Section: .. / 0605-advisories /
| /// File Name: |
sa20374.txt |
Description:
|
Secunia Security Advisory - CrAzY CrAcKeR has reported a vulnerability in 4nForum, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/20374/ | | File Size: | 2158 | | Last Modified: | May 31 17:33:01 2006 |
| MD5 Checksum: | 1fb59b2776976b7e3ca39fe43068540c |
|
| /// File Name: |
sa20377.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Secure Elements Class 5 AVR, which potentially can be exploited by malicious people to disclose certain sensitive information.
| | Homepage: | http://secunia.com/advisories/20377/ | | File Size: | 2426 | | Last Modified: | May 31 17:33:01 2006 |
| MD5 Checksum: | a245b9b1e0e7a963c2ed893f57d18ff9 |
|
| /// File Name: |
sa20378.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities and security issues have been reported in Secure Elements Class 5 AVR, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, spoof the contents of messages, cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/20378/ | | File Size: | 6010 | | Last Modified: | May 31 17:33:01 2006 |
| MD5 Checksum: | c534798763297e549e6583d16ab0fdf2 |
|
| /// File Name: |
secunia-Abakt.txt |
Description:
|
Secunia Research has discovered a vulnerability in Abakt, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when listing the contents of a ZIP archive. This can be exploited to cause a stack-based buffer overflow when a malicious ZIP archive containing a file with an overly long filename is opened. Versions 0.9.2 and 0.9.3-beta1 are affected.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3665 | | Related CVE(s): | CVE-2006-2161 | | Last Modified: | May 22 00:23:24 2006 |
| MD5 Checksum: | 22eead297aee1d6bebec5fb6cf470653 |
|
| /// File Name: |
secunia-anti.txt |
Description:
|
Secunia Research has discovered a vulnerability in Anti-Trojan version 5.5.421, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user scans a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3660 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 9 17:16:04 2006 |
| MD5 Checksum: | e471ac8f968e2580610d05c8842af3b1 |
|
| /// File Name: |
secunia-CAM.txt |
Description:
|
Secunia Research has discovered a vulnerability in CAM UnZip versions 4.0 and 4.3, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when listing the contents of a ZIP archive. This can be exploited to cause a stack-based buffer overflow when a malicious ZIP archive containing a file with an overly long filename is opened.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3485 | | Related CVE(s): | CVE-2006-2161 | | Last Modified: | May 22 02:18:39 2006 |
| MD5 Checksum: | 1843342c184ce46a32290e059fc17aa3 |
|
| /// File Name: |
secunia-Eazel.txt |
Description:
|
Secunia Research has discovered a vulnerability in Eazel version 1.0, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in ztvunacev2.dll (UNACEV2.DLL) when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3491 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 22 01:25:13 2006 |
| MD5 Checksum: | 21f7a357765104be52f1df731273dbcc |
|
| /// File Name: |
secunia-FilZip.txt |
Description:
|
Secunia Research has discovered a vulnerability in FilZip, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive. Version 3.04 is affected. Earlier versions may also be affected.
| | Homepage: | http://secunia.com/ | | File Size: | 3530 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 21 23:48:27 2006 |
| MD5 Checksum: | 49d915f9fa00f38f00428ca88cd5a170 |
|
| /// File Name: |
secunia-IZArc.txt |
Description:
|
Secunia Research has discovered a vulnerability in IZArc versions 3.5 beta 3, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3482 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 22 01:25:58 2006 |
| MD5 Checksum: | c0e3ed5808f37e7343048f616bfbb1e0 |
|
| /// File Name: |
secunia-TZip.txt |
Description:
|
Secunia Research has discovered a vulnerability in TZipBuilder version 1.79.03.01, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when listing the contents of a ZIP archive that contains a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a specially crafted ZIP archive is opened. Successful exploitation allows execution of arbitrary code with the privileges of an application that uses the library.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3537 | | Related CVE(s): | CVE-2006-2161 | | Last Modified: | May 9 17:15:12 2006 |
| MD5 Checksum: | fdb02c8d5591a6be9b8be76fe1a11b93 |
|
| /// File Name: |
secunia-ultimatezip.txt |
Description:
|
Secunia Research has discovered a vulnerability in UltimateZip, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3562 | | Last Modified: | May 21 14:52:25 2006 |
| MD5 Checksum: | a00115d97802abbcbb0cf9fc7764a142 |
|
| /// File Name: |
secunia-unacev2.dll.txt |
Description:
|
Secunia Research 09/05/2006 - Where Is It unacev2.dll Buffer Overflow Vulnerability.
