Section: .. / 0907-advisories /
| /// File Name: |
MDVSA-2009-175.txt |
Description:
|
Mandriva Linux Security Advisory 2009-175 - Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow. This update corrects the issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3150 | | Related CVE(s): | CVE-2009-1194 | | Last Modified: | Jul 29 15:12:17 2009 |
| MD5 Checksum: | abbc5b951688a7f6f92da729273f2912 |
|
| /// File Name: |
MDVSA-2009-176.txt |
Description:
|
Mandriva Linux Security Advisory 2009-176 - git-daemon in git 1.4.4.5 through 1.6.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request containing extra unrecognized arguments. This update provides fixes for this vulnerability.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4255 | | Related CVE(s): | CVE-2009-2108 | | Last Modified: | Jul 29 15:12:44 2009 |
| MD5 Checksum: | 91e2c575080a2a06ea6acd1221fb6462 |
|
| /// File Name: |
MDVSA-2009-177.txt |
Description:
|
Mandriva Linux Security Advisory 2009-177 - The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type. This update corrects the problem.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2925 | | Related CVE(s): | CVE-2009-1904 | | Last Modified: | Jul 29 15:20:29 2009 |
| MD5 Checksum: | 21084a66bf6cb2513c8fbbe9321b8457 |
|
| /// File Name: |
MDVSA-2009-178.txt |
Description:
|
Mandriva Linux Security Advisory 2009-178 - Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses. Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses. This update provides fixes for these vulnerabilities.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2669 | | Last Modified: | Jul 30 11:35:44 2009 |
| MD5 Checksum: | d3506e2fc058915aece39932a401a492 |
|
| /// File Name: |
MDVSA-2009-179.txt |
Description:
|
Mandriva Linux Security Advisory 2009-179 - Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information. This update provides fixes for this vulnerability.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4791 | | Related CVE(s): | CVE-2009-2446 | | Last Modified: | Jul 30 11:36:02 2009 |
| MD5 Checksum: | 2333069db481ce74865ad8ee103548ed |
|
| /// File Name: |
MDVSA-2009-180.txt |
Description:
|
Mandriva Linux Security Advisory 2009-180 - Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a.xbm file. This update provides fixes for this vulnerability.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2748 | | Related CVE(s): | CVE-2009-2286 | | Last Modified: | Jul 30 11:38:29 2009 |
| MD5 Checksum: | ebd169656fa65b87ca8bc2ca60f79420 |
|
| /// File Name: |
MDVSA-2009-181.txt |
Description:
|
Mandriva Linux Security Advisory 2009-181 - The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message, as exploited in the wild in July 2009. This update provides fixes for this vulnerability.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7849 | | Related CVE(s): | CVE-2009-0696 | | Last Modified: | Jul 30 11:38:49 2009 |
| MD5 Checksum: | f818f4536c291da5a138b1639b467642 |
|
| /// File Name: |
motb-03.txt |
Description:
|
Month of Twitter Bugs - The TwitWall application suffers from a persistent cross site scripting vulnerability.
| | Author: | Aviv Raff | | Homepage: | http://www.twitpwn.com/ | | File Size: | 1096 | | Last Modified: | Jul 8 15:19:43 2009 |
| MD5 Checksum: | 70dd61815638eeebd88a5cc2abc8b43c |
|
| /// File Name: |
motb-04.txt |
Description:
|
Month of Twitter Bugs - The BigTweet bookmarklet tool suffered from a cross site request forgery vulnerability.
| | Author: | Aviv Raff | | Homepage: | http://www.twitpwn.com/ | | File Size: | 1296 | | Last Modified: | Jul 8 15:21:42 2009 |
| MD5 Checksum: | 8ade5d4fd0745c08967192ead612b25d |
|
| /// File Name: |
motb-06.txt |
Description:
|
Month of Twitter Bugs - The TwitPic application suffered from cross site request forgery and cross site scripting vulnerabilities.
