Section: .. / 0801-advisories /
| /// File Name: |
streamaudio-overflow.txt |
Description:
|
The StreamAudio ChainCast ProxyManager suffers from a buffer overflow vulnerability in ccpm_0237.dll.
| | Author: | Elazar Broad | | File Size: | 1014 | | Last Modified: | Jan 11 14:09:07 2008 |
| MD5 Checksum: | f2d7a0b33bf001f0c806d70523804ea0 |
|
| /// File Name: |
TA08-008A.txt |
Description:
|
Technical Cyber Security Alert TA08-008A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code, gain elevated privileges, or crash a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3495 | | Last Modified: | Jan 9 01:45:20 2008 |
| MD5 Checksum: | fc62116834d1a2fbb09732f813ee9f44 |
|
| /// File Name: |
TA08-016A.txt |
Description:
|
Technical Cyber Security Alert TA08-016A - Apple QuickTime contains multiple vulnerabilities. Exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3599 | | Last Modified: | Jan 17 00:49:01 2008 |
| MD5 Checksum: | 49a2544f2399b90c0735b5d79c90586b |
|
| /// File Name: |
TPTI-08-01.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of malformed Image Descriptor (IDSC) atoms. Specifying a malicious atom size can result in an under allocated heap chunk and subsequently an exploitable heap corruption situation. QuickTime Player version 7.3 and QuickTime PictureViewer version 7.3 are affected.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 1263 | | Related CVE(s): | CVE-2008-0033 | | Last Modified: | Jan 16 00:52:04 2008 |
| MD5 Checksum: | bd2cf318c00dbca727c2bc86358aceb2 |
|
| /// File Name: |
TPTI-08-02.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco CallManager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CTL Provider Service, CTLProvider.exe, which binds to TCP port 2444. The service operates over a SSL encrypted transport. Due to a logic flaw in the way data is received in a loop a heap allocation can be arbitrarily overflown resulting in the control of subsequent heap chunks. This can lead to arbitrary code execution. Version 4.1(3) is affected.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 3168 | | Related CVE(s): | CVE-2008-0027 | | Last Modified: | Jan 17 00:42:37 2008 |
| MD5 Checksum: | 16bae68afdced69de791e3694c1655d4 |
|
| /// File Name: |
USN-560-1.txt |
Description:
|
Ubuntu Security Notice 560-1 - Jan Oravec discovered that Tomboy did not properly setup the LD_LIBRARY_PATH environment variable. A local attacker could exploit this to execute arbitrary code as the user invoking the program.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6241 | | Related CVE(s): | CVE-2005-4790 | | Last Modified: | Jan 8 11:59:39 2008 |
| MD5 Checksum: | 57cc8958280a428127b8a3602e53a064 |
|
| /// File Name: |
USN-561-1.txt |
Description:
|
Ubuntu Security Notice 561-1 - Jose Miguel Esparza discovered that pwlib did not correctly handle large string lengths. A remote attacker could send specially crafted packets to applications linked against pwlib (e.g. Ekiga) causing them to crash, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 27855 | | Related CVE(s): | CVE-2007-4897 | | Last Modified: | Jan 9 01:50:23 2008 |
| MD5 Checksum: | ea97ee14e533a3fb0951e2a60fe14ba3 |
|
| /// File Name: |
USN-562-1.txt |
Description:
|
Ubuntu Security Notice 562-1 - Jose Miguel Esparza discovered that certain SIP headers were not correctly validated. A remote attacker could send a specially crafted packet to an application linked against opal (e.g. Ekiga) causing it to crash, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11249 | | Related CVE(s): | CVE-2007-4924 | | Last Modified: | Jan 9 01:51:06 2008 |
| MD5 Checksum: | f3bed9a75c235c3c9cdf854ae119f208 |
|
| /// File Name: |
USN-563-1.txt |
Description:
|
Ubuntu Security Notice 563-1 - Wei Wang discovered that the SNMP discovery backend did not correctly calculate the length of strings. If a user were tricked into scanning for printers, a remote attacker could send a specially crafted packet and possibly execute arbitrary code. Elias Pipping discovered that temporary files were not handled safely in certain situations when converting PDF to PS. A local attacker could cause a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 22397 | | Related CVE(s): | CVE-2007-5849, CVE-2007-6358 | | Last Modified: | Jan 9 01:52:17 2008 |
| MD5 Checksum: | f6bc648f15869a7805c6e9b515705d2f |
|
| /// File Name: |
USN-564-1.txt |
Description:
|
Ubuntu Security Notice 564-1 - Bill Trost discovered that snmpd did not properly limit GETBULK requests. A remote attacker could specify a large number of max-repetitions and cause a denial of service via resource exhaustion.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 17609 | | Related CVE(s): | CVE-2007-5846 | | Last Modified: | Jan 9 13:14:06 2008 |
| MD5 Checksum: | fbe598aceb94d35be2cb8a92e0fa08fd |
|
| /// File Name: |
USN-565-1.txt |
Description:
|
Ubuntu Security Notice 565-1 - It was discovered that Squid did not always clean up cache memory correctly. A remote attacker could manipulate cache update replies and cause Squid to use all available memory, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11991 | | Related CVE(s): | CVE-2007-6239 | | Last Modified: | Jan 10 04:02:30 2008 |
| MD5 Checksum: | e583af601499be6eeb7d2910464b3896 |
|
| /// File Name: |
USN-566-1.txt |
Description:
|
