Section: .. / 0601-advisories /
| /// File Name: |
dsa-945-1.txt |
Description:
|
Debian Security Advisory DSA 945-1 - Javier Fernández-Sanguino Peña from the Debian Security Audit project discovered that two scripts in antiword, utilities to convert Word files to text and Postscript, create a temporary file in an insecure fashion.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 7643 | | Last Modified: | Jan 22 23:34:45 2006 |
| MD5 Checksum: | 8ee15ae054608a7f20028994c125b713 |
|
| /// File Name: |
WBNews-XSS.txt |
Description:
|
WBNews versions less than v1.1.0 suffer from XSS in the "Name" field.
| | Author: | DragoN | | File Size: | 205 | | Last Modified: | Jan 22 23:31:56 2006 |
| MD5 Checksum: | a22d430df32ef543b9bed5ac9cae045f |
|
| /// File Name: |
PowerPortal-XSS.txt |
Description:
|
PowerPortal suffers from multiple XSS problems. POC included.
| | Author: | Night_Warrior | | File Size: | 512 | | Last Modified: | Jan 22 23:30:07 2006 |
| MD5 Checksum: | 75af29d99cb3434170dce31f9ea69244 |
|
| /// File Name: |
PHPFusebox4.0.6.txt |
Description:
|
PHP Fusebox 4.0.6 suffers from an HTML injection vulnerability. POC included.
| | Author: | Ph03n1X | | File Size: | 882 | | Last Modified: | Jan 22 23:04:11 2006 |
| MD5 Checksum: | 30cfeb71119bd38542eedca6211d9f28 |
|
| /// File Name: |
wccd-vuln.txt |
Description:
|
ThinkSECURE has discovered that certain well-known wireless chipsets, using vulnerable drivers under the Windows XP operating system and when configured to use WEP with Open Authentication, can be tricked by a 802.11-based wireless client adapter operating in master mode ("the attacker") to discard the WEP settings and negotiate a post- association connection with the attacker in the clear.
| | Author: | ThinkSECURE | | Homepage: | http://www.securitystartshere.net/page-vulns-wccd.htm | | File Size: | 5684 | | Last Modified: | Jan 22 23:01:21 2006 |
| MD5 Checksum: | 2d6a6971990fbf6c6f64e6c1e24758cb |
|
| /// File Name: |
ZyXelP2000W.txt |
Description:
|
The Zyxel P2000W (Version 2) VoIP wireless phone has an undocumented port, UDP/9090, that provides an unauthenticated attacker information about the phone, specifically the phone's MAC address and software version.
| | Author: | Shawn Merdinger | | File Size: | 1083 | | Last Modified: | Jan 22 22:50:29 2006 |
| MD5 Checksum: | 96ca6bc9af5bca592324b49bf42a323f |
|
| /// File Name: |
MPMHP-180W.txt |
Description:
|
MPM HP-180W VoIP Wireless Desktop Phone has an undocumented port and service, UDP/9090, that provides an unauthenticated attacker information about the phone, specifically the phone's MAC address and software version.
| | Author: | Shawn Merdinger | | File Size: | 1010 | | Last Modified: | Jan 22 22:48:58 2006 |
| MD5 Checksum: | fadfe8f8221ae189065ce55a612f150c |
|
| /// File Name: |
ClipcommCPW-100E.txt |
Description:
|
An undocumented port and debug service on TCP/60023 enables an attacker to access without authentication the phone's configuration/debug shell via telnet.
| | Author: | Shawn Merdinger | | File Size: | 1417 | | Last Modified: | Jan 22 22:47:48 2006 |
| MD5 Checksum: | 625deac3a49e8ba2266f9485914de057 |
|
| /// File Name: |
SenaoSI-7800H.txt |
Description:
|
An undocumented open port, UDP/17185, VxWorks WDB remote debugging (wdbrpc) is left in from development. This open port may allow an attacker unauthenticated access to the phone's OS, yield sensitive information, create opportunities for DoS, etc.
