Section: .. / 0607-advisories /
| /// File Name: |
sa21219.txt |
Description:
|
Secunia Security Advisory - NSFocus Security Team has reported a vulnerability in various RealSecure/BlackICE products, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21219/ | | File Size: | 3033 | | Last Modified: | Jul 27 21:04:26 2006 |
| MD5 Checksum: | 786e140fc12299a50dd5ed37a38b23b4 |
|
| /// File Name: |
sa21106.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for libtunepimp. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21106/ | | File Size: | 3029 | | Last Modified: | Jul 20 03:49:23 2006 |
| MD5 Checksum: | 892e5a9a2e7ccf414ab6df1d83d9224c |
|
| /// File Name: |
micoDoS.txt |
Description:
|
MICO versions 2.3.12 and 2.3.12RC3 crash when contacted with wrong object key resulting in a denial of service condition.
| | Author: | tuergeist | | File Size: | 3022 | | Last Modified: | Jul 9 08:22:16 2006 |
| MD5 Checksum: | 9fac82e34ef6c3c690802e52b750ec0e |
|
| /// File Name: |
dsa-1122-1.txt |
Description:
|
Debian Security Advisory 1122-1 - Peter Bieringer discovered that the "log" function in the Net::Server Perl module, an extensible, general perl server engine, is not safe against format string exploits.
| | Homepage: | http://www.debian.org/security | | File Size: | 3017 | | Related CVE(s): | CVE-2005-1127 | | Last Modified: | Jul 26 03:29:55 2006 |
| MD5 Checksum: | 033b88cf30d57478f1b4a588ba952d7c |
|
| /// File Name: |
sa21172.txt |
Description:
|
Secunia Security Advisory - Thiago Zaninotti has discovered a vulnerability in Apache HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/21172/ | | File Size: | 3005 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | 6ead5fce808f2e8191f157d78fd495a3 |
|
| /// File Name: |
sa21107.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21107/ | | File Size: | 2998 | | Last Modified: | Jul 20 03:49:23 2006 |
| MD5 Checksum: | 2a454b06747032368d1d65c964c6912c |
|
| /// File Name: |
SA2006-04.txt |
Description:
|
NSFOCUS Security Advisory (SA2006-04): Microsoft Office GIF Filter Buffer Overflow Vulnerability
| | Author: | NSFOCUS | | Homepage: | http://www.nsfocus.com/ | | File Size: | 2987 | | Last Modified: | Jul 13 15:41:09 2006 |
| MD5 Checksum: | 136a925d57279a48fadd8fd10be498c0 |
|
| /// File Name: |
MDKSA-2006-127.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-127 - A buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp 2.2.x allows user-complicit attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 2982 | | Related CVE(s): | CVE-2006-3404 | | Last Modified: | Jul 20 06:11:05 2006 |
| MD5 Checksum: | 0b6aa620b852b5834621b6f41e914ca3 |
|
| /// File Name: |
sa21104.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for Gimp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21104/ | | File Size: | 2978 | | Last Modified: | Jul 20 03:49:23 2006 |
| MD5 Checksum: | b2e08625b8e5369a767702fa7af791ad |
|
| /// File Name: |
sa20951.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in PHP included in various Avaya products, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system, and by malicious people to conduct cross-site scripting attacks, to gain knowledge of potentially sensitive information, and to use PHP as an open mail relay.
| | Homepage: | http://secunia.com/advisories/20951/ | | File Size: | 2957 | | Last Modified: | Jul 8 05:35:52 2006 |
| MD5 Checksum: | ef931eee345f27e7ec84b17f969dc743 |
|
| /// File Name: |
dsa-1121-1.txt |
Description:
|
Debian Security Advisory 1121-1 - Peter Bieringer discovered that postgrey, an greylisting implementation for Postfix, is vulnerable to a format string attack that allows remote attackers to the daemon.
