Section: .. / 0709-advisories /
| /// File Name: |
USN-513-1.txt |
Description:
|
Ubuntu Security Notice 513-1 - Dirk Mueller discovered that UTF8 strings could be made to cause a small buffer overflow. A remote attacker could exploit this by sending specially crafted strings to applications that use the Qt3 library for UTF8 processing, potentially leading to arbitrary code execution with user privileges, or a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 39342 | | Related CVE(s): | CVE-2007-4137 | | Last Modified: | Sep 18 22:43:07 2007 |
| MD5 Checksum: | acacaa6df6c5f832cadfd25c6d90be13 |
|
| /// File Name: |
sa26791.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for avahi. This fixes a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26791/ | | File Size: | 6337 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | 1847c62397cb8527e9ac12a5a349c9a8 |
|
| /// File Name: |
sa26816.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26816/ | | File Size: | 2594 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | a37e916cd8c5e33fa5966e4d9b58ffdd |
|
| /// File Name: |
sa26822.txt |
Description:
|
Secunia Security Advisory - Trustix has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or bypass certain security restrictions, and by malicious people to cause a DoS, conduct cross-site scripting attacks, or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26822/ | | File Size: | 11466 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | 50fce91fad0516010a7c06348116a8bb |
|
| /// File Name: |
sa26832.txt |
Description:
|
Secunia Security Advisory - j00ru has discovered a vulnerability in WinImage, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26832/ | | File Size: | 2533 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | d921b41b694dd5d2396e1c301c0b767b |
|
| /// File Name: |
sa26835.txt |
Description:
|
Secunia Security Advisory - Adam Baldwin has reported a vulnerability and a security issue in RemoteDocs R-Viewer, which potentially can be exploited by malicious, local users to disclose sensitive information and by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26835/ | | File Size: | 2747 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | fa14a0e721422938bca9253ffada9f17 |
|
| /// File Name: |
sa26839.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26839/ | | File Size: | 2388 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | 192924636f23d78fd592dd5643998695 |
|
| /// File Name: |
sa26854.txt |
Description:
|
Secunia Security Advisory - malibu.r has reported a vulnerability in b1gMail, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26854/ | | File Size: | 2299 | | Last Modified: | Sep 18 21:26:49 2007 |
| MD5 Checksum: | 72271bc398a7a32fd201eaac9f8c8e62 |
|
| /// File Name: |
sa26838.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for multiple php packages. This fixes some vulnerabilities, where some have unknown impacts and others can be exploited by malicious, local users and malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/26838/ | | File Size: | 2515 | | Last Modified: | Sep 18 21:26:32 2007 |
| MD5 Checksum: | 767e76b762d3eed3d42952e4e0ef6bd2 |
|
| /// File Name: |
ssdt-multi.txt |
Description:
|
It appears that a number of vulnerabilities have been discovered in implementations of SSDT hooks in many different products. Vulnerable products range from BlackICE, Norton Internet Security, Process Monitor, and more.
| | Author: | Matousec - Transparent Security Research | | Homepage: | http://www.matousec.com/ | | File Size: | 1302 | | Last Modified: | Sep 18 13:14:29 2007 |
| MD5 Checksum: | c6c31abec3a9a6656c80d4c0297d331c |
|
| /// File Name: |
zen-overflow.txt |
Description:
|
Creative Zen Vision M MediaExplorer version 5.x suffers from a buffer overflow vulnerability.
| | Author: | TaMBarUS | | File Size: | 2918 | | Last Modified: | Sep 18 13:10:46 2007 |
| MD5 Checksum: | 45779845c98cc3cdddeabaecde676700 |
|
| /// File Name: |
MDKSA-2007-185.txt |
Description:
|
Mandriva Linux Security Advisory - The Avahi daemon in 0.6.20 and previous allows attackers to cause a denial of service via empty TXT data over D-Bus, which triggers an assert error.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10933 | | Related CVE(s): | CVE-2007-3372 | | Last Modified: | Sep 18 13:06:16 2007 |
| MD5 Checksum: | f55b8b65bf1d9bb5a32742e3cae9706d |
|
| /// File Name: |
MDKSA-2007-184.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in Cacti 0.8.6i and earlier versions allows remote authenticated users to cause a denial of service (CPU consumption) via large values of the graph_start, graph_end, graph_height, or graph_width parameters.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2671 | | Related CVE(s): | CVE-2007-3112, CVE-2007-3113 | | Last Modified: | Sep 18 13:05:22 2007 |
| MD5 Checksum: | 0f0c19ef7eefa86febcaa0e3c7da90ac |
|
| /// File Name: |
09.17.07-1.txt |
Description:
|
iDefense Security Advisory 09.17.07 - Remote exploitation of multiple integer overflow vulnerabilities within OpenOffice, as included in various vendors' operating system distributions, allows attackers to execute arbitrary code. iDefense has confirmed the existence of these vulnerabilities in OpenOffice version 2.0.4. All versions prior to version 2.3 are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3512 | | Related CVE(s): | CVE-2007-2834 | | Last Modified: | Sep 18 13:04:29 2007 |
| MD5 Checksum: | 91e546861a6e34a6cb55455a8a35ff7c |
|
| /// File Name: |
SYMSA-2007-009.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2007-009 - There exists a design flaw in RemoteDocs R-Viewer where code can be executed upon opening the RDZ file without any knowledge or warning to the user. Additionally, temporary files are not properly removed of disk exposing the encrypted data.