| | Homepage: | http://secunia.com/ | | File Size: | 3442 | | Last Modified: | May 17 18:24:26 2006 |
| MD5 Checksum: | c612c5514fd3cc7eab2ad27c72522277 |
|
| /// File Name: |
secunia-WinHKI.txt |
Description:
|
Secunia Research has discovered a vulnerability in WinHKI versions 1.66 and 1.67, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in ztvunacev2.dll (UNACEV2.DLL) when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3408 | | Last Modified: | May 2 01:58:08 2006 |
| MD5 Checksum: | 000c8244680ac371d46388259aa339c8 |
|
| /// File Name: |
SkyeShoutbox-1.2.0.txt |
Description:
|
SkyeShoutbox versions less than or equal to v.1.2.0 suffer from many XSS vulnerabilities.
| | Author: | zerogue | | File Size: | 233 | | Last Modified: | May 26 18:09:25 2006 |
| MD5 Checksum: | 24033b300bdb67130b4058c5623958d1 |
|
| /// File Name: |
skypeVuln.txt |
Description:
|
During the typical installation of the Windows Skype client, several URI handlers are installed. This allows for easy access to the Skype client through various URI types. Due to a flaw in the handling of one of these types, it is possible to include additional command line switches to be passed to the Skype client. One of these switches will initiate a file transfer, sending the specified file to an arbitrary Skype user. All releases prior to and included 2.0.*.104 and releases 2.5.*.0 to and including 2.5.*.78 are affected.
| | Author: | Brett Moore | | Homepage: | http://www.security-assessment.com/ | | File Size: | 2439 | | Last Modified: | May 22 03:36:17 2006 |
| MD5 Checksum: | fc255d4d355f756adbe4dda55b1adf56 |
|
| /// File Name: |
Socketmail-2.2.6.txt |
Description:
|
Socketmail versions less than or equal to 2.2.6 suffer from a remote file inclusion vulnerability.
| | Author: | Aesthetico | | Homepage: | http://www.majorsecurity.de | | File Size: | 1303 | | Last Modified: | May 29 03:22:51 2006 |
| MD5 Checksum: | 03c2f9fe77314cf91a86a1e10e6d065d |
|
| /// File Name: |
SSRT051057.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in the HP-UX kernel. The potential vulnerability could be exploited by a local authorized user to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com | | File Size: | 5601 | | Last Modified: | May 24 04:56:37 2006 |
| MD5 Checksum: | 9fce54dbdd4f19825719b065b089b4de |
|
| /// File Name: |
SSRT051074-5.txt |
Description:
|
HPSBUX02075 SSRT051074 rev.5 - HP-UX Running xterm Local Unauthorized Access
| | Homepage: | http://www.hp.com | | File Size: | 6114 | | Last Modified: | May 25 22:55:41 2006 |
| MD5 Checksum: | 422dc961570c326671bdd74b292b23e3 |
|
| /// File Name: |
SSRT061115-1.txt |
Description:
|
HPSBUX02114 SSRT061115 rev.1 - HP-UX Running Software Distributor Local Elevation of Privilege
| | Homepage: | http://www.hp.com | | File Size: | 6229 | | Last Modified: | May 25 22:57:34 2006 |
| MD5 Checksum: | 3fbdb54f0755b886f54c89912b7bd599 |
|
| /// File Name: |
SSRT061133.txt |
Description:
|
HP Security Bulletin - A vulnerability has been identified in Sendmail which may allow a remote attacker to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 11857 | | Related CVE(s): | CVE-2006-0058 | | Last Modified: | May 22 02:58:10 2006 |
| MD5 Checksum: | d7b62d639fe55b268f77be3d0395f710 |
|
| /// File Name: |
SSRT061145.txt |
Description:
|
HP Security Bulletin - Potential security vulnerabilities have been identified in Firefox for HP Tru64 UNIX and in the Mozilla Application Suite for HP Tru64 UNIX. The vulnerabilities could result in possible remote execution of arbitrary code or Denial of Service (DoS).
| | Homepage: | http://www.hp.com | | File Size: | 6191 | | Related CVE(s): | CVE-2006-1993 | | Last Modified: | May 22 02:59:44 2006 |
| MD5 Checksum: | d6a01651795b00ae9891b6362dc3cae8 |
|
| /// File Name: |
SSRT061157-1.txt |
Description:
|
HPSBMA02121 SSRT061157 rev.1 - HP OpenView Storage Data Protector Remote Arbitrary Command Execution
| | Homepage: | http://www.hp.com | | File Size: | 7917 | | Last Modified: | May 25 22:57:08 2006 |
| MD5 Checksum: | 76f60a09c1f4d3a2caf028a6462e976b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
