Section: .. / 0705-advisories /
| /// File Name: |
05.09.07-2.txt |
Description:
|
iDefense Security Advisory 05.09.07 - Local exploitation of a buffer overflow vulnerability in Computer Associates International Inc.'s (CA) eTrust Antivirus allows attackers to execute arbitrary code with SYSTEM privileges. The Task Service component of eTrust Antivirus, InoTask.exe, is used to schedule and execute tasks such as scanning the system for virii. The service uses a shared file mapping to share information about scheduled tasks. The file mapping has a NULL security descriptor, which allows any user to modify its contents. By modifying a string inside of this mapping an attacker can trigger a stack based overflow in the InoTask process. iDefense confirmed that CA eTrust Antivirus r8 on Windows is vulnerable.
| | Author: | binagres | | Homepage: | http://www.idefense.com/ | | File Size: | 3504 | | Related CVE(s): | CVE-2007-2523 | | Last Modified: | May 11 04:02:12 2007 |
| MD5 Checksum: | 93ef0d3457b92f32e35c449f66804be2 |
|
| /// File Name: |
squirrel-csrf.txt |
Description:
|
SquirrelMail versions 1.4.8-4.fc6 and below are susceptible to a cross site request forgery vulnerability.
| | Author: | Avinash Shenoi, Vivek Relan | | File Size: | 3033 | | Last Modified: | May 11 04:00:52 2007 |
| MD5 Checksum: | e1c4775289ba2824430689a83893995c |
|
| /// File Name: |
glsa-200705-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-13 - iDefense Labs has discovered multiple integer overflows in ImageMagick in the functions ReadDCMImage() and ReadXWDImage(), that are used to process DCM and XWD files. Versions less than 6.3.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2781 | | Related CVE(s): | CVE-2007-1797 | | Last Modified: | May 11 03:59:18 2007 |
| MD5 Checksum: | 26bce6bed1795434bc83f323da4d005d |
|
| /// File Name: |
glsa-200705-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200705-12 - An error involving insecure search_path settings in the SECURITY DEFINER functions has been reported in PostgreSQL. Versions less than 8.0.13 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2785 | | Related CVE(s): | CVE-2007-2138 | | Last Modified: | May 11 03:58:59 2007 |
| MD5 Checksum: | be8e42d43b1d61bd287b5b10f160a9a4 |
|
| /// File Name: |
secunia-iehtml.txt |
Description:
|
Secunia Research has discovered a vulnerability in Internet Explorer 7, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an error in the handling of HTML objects as a CMarkup object is used in certain cases after it has been freed. This can be exploited to corrupt memory via a specially crafted web page. Successful exploitation allows execution of arbitrary code.
| | Author: | JJ Reyes | | Homepage: | http://secunia.com/ | | File Size: | 4356 | | Related CVE(s): | CVE-2007-0947 | | Last Modified: | May 11 03:49:21 2007 |
| MD5 Checksum: | 4efd4a7fac68bc08fe9f37c2d49bd11c |
|
| /// File Name: |
secunia-bearshare.txt |
Description:
|
Secunia Research has discovered a vulnerability in BearShare, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the NCTAudioFile2.AudioFile ActiveX control when handling the "SetFormatLikeSample()" method. This can be exploited to cause a stack-based buffer overflow by passing an overly long string (about 4124 bytes) as argument to the affected method. BearShare version 6.0.2.26789 is affected.
| | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4171 | | Related CVE(s): | CVE-2007-0018 | | Last Modified: | May 11 03:48:32 2007 |
| MD5 Checksum: | 1a25c00d76587ffa3f44aab2c375ee2b |
|
| /// File Name: |
MDKSA-2007-101.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in vim 7.0's modeline processing capabilities was discovered where a user with modelines enabled could open a text file containing a carefully crafted modeline, executing arbitrary commands as the user running vim.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3818 | | Related CVE(s): | CVE-2007-2438 | | Last Modified: | May 11 03:46:54 2007 |
| MD5 Checksum: | 88bf9bb5d8efde4c030fd6a7087a4225 |
|
| /// File Name: |
sa25226.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, where one has an unknown impact and others can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges, and by malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/25226/ | | File Size: | 6771 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | 56d769afb38696de5708739181d0c15e |
|
| /// File Name: |
sa25224.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in AForum, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25224/ | | File Size: | 2615 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | 44b6ef332eeb5186d94ac8fa7185dfb8 |
|
| /// File Name: |
sa25223.txt |
Description:
|
Secunia Security Advisory - Silentz has discovered a vulnerability in SimpleNews, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/25223/ | | File Size: | 2332 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | fa6fc2491febdfb50ecf5611f9666588 |
|
| /// File Name: |
sa25222.txt |
Description:
|
Secunia Security Advisory - Silentz has discovered some vulnerabilities in TutorialCMS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/25222/ | | File Size: | 2564 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | 1aaa6f1ca92b49dcbf92d2254fcae8cb |
|
| /// File Name: |
sa25216.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in Avaya CMS and IR, which can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/25216/ | | File Size: | 2599 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | b94314fef67f1ab28295159a6f0a92f3 |
|
| /// File Name: |
sa25210.txt |
Description:
|
Secunia Security Advisory - Mahmood_ali has discovered a vulnerability in phpMyPortal, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25210/ | | File Size: | 2342 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | 4dfc096768e7d9260cb0e6dc902c8dbb |
|
| /// File Name: |
