Section: .. / 0802-advisories /
| /// File Name: |
sa28760.txt |
Description:
|
Secunia Security Advisory - securfrog has discovered a vulnerability in Titan FTP Server, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28760/ | | File Size: | 2414 | | Last Modified: | Feb 4 19:19:50 2008 |
| MD5 Checksum: | e64f8162e4b01e797eee7c90c83ed4f0 |
|
| /// File Name: |
sa28745.txt |
Description:
|
Secunia Security Advisory - Philipp Bracher has reported a vulnerability in Magnolia CE, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28745/ | | File Size: | 2364 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 5e0dfda6aac40c0deb2911b947a42872 |
|
| /// File Name: |
sa28755.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Xlight FTP Server, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28755/ | | File Size: | 2217 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 1d99020d935d2fbd3d78da4cbfc67c17 |
|
| /// File Name: |
sa28757.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in Yahoo! Music Jukebox, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28757/ | | File Size: | 2839 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 1dca9cbe9dbb1f2da8dfca3a2e38ebf6 |
|
| /// File Name: |
sa28762.txt |
Description:
|
Secunia Security Advisory - ShadOS has reported a vulnerability in RouterOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28762/ | | File Size: | 2220 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 744dbc4bf6cfe95a9a1383e8d5bd65cf |
|
| /// File Name: |
sa28767.txt |
Description:
|
Secunia Security Advisory - S@BUN has reported a vulnerability in the Wordspew plugin for Wordpress, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/28767/ | | File Size: | 2201 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 85c56d0c1b4d4f863d2d50b16939a388 |
|
| /// File Name: |
sa28771.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in IBM DB2 UDB, where some have unknown impacts, while others can be exploited by malicious, local users to gain escalated privileges, and by malicious people to bypass certain security restrictions or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28771/ | | File Size: | 2822 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 78b28c6cb587ce2467bdd289633b186c |
|
| /// File Name: |
sa28775.txt |
Description:
|
Secunia Security Advisory - Smasher has reported a vulnerability in Youtube Script, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28775/ | | File Size: | 2294 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | 9c96267752f0cdac0af39b41444c5498 |
|
| /// File Name: |
sa28778.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Novell GroupWise, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28778/ | | File Size: | 2391 | | Last Modified: | Feb 4 19:19:12 2008 |
| MD5 Checksum: | a6f3de5663cc3211931b4e4d534a7c04 |
|
| /// File Name: |
sa28774.txt |
Description:
|
Secunia Security Advisory - Crackers_Child has reported a vulnerability in Domain Trader, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28774/ | | File Size: | 2224 | | Last Modified: | Feb 4 14:47:55 2008 |
| MD5 Checksum: | 324bd3ed360c1dceee9b31a6bca9978d |
|
| /// File Name: |
01.31.08-2.txt |
Description:
|
iDefense Security Advisory 01.31.08 - Local exploitation of a file creation vulnerability in IBM Corp.'s Informix Dynamic Server allows attackers to elevate privileges to root. The set-uid root "onedcu" command requires six parameters to be specified when it is executed. The second parameter is a "Trace" file that this program will open and write to with elevated privileges.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3136 | | Related CVE(s): | CVE-2008-0368 | | Last Modified: | Feb 4 14:47:49 2008 |
| MD5 Checksum: | 86e2218851920479b4f3aec7120e1fee |
|
| /// File Name: |
01.31.08-1.txt |
Description:
|
iDefense Security Advisory 01.31.08 - Local exploitation of a file creation vulnerability in IBM Corp.'s Informix Dynamic Server allows attackers to elevate privileges to root. When the SQLIDEBUG environment variable is set, several set-uid binaries will log debugging information to the specified file. iDefense confirmed the existence of this vulnerability in IBM Corp.'s Informix Dynamic Server version 10.00 UC6TL installed on a Linux system. Other versions are also suspected as vulnerable. Versions for other supported Unix systems should also be considered vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3241 | | Related CVE(s): | CVE-2008-0369 | | Last Modified: | Feb 4 14:47:12 2008 |
| MD5 Checksum: | fdfce2c86d8edbe276b7745ff0819a4a |
|
| /// File Name: |
CORE-2007-1218.txt |
Description:
|
Core Security Technologies Advisory - The MPlayer package is vulnerable to a buffer overflow attack, which can be exploited by malicious remote attackers. The vulnerability is due to MPlayer not properly sanitizing certain tags on a FLAC file before using them to index an array on the stack. This can be exploited to execute arbitrary commands by opening a specially crafted file.
