Section: .. / 0608-advisories /
| /// File Name: |
adv08-chaosgh.txt |
Description:
|
GeheimChaos versions 0.5 and below suffer from multiple SQL injection vulnerabilities.
| | Author: | Tamriel | | File Size: | 3204 | | Last Modified: | Aug 17 05:08:37 2006 |
| MD5 Checksum: | 41da18e9c1f9e6482333aa3b7e45959d |
|
| /// File Name: |
sa21666.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Joomla!, where some have unknown impacts, and others can be exploited by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21666/ | | File Size: | 3204 | | Last Modified: | Aug 29 12:55:20 2006 |
| MD5 Checksum: | e0c1d5ffdca0a078364594494b8477c5 |
|
| /// File Name: |
sa21538.txt |
Description:
|
Secunia Security Advisory - rgod has reported some vulnerabilities in CubeCart, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/21538/ | | File Size: | 3190 | | Last Modified: | Aug 20 21:48:37 2006 |
| MD5 Checksum: | d891c61e6b0c9f143ced357c9239ee82 |
|
| /// File Name: |
sa21276.txt |
Description:
|
Secunia Security Advisory - ISS X-Force has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21276/ | | File Size: | 3173 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 98f774bb5b56b33a2639d582ebde1721 |
|
| /// File Name: |
NSFOCUS-SA2006-08.txt |
Description:
|
The NSFocus Security Team has discovered a buffer overflow in Internet Explorer 6.0SP1 which allows for remote code execution via an overly-long URL.
| | Author: | Hu Qianwei | | Homepage: | http://www.nsfocus.com/ | | File Size: | 3157 | | Related CVE(s): | CVE-2006-3869 | | Last Modified: | Aug 28 01:01:42 2006 |
| MD5 Checksum: | 940734e3bcea00d99a804120cf1a3161 |
|
| /// File Name: |
sa21377.txt |
Description:
|
Secunia Security Advisory - cyanid-E has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21377/ | | File Size: | 3153 | | Last Modified: | Aug 9 20:40:54 2006 |
| MD5 Checksum: | b2c287d9bb89c63b4bcd1e44c1829e5e |
|
| /// File Name: |
glsa-200608-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-07 - Tavis Ormandy of the Google Security Team discovered several heap and stack buffer overflows and other flaws in libTIFF. The affected parts include the TIFFFetchShortPair(), TIFFScanLineSize() and EstimateStripByteCounts() functions, and the PixarLog and NeXT RLE decoders. Versions less than 3.8.2-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3149 | | Last Modified: | Aug 17 23:45:12 2006 |
| MD5 Checksum: | c30405f980da7c413bf46e27ad797940 |
|
| /// File Name: |
sa21266.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for apache. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21266/ | | File Size: | 3132 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 6aa0bf7bc1b6c100783470fe634b2eeb |
|
| /// File Name: |
sa21608.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for php. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21608/ | | File Size: | 3108 | | Last Modified: | Aug 26 20:18:48 2006 |
| MD5 Checksum: | c9316569028e3a082f9b97d386f99142 |
|
| /// File Name: |
MDKSA-2006-147.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-147 - A cross-site scripting (XSS) vulnerability exists in search.php in SquirrelMail versions 1.5.1 and below, when register_globals is enabled, allowing remote attackers to inject arbitrary HTML via the mailbox parameter.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 3102 | | Related CVE(s): | CVE-2006-3174 | | Last Modified: | Aug 27 19:43:15 2006 |
| MD5 Checksum: | fe2ecf7a76e5b517a33ffcc36feeaa35 |
|
| /// File Name: |
sa21649.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21649/ | | File Size: | 3089 | | Last Modified: | Aug 28 09:56:27 2006 |
| MD5 Checksum: | c25533835c9caae029de672f637c9989 |
|
| /// File Name: |
sa21593.txt |
Description:
|
Secunia Security Advisory - Kacper has reported some vulnerabilities in NES Game & NES System, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21593/ | | File Size: | 3080 | | Last Modified: | Aug 26 20:18:48 2006 |
| MD5 Checksum: | fd94d1096b061cf21b0739b63ae812a2 |
|
| /// File Name: |
clamav_upx_heap.txt |
Description:
|
Remote exploitation of a heap overflow vulnerability in ClamAV versions below 0.88.4 could allow execution of arbitrary code or cause a denial of service.
