Section: .. / Last 100 Advisory Files /
| /// File Name: | secunia-realnetworks.txt | Description:
| Secunia Research has discovered a vulnerability in RealPlayer, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a design error within the handling of frames in Shockwave Flash (SWF) files and can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code. Affected is RealNetworks RealPlayer version 10.5 Build 6.0.12.1483. | | Author: | Dyon Balding | | Homepage: | http://secunia.com/ | | File Size: | 4353 | | Related CVE(s): | CVE-2007-5400 | | Last Modified: | Jul 25 14:24:02 2008 | | MD5 Checksum: | e44f432fc16d17e09063fe9acb1b39c4 |
|
| /// File Name: | dsa-1617-1.txt | Description:
| Debian Security Advisory 1617-1 - In DSA-1603-1, Debian released an update to the BIND 9 domain name server, which introduced UDP source port randomization to mitigate the threat of DNS cache poisoning attacks (identified by the Common Vulnerabilities and Exposures project as CVE-2008-1447). The fix, while correct, was incompatible with the version of SELinux Reference Policy shipped with Debian Etch, which did not permit a process running in the named_t domain to bind sockets to UDP ports other than the standard 'domain' port (53). The incompatibility affects both the 'targeted' and 'strict' policy packages supplied by this version of refpolicy. This update to the refpolicy packages grants the ability to bind to arbitrary UDP ports to named_t processes. When installed, the updated packages will attempt to update the bind policy module on systems where it had been previously loaded and where the previous version of refpolicy was 0.0.20061018-5 or below. | | Homepage: | http://www.debian.org/security | | File Size: | 5335 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 25 14:20:30 2008 | | MD5 Checksum: | 1f7434c7ae5c8345c7101b841bffb229 |
|
| /// File Name: | USN-629-1.txt | Description:
| Ubuntu Security Notice 629-1 - Various flaws in the mozilla-thunderbird package have been addressed including improper handling, weaknesses, denial of service, and code execution issues. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 19876 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2798, CVE-2008-2799, CVE-2008-2802, CVE-2008-2803, CVE-2008-2807, CVE-2008-2809, CVE-2008-2811 | | Last Modified: | Jul 25 13:49:41 2008 | | MD5 Checksum: | 6423df1ff327f2272abae252a822f5cf |
|
| /// File Name: | dsa-1616-1.txt | Description:
| Debian Security Advisory 1616-1 - Damian Put discovered a vulnerability in the ClamAV anti-virus toolkit's parsing of Petite-packed Win32 executables. The weakness leads to an invalid memory access, and could enable an attacker to crash clamav by supplying a maliciously crafted Petite-compressed binary for scanning. In some configurations, such as when clamav is used in combination with mail servers, this could cause a system to "fail open," facilitating a follow-on viral attack. | | Homepage: | http://www.debian.org/security | | File Size: | 16558 | | Related CVE(s): | CVE-2008-2713 | | Last Modified: | Jul 24 12:14:46 2008 | | MD5 Checksum: | aedebbf953275b7079e71948199d5566 |
|
| /// File Name: | dsa-1615-1.txt | Description:
| Debian Security Advisory 1615-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. | | Homepage: | http://www.debian.org/security | | File Size: | 31926 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2798, CVE-2008-2799, CVE-2008-2800, CVE-2008-2801, CVE-2008-2802, CVE-2008-2803, CVE-2008-2805, CVE-2008-2807, CVE-2008-2808, CVE-2008-2809, CVE-2008-2811, CVE-2008-2933 | | Last Modified: | Jul 23 19:50:15 2008 | | MD5 Checksum: | 814da2c25fb7c7e932ae2c2849d21d29 |
|
| /// File Name: | dsa-1614-1.txt | Description:
| Debian Security Advisory 1614-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. It was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code. Billy Rios discovered that passing an URL containing a pipe symbol to Iceweasel can lead to Chrome privilege escalation. | | Homepage: | http://www.debian.org/security | | File Size: | 8712 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2933 | | Last Modified: | Jul 23 19:49:36 2008 | | MD5 Checksum: | 357a585f8c33728c1e761bc85d365a57 |
|
| /// File Name: | dsa-1540-3.txt | Description:
| Debian Security Advisory 1540-3 - This update fixes a regression in lighttpd introduced in DSA-1540, causing SSL failures. | | Homepage: | http://www.debian.org/security | | File Size: | 14614 | | Related CVE(s): | CVE-2008-1531 | | Last Modified: | Jul 23 19:48:43 2008 | | MD5 Checksum: | cccf48a06495b899a26c83ab12130eb3 |
|
| /// File Name: | USN-628-1.txt | Description:
| Ubuntu Security Notice 628-1 - Over a dozen vulnerabilities in php5 have been addressed in Ubuntu. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 62408 | | Related CVE(s): | CVE-2007-4782, CVE-2007-4850, CVE-2007-5898, CVE-2007-5899, CVE-2008-0599, CVE-2008-1384, CVE-2008-2050, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108, CVE-2008-2371, CVE-2008-2829 | | Last Modified: | Jul 23 19:47:53 2008 | | MD5 Checksum: | 6cd6d0407e8f8ffd96589e18817d582e |
|
| /// File Name: | vimfiletype-exec.txt | Description:
| This advisory discusses the filetype.vim vulnerability in Vim version 7.2b.10 that allows for arbitrary code execution and also notes that the Vim patch 7.1.300 did not fix the vulnerability. | | Author: | Jan Minar | | File Size: | 6106 | | Last Modified: | Jul 23 19:46:43 2008 | | MD5 Checksum: | 525775816c2441f36c404a28644bb87a |
|
| /// File Name: | AST-2008-011.txt | Description:
| Asterisk Project Security Advisory - An attacker may request an Asterisk server to send part of a firmware image. However, as this firmware download protocol does not initiate a handshake, the source address may be spoofed. Therefore, an IAX2 FWDOWNL request for a firmware file may consume as little as 40 bytes, yet produces a 1040 byte response. Coupled with multiple geographically diverse Asterisk servers, an attacker may flood an victim site with unwanted firmware packets. | | Author: | Tilghman Lesher | | Homepage: | http://www.asterisk.org/security | | File Size: | 10634 | | Related CVE(s): | CVE-2008-3264 | | Last Modified: | Jul 23 19:43:03 2008 | | MD5 Checksum: | 2185fd4b6b919de751e6fe7c8aab32a1 |
|
| /// File Name: | AST-2008-010.txt | Description:
| Asterisk Project Security Advisory - By flooding an Asterisk server with IAX2 'POKE' requests, an attacker may eat up all call numbers associated with the IAX2 protocol on an Asterisk server and prevent other IAX2 calls from getting through. Due to the nature of the protocol, IAX2 POKE calls will expect an ACK packet in response to the PONG packet sent in response to the POKE. While waiting for this ACK packet, this dialog consumes an IAX2 call number, as the ACK packet must contain the same call number as was allocated and sent in the PONG. | | Author: | Jeremy McNamara | | Homepage: | http://www.asterisk.org/security | | File Size: | 10633 | | Related CVE(s): | CVE-2008-3263 | | Last Modified: | Jul 23 19:41:47 2008 | | MD5 Checksum: | c3e6feb71c399d84d8dc74877ffc992c |
|
| /// File Name: | MDVSA-2008-154.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability in xemacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by xemacs. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3385 | | Related CVE(s): | CVE-2008-2142 | | Last Modified: | Jul 23 19:39:45 2008 | | MD5 Checksum: | 02de82850dc988def1ef4ff9e0c8f68e |
|
| /// File Name: | MDVSA-2008-153.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability in emacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by emacs. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8619 | | Related CVE(s): | CVE-2008-2142 | | Last Modified: | Jul 23 19:26:54 2008 | | MD5 Checksum: | 317520423f82ed3a15b919a528d64ba9 |
|
| /// File Name: | MDVSA-2008-152.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability was found in Wireshark, that could cause it to crash while processing malicious packets. This update provides Wireshark 1.0.2, which is not vulnerable to that. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7468 | | Related CVE(s): | CVE-2008-3145 | | Last Modified: | Jul 23 19:26:33 2008 | | MD5 Checksum: | 9deb077f278a874b21006d319120b3bb |
|
| /// File Name: | CS-2008-2.txt | Description:
| SocialEngine versions below 2.83 suffer from an input validation vulnerability that allows for client take over. | | Author: | Tim Loshak | | File Size: | 1341 | | Last Modified: | Jul 23 19:16:38 2008 | | MD5 Checksum: | cd06e8756e37818b845ccfa76907f968 |
|
| /// File Name: | FGA-2008-16-3.txt | Description:
| EMC Dantz Retrospect 7 Backup Server version 7.5.508 suffers from a weak password hash arithmetic vulnerability in the authentication module. | | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2366 | | Last Modified: | Jul 23 19:08:16 2008 | | MD5 Checksum: | 0e4381d6c4e9206769d3e16fded8c491 |
|
| /// File Name: | USN-627-1.txt | Description:
| Ubuntu Security Notice 627-1 - Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Dnsmasq. A remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 2579 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 22 14:01:41 2008 | | MD5 Checksum: | 0b11fe1d320f9ebc0ce03f99670eab53 |
|
| /// File Name: | dsa-1613-1.txt | Description:
| Debian Security Advisory 1613-1 - Multiple vulnerabilities have been identified in libgd2, a library for programmatic graphics creation and manipulation. The Common Vulnerabilities and Exposures project identifies the following three issues: | | Homepage: | http://www.debian.org/security | | File Size: | 13291 | | Related CVE(s): | CVE-2007-3476, CVE-2007-3477, CVE-2007-3996, CVE-2007-2445 | | Last Modified: | Jul 22 13:59:59 2008 | | MD5 Checksum: | f8c950a3139d1a9b9ffb7c36183f28f7 |
