Section: .. / 0701-advisories /
| /// File Name: |
advisory-20070109-1.txt |
Description:
|
KDE Security Advisory - On 2006-12-27, a proof of concept for arbitrary code execution in ksirc was published by Federico L. Bossi Bonin. The published exploit triggers an assertion in ksirc and results in a a NULL pointer dereference (crash) for non-debug builds.
| | Homepage: | http://www.kde.org/ | | File Size: | 1176 | | Related CVE(s): | CVE-2006-6811 | | Last Modified: | Jan 13 17:58:56 2007 |
| MD5 Checksum: | 73ea504d4316742e96a7fb34d2963443 |
|
| /// File Name: |
20070109EN.txt |
Description:
|
Sina UC ActiveX is susceptible to multiple remote stack overflow vulnerabilities.
| | Author: | Sowhat | | Homepage: | http://secway.org/ | | File Size: | 5023 | | Last Modified: | Jan 13 17:57:41 2007 |
| MD5 Checksum: | 84fdbc109494f0bd89a7b8e21bc97670 |
|
| /// File Name: |
MDKSA-2007-004.txt |
Description:
|
Mandriva Linux Security Advisory - Dean Gaudet discovered the geoipupdate utility fails to do sanity checking on the filename returned by "GET /app/update_getfilename?product_id=%s".
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2934 | | Last Modified: | Jan 13 17:54:08 2007 |
| MD5 Checksum: | e457892cf44a968efdf07c9fed540c49 |
|
| /// File Name: |
MDKSA-2007-003.txt |
Description:
|
Mandriva Linux Security Advisory - The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6281 | | Related CVE(s): | CVE-2006-6870 | | Last Modified: | Jan 13 17:50:35 2007 |
| MD5 Checksum: | 364fffd615a57fbb8ea2473c274c3209 |
|
| /// File Name: |
gforge.txt |
Description:
|
GForce version 4.5.11 suffers from a cross site scripting vulnerability.
| | Author: | Jose Palanco | | File Size: | 736 | | Last Modified: | Jan 13 17:31:12 2007 |
| MD5 Checksum: | 073f35b5ef961ca9234a6e0370ca0fa2 |
|
| /// File Name: |
dsa-1247-1.txt |
Description:
|
Debian Security Advisory 1247-1 - An off-by-one error leading to a heap-based buffer overflow has been identified in libapache-mod-auth-kerb, an Apache module for Kerberos authentication. The error could allow an attacker to trigger an application crash or potentially execute arbitrary code by sending a specially crafted kerberos message.
| | Homepage: | http://www.debian.org/security | | File Size: | 7740 | | Related CVE(s): | CVE-2006-5989 | | Last Modified: | Jan 13 17:03:05 2007 |
| MD5 Checksum: | 7f7de90945a1fe95f8ba92652f174884 |
|
| /// File Name: |
dsa-1246-1.txt |
Description:
|
Debian Security Advisory 1246-1 - John Heasman from Next Generation Security Software discovered a heap overflow in the handling of Windows Metafiles in OpenOffice.org, the free office suite, which could lead to a denial of service and potentially execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 14360 | | Related CVE(s): | CVE-2006-5870 | | Last Modified: | Jan 13 17:01:32 2007 |
| MD5 Checksum: | 15d589a34d9d20238ba439285fb487b2 |
|
| /// File Name: |
packeteer-overflow.txt |
Description:
|
Packeteer PacketWise version 8.x suffers from a buffer overflow vulnerability.
| | Author: | kian.mohageri | | File Size: | 1222 | | Last Modified: | Jan 13 17:00:35 2007 |
| MD5 Checksum: | a4064b9a49e40719409775538d94e237 |
|
| /// File Name: |
AD20070108.txt |
Description:
|
There is a DACL weakness that exists in the HP all-in-one products drivers, which can be exploited by malicious, local users to gain escalated privileges.
| | Author: | Sowhat | | Homepage: | http://www.nevisnetworks.com/ | | File Size: | 2953 | | Last Modified: | Jan 13 16:54:41 2007 |
| MD5 Checksum: | 06f847963f002265d63e30368df39701 |
|
| /// File Name: |
dsa-1245-1.txt |
Description:
|
Debian Security Advisory 1245-1 - Martin Loewer discovered that the proftpd FTP daemon is vulnerable to denial of service if the addon module for Radius authentication is enabled.
