Section: .. / 0608-advisories /
| /// File Name: |
sa21531.txt |
Description:
|
Secunia Security Advisory - Crackers_Child has reported a vulnerability in the mosListMessenger component for Mambo, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21531/ | | File Size: | 2183 | | Last Modified: | Aug 18 00:12:30 2006 |
| MD5 Checksum: | c12d705e29dc30aeb6c4f56c5a81314a |
|
| /// File Name: |
sa21532.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to trick users into disclosing sensitive information, disclose system information, bypass certain security restrictions, conduct cross-site scripting and HTTP response smuggling attacks, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21532/ | | File Size: | 17564 | | Last Modified: | Aug 18 00:12:30 2006 |
| MD5 Checksum: | 007f2d2f3a8f9ffd6f5ef2ff331b3281 |
|
| /// File Name: |
sa21539.txt |
Description:
|
Secunia Security Advisory - k1tk4t has discovered a vulnerability in the Coppermine component for Mambo, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/21539/ | | File Size: | 2414 | | Last Modified: | Aug 18 00:12:30 2006 |
| MD5 Checksum: | bb48b2b45930732c9e95376a1941714a |
|
| /// File Name: |
linksysWRT54g.txt |
Description:
|
The Linksys WRT54g home router is susceptible to authentication bypass and cross site request forgery flaws.
| | Author: | Ginsu Rabbit | | File Size: | 3503 | | Last Modified: | Aug 18 00:12:14 2006 |
| MD5 Checksum: | 5dd9504b7b8845abcb52342a55685da3 |
|
| /// File Name: |
glsa-200608-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-08 - Evgeny Legerov discovered a vulnerability in GnuPG that when certain packets are handled an integer overflow may occur. Versions less than 1.4.5 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2546 | | Last Modified: | Aug 18 00:10:26 2006 |
| MD5 Checksum: | 383b71fb55b7dc2aa6c566a6e407c3a4 |
|
| /// File Name: |
glsa-200608-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-07 - Tavis Ormandy of the Google Security Team discovered several heap and stack buffer overflows and other flaws in libTIFF. The affected parts include the TIFFFetchShortPair(), TIFFScanLineSize() and EstimateStripByteCounts() functions, and the PixarLog and NeXT RLE decoders. Versions less than 3.8.2-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3149 | | Last Modified: | Aug 17 23:45:12 2006 |
| MD5 Checksum: | c30405f980da7c413bf46e27ad797940 |
|
| /// File Name: |
CAID-34509.txt |
Description:
|
CAID 34509 - CA eTrust Antivirus WebScan versions 1.1.0.1047 and below are susceptible to arbitrary code execution flaws.
| | Author: | Ken Williams | | Homepage: | http://ca.com/ | | File Size: | 4172 | | Last Modified: | Aug 17 23:40:24 2006 |
| MD5 Checksum: | 567e78dd512f3c4337f7f492afd501da |
|
| /// File Name: |
dsa-1143-1.txt |
Description:
|
Debian Security Advisory 1143-1 - Justin Winschief and Andrew Steets discovered a bug in dhcp, the DHCP server for automatic IP address assignment, which causes the server to unexpectedly exit.
| | Homepage: | http://www.debian.org/security | | File Size: | 8730 | | Related CVE(s): | CVE-2006-3122 | | Last Modified: | Aug 17 23:31:01 2006 |
| MD5 Checksum: | d97d24ce3aad6863d5c66bba6cf11dc8 |
|
| /// File Name: |
dsa-1142-1.txt |
Description:
|
Debian Security Advisory 1142-1 - Luigi Auriemma discovered missing boundary checks in freeciv, a clone of the well known Civilization game, which can be exploited by remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 9807 | | Related CVE(s): | CVE-2006-3913 | | Last Modified: | Aug 17 05:13:30 2006 |
| MD5 Checksum: | 291f48d2b008d9992b65551ab6fc692c |
|
| /// File Name: |
glsa-200608-06.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-06 - Courier MTA has fixed a security issue relating to usernames containing the = character, causing high CPU utilization. Versions less than 0.53.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2491 | | Last Modified: | Aug 17 05:12:27 2006 |
| MD5 Checksum: | 7fb0b52e9b717b4447b4aacf54710c16 |
|
| /// File Name: |
glsa-200608-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-05 - LibVNCServer fails to properly validate protocol types effectively letting users decide what protocol to use, such as Type 1 - None. LibVNCServer will accept this security type, even if it is not offered by the server. Versions less than 0.8.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2619 | | Last Modified: | Aug 17 05:12:09 2006 |
| MD5 Checksum: | 662e3e9ab748c3420baefd516d1fbc67 |
|
| /// File Name: |
dsa-1141-1.txt |
Description:
|
Debian Security Advisory 1141-1 - Evgeny Legerov discovered that overly large comments can crash gnupg, the GNU privacy guard.
