Section: .. / 0705-advisories /
| /// File Name: |
OpenPKG-SA-2007.013.txt |
Description:
|
OpenPKG Security Advisory - As confirmed by the vendor, a Denial of Service (DoS) vulnerability exists in the PNG image format library libpng. The bug is a NULL-pointer-dereference vulnerability involving palette images with a malformed "tRNS" PNG chunk, i.e., one with a bad CRC value. This bug can, at a minimum, cause crashes in applications simply by displaying a malformed image.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 2966 | | Related CVE(s): | CVE-2007-2445 | | Last Modified: | May 21 05:50:57 2007 |
| MD5 Checksum: | cfe0c8073d23c3040e87d6f860fd4fd3 |
|
| /// File Name: |
OpenPKG-SA-2007.015.txt |
Description:
|
OpenPKG Security Advisory - A Denial of Service (DoS) vulnerability exists in the routing daemon Quagga, versions up to and including 0.99.6. The Quagga bgpd(8) daemon is vulnerable as configured peers may cause it to abort because of an assertion which can be triggered by peers by sending an "UPDATE" message with a specially crafted, malformed Multi-Protocol reachable/unreachable "NLRI" attribute.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 2722 | | Related CVE(s): | CVE-2007-1995 | | Last Modified: | May 21 05:57:45 2007 |
| MD5 Checksum: | 7c6b268789474aed4854ea45864a2d2d |
|
| /// File Name: |
OpenPKG-SA-2007.017.txt |
Description:
|
OpenPKG Security Advisory - A Denial of Service (DoS) vulnerability exists in the Ratbox IRC Daemon, versions up to and including 2.2.5. Too many pending connections to the server from a single unknown client could result in a resource starvation.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 2482 | | Last Modified: | May 21 05:58:26 2007 |
| MD5 Checksum: | 3c9fe94c4884d52a8d6b82eb0d64d605 |
|
| /// File Name: |
OpenPKG-SA-2007.018.txt |
Description:
|
OpenPKG Security Advisory - A vulnerability caused by an integer signedness error was found by Victor Stinner in the font rendering library Freetype, versions up to and including 2.3.4. The vulnerability might allow remote attackers to execute arbitrary code via a specially crafted TrueType Font (TTF) file with a negative "n_points" value, which leads to an integer overflow and heap-based buffer overflow.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 2904 | | Related CVE(s): | CVE-2007-2754 | | Last Modified: | May 30 21:51:46 2007 |
| MD5 Checksum: | c3045c83e517a3031694ffaa7cac2ec4 |
|
| /// File Name: |
OpenPKG-SA-2007.019.txt |
Description:
|
OpenPKG Security Advisory - Multiple vulnerabilities in PHP versions 5.2.2 and below have been addressed.
| | Homepage: | http://www.openpkg.com/security/ | | File Size: | 8486 | | Related CVE(s): | CVE-2007-1380, CVE-2007-1375, CVE-2007-1376, CVE-2007-1521, CVE-2007-1484, CVE-2007-1583, CVE-2007-1700, CVE-2007-1718, CVE-2007-1461, CVE-2007-1887, CVE-2007-1888, CVE-2007-1717, CVE-2007-1835, CVE-2007-1890, CVE-2007-1824 | | Last Modified: | May 31 05:11:16 2007 |
| MD5 Checksum: | b6e50daee02b6a72dc70cee56c380b95 |
|
| /// File Name: |
ow-dos.txt |
Description:
|
OpenEdge WebSpeed suffers from a denial of service vulnerability when dict.r is referenced more than five times.
| | Author: | Eelko Neven | | File Size: | 4523 | | Last Modified: | May 12 04:41:02 2007 |
| MD5 Checksum: | ffaeca4b31e0d70a564823262813215d |
|
| /// File Name: |
packeteer.txt |
Description:
|
The TCP/IP stack of Packeteer PacketShaper is generating predictable initial sequence numbers.
