Section: .. / 0712-advisories /
| /// File Name: |
SSRT071333.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running rpc.yppasswdd. The vulnerability could be exploited remotely to create a denial of service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6606 | | Related CVE(s): | CVE-2007-6419 | | Last Modified: | Dec 20 16:25:51 2007 |
| MD5 Checksum: | 702d19ba1b6eac8371807d6d1f2aa2ff |
|
| /// File Name: |
CORE-2007-1004.txt |
Description:
|
Core Security Technologies Advisory - A vulnerability has been found in the ActiveX control DLL (axvlc.dll) used by VLC player. This library contains three methods whose parameters are not correctly checked, and may produce a bad initialized pointer. By providing these functions specially crafted parameters, an attacker can overwrite memory zones and execute arbitrary code. Vulnerable versions include VLC media player 0.86, 0.86a, 0.86b and 0.86c.
| | Author: | Ricardo Narvaja | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 6468 | | Last Modified: | Dec 5 23:11:33 2007 |
| MD5 Checksum: | ba03d9ceb3e14845bb27b9831e01fcaf |
|
| /// File Name: |
dsa-1434-1.txt |
Description:
|
Debian Security Advisory 1434-1 - It was discovered that in MyDNS, a domain name server with database backend, the daemon could be crashed through malicious remote update requests, which may lead to denial of service.
| | Homepage: | http://www.debian.org/security | | File Size: | 6375 | | Related CVE(s): | CVE-2007-2362 | | Last Modified: | Dec 17 20:28:06 2007 |
| MD5 Checksum: | 35e4d66d0ee02432694954c25e256514 |
|
| /// File Name: |
SSRT071452.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with the HP Tru64 UNIX Operating System running FFM (File-on-File Mounting File System). The vulnerability could be exploited by a local, authorized user to cause a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6359 | | Last Modified: | Dec 20 16:26:26 2007 |
| MD5 Checksum: | 113c47e2d29c865a681e44eff840de47 |
|
| /// File Name: |
sa28183.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in CA products, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/28183/ | | File Size: | 6319 | | Last Modified: | Dec 24 13:50:38 2007 |
| MD5 Checksum: | f3ab5e3fecee63eee31555c90d1dad91 |
|
| /// File Name: |
sa28086.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for mydns. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28086/ | | File Size: | 6248 | | Last Modified: | Dec 17 19:56:59 2007 |
| MD5 Checksum: | 1501038ddb8fb1752ed0ae0a5d197198 |
|
| /// File Name: |
sa27944.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks or potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27944/ | | File Size: | 6206 | | Last Modified: | Dec 7 11:22:07 2007 |
| MD5 Checksum: | d3ba0ae7406aac621ab8b654e13330f0 |
|
| /// File Name: |
sa28034.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Windows Media Format Runtime / Windows Media Services, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28034/ | | File Size: | 6146 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 6dab1acbfb5d3f79bba756d9168c021a |
|
| /// File Name: |
SSRT071508.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP Software Update running on Windows. The vulnerability could exploited remotely to execute arbitrary code or gain privileged access.
| | Homepage: | http://www.hp.com/ | | File Size: | 6119 | | Related CVE(s): | CVE-2007-6506 | | Last Modified: | Dec 24 14:53:06 2007 |
| MD5 Checksum: | 2aabb7206f69f5ba539b12ed6732a4bf |
|
| /// File Name: |
sa27882.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for apache. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27882/ | | File Size: | 6060 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | 400ff6dc69015a1ddc8d5ebb124102a7 |
|
| /// File Name: |
sa28125.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for ganglia. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28125/ | | File Size: | 5965 | | Last Modified: | Dec 24 13:50:38 2007 |
| MD5 Checksum: | 4e75d097843f569d7d176fca1070b9e2 |
|
| /// File Name: |
sa28161.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Adobe Flash Player, where one vulnerability has an unknown impact and others can be exploited by malicious, local users to gain escalated privileges and by malicious people to bypass certain security restrictions, conduct cross-site scripting and HTTP request splitting attacks, disclose sensitive information, cause a Denial of Service (DoS), or to potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28161/ | | File Size: | 5959 | | Last Modified: | Dec 19 20:37:58 2007 |
| MD5 Checksum: | f7a94d0cc831d536516dc99ec274e3a8 |
|
| /// File Name: |
sa27919.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/27919/ | | File Size: | 5829 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | eaba48edd27cb26be90f98e3904080bd |
|
| /// File Name: |
nmapfinger-whoops.txt |
Description:
|
Fingerprints in Astaro Security Gateway version 7.1 could allow a remote attacker to create malicious payloads.
