Section: .. / 0705-advisories /
| /// File Name: |
sa25153.txt |
Description:
|
Secunia Security Advisory - Jesper Jurcenoks has discovered some vulnerabilities in Advanced Guestbook, which can be exploited by malicious people to disclose sensitive information or to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/25153/ | | File Size: | 3143 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 53302980ed4ccec3ed53a869013110c9 |
|
| /// File Name: |
sa25152.txt |
Description:
|
Secunia Security Advisory - Jean-Sebastien Guay-Leroux has reported a vulnerability in Panda AntiVirus, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25152/ | | File Size: | 2437 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 702cc8aa48dce2d3b6b99c5204471efb |
|
| /// File Name: |
sa25151.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious users to manipulate certain data, disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or to compromise a vulnerable system, and by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, or cause a DoS.
| | Homepage: | http://secunia.com/advisories/25151/ | | File Size: | 3356 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 810e5f884bd975f23ff543bb22741d21 |
|
| /// File Name: |
sa25150.txt |
Description:
|
Secunia Security Advisory - Three vulnerabilities have been reported in Microsoft Excel, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/25150/ | | File Size: | 4331 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 67b6c2f0ca918756a1ed97077eecfe09 |
|
| /// File Name: |
sa25149.txt |
Description:
|
Secunia Security Advisory - switzer has reported a vulnerability in RSAuction, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/25149/ | | File Size: | 2241 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 59b0b0e68464ee06e8f0dd5e1039d3d7 |
|
| /// File Name: |
sa25148.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in IBM DB2, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25148/ | | File Size: | 2357 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 752abc9d75f846f65d287f5f91c0f258 |
|
| /// File Name: |
sa25142.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for ipsec-tools. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25142/ | | File Size: | 2019 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 5d736f7b683828a911d996e680c5bbfc |
|
| /// File Name: |
sa25138.txt |
Description:
|
Secunia Security Advisory - John Martinelli has reported a vulnerability in Bradford Campus Manager, which can be exploited by malicious people to gain unprivileged access to restricted data.
| | Homepage: | http://secunia.com/advisories/25138/ | | File Size: | 2320 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | a83c068e8846c6aaed2960c78b9aa175 |
|
| /// File Name: |
sa25137.txt |
Description:
|
Secunia Security Advisory - Jean-Sebastien Guay-Leroux has reported a vulnerability in avast!, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25137/ | | File Size: | 2324 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 96ea331f5655647353e75524cc269c42 |
|
| /// File Name: |
sa25122.txt |
Description:
|
Secunia Security Advisory - Jean-Sebastien Guay-Leroux has reported a vulnerability in Barracuda Spam Firewall, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25122/ | | File Size: | 2318 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 1a4eaa0c97f5f3ae0209835571e8e843 |
|
| /// File Name: |
sa23769.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23769/ | | File Size: | 5166 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 8ef593aabd10a079b9c1027c2238b18b |
|
| /// File Name: |
sa22922.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in BearShare, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22922/ | | File Size: | 2187 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 6dca06aa1e71e6dd739b2dd0e3cf8372 |
|
| /// File Name: |
sa25208.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for moinmoin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/25208/ | | File Size: | 4599 | | Last Modified: | May 8 11:46:47 2007 |
| MD5 Checksum: | 030a8129343c5e6270a34b2bb429ec7a |
|
| /// File Name: |
ag-leak.txt |
Description:
|
Advanced Guestbook version 2.4.2 is prone to multiple information disclosure vulnerabilities.
