Section: .. / 0803-advisories /
| /// File Name: |
xinehof.txt |
Description:
|
xine-lib versions 1.1.11 and below suffer from six heap overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | xinehof.zip | | File Size: | 3966 | | Last Modified: | Mar 20 17:17:19 2008 |
| MD5 Checksum: | 2cfe9d6e272a5f0691aaff6313456fda |
|
| /// File Name: |
USN-589-1.txt |
Description:
|
Ubuntu Security Notice 589-1 - Tavis Ormandy discovered that unzip did not correctly clean up pointers. If a user or automated service was tricked into processing a specially crafted ZIP archive, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6191 | | Related CVE(s): | CVE-2008-0888 | | Last Modified: | Mar 20 17:15:06 2008 |
| MD5 Checksum: | 15597a25fee88497611ca4c749a8a19f |
|
| /// File Name: |
dsa-1526-1.txt |
Description:
|
Debian Security Advisory 1526-1 - Steve Kemp from the Debian Security Audit project discovered several local vulnerabilities have been discovered in xwine, a graphical user interface for the WINE emulator.
| | Homepage: | http://www.debian.org/security | | File Size: | 4688 | | Related CVE(s): | CVE-2008-0930, CVE-2008-0931 | | Last Modified: | Mar 20 17:14:07 2008 |
| MD5 Checksum: | f3591740a9a2c662daf958fc7ae20e66 |
|
| /// File Name: |
sa29467.txt |
Description:
|
Secunia Security Advisory - sasquatch has reported some vulnerabilities in IBM Rational ClearQuest, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/29467/ | | File Size: | 2264 | | Last Modified: | Mar 20 17:13:16 2008 |
| MD5 Checksum: | a859d05f73513b8b106b9301b92d0f6b |
|
| /// File Name: |
MDVSA-2008-073.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in the Net::DNS perl module was found that could allow remote attackers to cause a denial of service via a crafted DNS response.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4243 | | Related CVE(s): | CVE-2007-6341 | | Last Modified: | Mar 20 17:13:06 2008 |
| MD5 Checksum: | fa03a5b781a22077ba0450c3dad3c1cd |
|
| /// File Name: |
MDVSA-2008-072.txt |
Description:
|
Mandriva Linux Security Advisory - The Linux kernel prior to 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allowed local users to access kernel memory via an out-of-range offset.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4751 | | Related CVE(s): | CVE-2008-0007 | | Last Modified: | Mar 20 17:12:24 2008 |
| MD5 Checksum: | f5d038ddb5299d73a9753bf6160855aa |
|
| /// File Name: |
USN-588-1.txt |
Description:
|
Ubuntu Security Notice 588-1 - Masaaki Hirose discovered that MySQL could be made to dereference a NULL pointer. An authenticated user could cause a denial of service (application crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table. This issue only affects Ubuntu 6.06 and 6.10. Alexander Nozdrin discovered that MySQL did not restore database access privileges when returning from SQL SECURITY INVOKER stored routines. An authenticated user could exploit this to gain privileges. This issue does not affect Ubuntu 7.10. Martin Friebe discovered that MySQL did not properly update the DEFINER value of an altered view. An authenticated user could use CREATE SQL SECURITY DEFINER VIEW and ALTER VIEW statements to gain privileges. Luigi Auriemma discovered that yaSSL as included in MySQL did not properly validate its input. A remote attacker could send crafted requests and cause a denial of service or possibly execute arbitrary code. This issue did not affect Ubuntu 6.06 in the default installation.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 18741 | | Related CVE(s): | CVE-2006-7232, CVE-2007-2692, CVE-2007-6303, CVE-2008-0226, CVE-2008-0227 | | Last Modified: | Mar 20 16:58:07 2008 |
| MD5 Checksum: | b2bffdd12620551ceb8b47b9cd832cd2 |
|
| /// File Name: |
dsa-1506-2.txt |
Description:
|
Debian Security Advisory 1506-2 - A regression has been fixed in iceape's frame handling code. Several remote vulnerabilities have been discovered in the Iceape internet suite, an unbranded version of the Seamonkey Internet Suite.
