Section: .. / 0702-advisories /
| /// File Name: |
TA07-059A.txt |
Description:
|
Technical Cyber Security Alert TA07-059A - A worm is exploiting a vulnerability in the telnet daemon (in.telnetd) on unpatched Sun Solaris systems. The vulnerability allows the worm (or any attacker) to log in via telnet (23/tcp) with elevated privileges.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5567 | | Related CVE(s): | CVE-2007-0882 | | Last Modified: | Mar 5 23:37:19 2007 |
| MD5 Checksum: | 3c73f4b71f6456ca1c51dfdb2699536c |
|
| /// File Name: |
sa24151.txt |
Description:
|
Secunia Security Advisory - Trustix has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), by malicious users to gain knowledge of potentially sensitive information or cause a DoS, and by malicious people to gain knowledge of potentially sensitive knowledge, cause a DoS, and potentially compromise a vulnerable system. This also contains a new PHP version, which fixes unspecified security vulnerabilities.
| | Homepage: | http://secunia.com/advisories/24151/ | | File Size: | 5529 | | Last Modified: | Feb 14 14:41:53 2007 |
| MD5 Checksum: | 248428abb19ee0aabb69707ed82867c1 |
|
| /// File Name: |
sa24244.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for moinmoin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/24244/ | | File Size: | 5519 | | Last Modified: | Feb 22 21:32:16 2007 |
| MD5 Checksum: | 425e39730d2023a6a8982d70070d1b48 |
|
| /// File Name: |
02.13.07.txt |
Description:
|
iDefense Security Advisory 02.13.07 - Remote exploitation of a design error in Microsoft Corp.'s 'wininet.dll' FTP client code could allow an attacker to execute arbitrary code. The vulnerability specifically exists in the parsing of reply lines from remote FTP servers. During an FTP session, the client makes requests for the server to perform some operation and the server responds with a numeric code, a human readable message and possibly some other information. As there can be multiple lines in a reply, code in the client breaks the reply up into lines, putting a null byte (character 0x00) after any end of line character. In the case where a line ends exactly on the last character of the reply buffer, the terminating null byte is written outside of the allocated space, overwriting a byte of the heap management structure. By sending a specially crafted series of replys to the client, the heap may be corrupted in a controlled way to cause the execution of arbitrary code.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com | | File Size: | 5426 | | Related CVE(s): | CVE-2007-0217 | | Last Modified: | Feb 14 15:24:21 2007 |
| MD5 Checksum: | 9da9783032d32d571d8fbe51d6f6a082 |
|
| /// File Name: |
dsa-1259-1.txt |
Description:
|
Debian Security Advisory 1259-1 - Isaac Wilcox discovered that fetchmail, a popular mail retrieval and forwarding utility, insufficiently enforces encryption of connections, which might lead to information disclosure.
| | Homepage: | http://www.debian.org/security | | File Size: | 5418 | | Related CVE(s): | CVE-2006-5867 | | Last Modified: | Feb 14 17:29:13 2007 |
| MD5 Checksum: | e341bd5c2c976560f215749710449444 |
|
| /// File Name: |
sa24057.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of potentially sensitive information or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24057/ | | File Size: | 5390 | | Last Modified: | Feb 6 22:53:09 2007 |
| MD5 Checksum: | dda5dc7ad9f00e47e7850da74af57376 |
|
| /// File Name: |
MDKSA-2007-036.txt |
Description:
|
Mandriva Linux Security Advisory - Buffer overflow in the gdImageStringFTEx function in gdft.c in the GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font. Libwmf uses an embedded copy of the gd source and may also be affected by this issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5324 | | Related CVE(s): | CVE-2007-0455 | | Last Modified: | Feb 7 23:51:29 2007 |
| MD5 Checksum: | a701c4fd1a070d4de0401eff706afec3 |
|
| /// File Name: |
USN-423-1.txt |
Description:
|
Ubuntu Security Notice 423-1 - A flaw was discovered in MoinMoin's debug reporting sanitizer which could lead to a cross-site scripting attack. By tricking a user into viewing a crafted MoinMoin URL, an attacker could execute arbitrary JavaScript as the current MoinMoin user, possibly exposing the user's authentication information for the domain where MoinMoin was hosted. Only Ubuntu Breezy was vulnerable. An information leak was discovered in MoinMoin's debug reporting, which could expose information about the versions of software running on the host system. MoinMoin administrators can add "show_traceback=0" to their site configurations to disable debug tracebacks.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5311 | | Related CVE(s): | CVE-2007-0901, CVE-2007-0902 | | Last Modified: | Feb 23 18:53:28 2007 |
| MD5 Checksum: | 07b66a34ef51b949f22c2112f560164c |
|
| /// File Name: |
MDKSA-2007-040.txt |
Description:
|
Mandriva Linux Security Advisory - The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4, as well as the 2.6 kernel, does not call the init_timer function for the ISDN PPP CCP reset state timer, which has unknown attack vectors and results in a system crash. The listxattr syscall can corrupt user space under certain circumstances. The problem seems to be related to signed/unsigned conversion during size promotion. The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures. The mincore function in the Linux kernel before 2.4.33.6, as well as the 2.6 kernel, does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5305 | | Related CVE(s): | CVE-2006-5749, CVE-2006-5753, CVE-2006-6053, CVE-2006-4814 | | Last Modified: | Feb 8 00:37:30 2007 |
| MD5 Checksum: | fab3fc7d2c5787fc89ce56494a201b64 |
|
| /// File Name: |
secunia-mailenable-xss.txt |
Description:
|
Secunia Research has discovered some vulnerabilities in MailEnable Web Mail Client, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and script insertion attacks. MailEnable Professional Edition 2.351 is affected. Other versions may also be affected.
| | Author: | JJ Reyes | | Homepage: | http://secunia.com/ | | File Size: | 5247 | | Related CVE(s): | CVE-2007-0651, CVE-2007-0652 | | Last Modified: | Feb 14 17:10:26 2007 |
| MD5 Checksum: | 50195b14c3b57b078995cfb69c9e29ae |
|
| /// File Name: |
sa24174.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for fetchmail. This fixes a security issue, which can be exploited by malicious people to gain sensitive information.
| | Homepage: | http://secunia.com/advisories/24174/ | | File Size: | 5239 | | Last Modified: | Feb 16 01:49:41 2007 |
| MD5 Checksum: | 3c1159ad6f216114beade20329ad8114 |
|
| /// File Name: |
USN-427-1.txt |
Description:
|
Ubuntu Security Notice 427-1 - Mikhail Markin reported that enigmail incorrectly handled memory allocations for certain large encrypted attachments. This caused Thunderbird to crash and thus caused the entire message to be inaccessible.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5236 | | Related CVE(s): | CVE-2006-5877 | | Last Modified: | Feb 23 21:57:23 2007 |
| MD5 Checksum: | d49b121fc29cd6b664ff39b7cf5c2142 |
|
| /// File Name: |
year3000.txt |
Description:
|
Microsoft Visual C++ version 8.0 suffers from a denial of service condition.