| | Author: | nnposter | | File Size: | 1012 | | Last Modified: | May 21 05:59:42 2007 |
| MD5 Checksum: | a43516f2337fdcc03c6f568150c7d917 |
|
| /// File Name: |
REWTERZ-20070518.txt |
Description:
|
rewterz has discovered a critical vulnerability in Hidden Administrator. This vulnerability allows a remote attacker to execute arbitrary code in the context of the user who executed Hidden Administrator. Versions 1.7 and below are affected.
| | Author: | Muhammed Ahmed Siddiqui | | Homepage: | http://rewterz.com/ | | Related Exploit: | irrational-bypass.txt | | File Size: | 1591 | | Last Modified: | May 21 06:02:31 2007 |
| MD5 Checksum: | 715d35ef123ec3ddf6eda96c8705a8d4 |
|
| /// File Name: |
sa22922.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in BearShare, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22922/ | | File Size: | 2187 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 6dca06aa1e71e6dd739b2dd0e3cf8372 |
|
| /// File Name: |
sa23769.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23769/ | | File Size: | 5166 | | Last Modified: | May 10 02:32:46 2007 |
| MD5 Checksum: | 8ef593aabd10a079b9c1027c2238b18b |
|
| /// File Name: |
sa23809.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a security issue in various eScan products, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to manipulate certain settings or gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/23809/ | | File Size: | 4078 | | Last Modified: | May 3 01:50:52 2007 |
| MD5 Checksum: | 01302d99b8e70a02b841a23fd3eca3e2 |
|
| /// File Name: |
sa24710.txt |
Description:
|
Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in InterVideo Home Theater, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24710/ | | File Size: | 2437 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 9a4b3fe2f460fb9eec3adf3d5c32e37d |
|
| /// File Name: |
sa24724.txt |
Description:
|
Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in Nero MediaHome, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24724/ | | File Size: | 2293 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 0f91bcf7fed5365edddb4c931f0d1e27 |
|
| /// File Name: |
sa24883.txt |
Description:
|
Secunia Security Advisory - kezzap66345 has discovered a vulnerability in The Merchant, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24883/ | | File Size: | 2347 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | b4aad6d160b3fbdf1d387eabc04ea103 |
|
| /// File Name: |
sa24936.txt |
Description:
|
Secunia Security Advisory - A vulnerability with an unknown impact has been reported in SilverStripe.
| | Homepage: | http://secunia.com/advisories/24936/ | | File Size: | 2103 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | ca4a2dc7614ab0cbce78167d8aa2018f |
|
| /// File Name: |
sa24957.txt |
Description:
|
Secunia Security Advisory - GolD_M has discovered a vulnerability in USP FOSS Distribution, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24957/ | | File Size: | 2377 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 0eb85ee931bf8b401d1f3f4ecb1e077a |
|
| /// File Name: |
sa24970.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24970/ | | File Size: | 2467 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | fd5d985ea19006fedfd8c72bc5e61743 |
|
| /// File Name: |
sa24972.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in BrightStor ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24972/ | | File Size: | 3931 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 8f8c8b3dfe1e8370e3672880e587d989 |
|
| /// File Name: |
sa24975.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/24975/ | | File Size: | 2302 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 3f67eb4fcd17a4d709ce3e501cff756b |
|
| /// File Name: |
sa24976.txt |
Description:
|
Secunia Security Advisory - Two weaknesses have been reported in the Linux Kernel, which can be exploited by malicious, local users to disclose potential sensitive information.
| | Homepage: | http://secunia.com/advisories/24976/ | | File Size: | 2345 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | ab09282af422fd64459174511f901f33 |
|
| /// File Name: |
sa24977.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Asterisk, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24977/ | | File Size: | 3082 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 72dec5bd707f648d60547d1f83df5ef2 |
|
| /// File Name: |
sa24982.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for aircrack-ng. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24982/ | | File Size: | 4065 | | Last Modified: | May 2 04:17:18 2007 |
| MD5 Checksum: | 860710b833c150eb7e50abc39a53cb5f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
