Section: .. / 0805-advisories /
| /// File Name: |
google-spam.txt |
Description:
|
It appears that manipulating the forwarding functionality in Google's GMail service allows people to spam.
| | Homepage: | http://ece.uprm.edu/~andre/insert | | File Size: | 2123 | | Last Modified: | May 7 20:40:32 2008 |
| MD5 Checksum: | f7d31e6f454a2e5814a14ca9ac14dcfb |
|
| /// File Name: |
MDVSA-2008-096.txt |
Description:
|
Mandriva Linux Security Advisory - Steve Grubb found that the vcdiff script in Emacs create temporary files insecurely when used with SCCS. A local user could exploit a race condition to create or overwrite files with the privileges of the user invoking the program.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8840 | | Related CVE(s): | CVE-2008-1694 | | Last Modified: | May 6 19:15:29 2008 |
| MD5 Checksum: | 3a0ea4e3b1b58f64a7459c160c351863 |
|
| /// File Name: |
MDVSA-2008-097.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was found in start_kdeinit in KDE 3.5.5 through 3.5.9 where, if it was installed setuid root, it could allow local users to cause a denial of service or possibly execute arbitrary code. By default, start_kdeinit is not installed setuid root on Mandriva Linux, however updated packages have been patched to correct this issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4032 | | Related CVE(s): | CVE-2008-1671 | | Last Modified: | May 7 13:29:17 2008 |
| MD5 Checksum: | c4ad65a04bf01fc452431de16f2c99c3 |
|
| /// File Name: |
MDVSA-2008-098.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in OpenSSH 4.4 through 4.8 allowed local attackers to bypass intended security restrictions enabling them to execute commands other than those specified by the ForceCommand directive, provided they are able to modify to ~/.ssh/rc.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6090 | | Related CVE(s): | CVE-2008-1657 | | Last Modified: | May 7 13:29:56 2008 |
| MD5 Checksum: | c05d37c906d149b687d05a12d3686dbb |
|
| /// File Name: |
MDVSA-2008-099.txt |
Description:
|
Mandriva Linux Security Advisory - A heap-based buffer overflow vulnerability was found in how ImageMagick parsed XCF files. If ImageMagick opened a specially-crafted XCF file, it could be made to overwrite heap memory beyond the bounds of its allocated memory, potentially allowing an attacker to execute arbitrary code on the system running ImageMagick. Another heap-based buffer overflow vulnerability was found in how ImageMagick processed certain malformed PCX images. If ImageMagick opened a specially-crafted PCX image file, an attacker could possibly execute arbitrary code on the system running ImageMagick.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7839 | | Related CVE(s): | CVE-2008-1096, CVE-2008-1097 | | Last Modified: | May 9 13:43:27 2008 |
| MD5 Checksum: | 80671fb91b231ddf51ff6f60aef286c4 |
|
| /// File Name: |
MDVSA-2008-100.txt |
Description:
|
Mandriva Linux Security Advisory - A double free vulnerability in Perl 5.8.8 and earlier versions, allows context-dependent attackers to cause a denial of service (memory corruption and crash) via a crafted regular expression containing UTF8 characters.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6987 | | Related CVE(s): | CVE-2008-1927 | | Last Modified: | May 12 10:37:41 2008 |
| MD5 Checksum: | 513fa7b59cd18f23cdf5a4d38273458e |
|
| /// File Name: |
novell-stackoverflow.txt |
Description:
|
Novell Client versions 4.91 SP4 and below suffer from a local stack overflow vulnerability.
| | Author: | laurent gaffi | | File Size: | 2335 | | Last Modified: | May 9 13:20:52 2008 |
| MD5 Checksum: | dcfbc10b009f3e54667c1a67566d1691 |
|
| /// File Name: |
novelledir-soap.txt |
Description:
|
Novell eDirectory versions 8.7.x through 8.8.1 suffer from an arbitrary access vulnerability due to client-side access control when using the SOAP interface.
| | Author: | Nicob | | File Size: | 1472 | | Related CVE(s): | CVE-2008-0926 | | Last Modified: | May 6 16:17:50 2008 |
| MD5 Checksum: | bfc87cfd78dc50b27221742df7b7e90f |
|
| /// File Name: |
officepub-corrupt.txt |
Description:
|
A memory corruption vulnerability exists in Microsoft Office Publisher when it is parsing a PUB file. An attacker who successfully exploits this vulnerability can execute arbitrary code on the affected system.
| | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 1355 | | Related CVE(s): | CVE-2008-0119 | | Last Modified: | May 15 01:13:56 2008 |
| MD5 Checksum: | c3c39fb97be35f9f59393df7386d6245 |
|
| /// File Name: |
oracle-aqjms.txt |
Description:
|
Team SHATTER Security Advisory - Oracle Database Server versions 9iR1, 9iR2 (9.2.0.7 and previous patchsets) and 10gR1 suffer from a buffer overflow vulnerability in SYS.DBMS_AQJMS_INTERNAL.
| | Author: | Esteban Martinez Fayo | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2446 | | Last Modified: | May 1 18:23:42 2008 |
| MD5 Checksum: | b6ca92dc152400241d7c65a7995dfa11 |
|
| /// File Name: |
oracle-cdc.txt |
Description:
|
Team SHATTER Security Advisory - Oracle Database Server versions 10gR1, 10gR2 and 11gR1 suffer from a SQL injection vulnerability in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SET.
| | Author: | Esteban Martinez Fayo | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2397 | | Last Modified: | May 1 18:25:35 2008 |
| MD5 Checksum: | 3262e67beb4e36a4ad72fdece4efc664 |
|
| /// File Name: |
oracle-kupf.txt |
Description:
|
Team SHATTER Security Advisory - Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 suffer from a buffer overflow vulnerability in SYS.KUPF$FILE_INT.GET_FULL_FILENAME.
| | Author: | Esteban Martinez Fayo | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2384 | | Last Modified: | May 1 18:25:06 2008 |
| MD5 Checksum: | 3855f9163df523dcf29cdbacdf873df0 |
|
| /// File Name: |
sa29958.txt |
Description:
|
Secunia Security Advisory - Thomas Pollet has reported a vulnerability in IBM Lotus Expeditor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29958/ | | File Size: | 2470 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | aed946be54e86ef962175c615e13acaf |
|
| /// File Name: |
sa29962.txt |
Description:
|
Secunia Security Advisory - Nico Golde has reported a vulnerability in PeerCast, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29962/ | | File Size: | 2436 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 465b36b80b86db383ebe8e3a147ffb71 |
|
| /// File Name: |
sa29963.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for xen. This fixes some vulnerabilities and a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), or truncate arbitrary files.
| | Homepage: | http://secunia.com/advisories/29963/ | | File Size: | 2341 | | Last Modified: | May 15 00:56:37 2008 |
| MD5 Checksum: | e61c610e7712136c42c1c2f428552e31 |
|
| /// File Name: |
sa29968.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29968/ | | File Size: | 4357 | | Last Modified: | May 7 20:31:38 2008 |
| MD5 Checksum: | 4339669fe7fbfb5d144cfa520fa2f1df |
|
| /// File Name: |
sa29969.txt |
Description:
|
Secunia Security Advisory - Juan Pablo Lopez Yacubian has reported a vulnerability in Novell GroupWise, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/29969/ | | File Size: | 2291 | | Last Modified: | May 7 20:31:38 2008 |
| MD5 Checksum: | 483eefea6f5569822e2d258139f40417 |
|
| /// File Name: |
sa29970.txt |
Description:
|
Secunia Security Advisory - cO2 has reported a vulnerability in FluentCMS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29970/ | | File Size: | 1986 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 094373de8bcad1d54e3c0731742fc38a |
|
| /// File Name: |
sa29971.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29971/ | | File Size: | 1874 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 0ffe8c539b948b3443351ad4ddc210f3 |
|
| /// File Name: |
sa29973.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29973/ | | File Size: | 2302 | | Last Modified: | May 7 20:31:38 2008 |
| MD5 Checksum: | e8764b719b03bd2098c1822db0a8534c |
|
| /// File Name: |
sa29975.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29975/ | | File Size: | 2073 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 344c52b071692dc98eee730ce4f22053 |
|
| /// File Name: |
sa29976.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in IBM WebSphere Application Server, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/29976/ | | File Size: | 2059 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 4f4486ede067b0634cbb196ed6620c92 |
|
| /// File Name: |
sa29982.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for util-linux-ng. This fixes a weakness, which can be exploited by malicious people to manipulate certain data.
| | Homepage: | http://secunia.com/advisories/29982/ | | File Size: | 1913 | | Last Modified: | May 12 10:06:04 2008 |
| MD5 Checksum: | 58f3a8e03d67ffe809a293b5f87c547d |
|
| /// File Name: |
sa29983.txt |
Description:
|
Secunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in Softbiz Web Host Directory Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29983/ | | File Size: | 2165 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 73d0bc3a54009371c8f815fb010802d6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
