Section: .. / 0902-advisories /
| /// File Name: |
02.06.09-1.txt |
Description:
|
iDefense Security Advisory 02.06.09 - Remote exploitation of multiple command injection vulnerabilities in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager, could allow an attacker to execute arbitrary code with the privileges of the affected service. Multiple command injection vulnerabilities are present in NNM CGI applications. The vulnerabilities are very similar and occur in the webappmon.exe and OpenView5.exe program. iDefense has confirmed the existence of these vulnerabilities in Network Node Manager version 7.53 for Linux. Previous versions, as well as versions for other Unix based operating systems, may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4313 | | Related CVE(s): | CVE-2008-4559 | | Last Modified: | Feb 6 17:32:47 2009 |
| MD5 Checksum: | 7bb3b52a0e646157d74dbfcf690bcff4 |
|
| /// File Name: |
02.06.09-2.txt |
Description:
|
iDefense Security Advisory 02.06.09 - Remote exploitation of multiple information disclosure vulnerabilities in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to gain access to sensitive information. Two vulnerabilities exist within the CGI applications distributed with NNM. iDefense has confirmed the existence of these vulnerabilities in Network Node Manager version 7.53 for Linux and Windows. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3726 | | Related CVE(s): | CVE-2008-4560 | | Last Modified: | Feb 6 17:34:56 2009 |
| MD5 Checksum: | 136f37613f1e57b9d37d9aa517be3181 |
|
| /// File Name: |
02.06.09-3.txt |
Description:
|
iDefense Security Advisory 02.06.09 - Remote exploitation of a BSS based buffer overflow vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability exists within the 'ovlaunch' CGI application, which is used to launch the remote user interface. iDefense has confirmed the existence of this vulnerability in Network Node Manager version 7.53 for Windows. Previous versions may also be affected. The Linux version of 'ovlaunch' contains the vulnerable code, but it is not triggered. The actual hostname is used instead of the attacker supplied 'Host' parameter.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4599 | | Related CVE(s): | CVE-2008-4562 | | Last Modified: | Feb 6 17:36:16 2009 |
| MD5 Checksum: | 7b8e01106925c5d16d8f5fd40d5ab4ce |
|
| /// File Name: |
02.24.09-1.txt |
Description:
|
iDefense Security Advisory 02.24.09 - Remote exploitation of a invalid object reference vulnerability in Adobe Systems Inc.'s Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. During the processing of a Shockwave Flash file, a particular object can be created, along with multiple references that point to the object. The object can be destroyed and its associated references removed. However a reference can incorrectly remain pointing to the object. The invalid object resides in uninitialized memory, which the attacker may control to gain arbitrary execution control. iDefense has confirmed the existence of this vulnerability in latest version of Flash Player, version 9.0.124.0. Previous versions may also be affected.
| | Author: | Javier Vicente Vallejo | | Homepage: | http://www.idefense.com/ | | File Size: | 4744 | | Related CVE(s): | CVE-2009-0520 | | Last Modified: | Feb 24 20:10:43 2009 |
| MD5 Checksum: | 64b5f5c487007cbef8415a6a9a2ecf71 |
|
| /// File Name: |
BMSA-2009-03.txt |
Description:
|
OpenSite CMS version 2.1 suffers from multiple remote SQL injection vulnerabilities.
| | Author: | Nam Nguyen | | Homepage: | http://www.bluemoon.com.vn/ | | File Size: | 3675 | | Last Modified: | Feb 25 14:00:56 2009 |
| MD5 Checksum: | 544528901b3f026149cbb7ae7f3b2299 |
|
| /// File Name: |
bugzilla-xsrf.txt |
Description:
|
Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, generated insufficiently random numbers, resulting in all random tokens being the same, all CSRF protection being defeated, and the new attachment_base functionality being compromised.
| | Homepage: | http://www.bugzilla.org/ | | File Size: | 2719 | | Last Modified: | Feb 3 13:44:36 2009 |
| MD5 Checksum: | e15a8197fb7cfed55c0fce6cbaa4d74e |
|
| /// File Name: |
camfrog-disclose.pdf |
Description:
|
CamFrog Video Chat version 5.0 and CamFrog Pro version 5.2 apparently keep login and password information unencrypted in memory.
| | Author: | Zigma | | Homepage: | http://nullarea.net/ | | File Size: | 277998 | | Last Modified: | Feb 6 17:12:52 2009 |
| MD5 Checksum: | 5cad838ce27d752f1a0bbf322f2930b0 |
|
| /// File Name: |
cisco-sa-20090204-wlc.txt |
Description:
|
Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers (WLCs), Cisco Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless LAN Controllers. These include denial of service and privilege escalation flaws.
| | Homepage: | http://www.cisco.com/ | | File Size: | 20653 | | Related CVE(s): | CVE-2009-0058, CVE-2009-0059, CVE-2009-0061 | | Last Modified: | Feb 4 13:56:33 2009 |
| MD5 Checksum: | 750b1aeaf53eea454ca497da7bce6b08 |
|
| /// File Name: |
cisco-sa-20090225-ace.txt |
Description:
|
Cisco Security Advisory - The Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine Cisco ACE Module and Cisco ACE 4710 Application Control Engine contain multiple vulnerabilities that, if exploited, can could result in administrative access, privilege escalation, and denial of service conditions.
| | Homepage: | http://www.cisco.com/ | | File Size: | 31732 | | Related CVE(s): | CVE-2009-0620, CVE-2009-0621 | | Last Modified: | Feb 25 17:11:31 2009 |
| MD5 Checksum: | a0dc323b3d9ee01d23853889b00281dc |
|
| /// File Name: |
cisco-sa-20090225-anm.txt |
Description:
|
Cisco Security Advisory - Multiple vulnerabilities exist in the Cisco Application Networking Manager (ANM) and Cisco Application Control Engine (ACE) Device Manager applications. These vulnerabilities are independent of each other. Successful exploitation of these vulnerabilities may result in unauthorized system or host operating system access.
| | Homepage: | http://www.cisco.com/ | | File Size: | 21691 | | Related CVE(s): | CVE-2009-0615, CVE-2009-0616, CVE-2009-0617, CVE-2009-0618 | | Last Modified: | Feb 25 17:14:33 2009 |
| MD5 Checksum: | 00dddd076b90afbbba8eee7d70b87067 |
|
| /// File Name: |
cisco-sa-20090225-mtgplace.txt |
Description:
|
Cisco Security Advisory - Cisco Unified MeetingPlace Web Conferencing servers may contain an authentication bypass vulnerability that could allow an unauthenticated user to gain administrative access to the MeetingPlace application. Cisco has released free software updates that address this vulnerability.
| | Homepage: | http://www.cisco.com/ | | File Size: | 11157 | | Related CVE(s): | CVE-2009-0614 | | Last Modified: | Feb 25 17:09:00 2009 |
| MD5 Checksum: | c00232e51b7f047a7af8d0efa893873f |
|
| /// File Name: |
CORE-2008-1009.txt |
Description:
|
Core Security Technologies Advisory - Multiple integer overflow vulnerabilities have been discovered in UltraVNC and TightVNC, two (open source) remote control applications derived from the popular VNC software. The vulnerabilities cause a miscalculation of a buffer size on the heap, allowing an attacker to corrupt a VNC client heap and can probably allow code execution (exploitation is very likely). Affected packages include UltraVNC versions 1.0.2, 1.0.5, and TightVNC version 1.3.9.
| | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 9978 | | Related CVE(s): | CVE-2009-0388 | | Last Modified: | Feb 3 16:42:12 2009 |
| MD5 Checksum: | 65b9167f89ec00f966f5742d0c5bb8fd |
|
| /// File Name: |
cryptsetup-fail.txt |
Description:
|
cryptsetup on Debian fails to destroy a keyslot when it has been used to unlock the master key.
| | Author: | Pierre Dinh-van | | File Size: | 744 | | Last Modified: | Feb 13 13:48:33 2009 |
| MD5 Checksum: | e125d7c9a8d3c9b5dda7a3ff773c4483 |
|
| /// File Name: |
CVE-2008-4308.txt |
Description:
|
Apache Tomcat versions 4.1.32 through 4.1.34 and 5.5.10 through 5.5.20 suffer from an information disclosure vulnerability.
| | Author: | Mark Thomas | | Homepage: | http://tomcat.apache.org/ | | File Size: | 1559 | | Related CVE(s): | CVE-2008-4308 | | Last Modified: | Feb 26 14:20:39 2009 |
| MD5 Checksum: | 23ccbd1e01b84dc954032cfdd3a2b3e7 |
|
| /// File Name: |
DDIVRT-2008-19.txt |
Description:
|
The HP-ChaiSOE/1.0 embedded web server on certain HP JetDirect printers allows a potential attacker to gain read only access to directories and files outside of the web root. An attacker can leverage this flaw to read arbitrary system configuration files, cached documents, etc. Information obtained from an affected host may facilitate further attacks against the host. Exploitation of this flaw is trivial using common web server directory traversal techniques. Verified vulnerable systems include the HP JetDirect 2420 and the HP JetDirect 4250.
