Section: .. / 0805-advisories /
| /// File Name: |
ZDI-08-025.txt |
Description:
|
A vulnerability allows attackers to remotely obtain domain credentials on vulnerable installations of Symantec Altiris Deployment Solution. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists within the axengine.exe service listening by default on TCP port 402. The service allows a remote client to request encrypted domain credentials without authentication. The encryption lacks a salt allowing an attacker with a local installation of Altiris Deployment Solution to easily decrypt the credentials.
| | Author: | Brett Moore | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3354 | | Last Modified: | May 15 18:28:51 2008 |
| MD5 Checksum: | 42547c174484950e72118580181d31aa |
|
| /// File Name: |
ZDI-08-024.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec Altiris Deployment Solution. User interaction is not required to exploit this vulnerability. The specific flaw exists within the axengine.exe process listening by default on TCP port 402. A lack of proper sanitation while parsing requests allows for a remote attacker to inject arbitrary SQL statements into the database. Exploitation of this vulnerability can result in arbitrary code execution under the context of the SYSTEM user.
| | Author: | Brett Moore | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3270 | | Last Modified: | May 15 18:26:12 2008 |
| MD5 Checksum: | de3d63236f721885f9df12222483b76e |
|
| /// File Name: |
sa30140.txt |
Description:
|
Secunia Security Advisory - Deniz Cevik has reported a vulnerability in Oracle Application Server, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/30140/ | | File Size: | 2225 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 8cf1fb4342d5ea408388cde1f0d42b3f |
|
| /// File Name: |
sa30152.txt |
Description:
|
Secunia Security Advisory - Russ McRee has reported a vulnerability in phpVID, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30152/ | | File Size: | 2006 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | a7ab753eac04e171378078a119ebd116 |
|
| /// File Name: |
sa30182.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for libid3tag. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30182/ | | File Size: | 2029 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | d8b6152f418334fccd1f2c35267e3d6f |
|
| /// File Name: |
sa30198.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to potentially cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30198/ | | File Size: | 2142 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 61e6bbf7861c14a368648bde6818eb8c |
|
| /// File Name: |
sa30209.txt |
Description:
|
Secunia Security Advisory - Cyb3r-1sT has reported some vulnerabilities in PHP Classifieds Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30209/ | | File Size: | 2045 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 98a3515aa71bb1928a7d964b39d28212 |
|
| /// File Name: |
sa30223.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Cisco Catalyst Content Switching Module (CSM) and Cisco Catalyst Content Switching Module with SSL (CSM-S), which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30223/ | | File Size: | 2686 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | a24aa219c8af026a2b9b09cefc2bef76 |
|
| /// File Name: |
sa30253.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for clamav. which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30253/ | | File Size: | 1914 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 0e20e955d96275400da9ab81635d3da4 |
|
| /// File Name: |
sa30263.txt |
Description:
|
Secunia Security Advisory - EgiX has discovered a vulnerability in LANAI CMS, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30263/ | | File Size: | 2438 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 3eaeb7db980b8aa8ece237ae11f2e7c5 |
|
| /// File Name: |
sa30272.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30272/ | | File Size: | 2023 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 4e646706814faa9498b8375408afa4a4 |
|
| /// File Name: |
sa30275.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the sr_feuser_register extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30275/ | | File Size: | 2718 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | b0dbcbd01cd55110f99e01d608578af6 |
|
| /// File Name: |
sa30276.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and potentially by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30276/ | | File Size: | 1999 | | Last Modified: | May 15 18:21:06 2008 |
| MD5 Checksum: | 0889f3e3cfc9cbd2ed6d03b289595d94 |
|
| /// File Name: |
aid-051408.asc |
Description:
|
Aruba Networks Security Advisory - A user authentication vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. This vulnerability only affects customers using TACACS authentication for Controller management users. Cross-site scripting vulnerabilities were discovered during standard bug reporting procedures in the Aruba Mobility Controller. Certain malformed inputs to the web UI allow the injection of cross-site scripting (XSS) components, leading to a potential compromise of client web session integrity.