|
| /// File Name: | MDVSA-2008-151.txt | Description:
| Mandriva Linux Security Advisory - A buffer overflow vulnerability in libxslt could be exploited via an XSL style sheet file with a long XLST transformation match condition, which could possibly lead to the execution of arbitrary code. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6918 | | Related CVE(s): | CVE-2008-1767 | | Last Modified: | Jul 22 13:59:37 2008 | | MD5 Checksum: | 1bcd643704c45767fa68f8d446802e52 |
|
| /// File Name: | zdaemonull.txt | Description:
| ZDaemon version 1.08.07 suffers from a NULL pointer vulnerability that allows for a denial of service. | | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | zdaemonull.zip | | File Size: | 1652 | | Last Modified: | Jul 21 18:17:27 2008 | | MD5 Checksum: | 8c85d8ec22bbb9062cb114f68f5402b1 |
|
| /// File Name: | glsa-200807-12.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-12 - bannedit reported a boundary error when handling overly long IRC MODE messages (CVE-2007-4584). Nico Golde reported an insecure creation of a temporary file within the e_hostname() function (CVE-2007-5839). Versions less than or equal to 1.1-r4 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 3594 | | Related CVE(s): | CVE-2007-4584, CVE-2007-5839 | | Last Modified: | Jul 21 18:08:23 2008 | | MD5 Checksum: | 8100eca3c7360f4b84b412bf7550fda5 |
|
| /// File Name: | FGA-2008-16-2.txt | Description:
| EMC Dantz Retrospect 7 backup Client 7.5.116 suffers from a NULL pointer reference denial of service vulnerability. | | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2475 | | Last Modified: | Jul 21 18:04:08 2008 | | MD5 Checksum: | 812c10b6dc3e756242463147b8c58022 |
|
| /// File Name: | FGA-2008-16.txt | Description:
| EMC Dantz Retrospect 7 backup Client 7.5.116 suffers from a plaintext password hash disclosure vulnerability. | | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2562 | | Last Modified: | Jul 21 18:00:23 2008 | | MD5 Checksum: | cbb194fe670583886c0eed55f04e9339 |
|
| /// File Name: | glsa-200807-11.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-11 - Nico Golde reported a boundary error in the HTTP::getAuthUserPass() function when processing overly long HTTP Basic authentication requests. Versions less than 0.1218-r1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2849 | | Related CVE(s): | CVE-2008-2040 | | Last Modified: | Jul 21 17:28:36 2008 | | MD5 Checksum: | d1146df456660d542131ae60286a71a2 |
|
| /// File Name: | glsa-200807-10.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-10 - Matthijs Kooijman reported that the make_catalog_backup script uses the MySQL password as a command line argument when invoking other programs. Versions less than 2.4.1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2985 | | Related CVE(s): | CVE-2007-5626 | | Last Modified: | Jul 21 17:28:26 2008 | | MD5 Checksum: | 57f7c6379386e1685d50979f5ad3bd27 |
|
| /// File Name: | oracleuntrust-local.txt | Description:
| Oracle 10g R2 and Oracle 11g suffers from a local root compromise vulnerable via the extjob binary. | | Author: | Joxean Koret | | File Size: | 3833 | | Related CVE(s): | CVE-2008-2613 | | Last Modified: | Jul 21 17:07:34 2008 | | MD5 Checksum: | 3a19a5731f94ea904531a9aee0a3f8c6 |
|
| /// File Name: | MDVSA-2008-150.txt | Description:
| Mandriva Linux Security Advisory - Multiple buffer overflows in yaSSL, which is used in MySQL, allowed remote attackers to execute arbitrary code. a denial of service via a special Hello packet. Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10153 | | Related CVE(s): | CVE-2008-0226, CVE-2008-0227, CVE-2008-2079 | | Last Modified: | Jul 21 15:49:13 2008 | | MD5 Checksum: | 07351dd07cd3e2a27d6bac3909ab4c6f |
|
| /// File Name: | MDVSA-2008-149.txt | Description:
| Mandriva Linux Security Advisory - Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4893 | | Related CVE(s): | CVE-2008-2079 | | Last Modified: | Jul 21 15:48:59 2008 | | MD5 Checksum: | 2bdc41c71cf2f26c4859d39710d22810 |
|
| /// File Name: | SSRT080058-2.txt | Description:
| HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning. | | Homepage: | http://www.hp.com/ | | File Size: | 7533 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 21 15:44:10 2008 | | MD5 Checksum: | 9d73d9bba705842147d23e9b517a640d |
|
| /// File Name: | MDVSA-2008-148.txt | Description:
| Mandriva Linux Security Advisory - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.16. This update provides the latest Firefox to correct these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 60625 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2933 | | Last Modified: | Jul 18 04:33:13 2008 | | MD5 Checksum: | ab9dcc763cd53eb00f2102db6b1ca667 |
