Section: .. / 0805-advisories /
| /// File Name: |
sa30445.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Alive MP3 WAV Converter, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30445/ | | File Size: | 1932 | | Last Modified: | May 29 19:19:06 2008 |
| MD5 Checksum: | 5f7d72feb35bcd6ae416c07ada0a3e7a |
|
| /// File Name: |
sa30446.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Gold Wave Editor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30446/ | | File Size: | 1842 | | Last Modified: | May 30 14:30:56 2008 |
| MD5 Checksum: | 065a74dd6e514b6c019f7e9090671416 |
|
| /// File Name: |
sa30447.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in various HiFi products, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30447/ | | File Size: | 3139 | | Last Modified: | May 30 14:30:56 2008 |
| MD5 Checksum: | 2442facb2806348082b4dbb96bf8d7be |
|
| /// File Name: |
sa30448.txt |
Description:
|
Secunia Security Advisory - Stack has discovered some vulnerabilities in CMS from Scratch, which can be exploited by malicious users to disclose sensitive information and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30448/ | | File Size: | 2408 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | bfeef896004af9c7940a912e895c0265 |
|
| /// File Name: |
sa30450.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Digital Smart Software products, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30450/ | | File Size: | 2293 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | 8e7f6cecec94cad8a074938aa8fc1bb5 |
|
| /// File Name: |
sa30451.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Total Audio Capture, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30451/ | | File Size: | 1862 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | e95a59a21116cd1d5ac426b79d7a2783 |
|
| /// File Name: |
sa30452.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in My Phone Files Media Studio, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30452/ | | File Size: | 1887 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | 61290627e34253f42db23eb7e150fdba |
|
| /// File Name: |
sa30453.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Total Audio Recorder and Editor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30453/ | | File Size: | 1898 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | 23a8b0901ceee339a0445f7d2f162317 |
|
| /// File Name: |
sa30454.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Easy Audio Redactor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30454/ | | File Size: | 1862 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | e2a290c591f6dde6ae7e5547319d6946 |
|
| /// File Name: |
sa30455.txt |
Description:
|
Secunia Security Advisory - hackerb has reported a vulnerability in DVBBS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30455/ | | File Size: | 1971 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | bccd654c75c9a25e998ce5135171cfc9 |
|
| /// File Name: |
sa30456.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Crystal MP3 Recorder, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30456/ | | File Size: | 1866 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | 4e03484df8de419f5d744a7ae7ac4c0c |
|
| /// File Name: |
sa30457.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Powerful Audio Tool, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30457/ | | File Size: | 1863 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | dfee8a6a4a4cca37d7b1cf7088163552 |
|
| /// File Name: |
sa30458.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Audio Editor Plus, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30458/ | | File Size: | 1856 | | Last Modified: | May 31 15:11:55 2008 |
| MD5 Checksum: | f3548c6b3e032dc8d4d579f012bfe223 |
|
| /// File Name: |
sa30459.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in various Color7 Technology products, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30459/ | | File Size: | 1965 | | Last Modified: | May 30 14:30:56 2008 |
| MD5 Checksum: | 8f1b71c7f51b64500709e345f01405db |
|
| /// File Name: |
samba-exec.txt |
Description:
|
Secunia Research reported a vulnerability that allows for the execution of arbitrary code in smbd. This defect is is a result of an incorrect buffer size when parsing SMB replies in the routine receive_smb_raw(). Samba versions 3.0.0 through 3.0.29 are affected.
| | Author: | Alin Rad Pop | | Homepage: | http://www.samba.org/ | | File Size: | 2145 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 28 20:12:52 2008 |
| MD5 Checksum: | 7b01ce7a31f8258de1a442927454875b |
|
| /// File Name: |
SE-2008-02.txt |
Description:
|
PHP versions 5.2.5 and below and 4.4.8 and below suffer from a weak random number seed vulnerability in GENERATE_SEED().
| | Author: | Stefan Esser | | Homepage: | http://www.sektioneins.de/ | | File Size: | 6356 | | Last Modified: | May 6 19:02:00 2008 |
| MD5 Checksum: | 4b0cca74264389c41d1fdf9224233459 |
|
| /// File Name: |
SE-2008-03.txt |
Description:
|
PHP versions 5.2.5 and below and 4.4.8 and below suffer from a multibyte shell command escaping bypass vulnerability.