| | Homepage: | http://www.arubanetworks.com/ | | File Size: | 6764 | | Last Modified: | May 15 13:16:38 2008 |
| MD5 Checksum: | 66fe78e297c3c703c1907d3bf9ea75e9 |
|
| /// File Name: |
sa30178.txt |
Description:
|
Secunia Security Advisory - MajnOoNxHaCkEr has discovered a vulnerability in Fusebox, which can be exploited by malicious people to disclose sensitive information and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30178/ | | File Size: | 2309 | | Last Modified: | May 15 13:14:19 2008 |
| MD5 Checksum: | b6dabc322d3acd4bf87184dc4ab4cc96 |
|
| /// File Name: |
sa30257.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in the Site Documentation module for Drupal, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/30257/ | | File Size: | 2383 | | Last Modified: | May 15 13:14:19 2008 |
| MD5 Checksum: | 1032c606b77a2f6ac83070408fd70f0e |
|
| /// File Name: |
cisco-sa-20080514-cup.txt |
Description:
|
Cisco Security Advisory - Administrators of systems running all Cisco Unified Presence versions can determine the software version by viewing the main page of the Cisco Unified Presence Administration interface. The software version can be determined by running the command show version active via the Command Line Interface (CLI).
| | Homepage: | http://www.cisco.com/ | | File Size: | 11779 | | Related CVE(s): | CVE-2008-1740, CVE-2008-1741 | | Last Modified: | May 15 04:28:20 2008 |
| MD5 Checksum: | fddfe8a3e45e0c202a50e5bc67fa484a |
|
| /// File Name: |
cisco-sa-20080514-csm.txt |
Description:
|
Cisco Security Advisory - The Cisco Content Switching Module (CSM) and Cisco Content Switching Module with SSL (CSM-S) contain a memory leak vulnerability that can result in a denial of service condition. The vulnerability exists when the CSM or CSM-S is configured for layer 7 load balancing. An attacker can trigger this vulnerability when the CSM or CSM-S processes TCP segments with a specific combination of TCP flags while servers behind the CSM/CSM-S are overloaded and/or fail to accept a TCP connection.
| | Homepage: | http://www.cisco.com/ | | File Size: | 17388 | | Related CVE(s): | CVE-2008-1749 | | Last Modified: | May 15 04:25:13 2008 |
| MD5 Checksum: | 0a7dfcd9f771e114ed6eafdd02388931 |
|
| /// File Name: |
dsa-1577-1.txt |
Description:
|
Debian Security Advisory 1577-1 - Stephen Gran and Mark Hymers discovered that some scripts run by GForge, a collaborative development tool, open files in write mode in a potentially insecure manner. This may be exploited to overwrite arbitrary files on the local system.
| | Homepage: | http://www.debian.org/security | | File Size: | 5237 | | Related CVE(s): | CVE-2008-0167 | | Last Modified: | May 15 03:51:39 2008 |
| MD5 Checksum: | 81f578fa45368e855560e91c2dd60d4e |
|
| /// File Name: |
dsa-1576-1.txt |
Description:
|
Debian Security Advisory 1576-1 - The recently announced vulnerability in Debian's openssl package (DSA-1571-1, CVE-2008-0166) indirectly affects OpenSSH. As a result, all user and host keys generated using broken versions of the openssl package must be considered untrustworthy, even after the openssl update has been applied.
| | Homepage: | http://www.debian.org/security | | File Size: | 15197 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 15 03:50:46 2008 |
| MD5 Checksum: | a79fd4e6e656f73f69d8c73cf16f3723 |
|
| /// File Name: |
glsa-200805-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-15 - Kentaro Oda reported an infinite loop in the file field.c when parsing an MP3 file with an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0'. Versions less than 0.15.1b-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2415 | | Related CVE(s): | CVE-2008-2109 | | Last Modified: | May 15 03:49:12 2008 |
| MD5 Checksum: | a924bb8eeda8ff0dbe39e3cd31978d5e |
|
| /// File Name: |
USN-612-6.txt |
Description:
|
Ubuntu Security Notice 612-6 - USN-612-3 addressed a weakness in OpenSSL certificate and keys generation in OpenVPN by adding checks for vulnerable certificates and keys to OpenVPN. A regression was introduced in OpenVPN when using TLS and multi-client/server which caused OpenVPN to not start when using valid SSL certificates. It was also found that openssl-vulnkey from openssl-blacklist would fail when stderr was not available. This caused OpenVPN to fail to start when used with applications such as NetworkManager. A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates. This vulnerability only affects operating systems which (like Ubuntu) are based on Debian. However, other systems can be indirectly affected if weak keys are imported into them.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 8081 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 15 03:47:36 2008 |
| MD5 Checksum: | 1b121b32f5b219bf781da551ba98e314 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