| | Author: | Josh Morin | | File Size: | 5572 | | Last Modified: | Dec 31 16:22:21 2007 |
| MD5 Checksum: | eff32c5c167100ba4562d1ea60f353e0 |
|
| /// File Name: |
sa28036.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28036/ | | File Size: | 5437 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | 779bd7abb095a1e63de2641eb6c1138f |
|
| /// File Name: |
SSRT071494.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP Select Identity. The vulnerability could be exploited remotely to gain unauthorized access.
| | Homepage: | http://www.hp.com/ | | File Size: | 5418 | | Related CVE(s): | CVE-2007-6194 | | Last Modified: | Dec 5 23:12:40 2007 |
| MD5 Checksum: | d13bdc793452435d6d81aa0d4d33f6e3 |
|
| /// File Name: |
autonomy-nodisclose.txt |
Description:
|
Autonomy, the software company that supplies the "Swiss Army Knife" in handling and opening documents in well known software like IBM Lotus Notes and Symantec Mail Security, is trying to keep Secunia from disclosing any information about old vulnerabilities. For shame. For shame.
| | Author: | Thomas Kristensen | | Homepage: | http://secunia.com/ | | File Size: | 5401 | | Last Modified: | Dec 7 19:24:57 2007 |
| MD5 Checksum: | 17b3b9eb9ae7079b9598c2c435073991 |
|
| /// File Name: |
sa28010.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Microsoft DirectX, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28010/ | | File Size: | 5268 | | Last Modified: | Dec 11 21:35:59 2007 |
| MD5 Checksum: | bf41702d7fdcd850ac6ef3118db72cef |
|
| /// File Name: |
MDKSA-2007-237.txt |
Description:
|
Mandriva Linux Security Advisory - A buffer overflow in the DTLS implementation of OpenSSL 0.9.8 could be exploited by attackers to potentially execute arbitrary code. It is questionable as to whether the DTLS support even worked or is used in any applications; as a result this flaw most likely does not affect most Mandriva users.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5106 | | Related CVE(s): | CVE-2007-4995 | | Last Modified: | Dec 5 23:36:45 2007 |
| MD5 Checksum: | 3da9e6824cdc78f35bcc7df2c9865f62 |
|
| /// File Name: |
sa27920.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for wesnoth. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose potentially sensitive information, or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27920/ | | File Size: | 5040 | | Last Modified: | Dec 5 15:05:44 2007 |
| MD5 Checksum: | d0bec7e627c767ea801b6002cdf62b25 |
|
| /// File Name: |
dsa-1429-1.txt |
Description:
|
Debian Security Advisory 1429-1 - Michael Skibbe discovered that htdig, a WWW search system for an intranet or small internet, did not adequately quote values submitted to the search script, allowing remote attackers to inject arbitrary script or HTML into specially crafted links.
| | Homepage: | http://www.debian.org/security | | File Size: | 5030 | | Related CVE(s): | CVE-2007-6110 | | Last Modified: | Dec 11 23:26:15 2007 |
| MD5 Checksum: | f4050876b964b773d3a157af25d6c82f |
|
| /// File Name: |
sa28067.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28067/ | | File Size: | 5008 | | Last Modified: | Dec 13 13:34:25 2007 |
| MD5 Checksum: | 450d44c680d3b516936d0409b4be1a0c |
|
| /// File Name: |
dsa-1440-1.txt |
Description:
|
Debian Security Advisory 1440-1 - It was discovered that a buffer overflow in the filename processing of the inotify-tools, a command-line interface to inotify, may lead to the execution of arbitrary code. This only affects the internal library and none of the frontend tools shipped in Debian.
| | Homepage: | http://www.debian.org/security | | File Size: | 5004 | | Related CVE(s): | CVE-2007-5037 | | Last Modified: | Dec 28 20:19:51 2007 |
| MD5 Checksum: | 6d8f37da4c823567251a11b86460b9b6 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
