Section: .. / 0710-advisories /
| /// File Name: |
glsa-200710-25.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200710-25 - The Gentoo MLDonkey ebuild adds a user to the system named p2p so that the MLDonkey service can run under a user with low privileges. This user is created with a valid login shell and no password. Versions less than 2.9.0-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2762 | | Last Modified: | Oct 25 00:19:47 2007 |
| MD5 Checksum: | 05c17c8f94837184aabeea42235fa4c3 |
|
| /// File Name: |
dsa-1389-2.txt |
Description:
|
Debian Security Advisory 1389-2 - It was discovered that zoph, a web based photo management system, performs insufficient input sanitizing, which allows SQL injection. This is an updated advisory to make the update for oldstable (sarge) available, which had been uploaded to the wrong suite.
| | Homepage: | http://www.debian.org/security | | File Size: | 3200 | | Related CVE(s): | CVE-2007-3905 | | Last Modified: | Oct 25 00:19:22 2007 |
| MD5 Checksum: | 39d2edf9a72cdbfb3b211bc4be0800d3 |
|
| /// File Name: |
TA07-297B.txt |
Description:
|
Technical Cyber Security Alert TA07-297B - Adobe has released updates for the Adobe Reader and Adobe Acrobat product families. The update addresses a URI handling vulnerability in Microsoft Windows XP and Server 2003 systems with Internet Explorer 7.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4198 | | Last Modified: | Oct 25 00:18:19 2007 |
| MD5 Checksum: | 4fa2e40faf6c0e78aad5400850ba0c6d |
|
| /// File Name: |
TA07-297A.txt |
Description:
|
Technical Cyber Security Alert TA07-297A - RealNetworks RealPlayer client for Microsoft Windows contains a stack buffer overflow in the playlist parameter passed to the client by an ActiveX control. This vulnerability could allow a remote, unauthenticated attacker to execute arbitrary code using a specially crafted web page or HTML email message.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5603 | | Last Modified: | Oct 25 00:16:55 2007 |
| MD5 Checksum: | 71d1a302c9d89e721fd897151041c4f9 |
|
| /// File Name: |
10.23.07-2.txt |
Description:
|
iDefense Security Advisory 10.23.07 - Remote exploitation of a buffer overflow vulnerability within IBM Corp.'s Lotus Domino allows attackers to execute arbitrary code in the context of the IMAP service. iDefense has confirmed the existence of this vulnerability within version 7.0.2.2 of Lotus Domino running on Linux as well as Windows Server 2003. Previous versions, as well as builds for other platforms, are suspected to be vulnerable.
| | Author: | Manuel Santamarina Suarez | | Homepage: | http://www.idefense.com/ | | File Size: | 3763 | | Related CVE(s): | CVE-2007-3510 | | Last Modified: | Oct 25 00:15:12 2007 |
| MD5 Checksum: | 2d681b98adb81361108206364d31c320 |
|
| /// File Name: |
10.23.07-1.txt |
Description:
|
iDefense Security Advisory 10.23.07 - Remote exploitation of a buffer overflow vulnerability in IBM Corp.'s Lotus Notes mail user agent could allow attackers to execute arbitrary code in the context of the current user. iDefense confirmed the existence of this vulnerability in version 7.0.2 of IBM Corp.'s Lotus Notes. Additionally, versions 6.5.1, 6.5.3 and 7.0.1 were reported to be vulnerable. Other versions are suspected to be vulnerable.
| | Author: | UVInc | | Homepage: | http://www.idefense.com/ | | File Size: | 3751 | | Related CVE(s): | CVE-2007-4222 | | Last Modified: | Oct 25 00:14:07 2007 |
| MD5 Checksum: | f9986e451b0a2c04cb301e2d094fe53e |
|
| /// File Name: |
SSRT071298.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Configuration Management (CM) Infrastructure (Radia) and Client Configuration Manager (CCM) running httpd.tkd. The vulnerability could be exploited to allow remote unauthorized access to data.
| | Homepage: | http://www.hp.com/ | | File Size: | 11036 | | Related CVE(s): | CVE-2007-5413 | | Last Modified: | Oct 25 00:12:23 2007 |
| MD5 Checksum: | 2286f5205044f674877b5bb887703e00 |
|
| /// File Name: |
GS07-02.txt |
Description:
|
The RSA KEON Registration Authority Web Interface suffers from multiple cross site scripting vulnerabilities. Version 1.0 is susceptible.