| | Author: | Stefan Esser | | Homepage: | http://www.sektioneins.de/ | | File Size: | 6019 | | Last Modified: | May 6 19:03:07 2008 |
| MD5 Checksum: | 75f252427e7c381d010f1b575b551982 |
|
| /// File Name: |
secadv_20080528.txt |
Description:
|
OpenSSL Security Advisory - Two moderate severity security flaws have been fixed in OpenSSL 0.9.8h. Testing using the Codenomicon TLS test suite discovered a flaw in the handling of server name extension data in OpenSSL 0.9.8f and OpenSSL 0.9.8g. Testing using the Codenomicon TLS test suite discovered a flaw if the 'Server Key exchange message' is omitted from a TLS handshake in OpenSSL 0.9.8f and OpenSSL 0.9.8g.
| | Homepage: | http://www.openssl.org/ | | Related File: | openssl-0.9.8h.tar.gz | | File Size: | 1525 | | Related CVE(s): | CVE-2008-0891, CVE-2008-1672 | | Last Modified: | May 28 11:04:35 2008 |
| MD5 Checksum: | 8ff6fbfb291984e8b98a3897d4666108 |
|
| /// File Name: |
SECOBJADV-2008-01.txt |
Description:
|
Security Objectives Advisory - Lenovo System Update allows arbitrary update executables to be downloaded and installed from a rogue server. The Client DLL does not perform certificate chain verification when initiating an SSL connection with the server. Version 3.13.0005 Build date 2008-1-3 is affected. Other versions may also be affected.
| | Author: | Derek Callaway | | Homepage: | http://www.security-objectives.com/ | | File Size: | 4703 | | Last Modified: | May 27 18:09:22 2008 |
| MD5 Checksum: | ea869b75c524898156553df7293ac0d5 |
|
| /// File Name: |
secunia-foxit.txt |
Description:
|
Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when parsing format strings containing a floating point specifier in the "util.printf()" JavaScript function. This can be exploited to cause a stack-based buffer overflow via a specially crafted PDF file. Successful exploitation allows execution of arbitrary code. Foxit Reader 2.3 build 2825 is affected.
| | Author: | Dyon Balding | | Homepage: | http://secunia.com/ | | File Size: | 4610 | | Related CVE(s): | CVE-2008-1104 | | Last Modified: | May 20 10:15:21 2008 |
| MD5 Checksum: | 279d313f561b4f6687c47e56615435ef |
|
| /// File Name: |
secunia-imlib2.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. imlib2 version 1.4.0 is affected.
| | Author: | Stefan Cornelius | | Homepage: | http://secunia.com/ | | File Size: | 4742 | | Related CVE(s): | CVE-2008-2426 | | Last Modified: | May 29 13:56:58 2008 |
| MD5 Checksum: | be26fa0c3bd9bd6db1a692df74cf6246 |
|
| /// File Name: |
secunia-smbraw.txt |
Description:
|
Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "receive_smb_raw()" function in lib/util_sock.c when parsing SMB packets. This can be exploited to cause a heap-based buffer overflow via an overly large SMB packet received in a client context. Successful exploitation allows execution of arbitrary code by tricking a user into connecting to a malicious server (e.g. by clicking an "smb://" link) or by sending specially crafted packets to an "nmbd" server configured as a local or domain master browser. Samba versions 3.0.28a and 3.0.29 are affected.
| | Author: | Alin Rad Pop | | Homepage: | http://secunia.com/ | | File Size: | 4582 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 29 13:57:58 2008 |
| MD5 Checksum: | 8b50b5f7f3e20c60bd7e3a2d316423ce |
|
| /// File Name: |
SSRT071403-2.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ftp. The vulnerability could be exploited remotely to create a Denial of Service (DoS). The Denial of Service (DoS) affects the ftp server application only.
| | Homepage: | http://www.hp.com/ | | File Size: | 7258 | | Related CVE(s): | CVE-2008-0713 | | Last Modified: | May 28 20:16:21 2008 |
| MD5 Checksum: | 5bbef96b3358b35c2b29f08a4f90efd6 |
|
| /// File Name: |
SSRT071403.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ftp. The vulnerability could be exploited remotely to create a Denial of Service (DoS). The Denial of Service (DoS) affects the ftp server application only.
| | Homepage: | http://www.hp.com/ | | File Size: | 7219 | | Related CVE(s): | CVE-2008-0713 | | Last Modified: | May 12 16:04:01 2008 |
| MD5 Checksum: | 775ab8659a58b7670f90f607b3a6d47e |
|
| /// File Name: |
SSRT071454-2.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified HP-UX running the useradd(1M) command. The vulnerability could be exploited locally to allow unauthorized access to directories or files.
| | Homepage: | http://www.hp.com/ | | File Size: | 7063 | | Related CVE(s): | CVE-2008-1660 | | Last Modified: | May 27 19:32:07 2008 |
| MD5 Checksum: | 6a15f7701a6c7e29bf912a9181f066d6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