| | Homepage: | http://www.symantec.com/research | | File Size: | 4922 | | Related CVE(s): | CVE-2007-4750, CVE-2007-4751 | | Last Modified: | Sep 18 13:00:07 2007 |
| MD5 Checksum: | c4dee8c6036cb677f67522e6fff6e1ed |
|
| /// File Name: |
dsa-1375-1.txt |
Description:
|
Debian Security Advisory 1375-1 - A heap overflow vulnerability has been discovered in the TIFF parsing code of the OpenOffice.org suite. The parser uses untrusted values from the TIFF file to calculate the number of bytes of memory to allocate. A specially crafted TIFF image could trigger an integer overflow and subsequently a buffer overflow that could cause the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 52039 | | Related CVE(s): | CVE-2007-2834 | | Last Modified: | Sep 18 12:58:05 2007 |
| MD5 Checksum: | 6a3c1ff684fdd265432c277410a69a1f |
|
| /// File Name: |
sa26707.txt |
Description:
|
Secunia Security Advisory - Stelios Tigkas has reported a vulnerability in RSA enVision, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26707/ | | File Size: | 2373 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | bafef6737eab0f7dbc4ce5fa89edc26b |
|
| /// File Name: |
sa26817.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26817/ | | File Size: | 48673 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | f7b3a708bf4954e72b3dea1f691f9219 |
|
| /// File Name: |
sa26836.txt |
Description:
|
Secunia Security Advisory - shinnai has discovered two vulnerabilities in MW6 Technologies QRCode ActiveX control, which can be exploited by malicious people to overwrite arbitrary files.
| | Homepage: | http://secunia.com/advisories/26836/ | | File Size: | 2542 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | 9b5e0ba5f8473a1f25a9c373045554e0 |
|
| /// File Name: |
sa26840.txt |
Description:
|
Secunia Security Advisory - Raz0r has discovered some vulnerabilities in Shop-Script FREE, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26840/ | | File Size: | 2809 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | b77caac432fb9fdb132b234aab5c7db0 |
|
| /// File Name: |
sa26843.txt |
Description:
|
Secunia Security Advisory - L4teral has discovered two vulnerabilities in Coppermine Photo Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/26843/ | | File Size: | 2951 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | c7d3c425cf7ec3cd944b2262cd6a3db1 |
|
| /// File Name: |
sa26844.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26844/ | | File Size: | 2632 | | Last Modified: | Sep 18 12:50:06 2007 |
| MD5 Checksum: | 0944dd0d131359cd78bd2069ecad1906 |
|
| /// File Name: |
glsa-200709-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200709-09 - Dmitry V. Levin discovered a directory traversal vulnerability in the contains_dot_dot() function in file src/names.c. Versions less than 1.18-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2565 | | Related CVE(s): | CVE-2007-4131 | | Last Modified: | Sep 18 12:49:39 2007 |
| MD5 Checksum: | e19d36ce1632e0cbea1e116fb15b76cf |
|
| /// File Name: |
glsa-200709-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200709-08 - Nikolaus Schulz discovered that the function RenderV2ToFile() in file src/tag_file.cpp creates temporary files in an insecure manner. Versions less than 3.8.3-r6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2544 | | Related CVE(s): | CVE-2007-4460 | | Last Modified: | Sep 18 12:49:24 2007 |
| MD5 Checksum: | 989932cfe161d914361d763d6f684b08 |
|
| /// File Name: |
glsa-200709-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200709-07 - Bow Sineath discovered a boundary error in the file mod/server.mod/servrmsg.c when processing overly long private messages sent by an IRC server. Versions less than 1.6.18-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2479 | | Related CVE(s): | CVE-2007-2807 | | Last Modified: | Sep 18 12:48:58 2007 |
| MD5 Checksum: | b05791b7f2bb6d580ea3247dcb7b221b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
