Section: .. / 0703-advisories /
| /// File Name: |
sa24447.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun Fire X2100 and Sun Fire X2200, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24447/ | | File Size: | 2662 | | Last Modified: | Mar 8 19:52:08 2007 |
| MD5 Checksum: | d747d6a89af25bf1c9d6485f7037d054 |
|
| /// File Name: |
sa24505.txt |
Description:
|
Secunia Security Advisory - Stefan Esser has reported some vulnerabilities in PHP, which can be exploited by malicious users people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24505/ | | File Size: | 2660 | | Last Modified: | Mar 17 03:22:27 2007 |
| MD5 Checksum: | a20e1bf44bc0f8b37c2299267220ab3e |
|
| /// File Name: |
TSRT-07-03.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of America Online with Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. Affected software is America Online 9.0 Security Edition.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2659 | | Related CVE(s): | CVE-2006-5820 | | Last Modified: | Apr 3 00:33:39 2007 |
| MD5 Checksum: | feed154481807e4597344131ae4096a8 |
|
| /// File Name: |
sa24529.txt |
Description:
|
Secunia Security Advisory - rgod has discovered a vulnerability in PHP's Interbase extension, which can be exploited by malicious users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24529/ | | File Size: | 2657 | | Last Modified: | Mar 17 03:22:27 2007 |
| MD5 Checksum: | 1ced630e59032508ee146bbb9eee4aca |
|
| /// File Name: |
sa24353.txt |
Description:
|
Secunia Security Advisory - rgod has discovered a vulnerability in PHP's MSSQL Extension, which can be exploited to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24353/ | | File Size: | 2653 | | Last Modified: | Mar 8 01:54:52 2007 |
| MD5 Checksum: | 3cc774a5e3e049c6713a40f58d61937e |
|
| /// File Name: |
sa24234.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Evolution, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24234/ | | File Size: | 2650 | | Last Modified: | Mar 22 02:31:03 2007 |
| MD5 Checksum: | 3b6ae9ec56f430ef577ef5fe79b7a161 |
|
| /// File Name: |
sa24642.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities and a weakness in php, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24642/ | | File Size: | 2647 | | Last Modified: | Mar 28 04:15:18 2007 |
| MD5 Checksum: | d67fd318f83df72b961910114b6f317f |
|
| /// File Name: |
sa24365.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for gnupg. This fixes a vulnerability, which potentially can be exploited by malicious people to bypass certain security restrictions when applications use GnuPG in an insecure manner.
| | Homepage: | http://secunia.com/advisories/24365/ | | File Size: | 2644 | | Last Modified: | Mar 8 01:54:52 2007 |
| MD5 Checksum: | 9ee15e33438eac44c63368a0aa063168 |
|
| /// File Name: |
sa24432.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities and a weakness in various Avaya products, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24432/ | | File Size: | 2640 | | Last Modified: | Mar 8 01:54:52 2007 |
| MD5 Checksum: | 90b27b6a7b5466d8f467daccfcfbdc98 |
|
| /// File Name: |
ZDI-07-010.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on Apple QuickTime Player version 7.1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of forged size fields in user-defined data atoms (UDTA). By setting this field to an overly large value, an integer overflow occurs resulting in an exploitable heap overflow. Successful exploitation results in code execution under the context of the running user.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2640 | | Related CVE(s): | CVE-2007-0714 | | Last Modified: | Mar 9 03:32:27 2007 |
| MD5 Checksum: | fa5eb46c403649874472d707ec4b66a1 |
|
| /// File Name: |
sa24644.txt |
Description:
|
Secunia Security Advisory - Hessam-x has discovered some vulnerabilities in IceBB, which can be exploited by malicious users to conduct SQL injection attacks and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24644/ | | File Size: | 2631 | | Last Modified: | Mar 28 04:15:18 2007 |
| MD5 Checksum: | c5e57461947ae39e74627bcba241c6ad |
|
| /// File Name: |
sa24362.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in EMC NetWorker, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24362/ | | File Size: | 2631 | | Last Modified: | Mar 6 00:12:53 2007 |
| MD5 Checksum: | 9557d7cb06e8832f2cb380dfa59e655f |
|
| /// File Name: |
sa24639.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in ArcSDE, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24639/ | | File Size: | 2610 | | Last Modified: | Mar 28 17:52:50 2007 |
| MD5 Checksum: | 8e74877faa9dcdf0da79c42c22f39a8b |
|
| /// File Name: |