| | Author: | Aviv Raff | | Homepage: | http://www.twitpwn.com/ | | File Size: | 2058 | | Last Modified: | Jul 8 15:28:00 2009 |
| MD5 Checksum: | 270c97d358dbd6d7b1d86e223bac60a0 |
|
| /// File Name: |
motb-09.txt |
Description:
|
Month of Twitter Bugs - Twellow suffered from a reflected cross site scripting vulnerability.
| | Author: | Aviv Raff | | Homepage: | http://www.twitpwn.com/ | | File Size: | 1329 | | Last Modified: | Jul 9 18:26:09 2009 |
| MD5 Checksum: | b1f9bd966dd92d57131f8db67c06c1c8 |
|
| /// File Name: |
motb-11.txt |
Description:
|
Month of Twitter Bugs - Twitturly suffered from a persistent cross site scripting flaw.
| | Author: | Aviv Raff | | Homepage: | http://www.twitpwn.com/ | | File Size: | 914 | | Last Modified: | Jul 15 13:19:24 2009 |
| MD5 Checksum: | fa0ee023bc813807dc8cbcf669ad5a4d |
|
| /// File Name: |
msvideo-activex.txt |
Description:
|
This is a complete write up discussing the technical details of the Microsoft Video Active-X control zero day vulnerability.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 10719 | | Last Modified: | Jul 9 20:59:40 2009 |
| MD5 Checksum: | 1cfda91c9623b360b6e95e519ddf68bd |
|
| /// File Name: |
NDSA20090413.txt |
Description:
|
NullLogic Groupware suffers from account compromise, denial of service, and possibly remote code execution vulnerabilities.
| | Author: | Tim Brown | | Homepage: | http://www.nth-dimension.org.uk/ | | File Size: | 4814 | | Last Modified: | Jul 6 14:33:20 2009 |
| MD5 Checksum: | 5336f1e24260bdf93f64f3b8cd9c6db1 |
|
| /// File Name: |
oCERT-2009-007.txt |
Description:
|
FCKeditor, a web based open source HTML text editor, suffers from a remote file upload vulnerability. The input of several connector modules is not properly verified before being used, this leads to exposure of the contents of arbitrary directories on the server filesystem and allows file uploading to arbitrary locations. The affected code is remotely exposed before authentication. An attacker can exploit this vulnerability to install remote shells on the victim server among other things, it should be noted that this vulnerability is being actively exploited in the wild. Versions 2.6.4 and below are affected.
| | Author: | Andrea Barisani | | Homepage: | http://www.ocert.org/ | | File Size: | 2691 | | Related CVE(s): | CVE-2009-2265 | | Last Modified: | Jul 6 14:20:17 2009 |
| MD5 Checksum: | 7f3b395b7d13a83c0e65efe52d9ee4e8 |
|
| /// File Name: |
oCERT-2009-008.txt |
Description:
|
Dillo, an open source graphical web browser, suffers from an integer overflow which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The vulnerability is triggered by HTML pages with embedded PNG images, the Png_datainfo_callback function does not properly validate the width and height of the image. Specific PNG images with large width and height can be crafted to trigger the vulnerability. Versions 2.1 and below are affected.
| | Author: | Andrea Barisani | | Homepage: | http://www.ocert.org/ | | File Size: | 1569 | | Related CVE(s): | CVE-2009-2294 | | Last Modified: | Jul 6 14:21:39 2009 |
| MD5 Checksum: | 828e7861ba812ab27254e74ea5809acb |
|
| /// File Name: |
oCERT-2009-009.txt |
Description:
|
CamlImages versions 2.2 and below suffer from several integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The vulnerability is triggered by PNG image parsing, the read_png_file and read_png_file_as_rgb24 functions do not properly validate the width and height of the image. Specific PNG images with large width and height can be crafted to trigger the vulnerability.
| | Author: | Andrea Barisani | | Homepage: | http://www.ocert.org/ | | File Size: | 1607 | | Related CVE(s): | CVE-2009-2295 | | Last Modified: | Jul 2 15:01:23 2009 |
| MD5 Checksum: | 4fa5917b93622cf557fa89435814a10b |
|
| /// File Name: |
oCERT-2009-010.txt |
Description:
|
The mimeTeX and mathTeX CGIs suffer from several buffer overflows as well as command injection which result in remote code execution. Unfortunately mimeTeX and mathTex are provided without version numbers by the maintainer, who releases version-less zip archives. It is therefore impossible to provide affected version numbers.
