Section: .. / 0709-advisories /
| /// File Name: |
winscp-jack.txt |
Description:
|
WinSCP versions 4.03 and below appear to install url protocol handlers that allow malicious web content the ability to automatically upload files from a local system.
| | Author: | Kender Security | | File Size: | 1326 | | Last Modified: | Sep 13 19:48:01 2007 |
| MD5 Checksum: | ca431a7ee5fd0abf34c0373f8514c0c7 |
|
| /// File Name: |
MU-200709-01.txt |
Description:
|
Quagga bgpd version 0.99.8 suffers from a remote denial of service vulnerability.
| | Author: | Mu Security research team | | Homepage: | http://labs.musecurity.com/ | | File Size: | 2253 | | Last Modified: | Sep 13 19:44:37 2007 |
| MD5 Checksum: | a319cbd21adec54f9c75a8e96582f85d |
|
| /// File Name: |
ZDI-07-052.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of MIT Kerberos. Authentication is not required to exploit this vulnerability. The specific flaw exists in the svcauth_gss_validate() function. By sending a large authentication context over RPC, a stack based buffer overflow occurs, resulting in a situation allowing for remote code execution.
| | Author: | Tenable Network Security | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2784 | | Related CVE(s): | CVE-2007-3999 | | Last Modified: | Sep 13 19:43:28 2007 |
| MD5 Checksum: | 7d48e9a8d7cb0943a3f5dc770d93c13f |
|
| /// File Name: |
CAL-20070912-1.txt |
Description:
|
Code Audit Labs has discovered heap overflows and denial of service vulnerabilities in multiple media players including MPlayer, StormPlayer, etc.
| | Homepage: | http://www.vulnhunt.com/ | | File Size: | 8231 | | Last Modified: | Sep 13 19:38:26 2007 |
| MD5 Checksum: | 81b79036bc65cefc93207a48d45d17cd |
|
| /// File Name: |
s21sec-036-en.txt |
Description:
|
Due to poor memory allocation management, Ekiga versions 2.0.5 and below are susceptible to a denial of service condition.
| | Author: | Jose Miguel Esparza | | Homepage: | http://www.s21sec.com/ | | File Size: | 1780 | | Last Modified: | Sep 13 19:34:10 2007 |
| MD5 Checksum: | 76ab2d98d7be31581e92ab89b44886dd |
|
| /// File Name: |
rsaenvision-xss.txt |
Description:
|
RSA EnVision version 3.3.6 build 0115 suffers from a cross site scripting vulnerability.
| | Author: | Stelios Tigkas | | File Size: | 870 | | Last Modified: | Sep 13 19:31:18 2007 |
| MD5 Checksum: | 3b99344cd3508448c057e54359e12afd |
|
| /// File Name: |
sa26741.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Plesk, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26741/ | | File Size: | 2354 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | bf425921fdb3d1cb97aee2d27a438da6 |
|
| /// File Name: |
sa26748.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for php. This fixes a weakness and some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users and malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26748/ | | File Size: | 2611 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 133dd15a481e5a0d69f6e7797bc6d6ee |
|
| /// File Name: |
sa26760.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some weaknesses, a security issue, and some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, and gain escalated privileges, and by malicious people to bypass certain security restrictions and cause a DoS.
| | Homepage: | http://secunia.com/advisories/26760/ | | File Size: | 2705 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | a142c907405d39315f8fd48dc5c2a0ec |
|
| /// File Name: |
sa26776.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for samba. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26776/ | | File Size: | 2777 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | c48e204cee65e0adf5e8adde328541cd |
|
| /// File Name: |
sa26788.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Invision Power Board, which can be exploited by malicious users to conduct script insertion attacks or bypass certain access restrictions.
| | Homepage: | http://secunia.com/advisories/26788/ | | File Size: | 3363 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | e28ea974bb418752124be6afa3faf81f |
|
| /// File Name: |
sa26789.txt |
Description:
|
Secunia Security Advisory - Will Dormann has reported a vulnerability in the Callisto PhotoParade Player PhPInfo ActiveX control, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26789/ | | File Size: | 2471 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | ec7bbd526f8111a921e236cbeacd66e7 |
|
| /// File Name: |
sa26792.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for librpcsecgss. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26792/ | | File Size: | 2713 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 5ba72d591470c366402bb92179496be5 |
|
| /// File Name: |
sa26793.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for id3lib. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26793/ | | File Size: | 3060 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 5734a4fc6c8b43e16628b8eb884d1a3b |
|
| /// File Name: |
sa26794.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26794/ | | File Size: | 3450 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 85d586e744803ce419e24a2e4b5a0a17 |
|
| /// File Name: |
sa26795.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for samba. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26795/ | | File Size: | 4621 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | f1d9bb702208bf6ae885db3d978cc316 |
|
| /// File Name: |
sa26796.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for wordpress. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26796/ | | File Size: | 2326 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | c0e6b875d5cb99bf6d77e0790045adb8 |
|
| /// File Name: |
sa26798.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Cisco IOS, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26798/ | | File Size: | 2648 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 320dc1e8782c499a7a0b77c02838ed82 |
|
| /// File Name: |
sa26805.txt |
Description:
|
Secunia Security Advisory - Cr@zy_King has discovered a security issue in CS GuestBook, which can be exploited by malicious people to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/26805/ | | File Size: | 2364 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | b0d6318008517ae9650ec8bc86f86671 |
|
| /// File Name: |
sa26806.txt |
Description:
|
Secunia Security Advisory - Code Audit Labs has discovered a vulnerability in Media Player Classic, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26806/ | | File Size: | 2453 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 7e4f757ebde47d651fd0857408311e0a |
|
| /// File Name: |
sa26807.txt |
Description:
|
Secunia Security Advisory - Code Audit Labs has discovered a vulnerability in Storm Player, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26807/ | | File Size: | 2270 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 1713d62dc3e01e5a694c51de3038f32b |
|
| /// File Name: |
sa26808.txt |
Description:
|
Secunia Security Advisory - Code Audit Labs has discovered a vulnerability in MyMPC, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26808/ | | File Size: | 2251 | | Last Modified: | Sep 13 19:17:05 2007 |
| MD5 Checksum: | 206e44a8ee2e2e28e52da5b3d9481e68 |
|
| /// File Name: |
MDKSA-2007-180.txt |
Description:
|
Mandriva Linux Security Advisory - A programming error was found in id3lib by Nikolaus Schulz that could lead to a denial of service through symlink attacks.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4487 | | Related CVE(s): | CVE-2007-4460 | | Last Modified: | Sep 12 20:08:11 2007 |
| MD5 Checksum: | e2687789d2ce3d50a122a3574dfa582e |
|
| /// File Name: |
MDKSA-2007-179.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in fetchmail was found where it could crash when attempting to deliver an internal warning or error message through an untrusted or compromised SMTP server, leading to a denial of service.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5194 | | Related CVE(s): | CVE-2007-4565 | | Last Modified: | Sep 12 20:05:19 2007 |
| MD5 Checksum: | 96905b8705f41005048ac2d65bc323c7 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