| | Author: | Fatih Ozavci, Caglar Cakici | | Homepage: | http://www.gamasec.net/ | | File Size: | 939 | | Last Modified: | Oct 24 23:55:39 2007 |
| MD5 Checksum: | 03a90818e1fd1fb2fa73e5d90e719eab |
|
| /// File Name: |
bosbad-xsssql.txt |
Description:
|
BosMarket and BosNews version 4 suffer from cross site scripting vulnerabilities.
| | Author: | Joseph Giron | | File Size: | 1199 | | Last Modified: | Oct 24 23:53:44 2007 |
| MD5 Checksum: | 681c1d6937291f93d3249aa34c2cb9e0 |
|
| /// File Name: |
sa27331.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for cpio and tar. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27331/ | | File Size: | 2173 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | d572c3d3054fc04355a7b490076fda57 |
|
| /// File Name: |
sa27334.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for reprepro. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27334/ | | File Size: | 4534 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 57d46ce52beb056d9b9a7c0ec310d36c |
|
| /// File Name: |
sa27338.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for dhcp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27338/ | | File Size: | 2258 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | aa24347b5d0cc39d93c445ca63aef083 |
|
| /// File Name: |
sa27339.txt |
Description:
|
Secunia Security Advisory - Snoop Security has reported a vulnerability in CandyPress Store, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/27339/ | | File Size: | 2274 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 7ce27ce408ab15a009f9e3cda2a22e62 |
|
| /// File Name: |
sa27351.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for php. This fixes a weakness and some vulnerabilities, which can be exploited by malicious users to bypass certain security restrictions and gain escalated privileges, and by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27351/ | | File Size: | 2515 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 94b95ad32d024ee9b88d57874516487d |
|
| /// File Name: |
sa27352.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for drupal. This fixes some vulnerabilities, which can be exploited by malicious users to conduct HTTP response splitting attacks, and by malicious people to conduct cross-site request forgery and cross-site scripting attacks, bypass certain security restrictions, and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27352/ | | File Size: | 2429 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 8360d896eb0cc3f3a10a7ea9f1d6870e |
|
| /// File Name: |
sa27353.txt |
Description:
|
Secunia Security Advisory - Venustech AD-LAB has reported a vulnerability in 3proxy, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27353/ | | File Size: | 2415 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | e51b0e99a8dca16d046c61eda21d8264 |
|
| /// File Name: |
sa27356.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for seamonkey. This fixes some vulnerabilities and a weakness, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27356/ | | File Size: | 3010 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | c07b48437fc8c628da80bedae4c281dd |
|
| /// File Name: |
sa27368.txt |
Description:
|
Secunia Security Advisory - GeFORC3 has reported a vulnerability in CREApark GOLD KÖY PORTALI, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/27368/ | | File Size: | 2229 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | e34c412e81997941963de29f59b606b6 |
|
| /// File Name: |
sa27369.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for libpng and libpng10. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27369/ | | File Size: | 4409 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 55ce9ce69f324236d641c95b99fde9bb |
|
| /// File Name: |
sa27374.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for xfce4-terminal. This fixes a security issue, which can be exploited by malicious people to inject shell commands.
| | Homepage: | http://secunia.com/advisories/27374/ | | File Size: | 4861 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | edba665b4180fdea28fb17c611c61c54 |
|
| /// File Name: |
sa27381.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for gnome-screensaver. This fixes a security issue, which can be exploited by malicious people with physical access to a system to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27381/ | | File Size: | 3663 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 933edc0988089d1601f01355802cda5c |
|
| /// File Name: |
sa27383.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for mozilla-thunderbird. This fixes a weakness and some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, manipulate certain data, expose sensitive information, or compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27383/ | | File Size: | 17092 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 0593c439f04ce5221cae9da25a4df3ce |
|
| /// File Name: |
sa27385.txt |
Description:
|
Secunia Security Advisory - Alucar has reported a vulnerability in php basic basicFramework, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27385/ | | File Size: | 2396 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 26f06957c72313c0110c4308187e68c8 |
|
| /// File Name: |
sa27387.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for firefox. This fixes some vulnerabilities and weaknesses, which can be exploited by malicious people to disclose sensitive information, conduct phishing attacks, manipulate certain data, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27387/ | | File Size: | 3320 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | 76fa33758fa415ad2d558786d3ad52ab |
|
| /// File Name: |
sa27389.txt |
Description:
|
Secunia Security Advisory - Steve Kemp has reported a security issue in Xen, which can be exploited by malicious, local users to truncate arbitrary files.
| | Homepage: | http://secunia.com/advisories/27389/ | | File Size: | 2249 | | Last Modified: | Oct 24 23:40:24 2007 |
| MD5 Checksum: | dd2cd7ba436567d0d619584114e05e14 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
