.:[ packet storm ]:.
                               
global security disclosure
global security disclosure

 Section:  .. / 0804-advisories  /

Page 10 of 25
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 >> Files 225 - 250 of 608
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: ZDI-08-019.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the parsing of the QuickTime VR 'obji' atom. When the size of the atom is set to 0, a stack overflow condition occurs resulting in the execution of arbitrary code. Version 7.4.1 is affected.
Homepage:http://www.zerodayinitiative.com/
File Size:3094
Related CVE(s):CVE-2008-1022
Last Modified:Apr 4 19:53:54 2008
MD5 Checksum:415cd4d63c1fe26974238ae00be12600

 ///  File Name: dsa-1560-1.txt
Description:
 Debian Security Advisory 1560-1 - "The-0utl4w" discovered that the Kronolith, calendar component for the Horde Framework, didn't properly sanitize URL input, leading to a cross-site scripting vulnerability in the add event screen.
Homepage:http://www.debian.org/security
File Size:3094
Last Modified:Apr 28 11:07:30 2008
MD5 Checksum:4b932675e980a1f06662af53ca462b60

 ///  File Name: glsa-200804-16.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-16 - Sebastian Krahmer of SUSE reported an integer overflow in the expand_item_list() function in the file util.c which might lead to a heap-based buffer overflow when extended attribute (xattr) support is enabled. Versions less than 2.6.9-r6 are affected.
Homepage:http://security.gentoo.org
File Size:3082
Related CVE(s):CVE-2008-1720
Last Modified:Apr 17 12:59:36 2008
MD5 Checksum:98c38477401727430caa10b51ec9bb66

 ///  File Name: ZDI-08-020.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists within the parsing of malformed WMF files. A vulnerability exists in the GDI function CreateDIBPatternBrushPt used when processing WMF files. Due to a mis-calculation of user data a heap chunk can be under-allocated and later used resulting in a heap overflow. Successful exploitation can result in system compromise under the credentials of the currently logged in user.
Homepage:http://www.zerodayinitiative.com/
File Size:3067
Related CVE(s):CVE-2008-1083
Last Modified:Apr 8 23:37:34 2008
MD5 Checksum:13384b757b12fe9e07c41b89de003d0d

 ///  File Name: sa29898.txt
Description:
 Secunia Security Advisory - Slackware has issued an update for xine-lib. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29898/
File Size:3062
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:f3a5212c5d624c6be218f60438a2f726

 ///  File Name: sa29624.txt
Description:
 Secunia Security Advisory - Dr.Crash has discovered some vulnerabilities in EasyNews, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, and to disclose sensitive information.
Homepage:http://secunia.com/advisories/29624/
File Size:3060
Last Modified:Apr 3 00:45:58 2008
MD5 Checksum:3d25c13e35e834745dd781d0b8167943

 ///  File Name: sa29814.txt
Description:
 Secunia Security Advisory - His0k4 has discovered two vulnerabilities in TR News, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/29814/
File Size:3057
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:1ec1603487a7af5ec337c6273812134d

 ///  File Name: sa29945.txt
Description:
 Secunia Security Advisory - Debian has issued an update for kronolith. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/29945/
File Size:3056
Last Modified:Apr 29 19:20:27 2008
MD5 Checksum:88c733b42d0ef07c7961ab18bc779d14

 ///  File Name: adc_advisories_oracle-dbms.txt
Description:
 Oracle provides database export functionality in various modes. One of the export modes is called Direct Path. This mode uses a special protocol message to extract table data rather than SQL queries. Using this special protocol message an attacker can extract information from tables and views to which she has not been granted access. Oracle 9 and 10 versions prior to April 2008 CPU are affected.
Homepage:http://www.imperva.com/adc/
File Size:3054
Last Modified:Apr 17 18:26:19 2008
MD5 Checksum:f9051714595d68f50665356d5693d9f1

 ///  File Name: sa29622.txt
Description:
 Secunia Security Advisory - SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges, and by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS, or potentially to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29622/
File Size:3041
Last Modified:Apr 7 22:57:36 2008
MD5 Checksum:381781b20b4670c1457ba09669c63de8

 ///  File Name: sa29543.txt
Description:
 Secunia Security Advisory - Duong Thanh has reported a vulnerability in Blackboard Academic Suite, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/29543/
File Size:3038
Last Modified:Apr 4 16:56:23 2008
MD5 Checksum:1431986b28ea0b5205d65bd8051bee39

 ///  File Name: glsa-200804-28.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-28 - Because of sharing the same codebase, JRockit is affected by the vulnerabilities mentioned in GLSA 200804-20. Versions less than 1.5.0.14 are affected.
Homepage:http://security.gentoo.org
File Size:3029
Last Modified:Apr 24 16:26:06 2008
MD5 Checksum:8adfd9b3fcb5d2b592286e4eb4c68173

 ///  File Name: sa29810.txt
Description:
 Secunia Security Advisory - __GiReX__ has discovered some vulnerabilities in 1024 CMS, which can be exploited by malicious people to conduct SQL injection attacks or to disclose sensitive information.
Homepage:http://secunia.com/advisories/29810/
File Size:3029
Last Modified:Apr 14 16:22:44 2008
MD5 Checksum:45018811db105882c10beda924bd3a47

 ///  File Name: glsa-200804-02.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-02 - The Oulu University discovered that bzip2 does not properly check offsets provided by the bzip2 file, leading to a buffer overread. Versions less than 1.0.5 are affected.
Homepage:http://security.gentoo.org
File Size:3010
Related CVE(s):CVE-2008-1372
Last Modified:Apr 3 01:41:59 2008
MD5 Checksum:58f950dfe94adb27c139a0a3b6c6b84b

 ///  File Name: sa29822.txt
Description:
 Secunia Security Advisory - A security issue has been reported in Cisco Network Admission Control (NAC), which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/29822/
File Size:3008
Last Modified:Apr 18 14:12:52 2008
MD5 Checksum:1b97321ed3deb8a09f79dc1cf8fe1d7f

 ///  File Name: sa29852.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in OpenOffice, which can be exploited by malicious people to potentially compromise a user's system.
Homepage:http://secunia.com/advisories/29852/
File Size:3003
Last Modified:Apr 18 14:12:52 2008
MD5 Checksum:da024ec9828f96cbc388d231a0ec712e

 ///  File Name: sa29858.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for sun-jdk, sun-jre-bin, and emul-linux-x86-java. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, manipulate data, disclose sensitive/system information, cause a DoS (Denial of Service), or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29858/
File Size:2992
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:a4e320f7b047a1e92842d87ac4530252

 ///  File Name: sa29792.txt
Description:
 Secunia Security Advisory - Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise an application using the library.
Homepage:http://secunia.com/advisories/29792/
File Size:2988
Last Modified:Apr 14 18:51:47 2008
MD5 Checksum:e6697616f36363840cd4c09667d8e5eb

 ///  File Name: glsa-200804-09.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-09 - Tavis Ormandy discovered that, when creating temporary files, the 'expn' utility does not check whether the file already exists. Versions less than 6.1.5 are affected.
Homepage:http://security.gentoo.org
File Size:2985
Related CVE(s):CVE-2008-1078
Last Modified:Apr 10 17:17:41 2008
MD5 Checksum:43fcddc54780075286e471f4c82cc4fb

 ///  File Name: sa29549.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Macrovision InstallShield, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/29549/
File Size:2981
Last Modified:Apr 1 22:02:54 2008
MD5 Checksum:64befb914eaa085e6dab88145d3efb8a

 ///  File Name: sa30002.txt
Description:
 Secunia Security Advisory - Roberto Suggi Liverani has reported a vulnerability in Sugar Community Edition, which can be exploited by malicious users to disclose sensitive information.
Homepage:http://secunia.com/advisories/30002/
File Size:2977
Last Modified:Apr 29 19:20:27 2008
MD5 Checksum:e79491cc2d7cfc2b625e550d62322d3d