|
| /// File Name: | vim-filecreation.txt | Description:
| Vim version 5.0 through the current version suffer from an arbitrary code execution vulnerability via an insecure temporary file creation flaw. | | Author: | Jan Minar | | File Size: | 3242 | | Last Modified: | Jul 18 04:32:36 2008 | | MD5 Checksum: | e0aafe45a3a0e558f53b941ce10d137f |
|
| /// File Name: | ZDI-08-044.txt | Description:
| A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the browser's handling reference counters to the nsCSSValue:Array class. Creating more then 65,535 references will overflow a 16-bit reference counter and therefore result in an erroneous free() while the object still exists. Properly manipulated this can result in arbitrary code execution under the context of the current user. | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3515 | | Related CVE(s): | CVE-2008-2785 | | Last Modified: | Jul 17 16:12:30 2008 | | MD5 Checksum: | 58c97cd821304abdbc467ae1ad85e405 |
|
| /// File Name: | ZDI-08-043.txt | Description:
| A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the GetVMArgsOption() function used while parsing the java-vm-args attribute of the j2se tag in xml based JNLP files. When a user downloads a malicious JNLP file, the vulnerable attribute is read into a static buffer. If an overly long value is defined by the java-vm-args attribute, a stack based buffer overflow occurs, resulting in an exploitable condition. | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3501 | | Last Modified: | Jul 17 16:11:49 2008 | | MD5 Checksum: | cf0518925fb29057bec90deed667e775 |
|
| /// File Name: | ZDI-08-042.txt | Description:
| A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the writeManifest() method of the CacheEntry class. A directory traversal flaw in this method allows the creation of arbitrary files on the target system. After the file has been created, a call to Runtime.getRuntime.exec() can be used to execute the file. | | Author: | Peter Csepely | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3411 | | Last Modified: | Jul 17 16:11:03 2008 | | MD5 Checksum: | 40bc93865482ae2445c34853dcd2207d |
|
| /// File Name: | USN-623-1.txt | Description:
| Ubuntu Security Notice 623-1 - A flaw was discovered in the browser engine. A variable could be made to overflow causing the browser to crash. If a user were tricked into opening a malicious web page, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Billy Rios discovered that Firefox did not properly perform URI splitting with pipe symbols when passed a command-line URI. If Firefox were passed a malicious URL, an attacker may be able to execute local content with chrome privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 22719 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2933 | | Last Modified: | Jul 17 15:29:57 2008 | | MD5 Checksum: | 134f5257fe6d05be8b868a8de33caf4f |
|
| /// File Name: | SSRT080097-2.txt | Description:
| HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access. | | Homepage: | http://www.hp.com/ | | File Size: | 6233 | | Related CVE(s): | CVE-2008-1665 | | Last Modified: | Jul 17 15:28:56 2008 | | MD5 Checksum: | 16bcd9b00ec4628549a66a8a61cc3f8c |
|
| /// File Name: | SSRT080058.txt | Description:
| HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning. | | Homepage: | http://www.hp.com/ | | File Size: | 6949 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 17 15:16:48 2008 | | MD5 Checksum: | 81ca5324ef291a1e31b9850373d3dca6 |
|
| /// File Name: | dsa-1611-1.txt | Description:
| Debian Security Advisory 1611-1 - Anders Kaseorg discovered that afuse, an automounting file system in user-space, did not properly escape meta characters in paths. This allowed a local attacker with read access to the filesystem to execute commands as the owner of the filesystem. | | Homepage: | http://www.debian.org/security | | File Size: | 5021 | | Related CVE(s): | CVE-2008-2232 | | Last Modified: | Jul 16 20:04:36 2008 | | MD5 Checksum: | 667d150cda2558de83b99a4350f259eb |
|
| /// File Name: | n.runs-SA-2008.003.txt | Description:
| Apple QuickTime versions prior to 7.5 suffer from a heap overflow vulnerability when handling PICT images. | | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 9491 | | Last Modified: | Jul 16 15:49:48 2008 | | MD5 Checksum: | 86cef345102da7283cb680756f7c7847 |
|
| /// File Name: | n.runs-SA-2008.002.txt | Description:
| The F-Prot Anti-Virus engine versions below 4.4.4 suffer form an out-of-bounds memory access denial of service vulnerability. | | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 5248 | | Last Modified: | Jul 16 15:48:37 2008 | | MD5 Checksum: | f9e5ad9d51dc0e30c8a0d4478a729c61 |
|
| /// File Name: | dsa-1544-2.txt | Description:
