 | | Last Modified: | Nov 1 12:42:05 2007 |
| MD5 Checksum: | cce9369675f131351f6afbad4f68c626 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
