.:[ packet storm ]:.
                             
all things security
all things security

 Section:  .. / 0701-advisories  /

Page 8 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 175 - 200 of 537
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: USN-412-1.txt
Description:
 Ubuntu Security Notice 412-1 - Dean Gaudet discovered that the GeoIP update tool did not validate the filename responses from the update server. A malicious server, or man-in-the-middle system posing as a server, could write to arbitrary files with user privileges.
Homepage:http://security.ubuntu.com/
File Size:8694
Related CVE(s):CVE-2007-0159
Last Modified:Jan 24 01:53:16 2007
MD5 Checksum:653f02e2b2630a6f8030c87bb00e6097

 ///  File Name: glsa-200701-20.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-20 - When interfacing with the LiveJournal service, Centericq does not appropriately allocate memory for incoming data, in some cases creating a buffer overflow. Versions less than or equal to 4.21.0-r2 are affected.
Homepage:http://security.gentoo.org
File Size:3023
Last Modified:Jan 24 01:49:53 2007
MD5 Checksum:a80760ff41279aa06f56724c5f790c3a

 ///  File Name: MDKSA-2007-026.txt
Description:
 Mandriva Linux Security Advisory - A vulnerability in squid was discovered that could be remotely exploited by using a special ftp:// URL. Another Denial of Service vulnerability was discovered in squid 2.6 that allows remote attackers to crash the server by causing an external_acl_queue overload. Additionally, a bug in squid 2.6 for max_user_ip handling in ntlm_auth has been corrected.
Homepage:http://www.mandriva.com/security/
File Size:5043
Related CVE(s):CVE-2007-0247, CVE-2007-0248
Last Modified:Jan 24 01:49:43 2007
MD5 Checksum:0991f5bc1631bd1bb6346665338731d8

 ///  File Name: glsa-200701-19.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-19 - Tavis Ormandy of the Gentoo Linux Security Team has discovered that the file gencert.sh distributed with the Gentoo ebuild for OpenLDAP does not exit upon the existence of a directory in /tmp during installation allowing for directory traversal. Versions less than 2.1.30-r10 are affected.
Homepage:http://security.gentoo.org
File Size:3110
Last Modified:Jan 24 01:47:22 2007
MD5 Checksum:14abc6ea3c398a78d14b17917370862e

 ///  File Name: USN-411-1.txt
Description:
 Ubuntu Security Notice 411-1 - Roland Lezuo and Josselin Mouette discovered that the HTTP server code in libsoup did not correctly verify request headers. Remote attackers could crash applications using libsoup by sending a crafted HTTP request, resulting in a denial of service.
Homepage:http://security.ubuntu.com/
File Size:7696
Related CVE(s):CVE-2006-5876
Last Modified:Jan 24 01:47:15 2007
MD5 Checksum:7af98aa271c19c91faa41f5e181be4f5

 ///  File Name: glsa-200701-18.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-18 - Due to the improper handling and use of format strings, the errors_create_window() function in errors.c does not safely write data to memory. Versions less than 0.99.5_pre20060716 are affected.
Homepage:http://security.gentoo.org
File Size:2596
Last Modified:Jan 24 01:46:05 2007
MD5 Checksum:cfc5521003f9c8f419d867fc54d02c43

 ///  File Name: MDKSA-2007-025.txt
Description:
 Mandriva Linux Security Advisory - A slew of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
Homepage:http://www.mandriva.com/security/
File Size:7667
Related CVE(s):CVE-2005-3272, CVE-2006-0741, CVE-2006-2446, CVE-2006-3741, CVE-2006-4145, CVE-2006-4535, CVE-2006-4813, CVE-2006-4997, CVE-2006-5619, CVE-2006-5749, CVE-2006-5754, CVE-2006-6106
Last Modified:Jan 24 01:45:58 2007
MD5 Checksum:9dc785a338a7a22a6ebea219e0f480e0

 ///  File Name: SUSE-SA-2007-012.txt
Description:
 SUSE Security Announcement - This update fixes a remotely exploitable denial-of-service bug in squid that can be triggered by using special ftp:// URLs. Additionally the 10.2 package needed a fix for another DoS bug and for max_user_ip handling in ntlm_auth.
Homepage:http://www.suse.com
File Size:15758
Related CVE(s):CVE-2007-0247, CVE-2007-0248
Last Modified:Jan 24 01:43:50 2007
MD5 Checksum:1a75a6823f4c2dac88eca047c2e5e9a3

 ///  File Name: glsa-200701-17.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-17 - Liu Qishuai discovered that glibtop_get_proc_map_s() in sysdeps/linux/procmap.c does not properly allocate memory for storing a filename, allowing certain filenames to cause the buffer to overflow on the stack. Versions less than 2.14.6 are affected.
Homepage:http://security.gentoo.org
File Size:2783
Last Modified:Jan 24 01:39:25 2007
MD5 Checksum:f2b7f0baf630c02ca8099d8379093ce8

 ///  File Name: MDKSA-2007-024.txt
Description:
 Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
Homepage:http://www.mandriva.com/security/
File Size:21333
Related CVE(s):CVE-2007-0104
Last Modified:Jan 24 01:35:14 2007
MD5 Checksum:02aec3e2f8ff6d92ad9da7bf1afb0ae7

 ///  File Name: glsa-200701-16.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-16 - Adobe Acrobat Reader in stand-alone mode is vulnerable to remote code execution via heap corruption when loading a specially crafted PDF file. Versions less than 7.0.9 are affected.
Homepage:http://security.gentoo.org
File Size:3806
Last Modified:Jan 24 01:26:16 2007
MD5 Checksum:b4c745513433e639e39d3ebb59b52050

 ///  File Name: glsa-200701-15.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-15 - Chris Evans has discovered multiple buffer overflows in Sun JDK and Sun JRE possibly related to various AWT or font layout functions. Tom Hawtin has discovered an unspecified vulnerability in Sun JDK and Sun JRE relating to unintended applet data access. He has also discovered multiple other unspecified vulnerabilities in Sun JDK and Sun JRE allowing unintended Java applet or application resource acquisition. Versions less than 1.4.2.13 are affected.
Homepage:http://security.gentoo.org
File Size:4209
Last Modified:Jan 24 01:25:56 2007
MD5 Checksum:d2db38c2c38bf541f3f7634cfcd4846d

 ///  File Name: glsa-200701-14.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-14 - Mod_auth_kerb improperly handles component byte encoding in the der_get_oid() function, allowing for a buffer overflow to occur if there are no components which require more than one byte for encoding. Versions less than 5.0_rc7-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2677
Last Modified:Jan 24 01:25:30 2007
MD5 Checksum:ab11e67e54f0cd8ca455002fb181b00f

 ///  File Name: TA07-023A.txt
Description:
 Technical Cyber Security Alert TA07-022A - The Sun Java Runtime Environment contains multiple vulnerabilities that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Homepage:http://www.us-cert.gov/
File Size:4699
Related CVE(s):CVE-2007-0243, CVE-2006-6745, CVE-2006-6731
Last Modified:Jan 24 01:02:53 2007
MD5 Checksum:df63bd7196a34eb64e46552e6a6e821f

 ///  File Name: ruby.tgz
Description:
 RubyGems is susceptible to exploitation due to a lack of sanity checking on installation paths. Patches included.
Author:Eric Hodel
File Size:1062
Last Modified:Jan 24 00:03:12 2007
MD5 Checksum:8defcfaa1c6579fd7b9e56be8bbf7dac

 ///  File Name: glsa-200701-13.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-13 - Neil Hoggarth has discovered that when delivering messages to a message delivery agent by means of the mda option, Fetchmail passes a NULL pointer to the ferror() and fflush() functions when refusing a message. Isaac Wilcox has discovered numerous means of plain-text password disclosure due to errors in secure connection establishment. Versions less than 6.3.6 are affected.
Homepage:http://security.gentoo.org
File Size:3043
Last Modified:Jan 23 23:08:26 2007
MD5 Checksum:bbbbb5a9b5ba6b2d82d6bd8602632926

 ///  File Name: dsa-1251-1.txt
Description:
 Debian Security Advisory 1251-1 - It has been discovered that netrik, a text mode WWW browser with vi like keybindings, doesn't properly sanitize temporary filenames when editing textareas which could allow attackers to execute arbitrary commands via shell metacharacters.
Homepage:http://www.debian.org/security
File Size:5013
Related CVE(s):CVE-2006-6678
Last Modified:Jan 23 23:08:09 2007
MD5 Checksum:0b5fe92a420d657d2f587fec2d66d354

 ///  File Name: sa23768.txt
Description:
 Secunia Security Advisory - Kacper has reported a vulnerability in KGB, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/23768/
File Size:2569
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:508f48198f840c0ba2fdf81d10f36e45

 ///  File Name: sa23793.txt
Description:
 Secunia Security Advisory - KF has reported a weakness in Apple Mac OS X, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/23793/
File Size:2530
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:b091b8fa4d14509699bb810b5e0abfb5

 ///  File Name: sa23805.txt
Description:
 Secunia Security Advisory - SUSE has issued an update for squid. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/23805/
File Size:5730
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:828ceebf112c9611dc3f928b60338106

 ///  File Name: sa23812.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for acroread. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, as a vector for cross-site request forgery attacks, or to potentially compromise a user's system.
Homepage:http://secunia.com/advisories/23812/
File Size:2340
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:1ea073d85dbf3b0efc7c590b58ae447b

 ///  File Name: sa23820.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for mod-auth-kerb. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/23820/
File Size:2152
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:672993799a3927a87d37dc07e6f44415

 ///  File Name: sa23823.txt
Description:
 Secunia Security Advisory - Adriano Lima has discovered a vulnerability in Apple Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/23823/
File Size:2395
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:3f9f1e705025104b35b6cda781e4c7e6

 ///  File Name: sa23829.txt
Description:
 Secunia Security Advisory - SUSE has issued an update for xine-ui, xine-lib, xine-extra and xine-devel. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/23829/
File Size:7609
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:a03460ef1059650185dd1bcbb4d714c7

 ///  File Name: sa23834.txt
Description:
 Secunia Security Advisory - r0ut3r has reported a vulnerability in Vote! Pro, which can be exploited by malicious people to compromise vulnerable systems.
Homepage:http://secunia.com/advisories/23834/
File Size:2410
Last Modified:Jan 23 22:46:18 2007
MD5 Checksum:36234da3c0b151ae422795c579c33532
 

 ///  Last 10 Files
  1. :· SSRT080122.txt
  2. :· OPENX-SA-2008-002.txt
  3. :· built2go-sql.txt
  4. :· glsa-200810-01.txt
  5. :· dirTraversal.txt
  6. :· phpautos-sql.txt
  7. :· phpautodealer-sql.txt
  8. :· phprealtor-sql.txt
  9. :· yourownbux40-sql.txt
  10. :· dsa-1647-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· SSRT080122.txt
  2. :· OPENX-SA-2008-002.txt
  3. :· glsa-200810-01.txt
  4. :· dsa-1647-1.txt
  5. :· dsa-1646-1.txt
  6. :· apple-store.txt
  7. :· dsa-1645-1.txt
  8. :· dsa-1644-1.txt
  9. :· dsa-1643-1.txt
  10. :· vmware-emulation.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· built2go-sql.txt
  2. :· phpautos-sql.txt
  3. :· phpautodealer-sql.txt
  4. :· phprealtor-sql.txt
  5. :· yourownbux40-sql.txt
  6. :· hostadmin-rfi.txt
  7. :· konquerorfont-dos.txt
  8. :· skype-poc.txt
  9. :· joomlahotspots-sql.txt
  10. :· yerba-multi.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· opennhrp-0.8.tar.bz2
  2. :· zfz20BETA.tar.gz
  3. :· fwknop-1.9.8.tar.gz
  4. :· msnshadow-0.3_beta.tar.bz2
  5. :· geoipgen0.2b.tgz
  6. :· thc-rfidiot.zip
  7. :· sp3.rar
  8. :· openstego-0.5.0.tgz
  9. :· Vuurmuur-0.6.tar.gz
  10. :· ctunnel-0.2.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· dirTraversal.txt
  2. :· targeting-voip.pdf
  3. :· oracle-assault.pdf
  4. :· ShellCodeForBeginners.pdf
  5. :· linux-setresuid.txt
  6. :· nufw-2.2.17.tar.gz
  7. :· slackfire-0.65.d-noarch-1.tgz
  8. :· strongswan-4.2.7.tar.gz
  9. :· linux-iopl.txt
  10. :· ShmooConCFP-2009.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice