Section: .. / 0701-advisories /
| /// File Name: |
MDKSA-2007-008.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in the RPC library in Kerberos 1.4.x and 1.5.x as used in the kadmind administration daemon calls an uninitialized function pointer in freed memory, which could allow a remote attacker to cause a Denial of Service and possibly execute arbitrary code via unspecified vectors.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7431 | | Related CVE(s): | CVE-2006-6143 | | Last Modified: | Jan 13 18:48:08 2007 |
| MD5 Checksum: | 20e4008e739a41c961b16595b8ec66fe |
|
| /// File Name: |
MDKSA-2007-009.txt |
Description:
|
Mandriva Linux Security Advisory - KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server, which causes an assertion failure and results in a NULL pointer dereference.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10596 | | Related CVE(s): | CVE-2006-6811 | | Last Modified: | Jan 13 18:48:52 2007 |
| MD5 Checksum: | d1b3c2f9ac91203b9ba59ea85e04b482 |
|
| /// File Name: |
MDKSA-2007-013.txt |
Description:
|
Mandriva Linux Security Advisory - An array index error in the URI parser in neon 0.26.0 to 0.26.2 could possibly allow remote malicious servers to cause a crash via a URI with non-ASCII characters. This vulnerability may only exist on 64bit systems.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2799 | | Related CVE(s): | CVE-2007-0157 | | Last Modified: | Jan 13 20:06:09 2007 |
| MD5 Checksum: | 08a754e1e98b6355e11aa33ba8e648ad |
|
| /// File Name: |
MDKSA-2007-014.txt |
Description:
|
Mandriva Linux Security Advisory - hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3033 | | Related CVE(s): | CVE-2006-6899 | | Last Modified: | Jan 15 22:40:07 2007 |
| MD5 Checksum: | 927d1fc58efb749cd44ed4b33ea19cf4 |
|
| /// File Name: |
MDKSA-2007-015.txt |
Description:
|
Mandriva Linux Security Advisory - SQL injection vulnerability in Cacti 0.8.6i and earlier, when register_argc_argv is enabled, allows remote attackers to execute arbitrary SQL commands via the second or third arguments to cmd.php. NOTE: this issue can be leveraged to execute arbitrary commands since the SQL query results are later used in the polling_items array and popen function.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2739 | | Related CVE(s): | CVE-2006-6799 | | Last Modified: | Jan 15 22:40:52 2007 |
| MD5 Checksum: | 2fbdaa43c4d9bbfc31b66278eae91103 |
|
| /// File Name: |
MDKSA-2007-016.txt |
Description:
|
Mandriva Linux Security Advisory - Fetchmail before 6.3.6-rc4 does not properly enforce TLS and may transmit cleartext passwords over unsecured links if certain circumstances occur, which allows remote attackers to obtain sensitive information via man-in-the-middle (MITM) attacks.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5447 | | Related CVE(s): | CVE-2006-5687 | | Last Modified: | Jan 15 22:41:31 2007 |
| MD5 Checksum: | 8e73e1e6b0c15576100152bc317fc766 |
|
| /// File Name: |
MDKSA-2007-017.txt |
Description:
|
Mandriva Linux Security Advisory - The ftp_syst function in ftp-basic.c in Free Software Foundation (FSF) GNU wget 1.10.2 allows remote attackers to cause a denial of service (application crash) via a malicious FTP server with a large number of blank 220 responses to the SYST command.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3837 | | Related CVE(s): | CVE-2006-6719 | | Last Modified: | Jan 19 19:25:28 2007 |
| MD5 Checksum: | d06e520a25b9702ff4feb96db92d2c79 |
|
| /// File Name: |
MDKSA-2007-018.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 9239 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:38:03 2007 |
| MD5 Checksum: | 69ae94aa93c138862434d5b655b9884b |
|
| /// File Name: |
MDKSA-2007-019.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2980 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:39:44 2007 |
| MD5 Checksum: | dfb3c9b72fb6e229783449296053ebdf |
|
| /// File Name: |
MDKSA-2007-020.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4785 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:40:38 2007 |
| MD5 Checksum: | 23e158136694f8679874d5f1a214e74b |
|
| /// File Name: |
MDKSA-2007-021.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3552 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:41:23 2007 |
| MD5 Checksum: | 2d0f8533ae35bd43147f0bbb00709b06 |
|
| /// File Name: |
MDKSA-2007-022.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 13298 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 19 22:41:46 2007 |
| MD5 Checksum: | 2b10bfbfa6780f14a32f6897c897bad2 |
|
| /// File Name: |
MDKSA-2007-023.txt |
Description:
|
Mandriva Linux Security Advisory - Stack-based buffer overflow in the glibtop_get_proc_map_s function in libgtop before 2.14.6 (libgtop2) allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a process with a long filename that is mapped in its address space, which triggers the overflow in gnome-system-monitor.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2876 | | Related CVE(s): | CVE-2007-0235 | | Last Modified: | Jan 19 22:42:29 2007 |