| | Author: | Shawn Merdinger | | File Size: | 1206 | | Last Modified: | Jan 22 22:46:33 2006 |
| MD5 Checksum: | ef73181990373bb697dbdc05b50f365d |
|
| /// File Name: |
ACTP202S.txt |
Description:
|
The ACT P202S VoIP 802.11b wireless phone, version 1.01.21 on VxWorks has three undocumented ports and extraneous services that can be exploited by attackers.
| | Author: | Shawn Merdinger | | File Size: | 1194 | | Last Modified: | Jan 22 22:44:43 2006 |
| MD5 Checksum: | 08ca45f0286cca81f0131d17a74e1cb3 |
|
| /// File Name: |
dsa-943-1.txt |
Description:
|
Debian Security Advisory DSA 943-1 - Jack Louis discovered an integer overflow in Perl, Larry Wall's Practical Extraction and Report Language, that allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via specially crafted content that is passed to vulnerable format strings of third party software.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 14954 | | Related CVE(s): | CVE-2005-3962 | | Last Modified: | Jan 22 01:03:10 2006 |
| MD5 Checksum: | 115e28fca2fb2ddfd1fb58f264dbbd57 |
|
| /// File Name: |
snmptradFormat.txt |
Description:
|
There is a format string vulnerability in the snmptrapd server from the cmu-snmp package. Versions cmu-snmp-linux-3.7 and cmu-snmp-linux-3.6 have been verified as susceptible.
| | Author: | Seregorn | | Homepage: | http://www.digitalarmaments.com/ | | File Size: | 2340 | | Last Modified: | Jan 22 01:01:00 2006 |
| MD5 Checksum: | c367e33e8de15c35eaebd77b946d4613 |
|
| /// File Name: |
glsa-200601-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200601-10 - Adam Gowdiak discovered multiple vulnerabilities in the Java Runtime Environment's Reflection APIs that may allow untrusted applets to elevate privileges. Versions less than 1.4.2.09 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4218 | | Last Modified: | Jan 22 00:56:35 2006 |
| MD5 Checksum: | 864ded9758612470ea0c0852d6d9ffbb |
|
| /// File Name: |
bbcodeURL.txt |
Description:
|
PunBB BBCode suffers from a script injection vulnerability.
| | Author: | Night_Warrior | | File Size: | 774 | | Last Modified: | Jan 22 00:56:09 2006 |
| MD5 Checksum: | 0a0e8b3b5364209e9cb3b12fb999de4f |
|
| /// File Name: |
USN-242-1.txt |
Description:
|
Ubuntu Security Notice USN-242-1 - Aliet Santiesteban Sifontes discovered a remote denial of service vulnerability in the attachment handler of mailman. An email with an attachment whose filename contained invalid UTF-8 characters caused mailman to crash. Mailman did not sufficiently verify the validity of email dates. Very large numbers in dates caused mailman to crash.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4374 | | Related CVE(s): | CVE-2005-3573, CVE-2005-4153 | | Last Modified: | Jan 22 00:54:38 2006 |
| MD5 Checksum: | b2f166cc50d43a8c725260c0bad97de9 |
|
| /// File Name: |
thinksecureWEP.txt |
Description:
|
ThinkSECURE has discovered that certain well-known wireless chipsets, using vulnerable drivers under the Windows XP operating system and when configured to use WEP with Open Authentication, can be tricked by a 802.11-based wireless client adapter operating in master mode ("the attacker") to discard the WEP settings and negotiate a post-association connection with the attacker in the clear.
| | Author: | Christopher Low, Julian Ho | | Homepage: | http://www.securitystartshere.net/page-vulns-wccd.htm | | File Size: | 5885 | | Last Modified: | Jan 22 00:45:39 2006 |
| MD5 Checksum: | fd92f7c3e6caf7f856af5dc2c398774b |
|
| /// File Name: |
dsa-942-1.txt |
Description:
|
Debian Security Advisory DSA 942-1 - A design error has been discovered in the Albatross web application toolkit that causes user supplied data to be used as part of template execution and hence arbitrary code execution.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 3550 | | Related CVE(s): | CVE-2006-0044 | | Last Modified: | Jan 22 00:44:01 2006 |
| MD5 Checksum: | 2da3636765a726d3a4827f759173bf57 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