sa25207.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in SurgeMail, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/25207/ | | File Size: | 2283 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | f37750c96e7844e4d649a4ae538f6b2d |
|
| /// File Name: |
sa25200.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in SquirrelMail, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/25200/ | | File Size: | 2700 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | 8dedd4a808b3ccd29fc11aac5210e1d4 |
|
| /// File Name: |
sa25199.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco IOS, which can be exploited by malicious users and malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25199/ | | File Size: | 3125 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | e71b2947f495ad280b7406e263bd24e4 |
|
| /// File Name: |
sa25188.txt |
Description:
|
Secunia Security Advisory - Neil Kettle has reported a vulnerability in MySQL, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25188/ | | File Size: | 2095 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | c6922d8f2beeffebab1d8e071d3a2fe8 |
|
| /// File Name: |
sa25182.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for vim. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/25182/ | | File Size: | 2884 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | de7fe0037137ca2cfe8bf257b3c9afe5 |
|
| /// File Name: |
sa25172.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in various Symantec products, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/25172/ | | File Size: | 2968 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | d30f6940975bd01a29cdf65cfe47331d |
|
| /// File Name: |
sa25140.txt |
Description:
|
Secunia Security Advisory - Jean-Sebastien Guay-Leroux has reported a vulnerability in Avira AntiVir, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/25140/ | | File Size: | 2629 | | Last Modified: | May 11 02:35:58 2007 |
| MD5 Checksum: | e8f83a611a84566b32a728741065a181 |
|
| /// File Name: |
05.08.07-4.txt |
Description:
|
iDefense Security Advisory 05.08.07 - Remote exploitation of an integer overflow vulnerability in the IMAP service of Microsoft Exchange 2000 could allow a remote attacker to crash all running Exchange services and other services in the same process. The vulnerability specifically exists in code responsible for reading of literals in the IMAP4 service. When the IMAP4 service encounters a specially crafted literal, it fails to properly process it. An access violation occurs causing an unhandled exception that terminates the process. iDefense confirmed the existence of this vulnerability in Microsoft Exchange 2000 with Service Pack 3.
| | Author: | Joxean Koret | | Homepage: | http://www.idefense.com/ | | File Size: | 3409 | | Related CVE(s): | CVE-2007-0221 | | Last Modified: | May 10 05:59:23 2007 |
| MD5 Checksum: | 41dfd11ab1612d6ad35ed1f0004b4d0e |
|
| /// File Name: |
05.08.07-3.txt |
Description:
|
iDefense Security Advisory 05.08.07 - Remote exploitation of a heap corruption vulnerability in Microsoft Corp.'s Word could allow attackers to execute arbitrary code under the privileges of the target user. This vulnerability specifically exists in the handling of property strings of certain control words in an RTF document. In certain circumstances, these property strings can be written into a memory region which has already been deallocated and heap corruption can occur. iDefense has confirmed that winword.exe file version 11.0.8106.0, as included with a fully patched Microsoft Word 2003 SP2, is vulnerable. Previous versions of Microsoft Word are also likely to be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4203 | | Related CVE(s): | CVE-2007-1202 | | Last Modified: | May 10 05:58:15 2007 |
| MD5 Checksum: | 28fa9f14d32120f6d9bb8a85f0086f5f |
|
| /// File Name: |
05.08.07-2.txt |
Description:
|
iDefense Security Advisory 05.08.07 - Remote exploitation of an input validation error in the handling of AutoFilter records in Excel BIFF8 format spreadsheet files by Microsoft Corp.'s Excel 2003 could allow an attacker to execute arbitrary code in the context of the current user. The AutoFilter feature of Excel allows data not matching a specified criteria to be filtered out. By creating a document containing a specially crafted filter record, an attacker is able to cause an invalid memory access leading to arbitrary code execution. iDefense has confirmed Microsoft Excel 2003 is vulnerable. Previous versions are also likely to be affected. Excel 2007 does not appear to be vulnerable.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 4047 | | Related CVE(s): | CVE-2007-1214 | | Last Modified: | May 10 05:57:15 2007 |
| MD5 Checksum: | d27db40fb89a0c701dc0fca564b08c70 |
|
| /// File Name: |
05.09.07-1.txt |
Description:
|
iDefense Security Advisory 05.09.07 - Remote exploitation of a design error vulnerability in an ActiveX control installed by Symantec Norton Internet Security 2006 could allow for the execution of arbitrary code. Defense confirmed the existence of this vulnerability within version 12.2.0.13 of NavOpts.dll as distributed with Norton Internet Security 2006. Prior versions are suspected to be vulnerable.
| | Author: | Peter Vreugdenhil | | Homepage: | http://www.idefense.com/ | | File Size: | 3995 | | Related CVE(s): | CVE-2006-3456 | | Last Modified: | May 10 05:56:05 2007 |
| MD5 Checksum: | 7927b6b7092a2f9525bdd7fc8f777708 |
|
| /// File Name: |
MDKSA-2007-100.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in ISC BIND 9.4.0, when recursion is enabled, could allow a remote attacker to cause a denial of service (daemon exit) via a certain sequence of queries.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2673 | | Related CVE(s): | CVE-2007-2241 | | Last Modified: | May 10 05:54:48 2007 |
| MD5 Checksum: | afc4c5f4073697c579805c9672659cae |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
