Section: .. / 0703-advisories /
| /// File Name: |
sa24459.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for ktorrent. This fixes some vulnerabilities, which can be exploited by malicious people to overwrite arbitrary files on a user's system or to potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24459/ | | File Size: | 4497 | | Last Modified: | Mar 13 23:06:07 2007 |
| MD5 Checksum: | 91203b34ed58ab60d3d57b891e0f2a5e |
|
| /// File Name: |
glsa-200703-21.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-21 - Several vulnerabilities were found in PHP by the Hardened-PHP Project and other researchers. These vulnerabilities include a heap-based buffer overflow in htmlentities() and htmlspecialchars() if called with UTF-8 parameters, and an off-by-one error in str_ireplace(). Other vulnerabilities were also found in the PHP4 branch, including possible overflows, stack corruptions and a format string vulnerability in the *print() functions on 64 bit systems. Versions less than 5.2.1-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4468 | | Related CVE(s): | CVE-2006-5465, CVE-2007-0906, CVE-2007-0907, CVE-2007-0908, CVE-2007-0909, CVE-2007-0910, CVE-2007-0911, CVE-2007-0988, CVE-2007-1286, CVE-2007-1375, CVE-2007-1376, CVE-2007-1380, CVE-2007-1383 | | Last Modified: | Mar 21 04:11:24 2007 |
| MD5 Checksum: | 15e2795e889773a85cb4c7c4f289c219 |
|
| /// File Name: |
secunia-evolution.txt |
Description:
|
Secunia Research has discovered a vulnerability in Evolution, which can be exploited by malicious people to potentially compromise a vulnerable system. A format string error in the "write_html()" function in calendar/gui/ e-cal-component-memo-preview.c when displaying a memo's categories can potentially be exploited to execute arbitrary code via a specially crafted shared memo containing format specifiers. Evolution version 2.8.2.1 is affected. Other versions may also be affected.
| | Author: | Ulf Harnhammar | | Homepage: | http://secunia.com/ | | File Size: | 4462 | | Related CVE(s): | CVE-2007-1002 | | Last Modified: | Mar 22 02:43:31 2007 |
| MD5 Checksum: | c25dd0d5044c196a88162da016af7cb5 |
|
| /// File Name: |
sa24625.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for squid. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24625/ | | File Size: | 4439 | | Last Modified: | Mar 28 04:15:18 2007 |
| MD5 Checksum: | 7c3cf7728a01047bd94a4936fd43f691 |
|
| /// File Name: |
sa24573.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for libwpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/24573/ | | File Size: | 4388 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | dc2ea2440bbbe3cc4f20b776e0b5a732 |
|
| /// File Name: |
sa24482.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially gain escalated privileges, and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/24482/ | | File Size: | 4383 | | Last Modified: | Mar 13 01:30:19 2007 |
| MD5 Checksum: | 95b8b04970cafc84c7a3676e2ba5a20b |
|
| /// File Name: |
MDKSA-2007-053.txt |
Description:
|
Mandriva Linux Security Advisory - Umount allows local users to trigger a NULL dereference and application crash by invoking the program with a pathname for a USB pen drive that was mounted and then physically removed, which might allow the users to obtain sensitive information, including core file contents.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4349 | | Related CVE(s): | CVE-2007-0822 | | Last Modified: | Mar 9 03:22:11 2007 |
| MD5 Checksum: | 317e67816e96f61c41a485f70e42cf34 |
|
| /// File Name: |
TA07-089A.txt |
Description:
|
