Section: .. / 0603-advisories /
| /// File Name: |
sa19151.txt |
Description:
|
Secunia Security Advisory - Kiki has discovered multiple vulnerabilities in sBlog, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks.
| | Homepage: | http://secunia.com/advisories/19151/ | | File Size: | 2119 | | Last Modified: | Mar 9 04:09:52 2006 |
| MD5 Checksum: | 9285a458dc0beabf7c4db3e44a254d31 |
|
| /// File Name: |
sa19144.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in Alien Arena 2006 Gold Edition, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19144/ | | File Size: | 2569 | | Last Modified: | Mar 9 04:09:52 2006 |
| MD5 Checksum: | b9c2fe2e5f1e193214d5a2565302bf1b |
|
| /// File Name: |
sa19121.txt |
Description:
|
Secunia Security Advisory - uid0 has discovered a vulnerability in m-phorum, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19121/ | | File Size: | 1716 | | Last Modified: | Mar 9 04:09:52 2006 |
| MD5 Checksum: | dc1ec4031cc11924beeadfbad4651349 |
|
| /// File Name: |
sa19086.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged a vulnerability in Avaya Predictive Dialing System (PDS), which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19086/ | | File Size: | 1603 | | Last Modified: | Mar 9 04:09:52 2006 |
| MD5 Checksum: | 1b5b126d4352fb930e1d64bf6f92ffff |
|
| /// File Name: |
evilcube.txt |
Description:
|
Cube engine versions 2005_08_29 and below suffer from buffer overflow, invalid memory access, and crash vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | evilcube.zip | | File Size: | 3881 | | Last Modified: | Mar 8 09:28:05 2006 |
| MD5 Checksum: | 736d35d2b9ee6d9a2ed2ad8dbb211983 |
|
| /// File Name: |
sauerburn.txt |
Description:
|
Sauerbraten engine versions 2006_02_28 and below suffer from buffer overflow, invalid memory access, and crash vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | sauerburn.zip | | File Size: | 4351 | | Last Modified: | Mar 8 09:00:54 2006 |
| MD5 Checksum: | dec0b28bae2df1738e313cc99d8194a7 |
|
| /// File Name: |
2006-06-03-dokuwiki-xss.txt |
Description:
|
DokuWiki suffers from an XSS vulnerability in the "Picture List" of the "mediamanager" It is possible to upload a picture with a specially crafted EXIF tag, containing script code. This code will be executed every time a user views the "mediamanager".
| | Author: | yorn | | File Size: | 1243 | | Last Modified: | Mar 8 07:37:15 2006 |
| MD5 Checksum: | 3957e113737ff82bda11674ef5e5e717 |
|
| /// File Name: |
thttpd-htpasswd.txt |
Description:
|
The htpasswd program shipped with thttpd-2.25b can be tricked into executing arbitrary programs.
| | Author: | Larry Cashdollar | | Homepage: | http://vapid.dhs.org | | File Size: | 1511 | | Last Modified: | Mar 8 07:26:37 2006 |
| MD5 Checksum: | eab8f95491dc8f2fc1aaae66bee535c1 |
|
| /// File Name: |
linkbankexec.txt |
Description:
|
Link Bank does not properly sanitize user inputted data, which leads to a XSS vulnerability.
| | Author: | retard | | File Size: | 1229 | | Last Modified: | Mar 8 07:06:59 2006 |
| MD5 Checksum: | 5c29868dcf65876da70ba3b5a32718b4 |
|
| /// File Name: |
hithost_v1.0.0.txt |
Description:
|
HitHost 1.0.0 suffers from XSS and other vulnerabilities due to improper input sanitization.
| | Author: | retard | | File Size: | 1412 | | Last Modified: | Mar 8 07:03:47 2006 |
| MD5 Checksum: | 218e1abec2eb66c55e5793e6416e9e0d |
|
| /// File Name: |
javaDoS.txt |
Description:
|
There is a vulnerability in the Internet Explorer java applet handling engine. It occurs while running the Sun Microsystems Java VM and is caused by improper HTML 'INPUT' control focus handling.