sa24393.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for mozilla-firefox and mozilla-firefox-bin. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of sensitive information, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24393/ | | File Size: | 2610 | | Last Modified: | Mar 6 00:12:53 2007 |
| MD5 Checksum: | c343f54382e22d141e312f0ad8082606 |
|
| /// File Name: |
sa24650.txt |
Description:
|
Secunia Security Advisory - SGI has issued multiple updates for SGI Advanced Linux Environment. These fix some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of potentially sensitive information, cause a DoS (Denial of Service) and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24650/ | | File Size: | 2606 | | Last Modified: | Mar 27 03:03:50 2007 |
| MD5 Checksum: | b7fac147742a519ae89c04cae573d614 |
|
| /// File Name: |
sa24577.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious users to gain knowledge of potentially sensitive information and cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24577/ | | File Size: | 2603 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | eaa43d5bbf6db941b87fb86829a7971d |
|
| /// File Name: |
sa24434.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in various Avaya products, which can be exploited by malicious users to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24434/ | | File Size: | 2595 | | Last Modified: | Mar 8 01:54:52 2007 |
| MD5 Checksum: | a41548a6be93de1a12e3d4b6ffb0e27e |
|
| /// File Name: |
sa24702.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Flyspray, which can be exploited by malicious people to bypass certain security restrictions and to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24702/ | | File Size: | 2593 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 73df744c8860fa3e2b9f52a82405fff9 |
|
| /// File Name: |
sa23986.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in XMMS, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23986/ | | File Size: | 2581 | | Last Modified: | Mar 22 02:31:03 2007 |
| MD5 Checksum: | 50ad18383560349470dfd43550b0ba10 |
|
| /// File Name: |
glsa-200703-28.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-28 - CUPS does not properly handle partially-negotiated SSL connections. Upon receiving a partially-negotiated SSL connection, CUPS no longer accepts further incoming connections, as the initial connection never times out. Versions less than 1.2.9 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2581 | | Related CVE(s): | CVE-2007-0720 | | Last Modified: | Apr 3 00:52:04 2007 |
| MD5 Checksum: | 920c2983777a8f7036265decde3d43a8 |
|
| /// File Name: |
glsa-200703-17.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-17 - SUSE reported unspecified buffer overflows in ulogd involving the calculation of string lengths. Versions less than 1.23-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2570 | | Related CVE(s): | CVE-2007-0460 | | Last Modified: | Mar 20 06:52:56 2007 |
| MD5 Checksum: | 9e72418c77c9a744937472af173eee71 |
|
| /// File Name: |
sa24422.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Ipswitch IMail Server/Collaboration Suite, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24422/ | | File Size: | 2568 | | Last Modified: | Mar 8 01:54:52 2007 |
| MD5 Checksum: | f57a4b95d43f6478879bada1bf9bcbe3 |
|
| /// File Name: |
sa24385.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Tyger Bug Tracking System, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/24385/ | | File Size: | 2550 | | Last Modified: | Mar 6 00:12:53 2007 |
| MD5 Checksum: | f11dfa74468658aa2f52fb4c9500c41e |
|
| /// File Name: |
glsa-200703-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-07 - Two buffer overflows have been discovered, one in print floats and one in the rope constructor. Versions less than 5.0.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2549 | | Related CVE(s): | CVE-2007-0803 | | Last Modified: | Mar 9 01:22:44 2007 |
| MD5 Checksum: | 98f6604ff8358e6438492aa5179451d8 |
|
| /// File Name: |
ZDI-07-009.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on Novell NetMail version 3.5.2. Authentication is not required to exploit this vulnerability. The specific flaw exists in the webadmin.exe process bound by default on TCP port 89. During HTTP Basic authentication, a long username of at least 213 bytes will trigger a stack based buffer overflow due to a vulnerable sprintf() call. Exploitation of this issue can result in arbitrary code execution.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2548 | | Related CVE(s): | CVE-2007-1350 | | Last Modified: | Mar 9 03:30:20 2007 |
| MD5 Checksum: | 37113389bf6ad945a40bce9599763946 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
