Section: .. / 0602-advisories /
| /// File Name: |
Bypass.pdf |
Description:
|
Trend Micro ServerProtect version 5.58 can be easily circumvented via the mechanism that limits how many files to scan.
| | Author: | Mert SARICA | | File Size: | 597713 | | Last Modified: | Feb 2 20:54:52 2006 |
| MD5 Checksum: | 02f396549e367d3a97fae05d5f1e0d6d |
|
| /// File Name: |
USN-250-1.txt |
Description:
|
Ubuntu Security Notice USN-250-1 - Herbert Xu discovered a remote Denial of Service vulnerability in the ICMP packet handler. In some situations a memory allocation was released twice, which led to memory corruption. A remote attacker could exploit this to crash the machine.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 39490 | | Last Modified: | Feb 15 20:03:05 2006 |
| MD5 Checksum: | 979caaeab5bc4d763627f9bdff7f0128 |
|
| /// File Name: |
sa18861.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18861/ | | File Size: | 36744 | | Last Modified: | Feb 15 19:37:35 2006 |
| MD5 Checksum: | d57e4d38f2ea36ef54ac611f74b53878 |
|
| /// File Name: |
USN-249-1.txt |
Description:
|
Ubuntu Security Notice USN-249-1 - The splash image handler in xpdf did not check the validity of coordinates. By tricking a user into opening a specially crafted PDF file, an attacker could exploit this to trigger a buffer overflow which could lead to arbitrary code execution with the privileges of the user.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 31908 | | Last Modified: | Feb 15 20:02:25 2006 |
| MD5 Checksum: | c2674e0aec4e77150e6a2ca4482117e1 |
|
| /// File Name: |
dsa-977-1.txt |
Description:
|
Debian Security Advisory DSA 977-1 - Two vulnerabilities have been discovered in heimdal, a free implementation of Kerberos 5.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 29818 | | Last Modified: | Feb 16 23:10:04 2006 |
| MD5 Checksum: | bc2741a8129951cfcdd54e44d0bc4539 |
|
| /// File Name: |
sa18860.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued updates for xpdf, poppler, and kdegraphics. These fix a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/18860/ | | File Size: | 29555 | | Last Modified: | Feb 15 19:37:35 2006 |
| MD5 Checksum: | e560b84c8a8d89b9e7bd35854a85f09d |
|
| /// File Name: |
dsa-957-2.txt |
Description:
|
Debian Security Advisory DSA 957-2 - Florian Weimer discovered that delegate code in ImageMagick is vulnerable to shell command injection using specially crafted file names. This allows attackers to encode commands inside of graphic commands. With some user interaction, this is exploitable through Gnus and Thunderbird. This update filters out the '$' character as well, which was forgotton in the former update.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 27271 | | Related CVE(s): | CVE-2005-4601 | | Last Modified: | Feb 2 11:57:30 2006 |
| MD5 Checksum: | f21e9c7eaff11f09f1eacdb9f2617500 |
|
| /// File Name: |
sa18894.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for heimdal. This fixes two vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18894/ | | File Size: | 26961 | | Last Modified: | Feb 16 22:45:30 2006 |
| MD5 Checksum: | 4115627f7ccd963e0f6c01a631b3cde5 |
|
| /// File Name: |
USN-253-1.txt |
Description:
|
Ubuntu Security Notice USN-253-1 - A remote Denial of Service vulnerability was discovered in the heimdal implementation of the telnet daemon. A remote attacker could force the server to crash due to a NULL de-reference before the user logged in, resulting in inetd turning telnetd off because it forked too fast.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 22775 | | Last Modified: | Feb 20 21:28:58 2006 |
| MD5 Checksum: | 6dddcaee1240a74524ca1fbd6363fe8c |
|
| /// File Name: |
USN-247-1.txt |
Description:
|
Ubuntu Security Notice USN-247-1 - A privilege escalation flaw has been found in the heimdal rsh (remote shell) server. This allowed an authenticated attacker to overwrite arbitrary files and gain ownership of them.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 22677 | | Last Modified: | Feb 13 09:40:06 2006 |
| MD5 Checksum: | bb12e4b5b2a1702e44434aeefc8350be |
|
| /// File Name: |
sa18806.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for heimdal. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18806/ | | File Size: | 21453 | | Last Modified: | Feb 13 20:29:16 2006 |
| MD5 Checksum: | 754e60eee02215cbb1cf53372347e3ce |
|
| /// File Name: |
sa18961.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for heimdal. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18961/ | | File Size: | 21378 | | Last Modified: | Feb 20 21:08:24 2006 |
| MD5 Checksum: | 67adad0468446add178f74bcedf82a7e |
|
| /// File Name: |
dsa-964-1.txt |
Description:
|
Debian Security Advisory DSA 964-1 - A problem has been discovered in gnocatan, the computer version of the settlers of Catan boardgame, that can lead the server an other clients to exit via an assert, and hence does not permit the execution of arbitrary code. The game has been renamed into Pioneers after the release of Debian sarge.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 18902 | | Last Modified: | Feb 6 03:53:06 2006 |
| MD5 Checksum: | 27c936acdb8c15a4ded38fc80c442a13 |
|
| /// File Name: |
SUSE-SA-2006-011.txt |
Description:
|
SUSE Security Announcement - A new release of Heimdal fixes a file ownership flaw and a bug in the telnet server.
