Section: .. / 0603-advisories /
| /// File Name: |
dsa-1014-1.txt |
Description:
|
Unavailable.
| | File Size: | 4319 | | Last Modified: | Mar 31 10:01:20 2006 |
| MD5 Checksum: | 6b1e5060786bbc908fbc8c7be2cda8d9 |
|
| /// File Name: |
sa19145.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for lurker. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and disclose and manipulate sensitive information.
| | Homepage: | http://secunia.com/advisories/19145/ | | File Size: | 4262 | | Last Modified: | Mar 14 20:33:49 2006 |
| MD5 Checksum: | 0d2f5503dc7f34c08d514755705db48b |
|
| /// File Name: |
passwordsafe30.txt |
Description:
|
PasswordSafe 3.0 has a weak random number generator.
| | Homepage: | http://www.elcomsoft.com/ | | File Size: | 4230 | | Last Modified: | Apr 1 05:46:52 2006 |
| MD5 Checksum: | f9268d272cd48746fde2b144d543db6f |
|
| /// File Name: |
sa19234.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19234/ | | File Size: | 4222 | | Last Modified: | Mar 13 21:05:36 2006 |
| MD5 Checksum: | 8b8fae95b2bc7dcee781d5986e664b2f |
|
| /// File Name: |
FedExKinkos.txt |
Description:
|
The ExpressPay stored-value card system used by FedEx Kinko's is vulnerable to attack. An attacker who gains the ability to alter the data stored on the card can use FedEx Kinko's services fraudulently and anonymously, and can even obtain cash from the store.
| | Author: | Strom Carlson | | File Size: | 4201 | | Last Modified: | Mar 2 11:14:21 2006 |
| MD5 Checksum: | 985d363876eb5c5a93bde705a7031d22 |
|
| /// File Name: |
glsa-200603-23.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-23 - NetHack, Slash'EM and Falcon's Eye have been found to be incompatible with the system used for managing games on Gentoo Linux. As a result, they cannot be played securely on systems with multiple users. Versions less than or equal to 3.4.3-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4091 | | Last Modified: | Mar 31 10:02:11 2006 |
| MD5 Checksum: | 0b9cce49043361f430c188ab5c66fd0d |
|
| /// File Name: |
sa19152.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for tar. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) and to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19152/ | | File Size: | 4055 | | Last Modified: | Mar 9 04:09:52 2006 |
| MD5 Checksum: | 03363f82f0c619128da042a576bec411 |
|
| /// File Name: |
advisory_032006.115.txt |
Description:
|
KisMAC versions below 73p and development versions below 113 suffer from a stack overflow when handling specially crafted 802.11 management frames.
| | Author: | Stefan Esser | | Homepage: | http://www.hardened-php.net/ | | File Size: | 4038 | | Last Modified: | Apr 1 05:44:36 2006 |
| MD5 Checksum: | c01d0c22dc2e91f32789f4e6f9ba3078 |
|
| /// File Name: |
secunia-ArGoSoft.txt |
Description:
|
Secunia Research has discovered a vulnerability in ArGoSoft Mail Server Pro, which can be exploited by malicious people to conduct script insertion attacks. ArGoSoft Mail Server Pro version 1.8.8.5 is affected. Earlier versions may also be affected.
| | Homepage: | http://secunia.com/ | | File Size: | 3976 | | Last Modified: | Mar 2 10:51:11 2006 |
| MD5 Checksum: | 5a7ef49ea3a32df0039606f81bb050cc |
|
| /// File Name: |
sa19200.txt |
Description:
|
Secunia Security Advisory - Karl Řie has reported a security issue in Ubuntu, which can be exploited by malicious, local users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/19200/ | | File Size: | 3967 | | Last Modified: | Mar 13 21:05:36 2006 |
| MD5 Checksum: | 918a5c27bddbea73cbca4879363adc65 |
|
| /// File Name: |
phpRPC07.txt |
Description:
|
phpRPC versions 0.7 and below suffer from a remote code execution flaw.
| | Author: | James Bercegay | | Homepage: | http://www.gulftech.org/ | | File Size: | 3931 | | Last Modified: | Mar 2 10:22:30 2006 |
| MD5 Checksum: | 2a2c757620622b7e39fa6130886818de |
|
| /// File Name: |
evilcube.txt |
Description:
|
Cube engine versions 2005_08_29 and below suffer from buffer overflow, invalid memory access, and crash vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | evilcube.zip | | File Size: | 3881 | | Last Modified: | Mar 8 09:28:05 2006 |
| MD5 Checksum: | 736d35d2b9ee6d9a2ed2ad8dbb211983 |
|
| /// File Name: |
SCOSA-2006.11.txt |
Description:
|
SCO Security Advisory - OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSH Multiple Vulnerabilities: A vulnerability has been reported in the OpenSSH scp utilities. This issue may permit a malicious scp server to corrupt files on a client system when files are copied.
