Section: .. / 0605-advisories /
| /// File Name: |
MDKSA-2006-085.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-085: Multiple format string vulnerabilities in xiTK (xitk/main.c) in xine allow remote attackers to execute arbitrary code via format string specifiers in a long filename on an EXTINFO line in a playlist file.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 3551 | | Last Modified: | May 17 17:49:03 2006 |
| MD5 Checksum: | f144259db8d71fc85d2eec7d3693896a |
|
| /// File Name: |
CYBSEC-SAPlocal.txt |
Description:
|
CYBSEC Security Advisory - The SAP sapdba command for Informix versions prior to 700 and version 700 up to patch number 100 is susceptible to a local privilege escalation flaw.
| | Author: | Leandro Meiners | | Homepage: | http://www.cybsec.com/ | | File Size: | 3545 | | Last Modified: | May 22 02:05:02 2006 |
| MD5 Checksum: | d82e4532e460380708788cfc4db73ab1 |
|
| /// File Name: |
secunia-TZip.txt |
Description:
|
Secunia Research has discovered a vulnerability in TZipBuilder version 1.79.03.01, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when listing the contents of a ZIP archive that contains a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a specially crafted ZIP archive is opened. Successful exploitation allows execution of arbitrary code with the privileges of an application that uses the library.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3537 | | Related CVE(s): | CVE-2006-2161 | | Last Modified: | May 9 17:15:12 2006 |
| MD5 Checksum: | fdb02c8d5591a6be9b8be76fe1a11b93 |
|
| /// File Name: |
secunia-FilZip.txt |
Description:
|
Secunia Research has discovered a vulnerability in FilZip, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive. Version 3.04 is affected. Earlier versions may also be affected.
| | Homepage: | http://secunia.com/ | | File Size: | 3530 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 21 23:48:27 2006 |
| MD5 Checksum: | 49d915f9fa00f38f00428ca88cd5a170 |
|
| /// File Name: |
glsa-200605-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-08 - Several vulnerabilities were discovered on PHP4 and PHP5 by Infigo, Tonu Samuel and Maksymilian Arciemowicz. These included a buffer overflow in the wordwrap() function, restriction bypasses in the copy() and tempname() functions, a cross-site scripting issue in the phpinfo() function, a potential crash in the substr_compare() function and a memory leak in the non-binary-safe html_entity_decode() function. Versions less than 5.1.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3527 | | Last Modified: | May 9 17:16:50 2006 |
| MD5 Checksum: | 1a49be41cdab1de7d4132988a0f38a76 |
|
| /// File Name: |
secunia-Eazel.txt |
Description:
|
Secunia Research has discovered a vulnerability in Eazel version 1.0, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in ztvunacev2.dll (UNACEV2.DLL) when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3491 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 22 01:25:13 2006 |
| MD5 Checksum: | 21f7a357765104be52f1df731273dbcc |
|
| /// File Name: |
secunia-CAM.txt |
Description:
|
Secunia Research has discovered a vulnerability in CAM UnZip versions 4.0 and 4.3, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when listing the contents of a ZIP archive. This can be exploited to cause a stack-based buffer overflow when a malicious ZIP archive containing a file with an overly long filename is opened.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3485 | | Related CVE(s): | CVE-2006-2161 | | Last Modified: | May 22 02:18:39 2006 |
| MD5 Checksum: | 1843342c184ce46a32290e059fc17aa3 |
|
| /// File Name: |
secunia-IZArc.txt |
Description:
|
Secunia Research has discovered a vulnerability in IZArc versions 3.5 beta 3, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in UNACEV2.DLL when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Homepage: | http://secunia.com/ | | File Size: | 3482 | | Related CVE(s): | CVE-2005-2856 | | Last Modified: | May 22 01:25:58 2006 |
| MD5 Checksum: | c0e3ed5808f37e7343048f616bfbb1e0 |
|
| /// File Name: |
secunia-unacev2.dll.txt |
Description:
|
Secunia Research 09/05/2006 - Where Is It unacev2.dll Buffer Overflow Vulnerability.
| | Homepage: | http://secunia.com/ | | File Size: | 3442 | | Last Modified: | May 17 18:24:26 2006 |
| MD5 Checksum: | c612c5514fd3cc7eab2ad27c72522277 |
|
| /// File Name: |
LinuxSCTP2616.txt |
Description:
|
Multiple vulnerabilities exist in Linux SCTP 2.6.16 (lksctp) all resulting in kernel panics. The crafted packets must be sent to a listening endpoint in order to exploit these vulnerabilities.
