Section: .. / 0712-advisories /
| /// File Name: |
sa27921.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a security issue in various Avaya products, which potentially can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27921/ | | File Size: | 2540 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | 97af58ce3729aab563fedd2c7ba7acbe |
|
| /// File Name: |
sa27926.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the XSCF Control Package (XCP) firmware for Sun SPARC Enterprise M4000/M5000/M8000/M9000, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27926/ | | File Size: | 2537 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | aaba0e9a45d82944c4b78eddc4cbe55b |
|
| /// File Name: |
sa27936.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for perl. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27936/ | | File Size: | 19929 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | 68ccde48f99be4c232edad64d29bd922 |
|
| /// File Name: |
sa27939.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in OpenVMS for Integrity Servers, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27939/ | | File Size: | 2818 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | e8409c569e32e89720409b4cc17b815e |
|
| /// File Name: |
USN-551-1.txt |
Description:
|
Ubuntu Security Notice 551-1 - Thomas Sesselmann discovered that the OpenLDAP slapd server did not properly handle certain modify requests. A remote attacker could send malicious modify requests to the server and cause a denial of service. Toby Blake discovered that slapd did not properly terminate an array while running as a proxy-caching server. A remote attacker may be able to send crafted search requests to the server and cause a denial of service. This issue only affects Ubuntu 7.04 and 7.10.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12244 | | Related CVE(s): | CVE-2007-5707, CVE-2007-5708 | | Last Modified: | Dec 4 00:35:17 2007 |
| MD5 Checksum: | 6f4f955592cc3827ccc22c9d96d994ab |
|
| /// File Name: |
USN-550-1.txt |
Description:
|
Ubuntu Security Notice 550-1 - Peter Valchev discovered that Cairo did not correctly decode PNG image data. By tricking a user or automated system into processing a specially crafted PNG with Cairo, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16053 | | Related CVE(s): | CVE-2007-5503 | | Last Modified: | Dec 4 00:33:23 2007 |
| MD5 Checksum: | 5975ff335956b85fe3c414e8ffa19e1b |
|
| /// File Name: |
USN-549-2.txt |
Description:
|
Ubuntu Security Notice 549-2 - USN-549-1 fixed vulnerabilities in PHP. However, some upstream changes were incomplete, which caused crashes in certain situations with Ubuntu 7.10.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16308 | | Related CVE(s): | CVE-2007-1285, CVE-2007-2872, CVE-2007-3799, CVE-2007-3998, CVE-2007-4657, CVE-2007-4658, CVE-2007-4660, CVE-2007-4661, CVE-2007-4662, CVE-2007-4670, CVE-2007-5898, CVE-2007-5899 | | Last Modified: | Dec 4 00:32:01 2007 |
| MD5 Checksum: | 883dbe5e47179ed899e41fa2ee7f295e |
|
| /// File Name: |
MDKSA-2007-235.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the Apache mod_proxy module was found that could potentially lead to a denial of service is using a threaded Multi-Processing Module. On sites where a reverse proxy is configured, a remote attacker could send a special reequest that would cause the Apache child process handling the request to crash. Likewise, a similar crash could occur on sites with a forward proxy configured if a user could be persuaded to visit a malicious site using the proxy. A flaw in the Apache mod_autoindex module was found. On sites where directory listings are used and the AddDefaultCharset directive was removed from the configuration, a cross-site-scripting attack could be possible against browsers that to not correctly derive the response character set according to the rules in RGC 2616.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 20725 | | Related CVE(s): | CVE-2007-3847, CVE-2007-4465 | | Last Modified: | Dec 4 00:30:30 2007 |
| MD5 Checksum: | d345f9bab49fe8ef1ff30fbc712665a5 |
|
| /// File Name: |
MDKSA-2007-234.txt |
Description:
|
Mandriva Linux Security Advisory - Raphael Marichez discovered a denial of service bug in how vixie-cron verifies crontab file integrity. A local user with the ability to create a hardlink to /etc/crontab could prevent vixie-cron from executing certain system cron jobs.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3424 | | Related CVE(s): | CVE-2007-1856 | | Last Modified: | Dec 4 00:29:12 2007 |
| MD5 Checksum: | ce3c43d6d7de27803535bb1c72e63753 |
|
| /// File Name: |
mcafeeps-exec.txt |
Description:
|
McAfee SecurityCenter Privacy Service version 8.1.0.136 suffers from a script insertion vulnerability.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1828 | | Last Modified: | Dec 4 00:11:00 2007 |
| MD5 Checksum: | f781b19c2470e9ef5f79632345c377cf |
|
| /// File Name: |
PR06-09.txt |
Description:
|
By performing an advanced search, unauthenticated users can enumerate valid usernames with a single HTTP request on the BEA Plumtree Portal.