| MD5 Checksum: | 7816059ef8c1c6527a8a2d209fca1199 |
|
| /// File Name: |
MDKSA-2007-024.txt |
Description:
|
Mandriva Linux Security Advisory - The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in KDE before 3.5.5, and other products, allows remote attackers to have an unknown impact, possibly including denial of service (infinite loop), arbitrary code execution, or memory corruption, via a PDF file with a crafted catalog dictionary or a crafted Pages attribute that references an invalid page tree node.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 21333 | | Related CVE(s): | CVE-2007-0104 | | Last Modified: | Jan 24 01:35:14 2007 |
| MD5 Checksum: | 02aec3e2f8ff6d92ad9da7bf1afb0ae7 |
|
| /// File Name: |
MDKSA-2007-025.txt |
Description:
|
Mandriva Linux Security Advisory - A slew of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7667 | | Related CVE(s): | CVE-2005-3272, CVE-2006-0741, CVE-2006-2446, CVE-2006-3741, CVE-2006-4145, CVE-2006-4535, CVE-2006-4813, CVE-2006-4997, CVE-2006-5619, CVE-2006-5749, CVE-2006-5754, CVE-2006-6106 | | Last Modified: | Jan 24 01:45:58 2007 |
| MD5 Checksum: | 9dc785a338a7a22a6ebea219e0f480e0 |
|
| /// File Name: |
MDKSA-2007-026.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in squid was discovered that could be remotely exploited by using a special ftp:// URL. Another Denial of Service vulnerability was discovered in squid 2.6 that allows remote attackers to crash the server by causing an external_acl_queue overload. Additionally, a bug in squid 2.6 for max_user_ip handling in ntlm_auth has been corrected.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5043 | | Related CVE(s): | CVE-2007-0247, CVE-2007-0248 | | Last Modified: | Jan 24 01:49:43 2007 |
| MD5 Checksum: | 0991f5bc1631bd1bb6346665338731d8 |
|
| /// File Name: |
MDKSA-2007-027.txt |
Description:
|
Mandriva Linux Security Advisory - Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows attackers to execute arbitrary code via unknown vectors. XINE 0.99.4 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain M3U file that contains a long #EXTINF line and contains format string specifiers in an invalid udp:// URI, possibly a variant of CVE-2007-0017.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3863 | | Related CVE(s): | CVE-2007-0254, CVE-2007-0255 | | Last Modified: | Jan 26 23:23:28 2007 |
| MD5 Checksum: | 9d6e9715986128f1272f30d7cbe75298 |
|
| /// File Name: |
MDKSA-2007-028.txt |
Description:
|
Mandriva Linux Security Advisory - A buffer overflow in ulogd has unknown impact and attack vectors related to "improper string length calculations."
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3064 | | Related CVE(s): | CVE-2007-0460 | | Last Modified: | Jan 29 11:21:21 2007 |
| MD5 Checksum: | b92ae7566f3e0930160b67b19694cbbf |
|
| /// File Name: |
MDKSA-2007-029.txt |
Description:
|
Mandriva Linux Security Advisory - The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service (crash) via malformed HTTP headers, probably involving missing fields or values.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4046 | | Related CVE(s): | CVE-2006-5876 | | Last Modified: | Jan 29 11:22:13 2007 |
| MD5 Checksum: | 09cffdbfe97db78837e0fc7b847a5448 |
|
| /// File Name: |
MDKSA-2007-030.txt |
Description:
|
Mandriva Linux Security Advisory - The use-after-free vulnerability in ISC BIND 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (named daemon crash) via unspecified vectors that cause named to "dereference a freed fetch context." ISC BIND 9.0.x, 9.1.x, 9.2.0 up to 9.2.7, 9.3.0 up to 9.3.3, 9.4.0a1 up to 9.4.0a6, 9.4.0b1 up to 9.4.0b4, 9.4.0rc1, and 9.5.0a1 (Bind Forum only) allows remote attackers to cause a denial of service (exit) via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5936 | | Related CVE(s): | CVE-2007-0493, CVE-2007-0494 | | Last Modified: | Jan 30 22:59:17 2007 |
| MD5 Checksum: | d06c0a7f871f388b7272710bf3a0e971 |
|
| /// File Name: |
mhw-hpj.txt |
Description:
|
Microsoft Help Workshop is prone to stack based memory corruption vulnerability during processing (.HPJ) help project files. This vulnerability could be exploited to execute arbitrary code within the remote user context.
| | Author: | porkythepig | | Related Exploit: | hpj-x01.cpp | | File Size: | 7693 | | Last Modified: | Jan 19 23:01:19 2007 |
| MD5 Checksum: | 10e385a63f772a786eac3b5a0a126d62 |
|
| /// File Name: |
MITKRB5-SA-2006-002.txt |
Description:
|
MIT krb5 Security Advisory 2006-002 - The Kerberos administration daemon, "kadmind", can execute arbitrary code by calling through a function pointer located in freed memory. This vulnerability results from bugs in the server-side portion of the RPC library. Third-party server applications written using the RPC library provided with MIT krb5 may also be vulnerable.
| | Homepage: | http://web.mit.edu/ | | File Size: | 6594 | | Related CVE(s): | CVE-2006-6143 | | Last Modified: | Jan 13 18:09:08 2007 |
| MD5 Checksum: | 1867d707069ae4cb9ef850803d38994e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
