Section: .. / 0805-advisories /
| /// File Name: |
sa30421.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Power Audio CD Burner, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30421/ | | File Size: | 1919 | | Last Modified: | May 29 14:00:40 2008 |
| MD5 Checksum: | 34c6ed2d37f4737907650cd85348019d |
|
| /// File Name: |
glsa-200805-23.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-23 - Alin Rad Pop (Secunia Research) reported a vulnerability in Samba within the receive_smb_raw() function in the file lib/util_sock.c when parsing SMB packets, possibly leading to a heap-based buffer overflow via an overly large SMB packet. Versions less than 3.0.28a-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2712 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 29 13:58:30 2008 |
| MD5 Checksum: | 2f22783acef8220c60b0e1e321145329 |
|
| /// File Name: |
glsa-200805-22.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-22 - k`sOSe reported an integer overflow vulnerability in the sdpplin_parse() function in the file stream/realrtsp/sdpplin.c, which can be exploited to overwrite arbitrary memory regions via an overly large StreamCount SDP parameter. Versions less than 1.0_rc2_p26753 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2666 | | Related CVE(s): | CVE-2008-1558 | | Last Modified: | May 29 13:58:07 2008 |
| MD5 Checksum: | 398332a4ddd10ca94a9e8d8fa7a099c0 |
|
| /// File Name: |
secunia-smbraw.txt |
Description:
|
Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "receive_smb_raw()" function in lib/util_sock.c when parsing SMB packets. This can be exploited to cause a heap-based buffer overflow via an overly large SMB packet received in a client context. Successful exploitation allows execution of arbitrary code by tricking a user into connecting to a malicious server (e.g. by clicking an "smb://" link) or by sending specially crafted packets to an "nmbd" server configured as a local or domain master browser. Samba versions 3.0.28a and 3.0.29 are affected.
| | Author: | Alin Rad Pop | | Homepage: | http://secunia.com/ | | File Size: | 4582 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 29 13:57:58 2008 |
| MD5 Checksum: | 8b50b5f7f3e20c60bd7e3a2d316423ce |
|
| /// File Name: |
secunia-imlib2.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in imlib2, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise an application using the library. imlib2 version 1.4.0 is affected.
| | Author: | Stefan Cornelius | | Homepage: | http://secunia.com/ | | File Size: | 4742 | | Related CVE(s): | CVE-2008-2426 | | Last Modified: | May 29 13:56:58 2008 |
| MD5 Checksum: | be26fa0c3bd9bd6db1a692df74cf6246 |
|
| /// File Name: |
MDVSA-2008-108.txt |
Description:
|
Mandriva Linux Security Advisory - Although they forgot to put the problem description in this advisory, it appears that Mandriva has patched a code execution vulnerability in smbd from Samba.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 17071 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 28 20:26:07 2008 |
| MD5 Checksum: | a11ca1994f253c876b0db00544a8cbbe |
|
| /// File Name: |
MDVSA-2008-107.txt |
Description:
|
Mandriva Linux Security Advisory - Testing using the Codenomicon TLS test suite discovered a flaw in the handling of server name extension data in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If OpenSSL has been compiled using the non-default TLS server name extensions, a remote attacker could send a carefully crafted packet to a server application using OpenSSL and cause a crash. Testing using the Codenomicon TLS test suite discovered a flaw if the 'Server Key exchange message' is omitted from a TLS handshake in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If a client connects to a malicious server with particular cipher suites, the server could cause the client to crash.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3599 | | Related CVE(s): | CVE-2008-0891, CVE-2008-1672 | | Last Modified: | May 28 20:23:36 2008 |
| MD5 Checksum: | bfaecbed16231165b9ab27f75a832068 |
|
| /// File Name: |
sa30228.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Samba, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30228/ | | File Size: | 2588 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | d4319d9fcf31b799f36ca33e20b57127 |
|
| /// File Name: |
sa30274.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for roundup. This fixes some vulnerabilities and a security issue, where some have unknown impacts, while others can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/30274/ | | File Size: | 1953 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | 00ccd92aede7677e89e1a009c15612e5 |
|
| /// File Name: |
sa30292.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in eMule X-Ray, which have unknown impacts.