| | Homepage: | http://www.suse.com | | File Size: | 18109 | | Related CVE(s): | CVE-2006-0582, CVE-2006-0677 | | Last Modified: | Feb 26 05:44:00 2006 |
| MD5 Checksum: | 25421df7037a142d3b4812b2350a6aba |
|
| /// File Name: |
sa18692.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for gnocatan. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18692/ | | File Size: | 16971 | | Last Modified: | Feb 4 15:12:24 2006 |
| MD5 Checksum: | d84f759ea0c00944b4296f0f52150622 |
|
| /// File Name: |
cisco-SA-20060215-guard-auth.txt |
Description:
|
A vulnerability in versions 5.0(1) and 5.0(3) of the software used in Cisco Anomaly Detection and Mitigation appliances and service modules may allow unauthorized users to get unauthorized access to the devices and/or escalate their privileges if Terminal Access Controller Access Control System Plus (TACACS+) is incompletely configured.
| | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20060215-guard.shtml | | File Size: | 16280 | | Last Modified: | Feb 20 22:17:13 2006 |
| MD5 Checksum: | 5e8c98bd203dfe6fa3933f7107b171ca |
|
| /// File Name: |
MDKSA-2006-033.txt |
Description:
|
Mandriva Linux Security Advisory - OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 16194 | | Last Modified: | Feb 3 01:09:36 2006 |
| MD5 Checksum: | 4d905d27c8db9c49cf629add06766d01 |
|
| /// File Name: |
sa18811.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in SUSE Linux, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18811/ | | File Size: | 14960 | | Last Modified: | Feb 13 20:29:16 2006 |
| MD5 Checksum: | a4908ce695a1e79b2498d5e00c95e3dd |
|
| /// File Name: |
SUSE-SA-2006-009.txt |
Description:
|
SUSE Security Announcement - With certain handcraftable signatures GPG was returning a 0 (valid signature) when used on command-line with option --verify. This only affects GPG version 1.4.x, so it only affects SUSE Linux 9.3 and 10.0. Other SUSE Linux versions are not affected. This could make automated checkers, like for instance the patch file verification checker of the YaST Online Update, pass malicious patch files as correct.
| | Author: | Ludwig Nussel | | Homepage: | http://www.suse.com | | File Size: | 14876 | | Last Modified: | Feb 20 23:50:34 2006 |
| MD5 Checksum: | da20b8c447a55ea800538ef715169f5c |
|
| /// File Name: |
fcron.txt |
Description:
|
Fcron (convert-fcrontab) allow users to corruption on heap section.
| | Author: | Adam Zabrocki | | File Size: | 14480 | | Last Modified: | Feb 2 20:31:30 2006 |
| MD5 Checksum: | ca84b3a25d392ff23f445f59612c44ce |
|
| /// File Name: |
USN-251-1.txt |
Description:
|
Ubuntu Security Notice USN-251-1 - Evgeny Legerov discovered a buffer overflow in the DER format decoding function of the libtasn library. This library is mainly used by the GNU TLS library; by sending a specially crafted X.509 certificate to a server which uses TLS encryption/authentication, a remote attacker could exploit this to crash that server process and possibly even execute arbitrary code with the privileges of that server.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13953 | | Last Modified: | Feb 16 23:08:01 2006 |
| MD5 Checksum: | 9875e11fe10e86b3eb4a84c820f6c987 |
|
| /// File Name: |
FLSA-2006-152809.txt |
Description:
|
Fedora Legacy Update Advisory - Updated squid package fixes security issues
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 13306 | | Last Modified: | Feb 20 21:39:21 2006 |
| MD5 Checksum: | ad5527f16346e4e158d5415b1a1a7869 |
|
| /// File Name: |
dsa-975-1.txt |
Description:
|
Debian Security Advisory DSA 975-1 - Marcus Meissner discovered that attackers can trigger a buffer overflow in the path handling code by creating or abusing existing symlinks, which may lead to the execution of arbitrary code.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 12628 | | Last Modified: | Feb 15 19:55:36 2006 |
| MD5 Checksum: | ac010d88bda25796222739163b08a5e7 |
|
| /// File Name: |
sa18918.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for gnutls. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18918/ | | File Size: | 12567 | | Last Modified: | Feb 18 00:46:33 2006 |
| MD5 Checksum: | 23beb2d68db2e3557a8e6c924d987853 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