Technical Cyber Security Alert TA07-089A - A stack buffer overflow exists in the code that Microsoft Windows uses to processes animated cursor files. Specifically, Microsoft Windows fails to properly validate the size of an animated cursor file header supplied in animated cursor files. Animated cursor files can be included with HTML files. For instance, a web site can use an animated cursor file to specify the icon that the mouse pointer should use when hovering over a hyperlink. Because of this, malicious web pages and HTML email messages can be used to exploit this vulnerability. In addition, animated cursor files are automatically parsed by Windows Explorer when the containing folder is opened or the file is used as a cursor. Because of this, opening a folder that contains a specially crafted animated cursor file will also trigger this vulnerability. Note that Windows Explorer will process animated cursor files with several different file extensions, such as .ani, .cur, or .ico. Furthermore, Windows will automatically render animated cursor files referenced by HTML documents regardless of the animated cursor file extension. This vulnerability is actively being exploited.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4346 | | Last Modified: | Apr 3 00:28:13 2007 |
| MD5 Checksum: | 83545faadfb01d5347176a9c86e57d39 |
|
| /// File Name: |
sa24448.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for xine-lib. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24448/ | | File Size: | 4307 | | Last Modified: | Mar 13 23:06:08 2007 |
| MD5 Checksum: | 34117fc4f95524d7c7a2b9c6d979fc39 |
|
| /// File Name: |
MDKSA-2007-061.txt |
Description:
|
Mandriva Linux Security Advisory - The DS_VideoDecoder_Open function in loader/dshow/DS_VideoDecoder.c in MPlayer 1.0rc1 and earlier does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4263 | | Related CVE(s): | CVE-2007-1387 | | Last Modified: | Mar 14 03:36:02 2007 |
| MD5 Checksum: | 7e80324ab7031cdc524cedfc2ddcfa30 |
|
| /// File Name: |
MDKSA-2007-054.txt |
Description:
|
Mandriva Linux Security Advisory - ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror, allows remote attackers to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4251 | | Related CVE(s): | CVE-2007-1308 | | Last Modified: | Mar 9 04:16:16 2007 |
| MD5 Checksum: | a77962f885d2c63b82cb3cbfea4a21b7 |
|
| /// File Name: |
MDKSA-2007-055.txt |
Description:
|
Mandriva Linux Security Advisory - The DMO_VideoDecoder_Open function in loader/dmo/DMO_VideoDecoder.c in MPlayer 1.0rc1 and earlier does not set the biSize before use in a memcpy, which allows user-assisted remote attackers to cause a buffer overflow and possibly execute arbitrary code.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4249 | | Related CVE(s): | CVE-2007-1246 | | Last Modified: | Mar 9 04:16:56 2007 |
| MD5 Checksum: | 06eeabeee1d7b3c4dcad4dc31f13e7c8 |
|
| /// File Name: |
glsa-200703-18.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-18 - Georgi Guninski reported a possible integer overflow in the code handling text/enhanced or text/richtext MIME emails. Additionally, various researchers reported errors in the JavaScript engine potentially leading to memory corruption. Additionally, the binary version of Mozilla Thunderbird includes a vulnerable NSS library which contains two possible buffer overflows involving the SSLv2 protocol. Versions less than 1.5.0.10 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4051 | | Related CVE(s): | CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, CVE-2007-1282 | | Last Modified: | Mar 20 06:53:10 2007 |
| MD5 Checksum: | 6811970b6b513a48aed797c279fe2975 |
|
| /// File Name: |
03.29.07-1.txt |
Description:
|
iDefense Security Advisory 03.29.07 - Remote exploitation of a input validation vulnerability in IBM Corp.'s Lotus Sametime allows attackers to execute arbitrary code in the context of the user viewing a malicious web page. The problem specifically exists in the STJNILoader.ocx component of IBM Corp.'s Lotus Sametime product. This ActiveX control is safe for scripting and exports a LoadLibrary function that does not properly sanitize input. iDefense has confirmed that this vulnerability is present in IBM Corp.'s Lotus Sametime STJNILoader.ocx version 3.1.0.26.