| | Author: | Jesper Jurcenoks | | Homepage: | http://www.netvigilance.com/ | | File Size: | 4950 | | Related OSVDB(s): | 33876 | | Related CVE(s): | CVE-2007-0608 | | Last Modified: | May 8 11:42:12 2007 |
| MD5 Checksum: | 55f6efc225d1bfb0e161cc07b32412a2 |
|
| /// File Name: |
ZDI-07-025.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit this vulnerability. The specific flaw exists in the SpntSvc.exe daemon, bound by default on TCP port 5168 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
| | Author: | Eric DETOISIEN | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3099 | | Related CVE(s): | CVE-2007-2508 | | Last Modified: | May 8 11:25:35 2007 |
| MD5 Checksum: | 56194a1cec388cf8c1ce4cf1d2660283 |
|
| /// File Name: |
ZDI-07-024.txt |
Description:
|
Multiple vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaw exists in the EarthAgent.exe daemon, bound by default on TCP port 3628 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
| | Author: | Eric DETOISIEN | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3024 | | Related CVE(s): | CVE-2007-2508 | | Last Modified: | May 8 11:24:36 2007 |
| MD5 Checksum: | dd15fef7d5127f9f63901107e860298c |
|
| /// File Name: |
sa25162.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25162/ | | File Size: | 2383 | | Last Modified: | May 8 11:22:22 2007 |
| MD5 Checksum: | da9bc031a5a9127ebd50dfb9b0303c3d |
|
| /// File Name: |
sa25186.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Trend Micro ServerProtect, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25186/ | | File Size: | 2811 | | Last Modified: | May 8 11:22:02 2007 |
| MD5 Checksum: | 92a8ac4a3b442ab486e331637de018a5 |
|
| /// File Name: |
sa25169.txt |
Description:
|
Secunia Security Advisory - Arnaud Giersch has reported a weakness in ELinks, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/25169/ | | File Size: | 2660 | | Last Modified: | May 8 11:22:02 2007 |
| MD5 Checksum: | 7e5c8a104d4cc8f08d52230083b73eaa |
|
| /// File Name: |
sa25161.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25161/ | | File Size: | 2024 | | Last Modified: | May 8 11:22:02 2007 |
| MD5 Checksum: | 6be557f1a7c8bf289864fb5ee7d639f8 |
|
| /// File Name: |
glsa-200705-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-08 - Marsu discovered that the set_color_table() function in the SUNRAS plugin is vulnerable to a stack-based buffer overflow. Versions less than 2.2.14 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2455 | | Related CVE(s): | CVE-2007-2356 | | Last Modified: | May 8 11:21:37 2007 |
| MD5 Checksum: | 377379519adff2e46beaf5c2ebabdb87 |
|
| /// File Name: |
glsa-200705-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-07 - Robert Jakabosky discovered an infinite loop triggered by a connection abort when Lighttpd processes carriage return and line feed sequences. Marcus Rueckert discovered a NULL pointer dereference when a server running Lighttpd tries to access a file with a mtime of 0. Versions less than 1.4.14 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2753 | | Related CVE(s): | CVE-2007-1869, CVE-2007-1870 | | Last Modified: | May 8 11:21:20 2007 |
| MD5 Checksum: | 925a28efc763ea7828a49471d1b4e2d8 |
|
| /// File Name: |
05.07.07-1.txt |
Description:
|
iDefense Security Advisory 05.07.07 - Local exploitation of an integer signedness error in Sun Microsystem's Solaris could allow attackers to cause a kernel panic, leading to a DoS condition on the affected computer. The facl() system call is used to set access controls on a file. Due to an improper check on one of the arguments passed to this function, an attacker can cause the kernel allocate a large amount of memory which causes a kernel panic. iDefense has confirmed the existence of this vulnerability in Solaris 10 on x86 and SPARC architectures. It is suspected that earlier versions are also affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3010 | | Last Modified: | May 8 11:12:47 2007 |
| MD5 Checksum: | 352b4c8e0a105b097dc2fdb7ea33c60e |
|
| /// File Name: |
USN-457-1.txt |
Description:
|
Ubuntu Security Notice 457-1 - Arnaud Giersch discovered that elinks incorrectly attempted to load gettext catalogs from a relative path. If a user were tricked into running elinks from a specific directory, a local attacker could execute code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6884 | | Related CVE(s): | CVE-2007-2027 | | Last Modified: | May 8 11:07:09 2007 |
| MD5 Checksum: | c29f2ac88d08f765dce4c1fe7495e6a5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