| | Author: | Damian Frizza, Alfredo Ortego | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 6985 | | Related CVE(s): | CVE-2008-0486 | | Last Modified: | Feb 4 14:45:56 2008 |
| MD5 Checksum: | 34ecc4e332eabd9c69806ef8fe08163e |
|
| /// File Name: |
CORE-2008-122.txt |
Description:
|
Core Security Technologies Advisory - The MPlayer package is vulnerable to an arbitrary pointer dereference vulnerability, which can be exploited by malicious remote attackers to compromise a user's system. The vulnerability is caused by the MPlayer libmpdemux ('demux_mov.c') library not properly sanitizing certain tags on a MOV file before using them to index an array on the heap. This can be exploited to execute arbitrary commands by opening a specially crafted file.
| | Author: | Felipe Manzano, Anibal Sacco | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 11006 | | Related CVE(s): | CVE-2008-0485 | | Last Modified: | Feb 4 14:45:07 2008 |
| MD5 Checksum: | 5ca3b71e53a087bd7778f56ea27ae12f |
|
| /// File Name: |
USN-574-1.txt |
Description:
|
Ubuntu Security Notice 574-1 - A massive slew of vulnerabilities relating to the linux-source-2.6.17/20/22 packages have been addressed.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 156053 | | Related CVE(s): | CVE-2006-6058, CVE-2007-3107, CVE-2007-4567, CVE-2007-4849, CVE-2007-4997, CVE-2007-5093, CVE-2007-5500, CVE-2007-5501, CVE-2007-5966, CVE-2007-6063, CVE-2007-6151, CVE-2007-6206, CVE-2007-6417, CVE-2008-0001 | | Last Modified: | Feb 4 14:42:55 2008 |
| MD5 Checksum: | e768f5816148d5f5d28111789684935c |
|
| /// File Name: |
aps-overflow.txt |
Description:
|
Anon Proxy Server version 0.102 and below suffer from a remote buffer overflow vulnerability.
| | Author: | L4teral | | File Size: | 1533 | | Last Modified: | Feb 4 13:50:08 2008 |
| MD5 Checksum: | 8e9f78c5cdd54f2a3eeb489f9ee0570b |
|
| /// File Name: |
sa28753.txt |
Description:
|
Secunia Security Advisory - securfrog has discovered a vulnerability in IpSwitch WS_FTP Server with SSH, which can be exploited by malicious users to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28753/ | | File Size: | 2483 | | Last Modified: | Feb 4 13:20:45 2008 |
| MD5 Checksum: | 85d89c3da2bb282988ff3be745c7b042 |
|
| /// File Name: |
sa28772.txt |
Description:
|
Secunia Security Advisory - NBBN has discovered some vulnerabilities in the WP-Footnotes plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28772/ | | File Size: | 2492 | | Last Modified: | Feb 4 13:20:45 2008 |
| MD5 Checksum: | def3d493861dda607b704de286e0aa34 |
|
| /// File Name: |
MDVSA-2008-033.txt |
Description:
|
Mandriva Linux Security Advisory - A format string vulnerability in Ruby-GNOME 2 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10562 | | Related CVE(s): | CVE-2007-6183 | | Last Modified: | Feb 3 16:02:01 2008 |
| MD5 Checksum: | fbb0bb2b2c3ad4a57bcfd66b49747865 |
|
| /// File Name: |
MDVSA-2008-032.txt |
Description:
|
Mandriva Linux Security Advisory - Tavis Ormandy and Will Drewry found that the bost library did not properly perform input validation on regular expressions. An attacker could exploit this by sening a specially crafted regular expression to an application linked against boost and cause a denial of service via an application crash.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5118 | | Related CVE(s): | CVE-2008-0171, CVE-2008-0172 | | Last Modified: | Feb 3 16:01:27 2008 |
| MD5 Checksum: | a7527015947392ba88614568b1cd75ff |
|
| /// File Name: |
sa28696.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in the Linux Kernel, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28696/ | | File Size: | 2174 | | Last Modified: | Feb 1 18:39:51 2008 |
| MD5 Checksum: | 6ad9916b9aa9f5724aac1ceef294e606 |
|
| /// File Name: |
sa28733.txt |
Description:
|
Secunia Security Advisory - Elazar Broad has discovered a vulnerability in Aurigma Image Uploader, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28733/ | | File Size: | 2458 | | Last Modified: | Feb 1 18:39:51 2008 |
| MD5 Checksum: | 60ffc263142cc53db64ffb66471b8352 |
|
| /// File Name: |
sa28738.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for pulseaudio. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/28738/ | | File Size: | 16642 | | Last Modified: | Feb 1 17:35:37 2008 |
| MD5 Checksum: | 5ef1059333bbe14ac24566a3850555c9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