| | Homepage: | http://www.debian.org/security | | File Size: | 2956 | | Related CVE(s): | CVE-2005-1127 | | Last Modified: | Jul 26 03:13:16 2006 |
| MD5 Checksum: | f49ebaee37d5d2bd7a561d8c2b2f1bc5 |
|
| /// File Name: |
sa21118.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in CS-MARS, which can be exploited by malicious, local users to bypass certain security restrictions and malicious people to gain knowledge of system information and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21118/ | | File Size: | 2950 | | Last Modified: | Jul 20 04:48:26 2006 |
| MD5 Checksum: | f1fd45cb46ceb8d01c080014efd7a8b4 |
|
| /// File Name: |
sa21043.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in Phorum, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21043/ | | File Size: | 2946 | | Last Modified: | Jul 14 19:17:23 2006 |
| MD5 Checksum: | 0cee832bea77ded19469cdf42aa2e5cc |
|
| /// File Name: |
SA2006-05.txt |
Description:
|
NSFOCUS Security Advisory (SA2006-05) Microsoft Excel SELECTION Record Memory Corruption Vulnerability
| | Homepage: | http://www.nsfocus.com/ | | File Size: | 2938 | | Last Modified: | Jul 13 15:44:20 2006 |
| MD5 Checksum: | db2471e48fde531ae358051f360ebe99 |
|
| /// File Name: |
USN-309-1.txt |
Description:
|
Ubuntu Security Notice 309-1: Several buffer overflows were found in libmms. By tricking a user into opening a specially crafted remote multimedia stream with an application using libmms, a remote attacker could overwrite an arbitrary memory portion with zeros, thereby crashing the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 2937 | | Related CVE(s): | CVE-2006-2200 | | Last Modified: | Jul 9 07:38:33 2006 |
| MD5 Checksum: | e188e8fafa939589575c697a405f1872 |
|
| /// File Name: |
ZDI-06-021.txt |
Description:
|
The WebEx Downloader Plug-in suffers from a flaw that exists due to the lack of input validation on various ActiveX/Java control parameters and configuration directives. The "GpcUrlRoot" and "GpcIniFileName" ActiveX/Java control parameters allow an attacker to specify the location of a configuration file containing further control directives. This allows an attacker to transfer arbitrary files and executables to the target. The attacker can then leverage available configuration directives to execute the newly created executables thereby compromising the underlying system.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2926 | | Related CVE(s): | CVE-2006-3423 | | Last Modified: | Jul 9 08:25:25 2006 |
| MD5 Checksum: | a07490c7968278e740d27117f65e63d4 |
|
| /// File Name: |
aspdll.txt |
Description:
|
A buffer overflow exists in ASP.DLL that can be exploited by creating a .asp file containing a parameter for the include SSI command. Software affected include IIS 5.0, 5.1, and 6.0.
| | Author: | Brett Moore | | Homepage: | http://www.security-assessment.com/ | | File Size: | 2920 | | Last Modified: | Jul 20 06:08:08 2006 |
| MD5 Checksum: | 846ec988c392a5cdf3062a8e3e152b96 |
|
| /// File Name: |
sa20954.txt |
Description:
|
Secunia Security Advisory - Moritz Naumann has reported some vulnerabilities in Horde, which be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/20954/ | | File Size: | 2910 | | Last Modified: | Jul 8 05:35:52 2006 |
| MD5 Checksum: | ff8fac77b419b870dd3afb4b9e52e50f |
|
| /// File Name: |
SA2006-06.txt |
Description:
|
NSFOCUS Security Advisory (SA2006-06) Microsoft Excel COLINFO Record Buffer Overflow Vulnerability
| | Homepage: | http://www.nsfocus.com/ | | File Size: | 2900 | | Last Modified: | Jul 13 15:43:32 2006 |
| MD5 Checksum: | 8da7af52370b44ccd6f7aad272efb338 |
|
| /// File Name: |
dsa-1119-1.txt |
Description:
|
Debian Security Advisory 1119-1 - Akira Tanaka discovered a vulnerability in Hiki Wiki, a Wiki engine written in Ruby that allows remote attackers to cause a denial of service via high CPU consumption using by performing a diff between large and specially crafted Wiki pages.
| | Homepage: | http://www.debian.org/security | | File Size: | 2894 | | Related CVE(s): | CVE-2006-3379 | | Last Modified: | Jul 24 02:53:28 2006 |
| MD5 Checksum: | bdd743b1f993dadac0d3c51831a81874 |
|
| /// File Name: |
sa21035.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued updates for their kernel. These fix some vulnerabilities, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions or gain knowledge of potentially sensitive information or by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/21035/ | | File Size: | 2884 | | Last Modified: | Jul 14 19:17:23 2006 |
| MD5 Checksum: | e75a6a668035e12d2d0c6188139f1c5b |
|
| /// File Name: |
sa21152.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for libnet-server-perl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21152/ | | File Size: | 2882 | | Last Modified: | Jul 26 01:33:34 2006 |
| MD5 Checksum: | d5e1ccf6e9d1593ed02106e7cf1f5613 |
|
| /// File Name: |
sa21101.txt |
Description:
|
Secunia Security Advisory - Jacek Wlodarczyk has discovered some vulnerabilities in Eskolar CMS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/21101/ | | File Size: | 2872 | | Last Modified: | Jul 20 03:49:23 2006 |
| MD5 Checksum: | 9697f86fbca5aef11e7c269ced2ee10b |
|
| /// File Name: |
sa20992.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in TWiki, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/20992/ | | File Size: | 2848 | | Last Modified: | Jul 12 03:20:23 2006 |
| MD5 Checksum: | 15dcb642a498010926db63232b41c153 |
|
| /// File Name: |
TSRT-06-03.txt |
Description:
|
A vulnerability exists in the IQnetworks Enterprise Security Analyzer. The flaw specifically exists within the Syslog daemon, syslogserver.exe, during the processing of long arguments passed through various commands on TCP port 10617.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2832 | | Related CVE(s): | CVE-2006-3838 | | Last Modified: | Jul 26 05:15:27 2006 |
| MD5 Checksum: | a3eaf0380b3667bfe61509341cf90847 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
