Section: .. / 0707-advisories /
| /// File Name: |
sa26084.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for mod_perl. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26084/ | | File Size: | 10589 | | Last Modified: | Jul 19 04:44:59 2007 |
| MD5 Checksum: | efcb2b2084116f962c016ad69654e777 |
|
| /// File Name: |
sa26082.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Netscape, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26082/ | | File Size: | 2624 | | Last Modified: | Jul 19 04:44:59 2007 |
| MD5 Checksum: | 4c28f94f759dde2a44b1a1f5219c3205 |
|
| /// File Name: |
sa26080.txt |
Description:
|
Secunia Security Advisory - Edi Strosar has reported a vulnerability in Element CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26080/ | | File Size: | 2166 | | Last Modified: | Jul 19 04:44:59 2007 |
| MD5 Checksum: | eb5c2aa041a9f7b897d49ae421e6efbd |
|
| /// File Name: |
sa26073.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update of mysql, mysql-bench, and mysql-server. This fixes a vulnerability and various security issues, which can be exploited by malicious users to gain escalated privileges, bypass certain security restrictions and cause a DoS (Denial of Service) or malicious people to cause a DoS.
| | Homepage: | http://secunia.com/advisories/26073/ | | File Size: | 2395 | | Last Modified: | Jul 19 04:44:59 2007 |
| MD5 Checksum: | 3c6a71aa765e552a1493cac333666532 |
|
| /// File Name: |
ASA-2007-017.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk STUN implementation in the RTP stack has a remotely exploitable crash vulnerability. A pointer may run past accessible memory if Asterisk receives a specially crafted STUN packet on an active RTP port. The code that parses the incoming STUN packets incorrectly checks that the length indicated in the STUN attribute and the size of the STUN attribute header does not exceed the available data. This will cause the data pointer to run past accessible memory and when accessed will cause a crash.
| | Author: | Joshua Colp | | Homepage: | http://www.asterisk.org/security | | File Size: | 8963 | | Related CVE(s): | CVE-2007-3765 | | Last Modified: | Jul 18 07:06:14 2007 |
| MD5 Checksum: | 7406ca12249f52e17bf976b8271095c2 |
|
| /// File Name: |
ASA-2007-016.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk Skinny channel driver, chan_skinny, has a remotely exploitable crash vulnerability. A segfault can occur when Asterisk receives a packet where the claimed length of the data is between 0 and 3, followed by length + 4 or more bytes, due to an overly large memcpy. The side effects of this extremely large memcpy have not been investigated.
| | Author: | Jason Parker | | Homepage: | http://www.asterisk.org/security | | File Size: | 9431 | | Related CVE(s): | CVE-2007-3764 | | Last Modified: | Jul 18 07:04:24 2007 |
| MD5 Checksum: | 7910ebeb465f0d124f401f0746e0426b |
|
| /// File Name: |
ASA-2007-015.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk IAX2 channel driver, chan_iax2, has a remotely exploitable crash vulnerability. A NULL pointer exception can occur when Asterisk receives a LAGRQ or LAGRP frame that is part of a valid session and includes information elements. The session used to exploit this issue does not have to be authenticated. It can simply be a NEW packet sent with an invalid username. The code that parses the incoming frame correctly parses the information elements of IAX frames. It then sets a pointer to NULL to indicate that there is not a raw data payload associated with this frame. However, it does not set the variable that indicates the number of bytes in the raw payload back to zero. Since the raw data length is non-zero, the code handling LAGRQ and LAGRP frames tries to copy data from a NULL pointer, causing a crash.
| | Author: | Russell Bryant | | Homepage: | http://www.asterisk.org/security | | File Size: | 9743 | | Related CVE(s): | CVE-2007-3763 | | Last Modified: | Jul 18 07:02:38 2007 |
| MD5 Checksum: | 099b772e3a144709929f99b4de56abb1 |
|
| /// File Name: |
ASA-2007-014.txt |
Description:
|
Asterisk Project Security Advisory - The Asterisk IAX2 channel driver, chan_iax2, has a remotely exploitable stack buffer overflow vulnerability. It occurs when chan_iax2 is passed a voice or video frame with a data payload larger than 4 kB. This is exploitable by sending a very large RTP frame to an active RTP port number used by Asterisk when the other end of the call is an IAX2 channel. Exploiting this issue can cause a crash or allow arbitrary code execution on a remote machine.