| | Author: | Mu Security research team | | Homepage: | http://labs.musecurity.com/ | | File Size: | 3424 | | Last Modified: | May 17 03:24:37 2006 |
| MD5 Checksum: | 3f2625b941cd66125726a340373abb44 |
|
| /// File Name: |
glsa-200605-06.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-06 - Martijn Wargers and Nick Mott discovered a vulnerability when rendering malformed JavaScript content. The Mozilla Firefox 1.0 line is not affected. Versions less than 1.5.0.3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3414 | | Last Modified: | May 6 18:22:01 2006 |
| MD5 Checksum: | c72616aceeade6d494b4f69d0fe74241 |
|
| /// File Name: |
secunia-WinHKI.txt |
Description:
|
Secunia Research has discovered a vulnerability in WinHKI versions 1.66 and 1.67, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in ztvunacev2.dll (UNACEV2.DLL) when extracting an ACE archive containing a file with an overly long filename. This can be exploited to cause a stack-based buffer overflow when a user extracts a specially crafted ACE archive.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3408 | | Last Modified: | May 2 01:58:08 2006 |
| MD5 Checksum: | 000c8244680ac371d46388259aa339c8 |
|
| /// File Name: |
sa20147.txt |
Description:
|
Secunia Security Advisory - Keigo Yamazaki has reported a vulnerability in Sun ONE and Sun Java System Web Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/20147/ | | File Size: | 3391 | | Last Modified: | May 21 13:31:04 2006 |
| MD5 Checksum: | c70da0c190967b08159f24c9253303a7 |
|
| /// File Name: |
sa20076.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for MySQL. This fixes some vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/20076/ | | File Size: | 3347 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | a84aae42ceda26347218f214d019078d |
|
| /// File Name: |
glsa-200605-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-15 - Konstantin V. Gavrilenko discovered two flaws in the Routing Information Protocol (RIP) daemon that allow the processing of RIP v1 packets (carrying no authentication) even when the daemon is configured to use MD5 authentication or, in another case, even if RIP v1 is completely disabled. Additionally, Fredrik Widell reported that the Border Gateway Protocol (BGP) daemon contains a flaw that makes it lock up and use all available CPU when a specific command is issued from the telnet interface. Versions less than 0.98.6-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3342 | | Last Modified: | May 22 03:26:25 2006 |
| MD5 Checksum: | a38e9d18f3849daa79e90015bb3d26ed |
|
| /// File Name: |
sa19897.txt |
Description:
|
Secunia Security Advisory - SUSE has issued updates for multiple packages. These fix some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to disclose sensitive information, conduct cross-site scripting attacks, execute arbitrary SQL code, cause a DoS (Denial of Service), and to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19897/ | | File Size: | 3311 | | Last Modified: | May 1 13:19:26 2006 |
| MD5 Checksum: | 50e0b449ae9f8b9061c2669cbe4c9ad1 |
|
| /// File Name: |
CodeScanLabs_AvatarMod.txt |
Description:
|
The Avatar MOD gives portal administrators the ability to upload avatar images to be used within the forum. CodeScan located a file upload vulnerability in the avatar_upload.asp which can be exploited by a remote user to upload any arbitrary file. Affected is Avatar MOD versions 1.3 for Snitz Forums version 3.4.
| | Author: | Paul Craig | | File Size: | 3309 | | Last Modified: | May 22 01:56:53 2006 |
| MD5 Checksum: | 5daf0932a8ea7d902524b62c1129c010 |
|
| /// File Name: |
dsa-1066-1.txt |
Description:
|
Debian Security Advisory 1066-1 - It was discovered that phpbb2, a web based bulletin board, does insufficiently sanitize values passed to the "Font Colour 3" setting, which might lead to the execution of injected code by admin users.
| | Author: | Moritz Muehlenhoff | | Homepage: | http://www.debian.org/security/ | | File Size: | 3263 | | Related CVE(s): | CVE-2006-1896 | | Last Modified: | May 22 02:26:42 2006 |
| MD5 Checksum: | c3a55058b0ccee6680de14151d208c1b |
|
| /// File Name: |
sa20075.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and weaknesses have been discovered in WhatsUp Professional, which can be exploited by malicious people to gain knowledge of certain information or conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/20075/ | | File Size: | 3255 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | e3b4bba0cc6d3c5f0ac69c83c99a8e99 |
|
| /// File Name: |
sa20000.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/20000/ | | File Size: | 3243 | | Last Modified: | May 9 15:56:56 2006 |
| MD5 Checksum: | 37eee96e5a303fdd9f5b722949e60176 |
|
| /// File Name: |
MiniNukev2.x.txt |
Description:
|
MiniNuke v2.x suffers from SQL injection
| | Author: | nukedx | | Homepage: | http://www.nukedx.com/ | | File Size: | 3224 | | Last Modified: | May 29 04:02:32 2006 |
| MD5 Checksum: | cfedcf71eb157196ca54e85464aa8326 |
|
| /// File Name: |
sa19982.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in Cute Guestbook, which can be exploited by malicious people to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/19982/ | | File Size: | 3200 | | Last Modified: | May 5 20:32:43 2006 |
| MD5 Checksum: | bd24b788f73b35d80ece0c5d62354a3f |
|
| /// File Name: |
dsa-1075-1.txt |
Description:
|
Debian Security Advisory 1075-1: Hendrik Weimer discovered that awstats can execute arbitrary commands under the user id the web-server runs when users are allowed to supply arbitrary configuration files. Even though, this bug was referenced in DSA 1058 accidently, it was not fixed yet.
| | Homepage: | http://www.debian.org/security | | File Size: | 3189 | | Last Modified: | May 29 03:38:48 2006 |
| MD5 Checksum: | ac4a8ef7ad9eb83121f837629984afa1 |
|
| /// File Name: |
glsa-200605-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-12 - landser discovered a vulnerability within the remapShader command. Due to a boundary handling error in remapShader, there is a possibility of a buffer overflow. Versions less than 1.32c are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3185 | | Last Modified: | May 17 17:32:07 2006 |
| MD5 Checksum: | f7dd943268ecf61119584fb820f5c67a |
|
| /// File Name: |
AD20060509b.txt |
Description:
|
In July 2005, eEye Digital Security notified Microsoft of a critical vulnerability in the Distributed Transaction Coordinator service included with Windows, a report which culminated in the release of the MS05-051 hotfix on October 11th. Following its release, we observed that the hotfix only mitigated the vulnerability, reducing its maximum potential to a denial-of-service attack against the MSDTC service but failing to treat the underlying flaw, and we again reported the finding to Microsoft.
| | Homepage: | http://www.eeye.com/ | | File Size: | 3179 | | Related CVE(s): | CVE-2006-1184 | | Last Modified: | May 21 13:50:28 2006 |
| MD5 Checksum: | 80dc51612a1d5b26a73e441aa5290ad2 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