| | Author: | Chris Evans,Damien Miller | | File Size: | 2734 | | Related CVE(s): | CVE-2009-1382, CVE-2009-1383 | | Last Modified: | Jul 14 14:25:35 2009 |
| MD5 Checksum: | c7054415cf4b97f427efeec7cef352ed |
|
| /// File Name: |
oCERT-2009-011.txt |
Description:
|
Android, an open source mobile phone platform, improperly checks permissions when applications access the camera and audio resources. All 1.5 GRBxx versions are affected.
| | Author: | Andrea Barisani | | Homepage: | http://www.ocert.org/ | | File Size: | 1777 | | Related CVE(s): | CVE-2009-2348 | | Last Modified: | Jul 17 15:13:36 2009 |
| MD5 Checksum: | 757508375af779890149063db6295b6f |
|
| /// File Name: |
oCERT-2009-012.txt |
Description:
|
The libtiff image library tools suffer from integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The libtiff package ships a library, for reading and writing TIFF, as well as a small collection of tools for manipulating TIFF images. The cvt_whole_image function used in the tiff2rgba tool and the tiffcvt function used in the rgb2ycbcr tool do not properly validate the width and height of the image. Specific TIFF images with large width and height can be crafted to trigger the vulnerability.
| | Author: | Andrea Barisani | | Homepage: | http://www.ocert.org/ | | File Size: | 2095 | | Related CVE(s): | CVE-2009-2347 | | Last Modified: | Jul 13 17:00:54 2009 |
| MD5 Checksum: | fcb3f51181cf6c6954e889e7098ad494 |
|
| /// File Name: |
phion-dosexec.txt |
Description:
|
The phion airlock Web Application Firewall version 4.1-10.41 suffers denial of service and arbitrary command execution vulnerabilities.
| | Author: | Lukas Nothdurfter,Michael Kirchner,Wolfgang Neudorfer | | File Size: | 3290 | | Last Modified: | Jul 1 13:22:12 2009 |
| MD5 Checksum: | 5d2df505f1a34245963200a45e128795 |
|
| /// File Name: |
radware-disclose.txt |
Description:
|
The radware AppWall Web Application Firewall suffers from a source code disclosure vulnerability on the management interface. Gateway version 4.6.0.2 and AppWall version 1.0.2.6 are affected.
| | Author: | Lukas Nothdurfter,Michael Kirchner,Wolfgang Neudorfer | | File Size: | 2797 | | Last Modified: | Jul 1 13:25:11 2009 |
| MD5 Checksum: | 2d1c662cef9fe00d1ebd2aa646685ee0 |
|
| /// File Name: |
RISE-2009002.txt |
Description:
|
There exists a vulnerability within a function of Linux eCryptfs (Enterprise Cryptographic Filesystem), which when properly exploited can lead to compromise of the vulnerable system. This vulnerability was confirmed in the Linux kernel version 2.6.30.3. Linux kernel versions 2.6.19 and later have eCryptfs support and may be also affected.
| | Author: | Ramon de Carvalho Valle | | Homepage: | http://www.risesecurity.org/ | | File Size: | 3484 | | Last Modified: | Jul 28 18:22:21 2009 |
| MD5 Checksum: | 64aafba24cc62576d7aa592e5f3f57b8 |
|
| /// File Name: |
RISE-2009003.txt |
Description:
|
There exists a vulnerability within a function of Linux eCryptfs (Enterprise Cryptographic Filesystem), which when properly exploited can lead to compromise of the vulnerable system. This vulnerability was confirmed in the Linux kernel version 2.6.30.3. Linux kernel versions 2.6.19 and later have eCryptfs support and may be also affected.
| | Author: | Ramon de Carvalho Valle | | Homepage: | http://www.risesecurity.org/ | | File Size: | 3927 | | Last Modified: | Jul 28 18:24:53 2009 |
| MD5 Checksum: | 4264bc14bc62583865240a418b894751 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