| | Author: | Adrian Pastor, Jan Fry, Richard Brain | | Homepage: | http://www.procheckup.com/ | | File Size: | 1291 | | Last Modified: | Dec 4 00:04:21 2007 |
| MD5 Checksum: | ea76691b3dd25da468a4123c8de2c266 |
|
| /// File Name: |
PR06-08.txt |
Description:
|
BEA Plumtree Portal is vulnerable to a internal hostname disclosure vulnerability.
| | Author: | Adrian Pastor, Jan Fry | | Homepage: | http://www.procheckup.com/ | | File Size: | 1530 | | Last Modified: | Dec 4 00:02:42 2007 |
| MD5 Checksum: | d6f1cecbee28f150e44052f22a42beb0 |
|
| /// File Name: |
sa26801.txt |
Description:
|
Secunia Security Advisory - Ryan NA has reported some security issues in Ascential DataStage, which can be exploited by malicious, local users to disclose sensitive information and to manipulate certain data, and by malicious users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/26801/ | | File Size: | 2705 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | df3de98a3d7dfb21c86bd866c75635bb |
|
| /// File Name: |
sa27839.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for nss_ldap. This fixes a security issue, which can be exploited by malicious people to manipulate certain data.
| | Homepage: | http://secunia.com/advisories/27839/ | | File Size: | 2166 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 53175f521ff582f7bfa704fe1bf6291a |
|
| /// File Name: |
sa27874.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in CRM-CTT, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/27874/ | | File Size: | 2591 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 991576be2f9b93a04c1c845322ebcd07 |
|
| /// File Name: |
sa27876.txt |
Description:
|
Secunia Security Advisory - ShAy6oOoN has reported a vulnerability in p.mapper, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27876/ | | File Size: | 2603 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | faeb676377be5b4fd4d66c7f0aa12c80 |
|
| /// File Name: |
sa27877.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Solaris 10, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27877/ | | File Size: | 2340 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 2ce2a6cf923e9a6ea2383419a74957b2 |
|
| /// File Name: |
sa27878.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in VLC Media Player, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27878/ | | File Size: | 2874 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 9f35dc459dfdca5466d4734511f50be3 |
|
| /// File Name: |
sa27891.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for cacti. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/27891/ | | File Size: | 3646 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 72eed6bb729aba3b84a3c0298a48770a |
|
| /// File Name: |
sa27892.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/27892/ | | File Size: | 16538 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 109e18a49b38825a72a051d30f3e9bf1 |
|
| /// File Name: |
sa27896.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for rsync. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27896/ | | File Size: | 3602 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | 2f258e2c061a3e7357c91bfe13cd1d84 |
|
| /// File Name: |
sa27897.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Claws Mail, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/27897/ | | File Size: | 2415 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | a582754a20065506d0b7e6390e3ee2aa |
|
| /// File Name: |
sa27899.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Zsh, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/27899/ | | File Size: | 2399 | | Last Modified: | Dec 3 23:44:29 2007 |
| MD5 Checksum: | db669bb3cd9fd7491a0b1ff86103a221 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