| Debian Security Advisory 1544-2 - Thomas Biege discovered that the upstream fix for the weak random number randomization did still not use difficult-to-predict random numbers. This is corrected in this security update. | | Homepage: | http://www.debian.org/security | | File Size: | 5057 | | Related CVE(s): | CVE-2008-1637 | | Last Modified: | Jul 16 15:45:43 2008 | | MD5 Checksum: | 82e55904d542f28198d9499d43db9a50 |
|
| /// File Name: | SSRT080097.txt | Description:
| HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access. | | Homepage: | http://www.hp.com/ | | File Size: | 6092 | | Related CVE(s): | CVE-2008-1665 | | Last Modified: | Jul 16 15:43:55 2008 | | MD5 Checksum: | a11f1f733768ff70d0e990e3269f40d2 |
|
| /// File Name: | netrw-exec.txt | Description:
| Lack of sanitization throughout Netrw can lead to arbitrary code execution upon opening a directory with a crafted name. | | Author: | Jan Minar | | File Size: | 5137 | | Last Modified: | Jul 16 15:43:19 2008 | | MD5 Checksum: | 0a45093ff0e3eb716b14884b0b054a39 |
|
| /// File Name: | vim72b-exec.txt | Description:
| Vim versions greater than and equal to 7.2.a.013 suffer from an arbitrary code execution vulnerability using the shellescape() function. | | Author: | Jan Minar | | File Size: | 3450 | | Last Modified: | Jul 16 15:42:12 2008 | | MD5 Checksum: | 9315516bf2b023bbb2f7e8cdfb678067 |
|
| /// File Name: | MDVSA-2008-147.txt | Description:
| Mandriva Linux Security Advisory - Tavis Ormandy of the Google Security Team discovered a heap-based buffer overflow when compiling certain regular expression patterns. This could be used by a malicious attacker by sending a specially crafted regular expression to an application using the PCRE library, resulting in the possible execution of arbitrary code or a denial of service. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4319 | | Related CVE(s): | CVE-2008-2371 | | Last Modified: | Jul 16 14:50:23 2008 | | MD5 Checksum: | b8e63c1a7fd5d361e566c9cacb751161 |
|
| /// File Name: | USN-625-1.txt | Description:
| Ubuntu Security Notice 625-1 - A massive slew of Linux kernel related vulnerabilities have been addressed for the linux-source-2.6.15/20/22 packages. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 192927 | | Related CVE(s): | CVE-2007-6282, CVE-2007-6712, CVE-2008-0598, CVE-2008-1615, CVE-2008-1673, CVE-2008-2136, CVE-2008-2137, CVE-2008-2148, CVE-2008-2358, CVE-2008-2365, CVE-2008-2729, CVE-2008-2750, CVE-2008-2826 | | Last Modified: | Jul 16 14:50:16 2008 | | MD5 Checksum: | 5e9e19eec557961a1d40d8762fd5cff3 |
|
| /// File Name: | MDVSA-2008-146.txt | Description:
| Mandriva Linux Security Advisory - A memory management issue was found in libpoppler by Felipe Andres Manzano that could allow for the execution of arbitrary code with the privileges of the user running a poppler-based application, if they opened a specially crafted PDF file. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6044 | | Related CVE(s): | CVE-2008-2950 | | Last Modified: | Jul 15 21:09:57 2008 | | MD5 Checksum: | 37e194777605bac78445c2e820e31d67 |
|
| /// File Name: | 07.15.08-3.txt | Description:
| iDefense Security Advisory 07.15.08 - Local exploitation of an untrusted library path vulnerability in Oracle Corp.'s Oracle Database product allows attackers to gain elevated privileges. This vulnerability specifically exists in a set-uid root program distributed with Oracle Database for Linux and Unix platforms. By replacing a module owned by the oracle user, which is loaded by this program, an attacker can execute arbitrary code as root. iDefense confirmed the existence of this vulnerability in Oracle 11g R1 version 11.1.0.6.0 on 32-bit Linux platform. Previous versions may also be affected. | | Author: | Joxean Koret | | Homepage: | http://www.idefense.com/ | | File Size: | 3311 | | Related CVE(s): | CVE-2008-2613 | | Last Modified: | Jul 15 20:23:19 2008 | | MD5 Checksum: | e8ee1e493dada84f07feb39294a4a5f6 |
|
| /// File Name: | 07.15.08-2.txt | Description:
| iDefense Security Advisory 07.15.08 - Remote exploitation of a buffer overflow vulnerability in the DBMS_AQELM package in Oracle Corp.'s Oracle Database product allows attackers to execute arbitrary code with the privileges of the database user. This vulnerability exists due to improper input validation when handling a parameter passed to a procedure within the DBMS_AQELM package. Since the parameter is not properly validated, providing a long string can cause a buffer overflow to occur. This results in corruption of the database and could allow for the execution of arbitrary code as the database user. iDefense confirmed the existence of this vulnerability in Oracle Database version 10.2.0.3 and 11.1.0.6 with the October 2007 CPU applied. Previous versions may also be affected. | | Author: | Joxean Koret | | Homepage: | http://www.idefense.com/ | | File Size: | 3635 | | Related CVE(s): | CVE-2008-2607 | | Last Modified: | Jul 15 20:22:23 2008 | | MD5 Checksum: | ce82ad21bbe158ccfb4fd2c80da488bc |