| | Author: | 3APA3A | | Homepage: | http://SecurityVulns.com/ | | File Size: | 5218 | | Related CVE(s): | CVE-2007-0842 | | Last Modified: | Feb 13 04:01:08 2007 |
| MD5 Checksum: | e7cd012fa91b331495001e288706d9b7 |
|
| /// File Name: |
sa24112.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in various HP Mercury products, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24112/ | | File Size: | 5162 | | Last Modified: | Feb 12 19:06:32 2007 |
| MD5 Checksum: | afdf188c86ea61e855e021485b5e4502 |
|
| /// File Name: |
sa24087.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Trend Micro products, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24087/ | | File Size: | 5102 | | Last Modified: | Feb 12 19:06:32 2007 |
| MD5 Checksum: | ac30362a0ee096736d35f3aeb540bc7e |
|
| /// File Name: |
MDKSA-2007-031.txt |
Description:
|
Mandriva Linux Security Advisory - FIXME Konqueror 3.5.5 does not properly parse HTML comments in title tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment, a related issue to CVE-2007-0478.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5097 | | Related CVE(s): | CVE-2007-0478, CVE-2007-0537 | | Last Modified: | Feb 5 23:21:11 2007 |
| MD5 Checksum: | cc717265631106caba755eb8dd9e09de |
|
| /// File Name: |
sa24022.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for php. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24022/ | | File Size: | 5091 | | Last Modified: | Feb 7 23:22:52 2007 |
| MD5 Checksum: | e58a9f1b9c8146ebb98bf44ff7e8936a |
|
| /// File Name: |
USN-426-1.txt |
Description:
|
Ubuntu Security Notice 426-1 - Mu Security discovered a format string vulnerability in Ekiga. If a user was running Ekiga and listening for incoming calls, a remote attacker could send a crafted call request, and execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5018 | | Related CVE(s): | CVE-2007-1006, CVE-2007-1007 | | Last Modified: | Feb 23 21:27:05 2007 |
| MD5 Checksum: | e0b73f01af64972a1d64b16035362623 |
|
| /// File Name: |
sa24076.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24076/ | | File Size: | 4999 | | Last Modified: | Feb 12 19:06:32 2007 |
| MD5 Checksum: | eaccda7fab565702b71cbe2152fa9145 |
|
| /// File Name: |
USN-421-1.txt |
Description:
|
Ubuntu Security Notice 421-1 - A flaw was discovered in MoinMoin's page name sanitizer which could lead to a cross-site scripting attack. By tricking a user into viewing a crafted MoinMoin page, an attacker could execute arbitrary JavaScript as the current MoinMoin user, possibly exposing the user's authentication information for the domain where MoinMoin was hosted.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4990 | | Related CVE(s): | CVE-2007-0857 | | Last Modified: | Feb 13 01:50:56 2007 |
| MD5 Checksum: | 44717443417d82dc96c24f9efbfc671c |
|
| /// File Name: |
sa24150.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows and Visual Studio, which can be exploited by malicious people to compromise a users system.
| | Homepage: | http://secunia.com/advisories/24150/ | | File Size: | 4914 | | Last Modified: | Feb 14 14:41:53 2007 |
| MD5 Checksum: | cb7e957b636a76de4d358503bb2253d1 |
|
| /// File Name: |
NGS00471.txt |
Description:
|
Versions of Jetty, the popular java web server, are vulnerable to a session id prediction attack. Jetty uses java.util.Random to generate session ids. The internal state of this generator can be easily discovered, leading to an attacker being able to hijack existing and future sessions. Jetty versions below 4.2.27, 5.1.12, 6.0.2 and 6.1.0pre3 are affected.
| | Author: | Chris Anley | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 4889 | | Last Modified: | Feb 6 00:40:04 2007 |
| MD5 Checksum: | 4bdbaba8ee24eb86cc078feb1cda8988 |
|
| /// File Name: |
sa24156.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24156/ | | File Size: | 4832 | | Last Modified: | Feb 14 14:41:53 2007 |
| MD5 Checksum: | 3f5834c3137d2084d9dc568d3c5e15fb |
|
| /// File Name: |
TA07-050A.txt |
Description:
|
Technical Cyber Security Alert TA07-050A - A stack buffer overflow vulnerability in the Sourcefire Snort DCE/RPC preprocessor could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the Snort process.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4803 | | Related CVE(s): | CVE-2006-5276 | | Last Modified: | Feb 22 22:05:45 2007 |
| MD5 Checksum: | 467f0c6bd2bea40dd9e18c82e2debdac |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