| | Homepage: | http://www.debian.org/security | | File Size: | 13148 | | Related CVE(s): | CVE-2005-4816 | | Last Modified: | Jan 13 16:32:05 2007 |
| MD5 Checksum: | 0e47566d7a11419e70add2fccdfc8c77 |
|
| /// File Name: |
OpenPKG-SA-2007.005.txt |
Description:
|
OpenPKG Security Advisory - According to a security advisory from Stefan Esser, a vulnerability exists in the Weblog publishing system WordPress, versions up to and including 2.0.5.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 3083 | | Last Modified: | Jan 13 16:12:47 2007 |
| MD5 Checksum: | 1ccf2de1be50e5673323b0d28d7e9d42 |
|
| /// File Name: |
OpenPKG-SA-2007.004.txt |
Description:
|
OpenPKG Security Advisory - According to vendor release notes and security advisories, two security issues exist in the POP3/IMAP batch client Fetchmail, version up to and including 6.3.5
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 3225 | | Related CVE(s): | CVE-2006-5867, CVE-2006-5974 | | Last Modified: | Jan 13 16:10:41 2007 |
| MD5 Checksum: | 9181a50fcb8e0f7003aa26fc56e316bb |
|
| /// File Name: |
2007_firepass.pdf |
Description:
|
Multiple cross site scripting, filter bypass, and information disclosure vulnerabilities exist in the F5 FirePass SSL VPN.
| | Author: | Michael Ligh, Greg Sinclair | | Homepage: | http://mnin.org/ | | File Size: | 131466 | | Last Modified: | Jan 13 16:06:06 2007 |
| MD5 Checksum: | 0c46d3878a3f7d7d800b63f62a85644d |
|
| /// File Name: |
MOAB-05-01-2007.html |
Description:
|
Month Of Apple Bugs - A vulnerability in the handling of Apple DiskManagement BOM files allows to set rogue permissions on the filesystem via the 'diskutil' tool. This can be used to execute arbitrary code and escalate privileges. A malicious user could create a BOM declaring new permissions for specific filesystem locations (ex. binaries, cron and log directories, etc). Once 'diskutil' runs a permission repair operation the rogue permissions would be set, allowing to plant a backdoor, overwrite resources or simply gain root privileges.
| | Author: | LMH, Kevin Finisterre | | Homepage: | http://projects.info-pull.com/moab/index.html | | File Size: | 19552 | | Last Modified: | Jan 13 16:03:11 2007 |
| MD5 Checksum: | c043b9b8f15a8b56a56b6be67621b106 |
|
| /// File Name: |
cisco-sa-20070105-csacs.txt |
Description:
|
Cisco Security Advisory - Certain versions of Cisco Secure Access Control Server (ACS) for Windows and the Cisco Secure ACS Solution Engine (here after both referred to as purely Cisco Secure ACS) are affected by multiple vulnerabilities that cause specific Cisco Secure services to crash. Two of the vulnerabilities may permit arbitrary code execution after exploitation of the specified vulnerability.
| | Homepage: | http://www.cisco.com/ | | File Size: | 25828 | | Related CVE(s): | CVE-2006-4098, CVE-2006-4097 | | Last Modified: | Jan 13 15:45:56 2007 |
| MD5 Checksum: | 75996cdb0d85252d1f5d7e76cb1494ad |
|
| /// File Name: |
fetchmail-SA-2006-03.txt |
Description:
|
Fetchmail 6.3.5 and early 6.3.6 release candidates, when delivering messages to a message delivery agent by means of the "mda" option, can crash (by passing a NULL pointer to ferror() and fflush()) when refusing a message. SMTP and LMTP delivery modes are not affected.
| | Author: | Neil Hoggarth | | Homepage: | http://fetchmail.berlios.de/ | | File Size: | 2554 | | Related CVE(s): | CVE-2006-5974 | | Last Modified: | Jan 13 15:44:15 2007 |
| MD5 Checksum: | 8e152072b90eeee5ed6904e578d6f1cc |
|
| /// File Name: |
fetchmail-SA-2006-02.txt |
Description:
|
Fetchmail has had several nasty password disclosure vulnerabilities for a long time. It was only recently that these have been found. This affects fetchmail versions 6.3.5 and below.