 ///  File Name: sa29802.txt
Description:
 Secunia Security Advisory - TsukasaGenesis and Ajax have reported a vulnerability in KwsPHP, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/29802/
File Size:2968
Last Modified:Apr 23 12:34:36 2008
MD5 Checksum:c02d1e01c36f2d84f221c1a86ffe2406

 ///  File Name: sa29997.txt
Description:
 Secunia Security Advisory - __GiReX__ has reported some vulnerabilities in miniBB, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Homepage:http://secunia.com/advisories/29997/
File Size:2968
Last Modified:Apr 28 18:12:57 2008
MD5 Checksum:afa41b1f4ad7e5fcb4bcd64487aea982

 ///  File Name: glsa-200804-19.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-19 - Toni Arnold, David Sveningsson, Michal Bartoszkiewicz, and Joseph reported that php-select does not quote parameters passed to the tr command, which could convert the -D PHP5 argument in the APACHE2_OPTS setting in the file /etc/conf.d/apache2 to lower case. Versions less than 1.0.1 are affected.
Homepage:http://security.gentoo.org
File Size:2948
Related CVE(s):CVE-2008-1734
Last Modified:Apr 18 14:14:31 2008
MD5 Checksum:33029e9ba6643772603880fb8e1f1e6c

 ///  File Name: glsa-200804-08.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-08 - Julien Cayzax discovered that an insecure default setting exists in mod_userdir in lighttpd. When userdir.path is not set the default value used is $HOME. It should be noted that the nobody user's $HOME is / (CVE-2008-1270). An error also exists in the SSL connection code which can be triggered when a user prematurely terminates his connection (CVE-2008-1531). Versions less than 1.4.19-r2 are affected.
Homepage:http://security.gentoo.org
File Size:2945
Related CVE(s):CVE-2008-1270, CVE-2008-1531
Last Modified:Apr 10 17:17:25 2008
MD5 Checksum:4849c526152349264a79a8774c701b82
 

 ///  Last 10 Files
  1. :· MDVSA-2008-220-1.txt
  2. :· MDVSA-2008-232.txt
  3. :· USN-674-1.txt
  4. :· dsa-1667-1.txt
  5. :· revsense-sql.txt
  6. :· maurycms-upload.txt
  7. :· linksautomation-sql.txt
  8. :· linksxs-sql.txt
  9. :· ethiclinks-sql.txt
  10. :· easyeditcms-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-220-1.txt
  2. :· MDVSA-2008-232.txt
  3. :· USN-674-1.txt
  4. :· dsa-1667-1.txt
  5. :· PR08-09.txt
  6. :· secunia-streamripper.txt
  7. :· tonline-multi.txt
  8. :· MDVSA-2008-231.txt
  9. :· USN-673-1.txt
  10. :· CESA-2008-009.html
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· revsense-sql.txt
  2. :· maurycms-upload.txt
  3. :· linksautomation-sql.txt
  4. :· linksxs-sql.txt
  5. :· ethiclinks-sql.txt
  6. :· easyeditcms-sql.txt
  7. :· msvista-overflow.txt
  8. :· mytopix-sql.txt
  9. :· punbb-lfi.txt
  10. :· PR07-40.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pysumpas-0.2.0.tar.gz
  2. :· framework-3.2.tar.gz
  3. :· tor.uclibc.i686.20081115.iso
  4. :· RFIDIOt-Windows-0.1u.zip
  5. :· RFIDIOt-0.1u.tgz
  6. :· dps-v1.5.tar.gz
  7. :· smbrelay3.zip
  8. :· mptrey.tar.gz
  9. :· dotnetsploitsrc-1.0.zip
  10. :· MultiInjectorV0.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sudoers-shellcode.txt
  2. :· strongswan-4.2.9.tar.gz
  3. :· hodetector-shellcode.txt
  4. :· rtm-essential5.pdf
  5. :· unixasm-1.3.0.tar.gz
  6. :· bnd-networks.pdf
  7. :· smallnonulls-exec.txt
  8. :· challenge20081010.txt
  9. :· dotnetrookits.pdf
  10. :· exploration.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice