Section: .. / 0601-advisories /
| /// File Name: |
mswGRE.txt |
Description:
|
Microsoft Windows GRE is susceptible to multiple overrun vulnerabilities when rendering WMF files.
| | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 7537 | | Last Modified: | Jan 10 05:37:54 2006 |
| MD5 Checksum: | cebfd36187a4aed9d6a6944ea95b5819 |
|
| /// File Name: |
sa18568.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for libapache-auth-ldap. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18568/ | | File Size: | 7164 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 96242760417fa1456ea082156ef40321 |
|
| /// File Name: |
usn-245-1.txt |
Description:
|
Ubuntu Security Notice USN-245-1 - Maksim Orlovich discovered that kjs, the Javascript interpreter engine used by Konqueror and other parts of KDE, did not sufficiently verify the validity of UTF-8 encoded URIs. Specially crafted URIs could trigger a buffer overflow.
| | Author: | Martin Pitt | | Homepage: | http://security.ubuntu.com/ | | File Size: | 7027 | | Last Modified: | Jan 22 23:56:22 2006 |
| MD5 Checksum: | 9cbe60ba089a7c969df34956a2d7dfeb |
|
| /// File Name: |
sa18287.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for printer-filters-utils. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18287/ | | File Size: | 7027 | | Last Modified: | Jan 3 03:31:52 2006 |
| MD5 Checksum: | 088025db2c74bbfe2f5f5c0247596c90 |
|
| /// File Name: |
TA06-018A.txt |
Description:
|
Technical Cyber Security Alert TA06-018A - Various Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service.
| | Author: | CERT | | Homepage: | http://www.us-cert.gov/cas/techalerts/TA06-018A.html | | File Size: | 6845 | | Last Modified: | Jan 25 08:57:21 2006 |
| MD5 Checksum: | af6b4e92f1561a7cc62f129e33bd63de |
|
| /// File Name: |
sa18573.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for crawl. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18573/ | | File Size: | 6707 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 32e67457ad7e7869d9ad5f67c442394d |
|
| /// File Name: |
sa18530.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for antiword. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
| | Homepage: | http://secunia.com/advisories/18530/ | | File Size: | 6704 | | Last Modified: | Jan 19 03:04:53 2006 |
| MD5 Checksum: | 220b7449fea227adee73e255c02ae815 |
|
| /// File Name: |
sa18552.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for kdelibs4c2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18552/ | | File Size: | 6703 | | Last Modified: | Jan 21 07:11:29 2006 |
| MD5 Checksum: | d714d2f2803ff55a7d40a844b025ee79 |
|
| /// File Name: |
USN-245-1.txt |
Description:
|
Ubuntu Security Notice USN-245-1 - Maksim Orlovich discovered that kjs, the Javascript interpreter engine used by Konqueror and other parts of KDE, did not sufficiently verify the validity of UTF-8 encoded URIs. Specially crafted URIs could trigger a buffer overflow. By tricking an user into visiting a web site with malicious JavaScript code, a remote attacker could exploit this to execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6574 | | Last Modified: | Jan 25 09:24:56 2006 |
| MD5 Checksum: | fedd3633d540113f44a636fcc8b7cef6 |
|
| /// File Name: |
01.09.06.txt |
Description:
|
iDefense Security Advisory 01.09.06 - Remote exploitation of a format string vulnerability in multiple versions of the mod_auth_pgsql authentication module for the Apache httpd could allow the execution of arbitrary code in the context of the httpd. iDefense has confirmed the existence of this vulnerability in version 2.0.2b1 of mod_auth_pgsql for Apache 2.x. It is suspected that earlier versions are also affected.
| | Author: | Sparfell | | Homepage: | http://www.idefense.com/ | | File Size: | 6469 | | Related CVE(s): | CVE-2005-3656 | | Last Modified: | Jan 10 06:08:14 2006 |
| MD5 Checksum: | 296e21b8d1c74e7fb476bc8f0decec46 |
|
| /// File Name: |
sa18558.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for sudo. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18558/ | | File Size: | 6443 | | Last Modified: | Jan 21 07:11:29 2006 |
| MD5 Checksum: | b55b83d1a44c92beb7374b03618ed109 |
|
| /// File Name: |
sa18493.txt |
Description:
|
Secunia Security Advisory - 82 vulnerabilities and security issues have been reported in various Oracle products. Some have an unknown impact, and others can be exploited to gain knowledge of certain information, overwrite arbitrary files, and to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/18493/ | | File Size: | 6366 | | Last Modified: | Jan 19 03:04:53 2006 |
| MD5 Checksum: | 36fc7ab261fbbb33ecb75deccff4fb5b |
|
| /// File Name: |
SSRT051058.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Secure Shell. The vulnerability could be remotely exploited to allow a remote unauthorized user to create a Denial of Service (DoS).
