Section: .. / 0701-advisories /
| /// File Name: |
sa23785.txt |
Description:
|
Secunia Security Advisory - An updated version of IPCop has been released, which fixes some vulnerabilities in various packages. The vulnerabilities can be exploited by malicious people to bypass certain security restrictions, overwrite arbitrary files, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23785/ | | File Size: | 2624 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | d5c2ab43ae970294496c669d24a55b8e |
|
| /// File Name: |
sa23786.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and a weakness have been reported in BEA AquaLogic, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/23786/ | | File Size: | 3966 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 9fe67480d0670c7fe864988c7c1c0ba6 |
|
| /// File Name: |
sa23787.txt |
Description:
|
Secunia Security Advisory - Doz has reported some vulnerabilities in InstantForum.NET, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/23787/ | | File Size: | 2446 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | becd2b9b76f16d87dfe8d1203a3de9fe |
|
| /// File Name: |
sa23788.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23788/ | | File Size: | 2425 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 44da8936d9a3f0a1d61af7fdf6d70139 |
|
| /// File Name: |
sa23789.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for xfree86. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/23789/ | | File Size: | 147048 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | a01a019473b380beb6362769911a3f39 |
|
| /// File Name: |
sa23790.txt |
Description:
|
Secunia Security Advisory - Tavis Ormandy has reported a vulnerability in oftpd, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23790/ | | File Size: | 2394 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 261340da6dcaf8a9dc21cf2a164d2b36 |
|
| /// File Name: |
sa23792.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for w3m. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23792/ | | File Size: | 3932 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | f9b983549812b7712c5ecb920799ce30 |
|
| /// File Name: |
sa23794.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in various Oracle products. Some of these vulnerabilities have unknown impacts while others can be exploited to gain access to sensitive information, cause a DoS (Denial of Service), conduct cross-site scripting and SQL injection attacks, and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23794/ | | File Size: | 4801 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 6d1fc8816b7e8ea63816c5fb8d441b0b |
|
| /// File Name: |
sa23797.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for oftpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23797/ | | File Size: | 2126 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | f77496dc8a04cc08a7a6ce2e2ee83c45 |
|
| /// File Name: |
sa23798.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for BlueZ. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23798/ | | File Size: | 2708 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 0a498ec74df9a2a87b4f191eb4f3a971 |
|
| /// File Name: |
sa23799.txt |
Description:
|
Secunia Security Advisory - A weakness has been reported in KDE and KOffice, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23799/ | | File Size: | 2758 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | c044de59c30d6854b9cb62efe8e42d07 |
|
| /// File Name: |
sa23801.txt |
Description:
|
Secunia Security Advisory - KF and LMH have reported a weakness in Colloquy, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23801/ | | File Size: | 2328 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 0b513e0b27eed36c4a08cc4664adfbc2 |
|
| /// File Name: |
sa23804.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for fetchmail. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and malicious people to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/23804/ | | File Size: | 3682 | | Last Modified: | Jan 18 03:44:32 2007 |
| MD5 Checksum: | 46b01e85359961307baa8f1740cb64ee |
|
| /// File Name: |
MDKSA-2007-016.txt |
Description:
|
Mandriva Linux Security Advisory - Fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5447 | | Related CVE(s): | CVE-2006-5687 | | Last Modified: | Jan 15 22:41:31 2007 |
| MD5 Checksum: | 8e73e1e6b0c15576100152bc317fc766 |
|
| /// File Name: |
MDKSA-2007-015.txt |
Description:
|
Mandriva Linux Security Advisory - SQL injection vulnerability in Cacti 0.8.6i and earlier, when register_argc_argv is enabled, allows remote attackers to execute arbitrary SQL commands via the second or third arguments to cmd.php. NOTE: this issue can be leveraged to execute arbitrary commands since the SQL query results are later used in the polling_items array and popen function.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2739 | | Related CVE(s): | CVE-2006-6799 | | Last Modified: | Jan 15 22:40:52 2007 |
| MD5 Checksum: | 2fbdaa43c4d9bbfc31b66278eae91103 |
|
| /// File Name: |
MDKSA-2007-014.txt |
Description:
|
Mandriva Linux Security Advisory - hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3033 | | Related CVE(s): | CVE-2006-6899 | | Last Modified: | Jan 15 22:40:07 2007 |
| MD5 Checksum: | 927d1fc58efb749cd44ed4b33ea19cf4 |
|
| /// File Name: |
glsa-200701-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200701-10 - When decoding trackbacks with alternate character sets, WordPress does not correctly sanitize the entries before further modifying a SQL query. WordPress also displays different error messages in wp-login.php based upon whether or not a user exists. David Kierznowski has discovered that WordPress fails to properly sanitize recent file information in /wp-admin/templates.php before sending that information to a browser. Versions less than 2.0.6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3292 | | Last Modified: | Jan 15 22:39:07 2007 |
| MD5 Checksum: | dcb3e28bd38089a1c38245d8ab203566 |
|
| /// File Name: |
glsa-200701-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200701-09 - By specifying an unsupported address family in the arguments to a LPRT or LPASV command, an assertion in oftpd will cause the daemon to abort. Versions less than 0.3.7-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2410 | | Last Modified: | Jan 15 22:24:25 2007 |
| MD5 Checksum: | 08417d7dc5ed17bb271f0f1ce1f8b9e3 |
|
| /// File Name: |
USN-409-1.txt |
Description:
|
Ubuntu Security Notice 409-1 - Federico L. Bossi Bonin discovered a Denial of Service vulnerability in ksirc. By sending a special response packet, a malicious IRC server could crash ksirc.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 37672 | | Related CVE(s): | CVE-2006-6811 | | Last Modified: | Jan 15 22:19:10 2007 |
| MD5 Checksum: | 87726af2366057e0e782d3744e387f17 |
|
| /// File Name: |
USN-408-1.txt |
Description:
|
Ubuntu Security Notice 408-1 - The server-side portion of Kerberos' RPC library had a memory management flaw which allowed users of that library to call a function pointer located in unallocated memory. By doing specially crafted calls to the kadmind server, a remote attacker could exploit this to execute arbitrary code with root privileges on the target computer.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 15937 | | Related CVE(s): | CVE-2006-6143 | | Last Modified: | Jan 15 22:18:37 2007 |
| MD5 Checksum: | 1b38828773836a9965daa3b17771775f |
|
| /// File Name: |
remedy-enumerate.txt |
Description:
|
Remedy Action Request System 5.01.02 Patch 1267 suffers from a user enumeration flaw.
| | Author: | Davide Del Vecchio | | File Size: | 1985 | | Last Modified: | Jan 15 22:18:02 2007 |
| MD5 Checksum: | 128de2028e47400f8ccccb2a900abda6 |
|
| /// File Name: |
USN-407-1.txt |
Description:
|
Ubuntu Security Notice 407-1 - Liu Qishuai discovered a buffer overflow in the /proc parsing routines in libgtop. By creating and running a process in a specially crafted long path and tricking an user into running gnome-system-monitor, an attacker could exploit this to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7330 | | Last Modified: | Jan 15 22:13:22 2007 |
| MD5 Checksum: | e6b8ce5ead25be798a85307172385e7e |
|
| /// File Name: |
sa23708.txt |
Description:
|
Secunia Security Advisory - LMH has reported a vulnerability in Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23708/ | | File Size: | 2384 | | Last Modified: | Jan 15 20:56:26 2007 |
| MD5 Checksum: | 846c6c182a77f9b7c1878015c83b4fbc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