| | Homepage: | http://www.debian.org/security | | File Size: | 8694 | | Related CVE(s): | CVE-2006-3746 | | Last Modified: | Aug 17 05:12:01 2006 |
| MD5 Checksum: | 00d390b185e3b3aab07fdbfecf595f61 |
|
| /// File Name: |
adv07-chaoscount.txt |
Description:
|
CounterChaos versions 0.48c and below suffer from a SQL injection vulnerability.
| | Author: | Tamriel | | File Size: | 1174 | | Last Modified: | Aug 17 05:10:32 2006 |
| MD5 Checksum: | 2533d87d831531572d45c45c6f586087 |
|
| /// File Name: |
adv06-chaosgb.txt |
Description:
|
GaesteChaos versions 0.2 and below suffer from SQL injection and cross site scripting vulnerabilities.
| | Author: | Tamriel | | File Size: | 1333 | | Last Modified: | Aug 17 05:09:47 2006 |
| MD5 Checksum: | 212e3fe99d5b78073086556f5b6bb59f |
|
| /// File Name: |
adv08-chaosgh.txt |
Description:
|
GeheimChaos versions 0.5 and below suffer from multiple SQL injection vulnerabilities.
| | Author: | Tamriel | | File Size: | 3204 | | Last Modified: | Aug 17 05:08:37 2006 |
| MD5 Checksum: | 41da18e9c1f9e6482333aa3b7e45959d |
|
| /// File Name: |
glsa-200608-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-04 - The Mozilla Foundation has reported numerous security vulnerabilities related to Mozilla Thunderbird. Versions less than 1.5.0.5 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 5939 | | Last Modified: | Aug 17 04:58:01 2006 |
| MD5 Checksum: | 1b426d46dd37c36117b4522e946d22e7 |
|
| /// File Name: |
glsa-200608-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-03 - The Mozilla Foundation has reported numerous security vulnerabilities related to Mozilla Firefox. Versions less than 1.5.0.5 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 6665 | | Last Modified: | Aug 17 04:57:00 2006 |
| MD5 Checksum: | a1b52bdc95fdd950006e489bfd251dcd |
|
| /// File Name: |
SSRT051024.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in the Xserver running on HP-UX. The vulnerability could be exploited by a local user to execute arbitrary code with the privileges of the Xserver.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 5997 | | Related CVE(s): | CVE-2005-2495 | | Last Modified: | Aug 17 04:56:48 2006 |
| MD5 Checksum: | 176289b5876730f19b9e82923e3d6466 |
|
| /// File Name: |
glsa-200608-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200608-02 - The Mozilla Foundation has reported numerous security vulnerabilities related to Mozilla SeaMonkey. Versions less than 1.0.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 6422 | | Last Modified: | Aug 17 04:49:38 2006 |
| MD5 Checksum: | 28cbf2af6b70fdb2ee247e7ad0befd42 |
|
| /// File Name: |
dsa-1140-1.txt |
Description:
|
Debian Security Advisory 1140-1 - Evgeny Legerov discovered that overly large comments can crash gnupg.
| | Homepage: | http://www.debian.org/security | | File Size: | 4821 | | Related CVE(s): | CVE-2006-3746 | | Last Modified: | Aug 17 04:49:23 2006 |
| MD5 Checksum: | 891b77c9face00b999bcfcca482d1aff |
|
| /// File Name: |
dsa-1139-1.txt |
Description:
|
Debian Security Advisory 1139-1 - It was discovered that the interpreter for the Ruby language does not properly maintain "safe levels" for aliasing, directory accesses and regular expressions, which might lead to a bypass of security restrictions.
| | Homepage: | http://www.debian.org/security | | File Size: | 29384 | | Related CVE(s): | CVE-2006-3694 | | Last Modified: | Aug 17 04:48:48 2006 |
| MD5 Checksum: | 10060bee5ea1505e531710d0081f01f9 |
|
| /// File Name: |
DRUPAL-SA-2006-011.txt |
Description:
|
Drupal security advisory DRUPAL-SA-2006-011: A malicious user can execute a cross site scripting attack by enticing someone to visit a Drupal site via a specially crafted link. Versions 4.6 and 4.7 are affected.
| | Author: | Uwe Hermann | | Homepage: | http://drupal.org/security | | File Size: | 2323 | | Last Modified: | Aug 17 04:46:27 2006 |
| MD5 Checksum: | 63da241f456cfc9b75e2ca8325df4bbe |
|
| /// File Name: |
major_rls27.txt |
Description:
|
Toenda CMS versions 1.0.3 stable and below and version 1.1 suffer from a cross site scripting flaw.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2163 | | Last Modified: | Aug 17 04:31:53 2006 |
| MD5 Checksum: | 3fa276ed1a5dd003b3fe74fc1ab1330e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