Ubuntu Security Notice 566-1 - Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 17844 | | Related CVE(s): | CVE-2007-4752 | | Last Modified: | Jan 10 04:03:19 2008 |
| MD5 Checksum: | c6ed217cdd53a78d53de2f219184508b |
|
| /// File Name: |
USN-567-1.txt |
Description:
|
Ubuntu Security Notice 567-1 - It was discovered that in very rare configurations using LDAP, Dovecot may reuse cached connections for users with the same password. As a result, a user may be able to login as another if the connection is reused. The default Ubuntu configuration of Dovecot was not vulnerable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6333 | | Related CVE(s): | CVE-2007-6598 | | Last Modified: | Jan 10 18:05:58 2008 |
| MD5 Checksum: | a4660458a06a9e2858f02c1b75c05236 |
|
| /// File Name: |
USN-568-1.txt |
Description:
|
Ubuntu Security Notice 568-1 - Nico Leidecker discovered that PostgreSQL did not properly restrict dblink functions. An authenticated user could exploit this flaw to access arbitrary accounts and execute arbitrary SQL queries. It was discovered that the TCL regular expression parser used by PostgreSQL did not properly check its input. An attacker could send crafted regular expressions to PostgreSQL and cause a denial of service via resource exhaustion or database crash. It was discovered that PostgreSQL executed VACUUM and ANALYZE operations within index functions with superuser privileges and also allowed SET ROLE and SET SESSION AUTHORIZATION within index functions. A remote authenticated user could exploit these flaws to gain privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 42455 | | Related CVE(s): | CVE-2007-6600, CVE-2007-3278, CVE-2007-6601, CVE-2007-4769, CVE-2007-4772, CVE-2007-6067 | | Last Modified: | Jan 14 17:39:53 2008 |
| MD5 Checksum: | 6ec3155b2d021d108bf1736b8660cdac |
|
| /// File Name: |
USN-569-1.txt |
Description:
|
Ubuntu Security Notice 569-1 - Brad Fitzpatrick discovered that libxml2 did not correctly handle certain UTF-8 sequences. If a remote attacker were able to trick a user or automated system into processing a specially crafted XML document, the application linked against libxml2 could enter an infinite loop, leading to a denial of service via CPU resource consumption.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 21678 | | Related CVE(s): | CVE-2007-6284 | | Last Modified: | Jan 14 21:37:14 2008 |
| MD5 Checksum: | f6ecb4d4f27ca86de7c1956245f4fb06 |
|
| /// File Name: |
USN-570-1.txt |
Description:
|
Ubuntu Security Notice 570-1 - Will Drewry and Tavis Ormandy discovered that the boost library did not properly perform input validation on regular expressions. An attacker could send a specially crafted regular expression to an application linked against boost and cause a denial of service via application crash.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 73225 | | Related CVE(s): | CVE-2008-0171, CVE-2008-0172 | | Last Modified: | Jan 17 00:51:25 2008 |
| MD5 Checksum: | 8ee5840ddbe4e81b639e1bb9e6e31727 |
|
| /// File Name: |
USN-571-1.txt |
Description:
|
Ubuntu Security Notice 571-1 - Multiple overflows were discovered in the XFree86-Misc, XInput-Misc, TOG-CUP, EVI, and MIT-SHM extensions which did not correctly validate function arguments. An authenticated attacker could send specially crafted requests and gain root privileges. It was discovered that the X.org server did not use user privileges when attempting to open security policy files. Local attackers could exploit this to probe for files in directories they would not normally be able to access. It was discovered that the PCF font handling code did not correctly validate the size of fonts. An authenticated attacker could load a specially crafted font and gain additional privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 33458 | | Related CVE(s): | CVE-2007-5760, CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006 | | Last Modified: | Jan 18 05:40:18 2008 |
| MD5 Checksum: | 51a73d44d004d14fcffd34cae74ca8b5 |
|
| /// File Name: |
USN-572-1.txt |
Description:
|
Ubuntu Security Notice 572-1 - Felipe Sateler discovered that apt-listchanges did not use safe paths when importing additional Python libraries. A local attacker could exploit this and execute arbitrary commands as the user running apt-listchanges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 2091 | | Related CVE(s): | CVE-2008-0302 | | Last Modified: | Jan 18 20:16:42 2008 |
| MD5 Checksum: | 5f616bf708d84d1fdf797e6910741a8e |
|
| /// File Name: |
USN-573-1.txt |
Description:
|
Ubuntu Security Notice 573-1 - It was discovered that PulseAudio did not properly drop privileges when running as a daemon. Local users may be able to exploit this and gain privileges. The default Ubuntu configuration is not affected.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16382 | | Related CVE(s): | CVE-2008-0008 | | Last Modified: | Jan 31 23:58:07 2008 |
| MD5 Checksum: | 50be48546e847365f1810a3037a5cffc |
|
| /// File Name: |
waccaz-adv.txt |
Description:
|
Foxit Remote Access Server (WAC Server) versions 2.1.0.910 and below suffer from a denial of service vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 1303 | | Last Modified: | Jan 4 20:30:33 2008 |
| MD5 Checksum: | 80b39ca65bfd95b357a0d954cf451916 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