| | Author: | Damian Put | | Homepage: | http://www.overflow.pl/ | | File Size: | 3067 | | Last Modified: | Aug 26 20:39:13 2006 |
| MD5 Checksum: | 39cdda45a4ece3067080a595993d5936 |
|
| /// File Name: |
AD20060808.txt |
Description:
|
A vulnerability Microsoft Powerpoint allows remote attackers to execute arbitrary code in the context of the logged in user. An array boundary condition may be violated by a malicious .PPT file in order to redirect execution into attacker-supplied data. Exploitation requires that the attacker coerce or persuade the victim to open a malicious .PPT file.
| | Author: | Sowhat | | Homepage: | http://www.nevisnetworks.com/ | | File Size: | 3066 | | Related CVE(s): | CVE-2006-3449 | | Last Modified: | Aug 18 02:24:48 2006 |
| MD5 Checksum: | 6b059b804c16dc79c26bb096e7389989 |
|
| /// File Name: |
OpenPKG-SA-2006.015.txt |
Description:
|
OpenPKG Security Advisory OpenPKG-SA-2006.015 - According to a vendor announcement, a vulnerability exists in the mod_rewrite module of the Apache HTTP Server. Depending on the manner in which the Apache HTTP Server was compiled, the software defect may result in a vulnerability which, in combination with certain types of "RewriteRule" directives in the server configuration files, could be triggered remotely.
| | Homepage: | http://www.openpkg.org/security/ | | File Size: | 3050 | | Related CVE(s): | CVE-2006-3747 | | Last Modified: | Aug 3 00:41:38 2006 |
| MD5 Checksum: | 4f82467e78a3854e9693eb086c360e63 |
|
| /// File Name: |
glsa-200607-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200607-11 - Kevin Kofler has reported a vulnerability where three stack variables are allocated with 255, 255 and 100 bytes respectively, yet 256 bytes are read into each. This could lead to buffer overflows. Versions less than or equal to 0.4.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3049 | | Last Modified: | Aug 3 01:19:36 2006 |
| MD5 Checksum: | e3f442210498e5392341299deefc06d7 |
|
| /// File Name: |
sa21360.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in vBulletin, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
| | Homepage: | http://secunia.com/advisories/21360/ | | File Size: | 3049 | | Last Modified: | Aug 9 20:40:54 2006 |
| MD5 Checksum: | 0717cfbffef7c56f25cd3860b105b0f3 |
|
| /// File Name: |
CYBSEC-SAPIGSDOS.txt |
Description:
|
CYBSEC Security Advisory - The SAP Internet Graphics Service (IGS) suffers from a remote denial of service condition.
| | Author: | Mariano Nunez Di Croce | | Homepage: | http://www.cybsec.com | | File Size: | 3043 | | Last Modified: | Aug 26 21:42:09 2006 |
| MD5 Checksum: | 39a23d4600a97b350f9c11425b90dc8d |
|
| /// File Name: |
sa21384.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in DConnect Daemon, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21384/ | | File Size: | 3037 | | Last Modified: | Aug 9 20:40:54 2006 |
| MD5 Checksum: | f16d8fb85d5022275459a6076295ba12 |
|
| /// File Name: |
MDKSA-2006-135.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-135 - A buffer overflow exists in Freeciv versions 2.1.0-beta1 and below that may allow for a denial of service and arbitrary code execution.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 3023 | | Related CVE(s): | CVE-2006-3913 | | Last Modified: | Aug 17 02:01:16 2006 |
| MD5 Checksum: | 7112649658b484a159e1317e3bc02e79 |
|
| /// File Name: |
sa21564.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in PHP included in various Avaya products, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system, and by malicious people to conduct cross-site scripting attacks and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21564/ | | File Size: | 3020 | | Last Modified: | Aug 26 20:18:48 2006 |
| MD5 Checksum: | 3d35476e0a2ae89291e38c2c3df5b457 |
|
| /// File Name: |
sa21422.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in AlsaPlayer, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21422/ | | File Size: | 3017 | | Last Modified: | Aug 17 00:44:27 2006 |
| MD5 Checksum: | 19e575f7b5e2313d6536356f2cbbbf0d |
|
| /// File Name: |
glsa-200608-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-01 - An off-by-one flaw has been found in Apache's mod_rewrite module by Mark Dowd of McAfee Avert Labs. This flaw is exploitable depending on the types of rewrite rules being used. Versions less than 2.0.58-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3011 | | Last Modified: | Aug 17 02:56:21 2006 |
| MD5 Checksum: | f5ee4aae5a11bf911201dd0610fd26b9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