| | Homepage: | http://www.debian.org/security | | File Size: | 18965 | | Related CVE(s): | CVE-2008-0412, CVE-2008-0413, CVE-2008-0414, CVE-2008-0415, CVE-2008-0417, CVE-2008-0418, CVE-2008-0419, CVE-2008-0591, CVE-2008-0592, CVE-2008-0593, CVE-2008-0594 | | Last Modified: | Mar 20 16:53:26 2008 |
| MD5 Checksum: | 1f84163c02a8f2d6a2e67e052eeb0c64 |
|
| /// File Name: |
glsa-200803-30.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200803-30 - Robin Johnson reported that the docert() function provided by ssl-cert.eclass can be called by source building stages of an ebuild, such as src_compile() or src_install(), which will result in the generated SSL keys being included inside binary packages (binpkgs). Versions less than 8.1.16 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 5640 | | Related CVE(s): | CVE-2008-1383 | | Last Modified: | Mar 20 16:52:00 2008 |
| MD5 Checksum: | 93740d26539dc111ca0a765b76fd3cae |
|
| /// File Name: |
sa28694.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in xine-lib, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28694/ | | File Size: | 2441 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | b7d96461dc40fc468b40a4c5f424f630 |
|
| /// File Name: |
sa29399.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in Gallarific, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29399/ | | File Size: | 3087 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | c779bae19525824bb742b395a68ec3d7 |
|
| /// File Name: |
sa29401.txt |
Description:
|
Secunia Security Advisory - Collin Mulliner has reported a security issue in RaidSonic NAS-4220-B, which can be exploited by malicious people with physical access to the device to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/29401/ | | File Size: | 2420 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | abbfeaf0d6a8718fce9a28018bbed2bd |
|
| /// File Name: |
sa29407.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in WinRAR, which can potentially be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29407/ | | File Size: | 2383 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | ba0ba7d3f82183d2635d9a28dd9f2e36 |
|
| /// File Name: |
sa29420.txt |
Description:
|
Secunia Security Advisory - Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.
| | Homepage: | http://secunia.com/advisories/29420/ | | File Size: | 10410 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 3f1f0ac638b023c81b4f6cd966fd3e71 |
|
| /// File Name: |
sa29423.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29423/ | | File Size: | 2564 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 96752d73f082f576e0c4e8a90bc1a7e0 |
|
| /// File Name: |
sa29424.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29424/ | | File Size: | 10582 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 5aac28338b83d7ef6bee6e5eebb2c667 |
|
| /// File Name: |
sa29425.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for acroread. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/29425/ | | File Size: | 2038 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | a214259192aa83294e434c794989f4d0 |
|
| /// File Name: |
sa29426.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Asterisk, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29426/ | | File Size: | 3566 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 81ec3b958bcc0a630474e4369d1cacf4 |
|
| /// File Name: |
sa29427.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for unzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29427/ | | File Size: | 2381 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 329513887e2c1e0e3e8ede415b629f2d |
|
| /// File Name: |
sa29428.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Kerberos, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29428/ | | File Size: | 3685 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | c76b551a35a7eb6377106fe223c5ea37 |
|
| /// File Name: |
sa29429.txt |
Description:
|
Secunia Security Advisory - fataku has reported a vulnerability in the Acajoom PRO component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29429/ | | File Size: | 2594 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | b8486f40cb6d06a1f3f800d1bce489ff |
|
| /// File Name: |
sa29431.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in CUPS, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29431/ | | File Size: | 2568 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | f29cde362e43fecf164df37fddb33854 |
|
| /// File Name: |
sa29440.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for unzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29440/ | | File Size: | 2441 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | 992a5d892377e4d63d3905be66f29af6 |
|
| /// File Name: |
sa29444.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for moinmoin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass security restrictions, manipulate certain data, or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29444/ | | File Size: | 2161 | | Last Modified: | Mar 20 16:39:31 2008 |
| MD5 Checksum: | db8f3d0e7c67a888888d75f2a8bb93bb |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