| | Author: | porkythepig | | File Size: | 1171 | | Last Modified: | Mar 8 05:59:46 2006 |
| MD5 Checksum: | c1afc82f5e2bfc41ffa14c35216a997c |
|
| /// File Name: |
USN-260-1.txt |
Description:
|
Ubuntu Security Notice USN-260-1 - Chris Moore discovered a buffer overflow in a particular class of lexicographical scanners generated by flex. This could be exploited to execute arbitrary code by processing specially crafted user-defined input to an application that uses a flex scanner for parsing.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 62319 | | Last Modified: | Mar 8 05:57:15 2006 |
| MD5 Checksum: | 909c248cde3f1a763d9dd0aa98442a3a |
|
| /// File Name: |
dsa-986-1.txt |
Description:
|
Debian Security Advisory DSA 986-1 - Evgeny Legerov discovered several out-of-bounds memory accesses in the DER decoding component component of the Tiny ASN.1 Library, which is also present and used in GnuTLS, the GNU implementation for Transport Layer Security (TLS) 1.0 and Secure Sockets Layer (SSL) 3.0 protocols and which allows attackers to crash the DER decoder and possibly execute arbitrary code.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 11040 | | Last Modified: | Mar 8 05:56:39 2006 |
| MD5 Checksum: | 19cd2451b003e83be790bba9c593fbbd |
|
| /// File Name: |
dsa-987-1.txt |
Description:
|
Debian Security Advisory DSA 987-1 - Jim Meyering discovered several buffer overflows in GNU tar, which may lead to the execution of arbitrary code through specially crafted tar archives.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 4731 | | Last Modified: | Mar 8 05:53:49 2006 |
| MD5 Checksum: | 166a3dc9fac6847c6f8aa4a94ad7ad3c |
|
| /// File Name: |
glsa-200603-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-05 - Jean-Sebastien Guay-Leroux discovered a boundary error in the fullpath() function in misc.c when processing overly long file and directory names in ZOO archives. Versions less than 2.10-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2718 | | Last Modified: | Mar 8 05:51:47 2006 |
| MD5 Checksum: | ce5ff45f38a770a93b6e68370dc50278 |
|
| /// File Name: |
glsa-200603-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-04 - Steve Kemp discovered two format string errors in IMAP Proxy. Versions less than 1.2.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2565 | | Last Modified: | Mar 8 05:51:32 2006 |
| MD5 Checksum: | 979e41ac83201b895a8fbf1b84e108a1 |
|
| /// File Name: |
glsa-200603-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-03 - MPlayer makes use of the FFmpeg library, which is vulnerable to a heap overflow in the avcodec_default_get_buffer() function discovered by Simon Kilvington (see GLSA 200601-06). Furthermore, AFI Security Research discovered two integer overflows in ASF file format decoding, in the new_demux_packet() function from libmpdemux/demuxer.h and the demux_asf_read_packet() function from libmpdemux/demux_asf.c. Versions less than 1.0.20060217 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3096 | | Last Modified: | Mar 8 05:42:14 2006 |
| MD5 Checksum: | 1faeb2417156c9e931c8aa53911ef7dc |
|
| /// File Name: |
glsa-200603-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-02 - CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf code is vulnerable to several heap overflows (GLSA 200512-08) as well as several buffer and integer overflows discovered by Chris Evans (CESA-2005-003). Versions less than 2.0.2-r8 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3672 | | Last Modified: | Mar 8 05:41:46 2006 |
| MD5 Checksum: | d8ac3f60a9164440a1c29d1133a22e16 |
|
| /// File Name: |
glsa-200603-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200603-01 - Patrik Karlsson reported that WordPress 1.5.2 makes use of an insufficiently filtered User Agent string in SQL queries related to comments posting. This vulnerability was already fixed in the 2.0-series of WordPress. Versions less than or equal to 1.5.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2599 | | Last Modified: | Mar 8 05:41:28 2006 |
| MD5 Checksum: | 2afbd15e6263064c8a1d777cb46cc3cd |
|
| /// File Name: |
advisory-277.txt |
Description:
|
CuteNews version 1.4.1 is susceptible to cross site scripting attacks.
| | Author: | Roozbeh Afrasiabi, imei addmimistrator | | Homepage: | http://www.kapda.ir | | File Size: | 1451 | | Last Modified: | Mar 8 05:40:07 2006 |
| MD5 Checksum: | a11e772427fa8b60960adae024b484f9 |
|
| /// File Name: |
sa19148.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for zoo. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19148/ | | File Size: | 1585 | | Last Modified: | Mar 8 05:17:23 2006 |
| MD5 Checksum: | b8720edf91682e2c662118b08c5028cf |
|
| /// File Name: |
sa19147.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in bMail, which potentially can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/19147/ | | File Size: | 1818 | | Last Modified: | Mar 8 05:17:23 2006 |
| MD5 Checksum: | de2103500063b4e503c68fb8b564e8ab |
|
| /// File Name: |
sa19146.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Xerox CopyCentre and Xerox WorkCentre Pro, where one has an unknown impact, and others can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19146/ | | File Size: | 2559 | | Last Modified: | Mar 8 05:17:23 2006 |
| MD5 Checksum: | f292605e421df67764436c1a86e84856 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
