Section: .. / 0705-advisories /
| /// File Name: |
MDKSA-2007-095.txt |
Description:
|
Mandriva Linux Security Advisory - A directory traversal vulnerability was found in KTorrent prior to 2.1.2, due to an incomplete fix for a prior directory traversal vulnerability that was corrected in version 2.1.2. Previously, KTorrent would only check for the string .., which could permit strings such as ../.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2632 | | Related CVE(s): | CVE-2007-1799 | | Last Modified: | May 3 09:11:00 2007 |
| MD5 Checksum: | 179f9eb72436d1809df8ff8f7db91e11 |
|
| /// File Name: |
ZDI-07-023.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on systems with vulnerable installations of Apple's QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
| | Author: | Dino A. Dai Zovi | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2959 | | Related CVE(s): | CVE-2007-2175 | | Last Modified: | May 3 09:03:57 2007 |
| MD5 Checksum: | fc419cf943610bda4a6afd95c1c34c08 |
|
| /// File Name: |
glsa-200705-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-03 - Tomcat allows special characters like slash, backslash or URL-encoded backslash as a separator, while Apache does not. Versions less than 5.5.22 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2699 | | Related CVE(s): | CVE-2007-0450 | | Last Modified: | May 3 09:01:34 2007 |
| MD5 Checksum: | 37430d63ecfad0daf99309f55aed81d8 |
|
| /// File Name: |
glsa-200705-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-02 - Greg MacManus of iDefense Labs has discovered an integer overflow in the function bdfReadCharacters() when parsing BDF fonts. Versions less than 2.1.10-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2524 | | Related CVE(s): | CVE-2007-1351 | | Last Modified: | May 3 09:01:09 2007 |
| MD5 Checksum: | 21246a9406bee2a81ac9dd336a6cb7c1 |
|
| /// File Name: |
glsa-200705-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-01 - Bryan Burns of Juniper Networks discovered a vulnerability in chunkcounter.cpp when processing large or negative idx values, and a directory traversal vulnerability in torrent.cpp. Versions less than 2.1.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2777 | | Related CVE(s): | CVE-2007-1384, CVE-2007-1385, CVE-2007-1799 | | Last Modified: | May 3 09:00:49 2007 |
| MD5 Checksum: | a3731af8211d105db7ba47883c5f03b4 |
|
| /// File Name: |
yate-dos.txt |
Description:
|
Yate version 1.1.0 suffers from a denial of service vulnerability due to a null pointer reference.
| | Author: | Yuri Gushin | | File Size: | 3438 | | Related CVE(s): | CVE-2007-1693 | | Last Modified: | May 3 08:53:37 2007 |
| MD5 Checksum: | c64818eba907977787a7e7d7c7602f00 |
|
| /// File Name: |
04.30.07-1.txt |
Description:
|
iDefense Security Advisory 04.30.07 - Remote exploitation of multiple vulnerabilities in the Internet Relay Chat (IRC) module of Cerulean Studios' Trillian could allow for the interception of private conversations or execution of code as the currently logged on user. When handling long CTCP PING messages containing UTF-8 characters, it is possible to cause the Trillian IRC client to return a malformed response to the server. This malformed response is truncated and is missing the terminating newline character. This could allow the next line sent to the server to be improperly sent to an attacker. When a user highlights a URL in an IRC message window Trillian copies the data to an internal buffer. If the URL contains a long string of UTF-8 characters, it is possible to overflow a heap based buffer corrupting memory in a way that could allow for code execution. A heap overflow can be triggered remotely when the Trillian IRC module receives a message that contains a font face HTML tag with the face attribute set to a long UTF-8 string. iDefense has confirmed the existence of this vulnerability in Cerulean Studios Trillian 3.1.
| | Author: | enhalos | | Homepage: | http://www.idefense.com/ | | File Size: | 3461 | | Last Modified: | May 3 08:35:16 2007 |
| MD5 Checksum: | ae9a653cbd647041c3db1bf6b7603b55 |
|
| /// File Name: |
za6.txt |
Description:
|
ZoneAlarm 6 insufficiently protects the \Device\vsdatant driver from manipulation by malicious applications.