| | Author: | SCO | | Homepage: | http://www.sco.com/support/security/index.html | | File Size: | 3851 | | Last Modified: | Mar 15 21:13:20 2006 |
| MD5 Checksum: | a76853adb7e1876553a84b4c1ccb7e87 |
|
| /// File Name: |
sa19361.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for sendmail. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19361/ | | File Size: | 3797 | | Last Modified: | Mar 23 21:22:03 2006 |
| MD5 Checksum: | 4f92453763621147e1167159d888a801 |
|
| /// File Name: |
CodeScan-Horde.txt |
Description:
|
Horde versions 3.09 and below suffer from a unauthenticated arbitrary file reading vulnerability.
| | Author: | CodeScan | | Homepage: | http://www.codescan.com/ | | File Size: | 3787 | | Last Modified: | Mar 15 05:26:52 2006 |
| MD5 Checksum: | 466ded4592eec15dbe5071b09396dbf2 |
|
| /// File Name: |
secunia-dwarf.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in Dwarf HTTP Server, which can be exploited by malicious people to disclose potentially sensitive information and to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/secunia_research/ | | File Size: | 3764 | | Last Modified: | Mar 13 22:49:15 2006 |
| MD5 Checksum: | a6f7a78d3dc45a32d6d74abc3125f607 |
|
| /// File Name: |
sa19197.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for gpg. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19197/ | | File Size: | 3760 | | Last Modified: | Mar 13 21:05:36 2006 |
| MD5 Checksum: | bc36b6d835435e6a21f3cdff36f98ef6 |
|
| /// File Name: |
03.02.06-3.txt |
Description:
|
iDefense Security Advisory 03.02.06 - The EWC Dantz Retrospect 7 backup client listens on TCP port 497 for commands from the central backup server. Sending a specially crafted malformed packet to this socket can force the backup client to terminate. This allows for an unauthenticated attacker to effectively disable the network backup services for a target network. This exploit has been tested with the Dantz Retrospect Client version 7.0.107. This is the latest available on the vendor's website.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3746 | | Last Modified: | Mar 3 11:22:57 2006 |
| MD5 Checksum: | 325e42b6a20e68235663afc6dc043a87 |
|
| /// File Name: |
sa19405.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for freeradius. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/19405/ | | File Size: | 3744 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 616d5754b3bf5517a0e4477a7a2ca7b2 |
|
| /// File Name: |
USN-262-1.txt |
Description:
|
Ubuntu Security Notice USN-262-1 - Karl Řie discovered that the Ubuntu 5.10 installer failed to clean passwords in the installer log files. Since these files were world-readable, any local user could see the password of the first user account, which has full sudo privileges by default.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3735 | | Last Modified: | Mar 13 22:12:36 2006 |
| MD5 Checksum: | 67daa496198870fbd4f3c4b30e09ac5b |
|
| /// File Name: |
ncpVPNPKI.txt |
Description:
|
The NCP VPN/PKI client version 8.11 Build 146 is susceptible to local privilege escalation and denial of service attacks.
| | Author: | Ramon Kukla | | File Size: | 3728 | | Last Modified: | Mar 3 04:41:28 2006 |
| MD5 Checksum: | 7b36afd10ec1824c97de7072867633ff |
|
| /// File Name: |
TA06-081A.txt |
Description:
|
Technical Cyber Security Alert TA06-081A - Sendmail contains a race condition caused by the improper handling of asynchronous signals. In particular, by forcing the SMTP server to have an I/O timeout at exactly the correct instant, an attacker may be able to execute arbitrary code with the privileges of the Sendmail process.
| | Homepage: | http://www.us-cert.gov | | File Size: | 3721 | | Last Modified: | Mar 23 21:45:18 2006 |
| MD5 Checksum: | ec8b48a4c9fdd7f27a04358327fdefa5 |
|
| /// File Name: |
glsa-200603-22.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-22 - Multiple vulnerabilities in PHP allow remote attackers to inject arbitrary HTTP headers, perform cross site scripting or in some cases execute arbitrary code. Versions less than 4.4.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3697 | | Last Modified: | Mar 28 07:40:29 2006 |
| MD5 Checksum: | 81837311cd1f94ef97031e5edcde2938 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