| | Author: | Russell Bryant | | Homepage: | http://www.asterisk.org/security | | File Size: | 12473 | | Related CVE(s): | CVE-2007-3762 | | Last Modified: | Jul 18 06:58:02 2007 |
| MD5 Checksum: | 174e0e345f1492e575b88202751de7ef |
|
| /// File Name: |
07.17.07-2.txt |
Description:
|
iDefense Security Advisory 07.17.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Computer Associates International Inc.'s (CA) Threat Manager allows attackers to execute arbitrary code with SYSTEM privileges. When Computer Associates Threat Manager is installed, it also installs the Alert Notification Server (alert.exe) which registers an RPC interface with the GUID 3d742890-397c-11cf-9bf1-00805f88cb72. This interface contains stack-based buffer overflow vulnerabilities within the handling code for several RPC operation codes. iDefense confirmed that the Alert Notification Server included with Computer Associates International Inc.'s eTrust Integrated Threat Management r8 for Windows is vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3481 | | Related CVE(s): | CVE-2007-3825 | | Last Modified: | Jul 18 06:31:52 2007 |
| MD5 Checksum: | 071ca65929f073cb5606d8cc87efc22d |
|
| /// File Name: |
07.17.07-1.txt |
Description:
|
iDefense Security Advisory 07.17.07 - Remote exploitation of a denial of service vulnerability within version 5.1.0.2 of IBM Corp.'s Tivoli Provisioning Manager for OS Deployment allows attackers to deny service to all product functionality. This vulnerability specifically exists in the TFTP protocol implementation. When processing a read request (RRQ), an integer division by zero error can be triggered by supplying an invalid "blksize" argument. This exception is not handled and will result in the rembo.exe service terminating. iDefense has confirmed the existence of this vulnerability in version 5.1.0.2 of IBM Corp.'s Tivoli Provisioning Manager for OS Deployment. Version 5.1.0.116 was tested and found not to be vulnerable.
| | Author: | Manuel Santamarina Suarez | | Homepage: | http://www.idefense.com/ | | File Size: | 3699 | | Related CVE(s): | CVE-2007-3268 | | Last Modified: | Jul 18 06:29:54 2007 |
| MD5 Checksum: | 187130b0ce36ace72f8f29c8f4ff40e6 |
|
| /// File Name: |
quickersite-xss.txt |
Description:
|
QuickerSite version 1.7.2 suffers from a cross site scripting vulnerability.
| | Author: | GeFORC3 | | Homepage: | http://WwW.GeFORC3.Org | | File Size: | 441 | | Last Modified: | Jul 18 06:28:04 2007 |
| MD5 Checksum: | 7a7720df07a35c5da1f6f61f9ede37af |
|
| /// File Name: |
USN-488-1.txt |
Description:
|
Ubuntu Security Notice 488-1 - Alex Solovey discovered that mod_perl did not correctly validate certain regular expression matches. A remote attacker could send a specially crafted request to a web application using mod_perl, causing the web server to monopolize CPU resources. This could lead to a remote denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10253 | | Related CVE(s): | CVE-2007-1349 | | Last Modified: | Jul 18 06:16:11 2007 |
| MD5 Checksum: | 9554903b8b1bd33beb787ddc2290a529 |
|
| /// File Name: |
USN-487-1.txt |
Description:
|
Ubuntu Security Notice 487-1 - It was discovered that Dovecot, when configured to use non-system-user spools and compressed folders, would allow directory traversals in mailbox names. Remote authenticated users could potentially read email owned by other users.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 8965 | | Related CVE(s): | CVE-2007-2231 | | Last Modified: | Jul 18 06:15:00 2007 |
| MD5 Checksum: | 1a395f4269147a818dd83e8c739a0749 |
|
| /// File Name: |
USN-485-1.txt |
Description:
|
Ubuntu Security Notice 485-1 - It was discovered that the PHP xmlrpc extension did not correctly check heap memory allocation sizes. A remote attacker could send a specially crafted request to a PHP application using xmlrpc and execute arbitrary code as the Apache user. Stefan Esser discovered a flaw in the random number initialization of the PHP SOAP extension. This could lead to remote attackers being able to predict certain elements of the authentication mechanism.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 39606 | | Related CVE(s): | CVE-2007-1864, CVE-2007-2728 | | Last Modified: | Jul 18 06:11:30 2007 |