| | Author: | Andrew Christensen | | Homepage: | http://www.idefense.com/ | | File Size: | 4033 | | Last Modified: | Apr 2 23:28:54 2007 |
| MD5 Checksum: | d2a6b72234e867756deaf189de4faed8 |
|
| /// File Name: |
MDKSA-2007-071.txt |
Description:
|
Mandriva Linux Security Advisory - Integer overflow in X MultiMedia System (xmms) 1.2.10, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which triggers memory corruption. Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack- based buffer overflow.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4030 | | Related CVE(s): | CVE-2007-0653, CVE-2007-0654 | | Last Modified: | Apr 2 23:32:09 2007 |
| MD5 Checksum: | 342b18e956fca5df199d1e16e3964f76 |
|
| /// File Name: |
03.23.07-1.txt |
Description:
|
iDefense Security Advisory 03.23.07 - Remote exploitation of a password bypass vulnerability in DataRescue Inc.'s IDA Pro Remote Debugger Server allows attackers to execute arbitrary code under the context of the user who is running the remote debugger server. iDefense has confirmed the existence of this vulnerability in the remote debugger server for Windows and Linux from IDA Pro versions 5.0 and 5.1. It is suspected that the MacOS X version and earlier versions are also affected.
| | Author: | enhalos | | Homepage: | http://www.idefense.com/ | | File Size: | 3994 | | Last Modified: | Mar 24 03:05:08 2007 |
| MD5 Checksum: | 4e0caef6b3f01e800f6daff9d177c1e6 |
|
| /// File Name: |
sa24509.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in PHProjekt, which can be exploited by malicious users to conduct cross-site scripting, script insertion, cross-site request forgery, and SQL injection attacks and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24509/ | | File Size: | 3880 | | Last Modified: | Mar 17 03:22:27 2007 |
| MD5 Checksum: | 43f462c89194ea947f373ec054294de0 |
|
| /// File Name: |
SA-20070309-0.txt |
Description:
|
SEC-CONSULT Security Advisory 20070309-0 - Starting with version 5, MySQL provides access to the database metadata. When using functions that operate on strings in combination with subselects on information_schema tables and additional sorting of the results with the ORDER BY clause, a null-pointer dereferencation takes place causing a segmentation fault. This allows an attacker to crash the MySQL database. Versions below 5.0.37 are affected.
| | Author: | Bernhard Mueller, S.Streichbier | | Homepage: | http://www.sec-consult.com | | File Size: | 3852 | | Last Modified: | Mar 13 23:50:15 2007 |
| MD5 Checksum: | dc17b12aac7afeadc3dec710fdb0b1c5 |
|
| /// File Name: |
sa24497.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Sun Java Dynamic Management Kit (DMK), which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24497/ | | File Size: | 3840 | | Last Modified: | Mar 13 01:30:19 2007 |
| MD5 Checksum: | eebf5d427877818a64ccc74df749f52a |
|
| /// File Name: |
03.15.07-1.txt |
Description:
|
iDefense Security Advisory 03.15.07 - Local exploitation of an input processing vulnerability within Horde Project's Horde and IMP allows attackers to delete arbitrary files. This vulnerability specifically exists due to the improper handling of the output from an execution of find(1). The output from find(1) is passed directly to a "for X in Y; do" as the Y value. Since the Y value is delimited by spaces, the for loop will process files containing spaces in their path as separate files. An attacker can create a file path containing spaces to manipulate the output from find(1).
| | Homepage: | http://www.idefense.com/ | | File Size: | 3824 | | Last Modified: | Mar 20 05:56:48 2007 |
| MD5 Checksum: | 37895c99333e5f22c5409a1ca8d7816f |
|
| /// File Name: |
n.runs-SA-2007.004.txt |
Description:
|
PHProjekt version 5.2.0 suffers from cross site scripting and filter evasion vulnerabilities.
| | Author: | Alexios Fakos | | Homepage: | http://www.nruns.com/ | | File Size: | 3786 | | Last Modified: | Mar 20 04:03:07 2007 |
| MD5 Checksum: | 18ee3380c9805f3b32320c501dee4051 |
|
| /// File Name: |
n.runs-SA-2007.005.txt |
Description:
|
PHProjekt version 5.2.0 suffers from a cross site request forgery vulnerability.
| | Author: | Alexios Fakos | | Homepage: | http://www.nruns.com/ | | File Size: | 3784 | | Last Modified: | Mar 20 04:03:59 2007 |
| MD5 Checksum: | 6279521fc77b42d5bd00fcb54de756c9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