|
| /// File Name: | 07.15.08-1.txt | Description:
| iDefense Security Advisory 07.15.08 - Remote exploitation of a pre-authentication input validation vulnerability in Oracle Corp.'s Oracle Internet Directory allows an attacker to conduct a denial of service attack on a vulnerable host. Internet Directory consists of two processes. One process acts as a listener. It handles incoming connections and passes them off to the second process. The second process, which handles requests, contains the vulnerability. When processing a malformed LDAP request, it is possible to cause the handler to dereference a NULL pointer. This results in the process crashing. Future connection requests will be accepted by the listener process, and then immediately closed when it finds that there is no handler process running. iDefense confirmed the existence of this vulnerability in Oracle Internet Directory for Windows version 10.1.4.0.1 with the April 2007 CPU installed. Previous versions may also be affected. | | Author: | Joxean Koret | | Homepage: | http://www.idefense.com/ | | File Size: | 3843 | | Related CVE(s): | CVE-2008-2595 | | Last Modified: | Jul 15 20:20:55 2008 | | MD5 Checksum: | e8fd9c9196beac5c66e3d1a2dbceb960 |
|
| /// File Name: | NISR15072008.txt | Description:
| NGSSoftware Insight Security Research Advisory - Oracle Application Server installs a number of PLSQL packages in the backend database server. One of these is the WWV_RENDER_REPORT package and it is vulnerable to PLSQL injection. This package uses definer rights execution and therefore executes with the privileges of the owner, in this case the highly privileged PORTAL user. | | Author: | David Litchfield | | Homepage: | http://www.ngssoftware.com/ | | File Size: | 3709 | | Related CVE(s): | CVE-2008-2589 | | Last Modified: | Jul 15 20:18:26 2008 | | MD5 Checksum: | c6bc69f8abb9b4ec0ab0dfecf8149c3d |
|
| /// File Name: | glsa-200807-09.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-09 - Jakub Wilk discovered a directory traversal vulnerability in the applydiff() function in the mercurial/patch.py file. Versions less than 1.0.1-r2 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2480 | | Related CVE(s): | CVE-2008-2942 | | Last Modified: | Jul 15 20:02:55 2008 | | MD5 Checksum: | 50462d81464b1af2654e6f46ece39373 |
|
| /// File Name: | dsa-1569-3.txt | Description:
| Debian Security Advisory 1569-3 - Since the previous security update, the cacti package could no longer be rebuilt from the source package. This update corrects that problem. Note that this problem does not affect regular use of the provided binary packages (.deb). | | Homepage: | http://www.debian.org/security | | File Size: | 3425 | | Related CVE(s): | CVE-2008-0783, CVE-2008-0785 | | Last Modified: | Jul 15 20:02:17 2008 | | MD5 Checksum: | 17dce37d3f17988c79c9c5f1d1a8a226 |
|
| /// File Name: | dsa-1610-1.txt | Description:
| Debian Security Advisory 1610-1 - It was discovered that gaim, an multi-protocol instant messaging client, was vulnerable to several integer overflows in its MSN protocol handlers. These could allow a remote attacker to execute arbitrary code. | | Homepage: | http://www.debian.org/security | | File Size: | 7838 | | Related CVE(s): | CVE-2008-2927 | | Last Modified: | Jul 15 18:29:36 2008 | | MD5 Checksum: | 513c6db488f5e76c826ad67226948f43 |
|
| /// File Name: | dsa-1609-1.txt | Description:
| Debian Security Advisory 1609-1 - Several local/remote vulnerabilities have been discovered in lighttpd, a fast webserver with minimal memory footprint. | | Homepage: | http://www.debian.org/security | | File Size: | 12697 | | Related CVE(s): | CVE-2008-0983, CVE-2007-3948 | | Last Modified: | Jul 15 18:29:13 2008 | | MD5 Checksum: | d5fa018fca4cff4c04e9d55217912eb0 |
|
| /// File Name: | MDVSA-2008-145.txt | Description:
| Mandriva Linux Security Advisory - An input validation flaw was found in the Bluetooth Session Description Protocol (SDP) packet parser used in the Bluez bluetooth utilities. A bluetooth device with an already-trusted relationship, or a local user registering a service record via a UNIX socket or D-Bus interface, could cause a crash and potentially execute arbitrary code with the privileges of the hcid daemon. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5882 | | Related CVE(s): | CVE-2008-2374 | | Last Modified: | Jul 15 12:44:22 2008 | | MD5 Checksum: | c256f058c19feaecba12125886f55118 |
|
| /// File Name: | MU-200807-01.txt | Description:
| The Mu Security Research team has found that repro SIP proxy/registrar version 1.3.2 suffers from a remote denial of service vulnerability. | | Author: | Mu Security research team | | Homepage: | http://labs.musecurity.com/ | | File Size: | 3370 | | Last Modified: | Jul 14 23:03:06 2008 | | MD5 Checksum: | eeb40dfbac45b032d6f1e46704df7437 |
