Section: .. / 0802-advisories /
| /// File Name: |
sa29067.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for cups. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29067/ | | File Size: | 2315 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | 57b932f918a83b7b4fd96450d9cd4218 |
|
| /// File Name: |
sa29068.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for openldap. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29068/ | | File Size: | 2467 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | ec1ff8e7a698173c5b2438d3949af2b7 |
|
| /// File Name: |
sa29069.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for tk. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/29069/ | | File Size: | 2296 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | d485c3bf08a16383170827eea0d395f6 |
|
| /// File Name: |
sa29070.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for tcltk. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/29070/ | | File Size: | 2638 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | 82703239332d00c2203fb5da83babcd5 |
|
| /// File Name: |
sa29073.txt |
Description:
|
Secunia Security Advisory - S@BUN has discovered a vulnerability in the Tiny Event module for XOOPS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29073/ | | File Size: | 2416 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | 2df1bfa72877173ea711b7a0797e6cde |
|
| /// File Name: |
sa29074.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Solaris, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29074/ | | File Size: | 2182 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | 65581241d6d2feb1f9c3421b1fe10aa0 |
|
| /// File Name: |
sa29080.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in SplitVT, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/29080/ | | File Size: | 2250 | | Last Modified: | Feb 22 19:48:31 2008 |
| MD5 Checksum: | 9a27dbad93fbdefa7811a1c791a4c66c |
|
| /// File Name: |
USN-581-1.txt |
Description:
|
Ubuntu Security Notice 581-1 - It was discovered that PCRE did not correctly handle very long strings containing UTF8 sequences. In certain situations, an attacker could exploit applications linked against PCRE by tricking a user or automated system in processing a malicious regular expression leading to a denial of service or possibly arbitrary code execution.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14176 | | Related CVE(s): | CVE-2008-0674 | | Last Modified: | Feb 22 02:52:23 2008 |
| MD5 Checksum: | 4dbd038f45013cc12873a363da6b0838 |
|
| /// File Name: |
glsa-200802-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200802-09 - An integer overflow has been reported in the cli_scanpe() function in file libclamav/pe.c (CVE-2008-0318). Another unspecified vulnerability has been reported in file libclamav/mew.c (CVE-2008-0728). Versions less than 0.92.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3311 | | Related CVE(s): | CVE-2008-0318, CVE-2008-0728 | | Last Modified: | Feb 22 02:51:15 2008 |
| MD5 Checksum: | 72d9da41738b7ff29dac19646e48e95f |
|
| /// File Name: |
dsa-1501-1.txt |
Description:
|
Debian Security Advisory 1501-1 - Tobias Gruetzmacher discovered that a Debian-provided CRON script in dspam, a statistical spam filter, included a database password on the command line when using the MySQL backend. This allowed a local attacker to read the contents of the dspam database, such as emails.
| | Homepage: | http://www.debian.org/security | | File Size: | 14918 | | Related CVE(s): | CVE-2007-6418 | | Last Modified: | Feb 22 02:51:03 2008 |
| MD5 Checksum: | 24894da35ec0609f00e10eb5e356a420 |
|
| /// File Name: |
dsa-1500-1.txt |
Description:
|
Debian Security Advisory 1500-1 - Mike Ashton discovered that splitvt, a utility to run two programs in a split screen, did not drop group privileges prior to executing 'xprop'. This could allow any local user to gain the privileges of group utmp.
| | Homepage: | http://www.debian.org/security | | File Size: | 3985 | | Related CVE(s): | CVE-2008-0162 | | Last Modified: | Feb 22 02:50:23 2008 |
| MD5 Checksum: | 178f09ed0e085524174a14f285d527c8 |
|
| /// File Name: |
VMSA-2008-0003.txt |
Description:
|
VMware Security Advisory - This patch fixes a flaw in how the aacraid SCSI driver checked IOCTL command permissions. This flaw might allow a local user on the service console to cause a denial of service or gain privileges. Alin Rad Pop of Secunia Research found a stack buffer overflow flaw in the way Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash or to execute arbitrary code with the permissions of the Samba server. Chris Evans of the Google security research team discovered an integer overflow issue with the way Python's Perl-Compatible Regular Expression (PCRE) module handled certain regular expressions. If a Python application used the PCRE module to compile and execute untrusted regular expressions, it might be possible to cause the application to crash, or to execute arbitrary code with the privileges of the Python interpreter.