| | Homepage: | http://www.matousec.com/ | | File Size: | 1248 | | Last Modified: | May 3 08:25:45 2007 |
| MD5 Checksum: | dd177d60cf835d5f509eb46480f37bff |
|
| /// File Name: |
04.27.07-1.txt |
Description:
|
iDefense Security Advisory 04.27.07 - Remote exploitation of a design error in the "Shared Folders" feature of VMware Inc.'s VMware Workstation could allow an attacker to write arbitrary content from a guest system to arbitrary locations on the host system. The "Shared Folders" feature of VMware Workstation allows folders on the physical "host" system to be shared with virtual "guest" systems. Due to a flaw in the code which validates that the filename is safe, an attacker or malicious code within the guest system can read or write files on the host system in the context of the user running Workstation. iDefense confirmed this vulnerability to exist in VMware Workstation 5.5.3 build 34685 on a Windows XPSP2 host. Other versions may also be affected.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 3844 | | Related CVE(s): | CVE-2007-1744 | | Last Modified: | May 3 07:17:50 2007 |
| MD5 Checksum: | a5985d27acc6eb6f99e110ce44769ee8 |
|
| /// File Name: |
SSRT061285.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running HP Power Manager Remote Agent (RA). The vulnerability could be exploited by a local authorized user to execute arbitrary code with the privileges of the root user.
| | Homepage: | http://www.hp.com | | File Size: | 6510 | | Last Modified: | May 3 05:26:42 2007 |
| MD5 Checksum: | 44408e2e40da528f85a0ccad3ccab35e |
|
| /// File Name: |
FreeBSD-SA-07-03-ipv6.txt |
Description:
|
FreeBSD Security Advisory - There is no mechanism for preventing IPv6 routing headers from being used to route packets over the same link(s) many times. An attacker can "amplify" a denial of service attack against a link between two vulnerable hosts; that is, by sending a small volume of traffic the attacker can consume a much larger amount of bandwidth between the two vulnerable hosts. An attacker can use vulnerable hosts to "concentrate" a denial of service attack against a victim host or network; that is, a set of packets sent over a period of 30 seconds or more could be constructed such that they all arrive at the victim within a period of 1 second or less.
| | Homepage: | http://security.freebsd.org/ | | File Size: | 5427 | | Related CVE(s): | CVE-2007-2242 | | Last Modified: | May 3 02:13:35 2007 |
| MD5 Checksum: | ccf88dc45c5dd4ba5063e991af6fab59 |
|
| /// File Name: |
sa25082.txt |
Description:
|
Secunia Security Advisory - Daniel Lucq has discovered a vulnerability in CMS Made Simple, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/25082/ | | File Size: | 2331 | | Last Modified: | May 3 01:51:08 2007 |
| MD5 Checksum: | 3d935c33bb9eb3d8516f671a08ba90ea |
|
| /// File Name: |
sa25110.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for mod_perl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25110/ | | File Size: | 2085 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 425780c9c6e97c6a1834e8fd1480bd1f |
|
| /// File Name: |
sa25108.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for wordpress. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and bypass certain security restrictions, or by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/25108/ | | File Size: | 2989 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 4bf4a5a3bd59f8cad7a228ffa8d028e9 |
|
| /// File Name: |
sa25106.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for tomcat. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/25106/ | | File Size: | 2016 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 5c5149771f49aec5163c7de1da990499 |
|
| /// File Name: |
sa25098.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued updates for multiple packages. This fixes some vulnerabilities and security issues, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges or to gain escalated privileges, bypass certain security restrictions, and cause a DoS (Denial of Service), or by malicious users to bypass certain security restrictions and malicious people to spoof emails, cause a DoS or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25098/ | | File Size: | 3501 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 1d4ebd4115261ece7ff1d7d636229a75 |
|
| /// File Name: |
sa25097.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for ktorrent. This fixes two vulnerabilities, which can be exploited by malicious people to overwrite arbitrary files on a user's system or potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/25097/ | | File Size: | 2096 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 0e047601bf9cc548e7d8c1001b56ac34 |
|
| /// File Name: |
sa25096.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for freetype. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/25096/ | | File Size: | 2087 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | f97aa5c60710500386a0ac015f3882aa |
|
| /// File Name: |
sa25092.txt |
Description:
|
Secunia Security Advisory - shinnai has discovered a vulnerability in PowerPoint Viewer OCX, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/25092/ | | File Size: | 2471 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 278ca54524d5f8c2366381596f5d3172 |
|
| /// File Name: |
sa25091.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun Java System Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25091/ | | File Size: | 3433 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | f6176a1e89b8e591ab96316a726c1dcf |
|
| /// File Name: |
sa25085.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in sendcard, which can be exploited by malicious people to conduct cross-site scripting attacks and to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/25085/ | | File Size: | 2751 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 337e56f650c307fb3a45525a69992041 |
|
| /// File Name: |
sa25084.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for quagga. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25084/ | | File Size: | 1997 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 9462c080a01450b7f8358c84b0c4993e |
|
| /// File Name: |
sa25083.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25083/ | | File Size: | 2125 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | b864bbb1b5588e2c06ae7843840fb206 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