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 6238 | | Related CVE(s): | CVE-2005-2096, CAN-2005-2798 | | Last Modified: | Jan 11 07:09:23 2006 |
| MD5 Checksum: | 120478549624859a69f0a24def709246 |
|
| /// File Name: |
SSRT061099.txt |
Description:
|
HPSBUX02091 SSRT061099 rev.1 - A potential security vulnerability has been identified with HP-UX systems where the vulnerability may be exploited to allow a local user to increase privilege.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 5942 | | Last Modified: | Jan 27 08:21:17 2006 |
| MD5 Checksum: | bb2141ac05392e55292a8666c825d51a |
|
| /// File Name: |
thinksecureWEP.txt |
Description:
|
ThinkSECURE has discovered that certain well-known wireless chipsets, using vulnerable drivers under the Windows XP operating system and when configured to use WEP with Open Authentication, can be tricked by a 802.11-based wireless client adapter operating in master mode ("the attacker") to discard the WEP settings and negotiate a post-association connection with the attacker in the clear.
| | Author: | Christopher Low, Julian Ho | | Homepage: | http://www.securitystartshere.net/page-vulns-wccd.htm | | File Size: | 5885 | | Last Modified: | Jan 22 00:45:39 2006 |
| MD5 Checksum: | fd92f7c3e6caf7f856af5dc2c398774b |
|
| /// File Name: |
dsa-935-1.txt |
Description:
|
Debian Security Advisory DSA 935-1 - iDEFENSE reports that a format string vulnerability in mod_auth_pgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the privileges of the httpd user.
| | Author: | Michael Stone | | Homepage: | http://www.debian.org/security/ | | File Size: | 5778 | | Related CVE(s): | CVE-2005-3656 | | Last Modified: | Jan 11 06:57:05 2006 |
| MD5 Checksum: | 08427fda2faed82b3392ee03ea47141f |
|
| /// File Name: |
wccd-vuln.txt |
Description:
|
ThinkSECURE has discovered that certain well-known wireless chipsets, using vulnerable drivers under the Windows XP operating system and when configured to use WEP with Open Authentication, can be tricked by a 802.11-based wireless client adapter operating in master mode ("the attacker") to discard the WEP settings and negotiate a post- association connection with the attacker in the clear.
| | Author: | ThinkSECURE | | Homepage: | http://www.securitystartshere.net/page-vulns-wccd.htm | | File Size: | 5684 | | Last Modified: | Jan 22 23:01:21 2006 |
| MD5 Checksum: | 2d6a6971990fbf6c6f64e6c1e24758cb |
|
| /// File Name: |
CAID33778.txt |
Description:
|
The CA iGateway common component, which is included with several CA products for UNIX/Linux/Windows platforms, contains a buffer overflow vulnerability that can allow arbitrary code to be executed remotely with SYSTEM privileges on Windows, and cause iGateway component failure on UNIX and Linux platforms.
| | Author: | Ken Williams | | Homepage: | http://supportconnect.ca.com/ | | File Size: | 5650 | | Last Modified: | Jan 29 23:15:05 2006 |
| MD5 Checksum: | 6d70db55dc4c564b0ec58ee8e5214e32 |
|
| /// File Name: |
sa18266.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for fetchmail. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/18266/ | | File Size: | 5549 | | Last Modified: | Jan 4 05:21:16 2006 |
| MD5 Checksum: | fe86d118f0d88f527a0f72810078ae77 |
|
| /// File Name: |
sa18348.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for libapache2-mod-auth-pgsql. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18348/ | | File Size: | 5453 | | Last Modified: | Jan 9 19:23:14 2006 |
| MD5 Checksum: | d6541f7b4979cd1007a9f5be325a37f6 |
|
| /// File Name: |
dsa-939-1.txt |
Description:
|
Debian Security Advisory DSA 939-1 - Daniel Drake discovered a problem in fetchmail, an SSL enabled POP3, APOP, IMAP mail gatherer/forwarder, that can cause a crash when the program is running in multidrop mode and receives messages without headers.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5430 | | Related CVE(s): | CVE-2005-4348 | | Last Modified: | Jan 15 18:03:35 2006 |
| MD5 Checksum: | d2595ed978f31445e0dcc771e2bbcc2e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