| | Author: | r@b13$ ,Shmoov | | Homepage: | http://www.digitaldefense.net/ | | File Size: | 1302 | | Last Modified: | Feb 4 13:54:00 2009 |
| MD5 Checksum: | 3fc73967d9a3f354bdb5160309340bc5 |
|
| /// File Name: |
DDIVRT-2009-20.txt |
Description:
|
The NetMRI login application suffers from a cross site scripting vulnerability.
| | Author: | David Marshall,r@b13$ | | Homepage: | http://www.digitaldefense.net/ | | File Size: | 1364 | | Last Modified: | Feb 18 17:16:42 2009 |
| MD5 Checksum: | c333ae4b37e45fffa4f4fea03650d045 |
|
| /// File Name: |
drupallinkmod-xss.txt |
Description:
|
The Drupal Link module version 5.x-2.5 on Drupal 5.10 suffers from a cross site scripting vulnerability.
| | Author: | Andrew Rosborough,Justin C. Klein Keane | | File Size: | 2070 | | Last Modified: | Feb 5 13:57:46 2009 |
| MD5 Checksum: | e6fa0cd19ad78b49d15eed9d3e825b88 |
|
| /// File Name: |
dsa-1716-1.txt |
Description:
|
Debian Security Advisory 1716-1 - It was discovered that xvnc4viewer, a virtual network computing client software for X, is prone to an integer overflow via a malicious encoding value that could lead to arbitrary code execution.
| | Homepage: | http://www.debian.org/security | | File Size: | 8465 | | Related CVE(s): | CVE-2008-4770 | | Last Modified: | Feb 1 15:02:49 2009 |
| MD5 Checksum: | 8a9f160a75c89dac534566aaccb4d349 |
|
| /// File Name: |
dsa-1717-1.txt |
Description:
|
Debian Security Advisory 1717 - Stefan Cornelius discovered a buffer overflow in devil, a cross-platform image loading and manipulation toolkit, which could be triggered via a crafted Radiance RGBE file. This could potentially lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 6746 | | Related CVE(s): | CVE-2008-5262 | | Last Modified: | Feb 5 14:01:54 2009 |
| MD5 Checksum: | 392dd395136401c7bb0309b9b90049e1 |
|
| /// File Name: |
dsa-1718-1.txt |
Description:
|
Debian Security Advisory 1718-1 - It was discovered that the core client for the BOINC distributed computing infrastructure performs incorrect validation of the return values of OpenSSL's RSA functions.
| | Homepage: | http://www.debian.org/security | | File Size: | 7572 | | Related CVE(s): | CVE-2009-0126 | | Last Modified: | Feb 9 11:34:05 2009 |
| MD5 Checksum: | 92632b8f4eb6b3563f922031218a6e3c |
|
| /// File Name: |
dsa-1719-1.txt |
Description:
|
Debian Security Advisory 1719-1 - Martin von Gagern discovered that GNUTLS, an implementation of the TLS/SSL protocol, handles verification of X.509 certificate chains incorrectly if a self-signed certificate is configured as a trusted certificate. This could cause clients to accept forged server certificates as genuine.
| | Homepage: | http://www.debian.org/security | | File Size: | 18480 | | Related CVE(s): | CVE-2008-4989 | | Last Modified: | Feb 10 14:20:08 2009 |
| MD5 Checksum: | d89702dbf6fd74eedacb7a5ebba78367 |
|
| /// File Name: |
dsa-1719-2.txt |
Description:
|
Debian Security Advisory 1719-2 - Changes in DSA-1719-1 caused GNUTLS to reject X.509v1 certificates as CA root certificates by default, as originally described in the documentation. However, it turned out that there is still significant use of historic X.509v1 CA root certificates, so this constitutes an unacceptable regression. This update reverses this part of the changes in DSA-1719-1. Note that the X.509v1 certificate format does not distinguish between server and CA certificates, which means that an X.509v1 server certificates is implicitly converted into a CA certificate when added to the trust store (which was the reason for the change in DSA-1719-1).
| | Homepage: | http://www.debian.org/security | | File Size: | 19903 | | Related CVE(s): | CVE-2008-4989 | | Last Modified: | Feb 28 13:21:56 2009 |
| MD5 Checksum: | 92873edc4e79ecccf66227b800620956 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