| | Homepage: | http://www.vmware.com/ | | File Size: | 9595 | | Related CVE(s): | CVE-2007-6015, CVE-2006-7228, CVE-2007-2052, CVE-2007-4965, CVE-2007-4308 | | Last Modified: | Feb 22 02:12:38 2008 |
| MD5 Checksum: | 8d6ba6de591011e681d822a518441843 |
|
| /// File Name: |
sa29043.txt |
Description:
|
Secunia Security Advisory - A vulnerability and a weakness have been discovered in PunBB, which can be exploited by malicious users to manipulate data and by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/29043/ | | File Size: | 2967 | | Last Modified: | Feb 22 01:49:35 2008 |
| MD5 Checksum: | 07b7f58d60689d5321f802c284cf643f |
|
| /// File Name: |
sa29045.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in Sybase MobiLink, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29045/ | | File Size: | 2468 | | Last Modified: | Feb 22 01:49:35 2008 |
| MD5 Checksum: | f6e097605538842722ba3935734808f8 |
|
| /// File Name: |
SSRT080016.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com/ | | File Size: | 11676 | | Last Modified: | Feb 21 20:10:50 2008 |
| MD5 Checksum: | b2f82d0e726c28d36d026749a5df01f8 |
|
| /// File Name: |
USN-580-1.txt |
Description:
|
Ubuntu Security Notice 580-1 - Devon Miller discovered that the iso-info and cd-info tools did not properly perform bounds checking. If a user were tricked into using these tools with a crafted iso image, an attacker could cause a denial of service via a core dump, and possibly execute arbitrary code.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 25549 | | Related CVE(s): | CVE-2007-6613 | | Last Modified: | Feb 21 20:10:06 2008 |
| MD5 Checksum: | 218adfc98f0d062bd360a6c24c3ceeb8 |
|
| /// File Name: |
USN-579-1.txt |
Description:
|
Ubuntu Security Notice 579-1 - It was discovered that QSslSocket did not properly verify SSL certificates. A remote attacker may be able to trick applications using QSslSocket into accepting invalid SSL certificates.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7398 | | Related CVE(s): | CVE-2007-5965 | | Last Modified: | Feb 21 20:09:27 2008 |
| MD5 Checksum: | e64fb040c47d966f10531ee6d2326b61 |
|
| /// File Name: |
vocera-flaw.txt |
Description:
|
It appears that the Vocera wireless LAN VoIP communicators do not bother to cryptographically confirm the validity of a digital certificate.
| | Author: | George Ou | | File Size: | 1152 | | Last Modified: | Feb 21 20:03:40 2008 |
| MD5 Checksum: | 07818869afcef6ad4f8cf98aa65639cb |
|
| /// File Name: |
sa28987.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for moin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28987/ | | File Size: | 2176 | | Last Modified: | Feb 21 18:52:53 2008 |
| MD5 Checksum: | 075481c81adf1b4094bb1528f24d95db |
|
| /// File Name: |
sa28993.txt |
Description:
|
Secunia Security Advisory - HP has acknowledged a vulnerability in HP Tru64 UNIX, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28993/ | | File Size: | 2709 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | a58f7894409a621fbf761748deedc636 |
|
| /// File Name: |
sa29008.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in the astatsPRO component for Joomla, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29008/ | | File Size: | 2730 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | fbf761c986975fd4004c3f4dff88e9fc |
|
| /// File Name: |
sa29011.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in EMC RepliStor, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29011/ | | File Size: | 2482 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | b85b70754cd99869ff4a1be24c02b997 |
|
| /// File Name: |
sa29018.txt |
Description:
|
Secunia Security Advisory - t0pP8uZz and xprog have reported a vulnerability in iScripts MultiCart, which can be exploited by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29018/ | | File Size: | 2288 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | 7fb6a4db5160761ffbd0227589c57d4a |
|
| /// File Name: |
sa29033.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Symantec Veritas Storage Foundation, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29033/ | | File Size: | 2600 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | 6b72baf6caa6795d28685332d1056499 |
|
| /// File Name: |
sa29039.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in various Tor World CGI Scripts, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/29039/ | | File Size: | 3368 | | Last Modified: | Feb 21 18:52:32 2008 |
| MD5 Checksum: | 7868081db7b1ad3b231e4733438c9369 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