|
| /// File Name: | USN-624-1.txt | Description:
| Ubuntu Security Notice 624-1 - Tavis Ormandy discovered that the PCRE library did not correctly handle certain in-pattern options. An attacker could cause applications linked against pcre3 to crash, leading to a denial of service. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 16603 | | Related CVE(s): | CVE-2008-2371 | | Last Modified: | Jul 14 23:01:00 2008 | | MD5 Checksum: | 6a9af15950dce94ac1b930e9bbb8fe7c |
|
| /// File Name: | emule-disclose.txt | Description:
| eMule version 0.49 appears to disclose OS user names and paths. | | Author: | Carl Hardwick | | File Size: | 673 | | Last Modified: | Jul 14 23:00:19 2008 | | MD5 Checksum: | abc3bcd4f77b346748548a21b86bc2eb |
|
| /// File Name: | FreeBSD-SA-08.06.bind.txt | Description:
| FreeBSD Security Advisory - The BIND DNS implementation does not randomize the UDP source port when doing remote queries, and the query id alone does not provide adequate randomization. | | Homepage: | http://security.freebsd.org/ | | File Size: | 6653 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 14 22:48:11 2008 | | MD5 Checksum: | 68270ba16f4122fec61835a8a609ce74 |
|
| /// File Name: | dsa-1608-1.txt | Description:
| Debian Security Advisory 1608-1 - Sergei Golubchik discovered that MySQL, a widely-deployed database server, did not properly validate optional data or index directory paths given in a CREATE TABLE statement, nor would it (under proper conditions) prevent two databases from using the same paths for data or index files. This permits an authenticated user with authorization to create tables in one database to read, write or delete data from tables subsequently created in other databases, regardless of other GRANT authorizations. | | Homepage: | http://www.debian.org/security | | File Size: | 13777 | | Related CVE(s): | CVE-2008-2079 | | Last Modified: | Jul 14 20:51:55 2008 | | MD5 Checksum: | c3744708947638838c41045af52ff9a5 |
|
| /// File Name: | MDVSA-2008-144.txt | Description:
| Mandriva Linux Security Advisory - A denial of service vulnerability was discovered in the way the OpenLDAP slapd daemon processed certain network messages. An unauthenticated remote attacker could send a specially crafted request that would crash the slapd daemon. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 12471 | | Related CVE(s): | CVE-2008-2952 | | Last Modified: | Jul 14 20:49:18 2008 | | MD5 Checksum: | e067e9635f844806f64c3081f75e1484 |
|
| /// File Name: | MDVSA-2008-138-1.txt | Description:
| Mandriva Linux Security Advisory - Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow. The updated packages have been patched to fix the issue. The OpenOffice.org package for Mandriva Corporate 3 missed the patch application due to a build error. This update fixes that. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6951 | | Related CVE(s): | CVE-2008-2152 | | Last Modified: | Jul 14 20:48:52 2008 | | MD5 Checksum: | 8bd061d9f1aa04e66a24a47d77511715 |
|
| /// File Name: | TA08-193A.txt | Description:
| Technical Cyber Security Alert TA08-193A - Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code. | | Homepage: | http://www.us-cert.gov/ | | File Size: | 5459 | | Last Modified: | Jul 11 18:11:47 2008 | | MD5 Checksum: | 9dcbc610d17f4041bd5a391dfaed7908 |
|
| /// File Name: | glsa-200807-08.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-08 - Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query source ports. Versions less than 9.4.2_p1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2898 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 11 18:09:49 2008 | | MD5 Checksum: | 455c82267a09dd03755f94fe0a3973ba |
|
| /// File Name: | dsa-1607-1.txt | Description:
| Debian Security Advisory 1607-1 - Several remote vulnerabilities have been discovered in the Iceweasel webbrowser, an unbranded version of the Firefox browser. | | Homepage: | http://www.debian.org/security | | File Size: | 10844 | | Related CVE(s): | CVE-2008-2798, CVE-2008-2799, CVE-2008-2800, CVE-2008-2801, CVE-2008-2802, CVE-2008-2803, CVE-2008-2805, CVE-2008-2807, CVE-2008-2808, CVE-2008-2809, CVE-2008-2811 | | Last Modified: | Jul 11 18:09:38 2008 | | MD5 Checksum: | bbb8961bff35f4acaf5a236fb2ad6fa0 |
|
| /// File Name: | SUSE-SA-2008-033.txt | Description:
| SUSE Security Announcement - SUSE has released updates that address the recent cache poisoning vulnerability regarding bind. | | Homepage: | http://www.suse.com | | File Size: | 16492 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 11 18:04:56 2008 | | MD5 Checksum: | 4eee8765a56b57a922fbf0148e92e177 |
|
| /// File Name: | MDVSA-2008-143.txt | Description:
| Mandriva Linux Security Advisory - An integer overflow flaw was found in Pidgin's MSN protocol handler that could allow for the execution of arbitrary code if a user received a malicious MSN message. In addition, this update provides the ability to use ICQ networks again on Mandriva Linux 2008.0, as in MDVSA-2008:103 (updated pidgin for 2008.1). The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7955 | | Related CVE(s): | CVE-2008-2927 | | Last Modified: | Jul 10 23:19:52 2008 | | MD5 Checksum: | 585f78d48977a3a6f020773f8989e0cc |
|
| /// File Name: | 07.09.08-1.txt | Description:
| iDefense Security Advisory 07.09.08 - Remote exploitation of a heap buffer overflow vulnerability in Novell Inc.'s eDirectory could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability exists due to an incorrect calculation when allocating a heap buffer to store the search parameters. By passing NULL search parameters, it is possible to overflow a heap based buffer with the string "(null)". This can result in the corruption of heap management structures, and depending on the layout of the heap, possibly function pointers. iDefense has confirmed the existence of this vulnerability in eDirectory version 8.8 SP2 for Linux. Other versions may also be affected. | | Homepage: | http://www.idefense.com/ | | File Size: | 3583 | | Related CVE(s): | CVE-2008-1809 | | Last Modified: | Jul 10 18:52:18 2008 | | MD5 Checksum: | 394dfb4afcb412feb3f9e7d2d0495f4e |
|
| /// File Name: | ZDI-08-041.txt | Description:
| A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, bound by default to TCP port 524. Flawed arithmetic applied to a user-supplied value results in an integer overflow and subsequently a complete stack smash allowing an attacker to execute arbitrary code via SEH redirection. | | Author: | Sebastian Apelt | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3388 | | Last Modified: | Jul 10 18:50:57 2008 | | MD5 Checksum: | 9cfa34b6bf73c1a556194e079dd0e523 |
|
| /// File Name: | msowa-xss.txt | Description:
| Several cross site scripting vulnerabilities were found in within Outlook Web Access (OWA) 2003/2007. An attacker can craft a malicious email which will trigger within a user's browser. Different version of OWA and different clients (Light and Premium) have different attack vectors which can result in an attacker gaining persistent control over a victim's use of Outlook Web Access. | | Author: | Michael Jordon | | Homepage: | http://www.contextis.co.uk/ | | File Size: | 3890 | | Related CVE(s): | CVE-2008-2247, CVE-2008-2248 | | Last Modified: | Jul 10 18:46:39 2008 | | MD5 Checksum: | 0592215043fc314dfab9727e7150652a |
|
| /// File Name: | glsa-200807-07.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-07 - Multiple integer overflow and buffer overflow vulnerabilities have been discovered in the X.Org X server as shipped by NX and NX Node (GLSA 200806-07). Versions less than 3.2.0-r3 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 3115 | | Last Modified: | Jul 10 04:16:59 2008 | | MD5 Checksum: | 1bb2bf12af83d9a3c428c184c6408092 |
|
| /// File Name: | glsa-200807-05.txt | Description:
| Gentoo Linux Security Advisory GLSA 200807-05 - Sean Larsson (iDefense Labs) reported an integer overflow in the function rtl_allocateMemory() in the file sal/rtl/source/alloc_global.c. Versions less than 2.4.1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 3619 | | Related CVE(s): | CVE-2008-2152 | | Last Modified: | Jul 10 04:15:57 2008 | | MD5 Checksum: | aaeba71107fa187514c6444c192de812 |
|
| /// File Name: | dsa-1606-1.txt | Description:
| Debian Security Advisory 1606-1 - It was discovered that poppler, a PDF rendering library, did not properly handle embedded fonts in PDF files, allowing attackers to execute arbitrary code via a crafted font object. | | Homepage: | http://www.debian.org/security | | File Size: | 14402 | | Related CVE(s): | CVE-2008-1693 | | Last Modified: | Jul 10 04:15:47 2008 | | MD5 Checksum: | 8e803d53553829c84b5d56c5b03e1971 |
|
| /// File Name: | zonealarm-uhoh.txt | Description:
| Apparently, the latest auto update patch KB951748 (for all versions of Windows) cuts connectivity for all users with ZoneAlarm set to 'high' security for the internet zone. | | File Size: | 1065 | | Last Modified: | Jul 10 04:08:07 2008 | | MD5 Checksum: | aeb2ff17743d1b83e29b6d8826c314d6 |
|
| /// File Name: | ISVA-080709.1.txt | Description:
| Insomnia Security Vulnerability Advisory - Microsoft SQL Server contains a buffer overflow that can be reached by causing the server to attempt a database restore from a corrupt back file. | | Author: | Brett Moore | | Homepage: | http://www.insomniasec.com/ | | File Size: | 6547 | | Last Modified: | Jul 10 04:05:47 2008 | | MD5 Checksum: | dec075832fea7950517fec9d1cce7d25 |
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