| MD5 Checksum: | 54166507fb3399332f713fbdf8eaeafc |
|
| /// File Name: |
USN-484-1.txt |
Description:
|
Ubuntu Security Notice 484-1 - It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14903 | | Related CVE(s): | CVE-2007-3564 | | Last Modified: | Jul 18 06:10:08 2007 |
| MD5 Checksum: | 2a3136b383d581b9ea3888a39dbd7f77 |
|
| /// File Name: |
mailmarshall-password.txt |
Description:
|
The MailMarshal Spam Quarantine version 6.2.0.x HTTP interface password reset facility is vulnerable to a SQL buffer truncation attack. The vulnerability could be exploited to reset and retrieve any user account. The attacker would require prior knowledge of the users email address.
| | Author: | Gary O'Leary-Steele | | Homepage: | http://www.sec-1.com/ | | File Size: | 2591 | | Related CVE(s): | CVE-2007-3796 | | Last Modified: | Jul 18 05:59:00 2007 |
| MD5 Checksum: | 1195fa7209354574609552bc888ef297 |
|
| /// File Name: |
sa26089.txt |
Description:
|
Secunia Security Advisory - GeFORC3 has reported some vulnerabilities in husrevforum, which can be exploited by malicious people to conduct SQL injection or cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26089/ | | File Size: | 2611 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | cef1634e500276fb18011adff44b3b41 |
|
| /// File Name: |
sa26086.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been discovered in Trillian, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26086/ | | File Size: | 2899 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 7b2251ae748defc385cd075141cccba3 |
|
| /// File Name: |
sa26081.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for xorg-x11. This fixes a vulnerability, which can be exploited by malicious, local users to perform actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/26081/ | | File Size: | 2280 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 4d581c75749331c1e9bc6cfeabb40285 |
|
| /// File Name: |
sa26079.txt |
Description:
|
Secunia Security Advisory - GeFORC3 has reported a vulnerability in ASP Ziyaretci Defteri, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/26079/ | | File Size: | 2427 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | ba52415b5362818f01b5887c0de99f29 |
|
| /// File Name: |
sa26077.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Zoph, which can be exploited by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26077/ | | File Size: | 2332 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 86a879e1d2e423413147d9ab706a21fb |
|
| /// File Name: |
sa26076.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for tomcat. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26076/ | | File Size: | 2259 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 23c9e36b594a4101807736e6cdd2a40f |
|
| /// File Name: |
sa26075.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for perl-Net-DNS. This fixes a vulnerability, which can be exploited to poison the DNS cache or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26075/ | | File Size: | 2081 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 6efe7d7968a4b233d04c7e5c2ce81608 |
|
| /// File Name: |
sa26071.txt |
Description:
|
Secunia Security Advisory - m4t4d00r has discovered a vulnerability in Jasmine CMS, which can be exploited by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/26071/ | | File Size: | 2408 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 45362f232d58eed8c172336e260ecbbe |
|
| /// File Name: |
sa26064.txt |
Description:
|
Secunia Security Advisory - A potential vulnerability has been reported in Kaspersky Anti-Virus for Check Point FireWall-1, which may be exploited to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26064/ | | File Size: | 2209 | | Last Modified: | Jul 18 05:40:34 2007 |
| MD5 Checksum: | 04d2e67cb2121ac8a1a61e37a2abc5c0 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