| | Author: | Isaac Wilcox | | Homepage: | http://fetchmail.berlios.de/ | | File Size: | 4069 | | Related CVE(s): | CVE-2006-5867 | | Last Modified: | Jan 13 15:42:52 2007 |
| MD5 Checksum: | f1d54baf133f263538411470bb29fb11 |
|
| /// File Name: |
OpenPKG-SA-2007.003.txt |
Description:
|
OpenPKG Security Advisory - According to upstream vendor security advisories, two vulnerabilities exist in the content management system Drupal, versions up to and including 4.7.4.
| | Homepage: | http://openpkg.com/security/ | | File Size: | 3609 | | Last Modified: | Jan 13 15:40:20 2007 |
| MD5 Checksum: | 89dd66645e3cbda3108074c6a4ba7f09 |
|
| /// File Name: |
01.05.07-3.txt |
Description:
|
iDefense Security Advisory - Remote exploitation of a DoS vulnerability in Kaspersky Lab's Antivirus could allow an attacker to cause a denial of service (DoS) condition. Kaspersky Antivirus is vulnerable to a DoS condition when processing a specially crafted PE (portable executable) file. One of the headers in a PE file is the Optional Windows Header section. This section of the PE header contains information needed by the Windows linker and loader. An invalid value for the 'NumberOfRvaAndSizes' field will cause Kaspersky to repeatedly seek and read from the same section of the file in an endless loop. iDefense has confirmed the existence of this vulnerability in Kaspersky Labs Antivirus Engine version 6.0 for Windows and 5.5-10 for Linux. Previous versions may also be affected. Any products that use the scanning engine are also affected. This includes the Kaspersky mail gateway scanner.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3341 | | Last Modified: | Jan 13 15:39:15 2007 |
| MD5 Checksum: | e94b06fe993ddfc575e800ea163fe0d9 |
|
| /// File Name: |
TA07-005A.txt |
Description:
|
Technical Cyber Security Alert TA07-005A - Apple QuickTime contains a buffer overflow in the handling of RTSP URLs. This can allow a remote attacker to execute arbitrary code on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3729 | | Related CVE(s): | CVE-2007-0015 | | Last Modified: | Jan 13 15:37:59 2007 |
| MD5 Checksum: | 41d2af62fb6d3fbc64c9094646af9019 |
|
| /// File Name: |
ZDI-07-001.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Eudora WorldMail. Authentication is not required to exploit this vulnerability. Affected is the Eudora WorldMail 3.1.x Mail Management Server.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2531 | | Related CVE(s): | CVE-2006-6336 | | Last Modified: | Jan 13 15:36:56 2007 |
| MD5 Checksum: | d528cdc64a44cf939af3cd4ac6fb28a7 |
|
| /// File Name: |
OpenPKG-SA-2007.002.txt |
Description:
|
OpenPKG Security Advisory - Together with two portability and stability issues, two older security issues were fixed in the compression tool BZip2, versions up to and including 1.0.3.
| | Homepage: | http://openpkg.com/security/ | | File Size: | 3342 | | Related CVE(s): | CVE-2005-0953, CVE-2005-0758 | | Last Modified: | Jan 13 15:35:58 2007 |
| MD5 Checksum: | aab4dc3086c8c35f78e33845441257e8 |
|
| /// File Name: |
USN-402-1.txt |
Description:
|
Ubuntu Security Notice 402-1 - A flaw was discovered in Avahi's handling of compressed DNS packets. If a specially crafted reply were received over the network, the Avahi daemon would go into an infinite loop, causing a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 36013 | | Related CVE(s): | CVE-2006-6870 | | Last Modified: | Jan 13 15:33:35 2007 |
| MD5 Checksum: | 08c800598d6d8c567a1cb655e8f76ddb |
|
| /// File Name: |
sa23578.txt |
Description:
|
Secunia Security Advisory - Adonis (a.k.a. NtWaK0) and Abed (a.k.a. NoPh0BiA) have discovered a security issue in Camouflage, which can be exploited by malicious people to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/23578/ | | File Size: | 2490 | | Last Modified: | Jan 10 13:19:08 2007 |
| MD5 Checksum: | e5df0b21c1390e3bfd306e0dbe77af43 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
