Section: .. / 0608-advisories /
| /// File Name: |
OpenPKG-SA-2006.016.txt |
Description:
|
OpenPKG Security Advisory OpenPKG-SA-2006.016 - Multiple unspecified vulnerabilities in the Ruby programming language allow remote attackers to bypass "safe level" checks via unspecified vectors involving the "alias" function, directory operations and regular expressions.
| | Homepage: | http://www.openpkg.org/security/ | | File Size: | 2072 | | Related CVE(s): | CVE-2006-3694 | | Last Modified: | Aug 3 00:45:21 2006 |
| MD5 Checksum: | c3f937acf72ea7249a7d5c9e51514d8a |
|
| /// File Name: |
pandaXSS.txt |
Description:
|
Panda ActiveScan contains a flaw that allows for remote cross site scripting attacks. This flaw exists because the application does not validate the 'email' variable upon submission to the ascan_6.asp script. Version 5.53.00 is affected.
| | Author: | Lostmon | | Homepage: | http://lostmon.blogspot.com/ | | File Size: | 1497 | | Last Modified: | Aug 26 20:45:12 2006 |
| MD5 Checksum: | 6941389ffde83c99c29eea0ce3c5c542 |
|
| /// File Name: |
PI-2006-001.txt |
Description:
|
PinoyInfosec Advisory - Web500 does not have proper input validation in the fronteditor script which allows an attacker to execute arbitrary SQL commands. This allows an attacker to manipulate data on the CMS by passing specially crafted SQL statements through the Dbcountry variable. Version 2.80 is affected.
| | Author: | Daniel Tumalad | | Homepage: | http://www.pinoyinfosec.org/ | | File Size: | 848 | | Last Modified: | Aug 28 01:25:45 2006 |
| MD5 Checksum: | 77bcb5e5ff9f30497c2bdb0de283a0e5 |
|
| /// File Name: |
pocketpc.txt |
Description:
|
MMS composer versions 1.5.5.6 and 2.0.0.13 suffer from multiple buffer overflows in the MMS parsing code allowing for arbitrary code execution and denial of service conditions.
| | Author: | Collin Mulliner, Prof. Giovanni Vigna | | File Size: | 4272 | | Last Modified: | Aug 26 20:53:56 2006 |
| MD5 Checksum: | 01dc07778157ff02b13172b0749cec35 |
|
| /// File Name: |
powerzip.txt |
Description:
|
A vulnerability has been found in PowerZip version 7.06 build 3895. When exploited, the vulnerability allows execution of arbitrary code when the user opens a malicious ZIP archive.
| | Author: | Tan Chew Keong | | Homepage: | http://vuln.sg/ | | File Size: | 678 | | Last Modified: | Aug 27 19:52:14 2006 |
| MD5 Checksum: | df193db989e4e4b88a47b041f66d908a |
|
| /// File Name: |
rubyonrails.txt |
Description:
|
Scott Barron and Tobias Luetke, of the Ruby on Rails Core Team, discovered a fault with the dependency resolution mechanism which can, when exploited by a remote attacker, leave a system vulnerable to denial of service attacks, or even data loss. Affected are versions 1.1.0 through 1.1.5.
| | File Size: | 886 | | Last Modified: | Aug 26 21:50:19 2006 |
| MD5 Checksum: | ddc3b411312b8ae0569f4994f458e025 |
|
| /// File Name: |
sa18734.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a security issue in AOL, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18734/ | | File Size: | 2451 | | Last Modified: | Aug 20 21:48:37 2006 |
| MD5 Checksum: | cc12d5a8dac061a231026dd40a523abe |
|
| /// File Name: |
sa20845.txt |
Description:
|
Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in InterActual Player, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/20845/ | | File Size: | 2435 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 2b3e28ac915c6e6fcdb3328371f04c57 |
|
| /// File Name: |
sa20889.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Jetbox CMS, which can be exploited by malicious people to conduct session fixation attacks, disclose certain system information, conduct cross-site scripting, script insertion, and SQL injection attacks, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/20889/ | | File Size: | 4504 | | Last Modified: | Aug 2 23:35:36 2006 |
| MD5 Checksum: | 727f898aa45c180087fee60cb284354d |
|
| /// File Name: |
sa21075.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a security issue in PC Tools AntiVirus, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/21075/ | | File Size: | 2580 | | Last Modified: | Aug 9 20:40:54 2006 |
| MD5 Checksum: | 6f8725caa2c5b2137a85b62c69ddfca2 |
|
| /// File Name: |
sa21185.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun N1 Grid Engine, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/21185/ | | File Size: | 3672 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | f32723f18856552a2418f2929a7d95c4 |
|
| /// File Name: |
sa21197.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Apache HTTP Server, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21197/ | | File Size: | 2813 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 39c21f3003793ebd929a4ae3d939ccee |
|
| /// File Name: |
sa21223.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Symantec Brightmail AntiSpam, which can be exploited by malicious people to cause a DoS (Denial of Service) and overwrite or read sensitive information.
| | Homepage: | http://secunia.com/advisories/21223/ | | File Size: | 2821 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | a7ec6995cddfab18eb26e09d1f1e2fa8 |
|
| /// File Name: |
sa21224.txt |
Description:
|
Secunia Security Advisory - xoron has discovered a vulnerability in PortailPHP, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21224/ | | File Size: | 2328 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | e0537657eeaa7b67655912409e00ff51 |
|
| /// File Name: |
sa21227.txt |
Description:
|
Secunia Security Advisory - Dr.Jr7 has discovered a vulnerability in a6MamboHelpDesk component for Mambo, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21227/ | | File Size: | 2385 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 6be96a8dc6d11447812400dadcb9f7f8 |
|
| /// File Name: |
sa21230.txt |
Description:
|
Secunia Security Advisory - Corsaire has reported some vulnerabilities in VMware ESX Server, which can be exploited to gain knowledge of potentially sensitive information or conduct cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/21230/ | | File Size: | 2953 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | fdbbb4a943fb2d53e3b0779ccf5d0773 |
|
| /// File Name: |
sa21231.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for heartbeat. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21231/ | | File Size: | 15652 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 1d0a9cc47b28720a53e48ceb80094b7b |
|
| /// File Name: |
sa21232.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for freetype. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise applications using the library.
| | Homepage: | http://secunia.com/advisories/21232/ | | File Size: | 10694 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | cc2289410c449e0385f7e4bf273205d7 |
|
| /// File Name: |
sa21233.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for ruby. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21233/ | | File Size: | 26832 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 4e97c0c6660b53b541dcfec9af26d32c |
|
| /// File Name: |
sa21236.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for Ruby. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21236/ | | File Size: | 2540 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | f498585cbaf1d7964bab6a30a953c05b |
|
| /// File Name: |
sa21237.txt |
Description:
|
Secunia Security Advisory - Ellipsis Security reported some vulnerabilities in GeoClassifieds Enterprise, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/21237/ | | File Size: | 2352 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 32e4179ba6132a0c92c39f845c9b985a |
|
| /// File Name: |
sa21238.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Audacious, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21238/ | | File Size: | 1991 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 96202ebfb0a5c38aed427a7e77f5f97e |
|
| /// File Name: |
sa21240.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for heartbeat. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21240/ | | File Size: | 15759 | | Last Modified: | Aug 2 04:14:26 2006 |
| MD5 Checksum: | 3c2410e48dc655bfcae6dbf5dbd8012f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