| | Homepage: | http://secunia.com/advisories/30292/ | | File Size: | 2064 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | 12ebb499bb4729c5dd54901d3956e34d |
|
| /// File Name: |
sa30383.txt |
Description:
|
Secunia Security Advisory - gmda has discovered a vulnerability in AjaXplorer, which can be exploited by malicious people to conduct cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/30383/ | | File Size: | 2225 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | 6e5be3fc2f61f00cdd300ace55c15dbe |
|
| /// File Name: |
sa30385.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30385/ | | File Size: | 2682 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | 8d676ce7bb5790b4eefabdb02d9308de |
|
| /// File Name: |
sa30404.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30404/ | | File Size: | 2246 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | b2c958af789b41951e5d3af169520d83 |
|
| /// File Name: |
sa30405.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30405/ | | File Size: | 2249 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | b67097c803ac301e88e7e5f2b4db5ac4 |
|
| /// File Name: |
sa30411.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/30411/ | | File Size: | 2052 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | b942ae4b12a646f5e5f0e14830faa5d2 |
|
| /// File Name: |
sa30414.txt |
Description:
|
Secunia Security Advisory - Will Dormann has reported some vulnerabilities in NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30414/ | | File Size: | 2359 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | f679f4d866b90cdaf02e45ff9edf4a8d |
|
| /// File Name: |
sa30415.txt |
Description:
|
Secunia Security Advisory - Will Dormann has reported some vulnerabilities in NCTAudioStudio and NCTAudioEditor, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30415/ | | File Size: | 2448 | | Last Modified: | May 28 20:16:32 2008 |
| MD5 Checksum: | e259d2f6f71e13772d109b2d2461322b |
|
| /// File Name: |
SSRT071403-2.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ftp. The vulnerability could be exploited remotely to create a Denial of Service (DoS). The Denial of Service (DoS) affects the ftp server application only.
| | Homepage: | http://www.hp.com/ | | File Size: | 7258 | | Related CVE(s): | CVE-2008-0713 | | Last Modified: | May 28 20:16:21 2008 |
| MD5 Checksum: | 5bbef96b3358b35c2b29f08a4f90efd6 |
|
| /// File Name: |
cisco-sa-20080528-cw.txt |
Description:
|
Cisco Security Advisory - CiscoWorks Common Services contains a vulnerability that could allow a remote attacker to execute arbitrary code.
| | Homepage: | http://www.cisco.com/ | | File Size: | 15579 | | Related CVE(s): | CVE-2008-2054 | | Last Modified: | May 28 20:15:11 2008 |
| MD5 Checksum: | 38d6cc8fd58abffd052e1dab7fab0d7d |
|
| /// File Name: |
samba-exec.txt |
Description:
|
Secunia Research reported a vulnerability that allows for the execution of arbitrary code in smbd. This defect is is a result of an incorrect buffer size when parsing SMB replies in the routine receive_smb_raw(). Samba versions 3.0.0 through 3.0.29 are affected.
| | Author: | Alin Rad Pop | | Homepage: | http://www.samba.org/ | | File Size: | 2145 | | Related CVE(s): | CVE-2008-1105 | | Last Modified: | May 28 20:12:52 2008 |
| MD5 Checksum: | 7b01ce7a31f8258de1a442927454875b |
|
| /// File Name: |
sa30303.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for emacs. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30303/ | | File Size: | 1930 | | Last Modified: | May 28 17:49:52 2008 |
| MD5 Checksum: | a0713c6db96093cb779ee115895f49f6 |
|
| /// File Name: |
sa30368.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for linux-2.6. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of service), and by malicious people to potentially cause a DoS.
| | Homepage: | http://secunia.com/advisories/30368/ | | File Size: | 31705 | | Last Modified: | May 28 17:49:52 2008 |
| MD5 Checksum: | 2c2790576991f4bd689e7912013b06ab |
|
| /// File Name: |
sa30380.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for rdesktop. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30380/ | | File Size: | 2406 | | Last Modified: | May 28 17:49:52 2008 |
| MD5 Checksum: | ad94ef7a8668dbfab1e9fbd5102ab839 |
|
| /// File Name: |
sa30382.txt |
Description:
|
Secunia Security Advisory - Russ McRee has reported two vulnerabilities in DT Centrepiece, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30382/ | | File Size: | 2339 | | Last Modified: | May 28 17:49:52 2008 |
| MD5 Checksum: | 8e85ccf833c4fb57daf4841b4d27582a |
|
| /// File Name: |
sa30392.txt |
Description:
|
Secunia Security Advisory - Cr@zy_King has discovered a vulnerability in CKGold, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30392/ | | File Size: | 2125 | | Last Modified: | May 28 17:49:52 2008 |
| MD5 Checksum: | 509487a087342da4e1b94466e7bb6b4d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
