Section: .. / 0611-advisories /
| /// File Name: |
sa22753.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for PHP. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/22753/ | | File Size: | 2995 | | Last Modified: | Nov 7 17:19:16 2006 |
| MD5 Checksum: | 6b49f9d1acb4931adee72af711c91b5f |
|
| /// File Name: |
etomiteCMS0612.txt |
Description:
|
Etomite CMS versions 0.6.1.2 and below suffer from SQL injection and local file inclusion vulnerabilities.
| | Author: | Alfredo Pesoli | | Related Exploit: | etm_0612_sqlinj.pl.txt | | File Size: | 2994 | | Last Modified: | Nov 17 19:55:46 2006 |
| MD5 Checksum: | ef386c55d47800928a66c7540bc6aac0 |
|
| /// File Name: |
sa22586.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for qt. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/22586/ | | File Size: | 2993 | | Last Modified: | Nov 2 10:01:38 2006 |
| MD5 Checksum: | c5126d829ceb232ce19f5f5a2e259073 |
|
| /// File Name: |
ZDI-06-036.txt |
Description:
|
ZDI-06-036: Novell Netmail User Authentication Buffer Overflow Vulnerability - The specific flaw exists within the user authentication component of Novell Netmail. The routine responsible for authenticating Netmail users lacks adequate bounds checking when processing a username containing one or more period (.) characters. The affected code is reused by several Netmail services including SMTP, POP, IMAP, HTTP and the proprietary NMAP. Each of these services is vulnerable to an exploitable stack-based buffer overflow.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2992 | | Last Modified: | Nov 3 18:06:15 2006 |
| MD5 Checksum: | 82e9c8131cd176119f057ca5ffaa3941 |
|
| /// File Name: |
sa22967.txt |
Description:
|
Secunia Security Advisory - Bas Zoetekouw has discovered a vulnerability and a weakness in chetcpasswd, which can be exploited by malicious people to bypass security restrictions and identify valid user accounts.
| | Homepage: | http://secunia.com/advisories/22967/ | | File Size: | 2991 | | Last Modified: | Nov 21 04:47:00 2006 |
| MD5 Checksum: | b00ff48473df121517c68367e210fc74 |
|
| /// File Name: |
sa22929.txt |
Description:
|
Secunia Security Advisory - SGI has issued a patch for SGI Advanced Linux Environment. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges, and by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, to cause a DoS (Denial of Service), or potentially to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/22929/ | | File Size: | 2990 | | Last Modified: | Nov 16 10:09:27 2006 |
| MD5 Checksum: | 06e8823bf67300a9c75275b1ec45a6c9 |
|
| /// File Name: |
sa22678.txt |
Description:
|
Secunia Security Advisory - securfrog has discovered some vulnerabilities in TikiWiki, which can be exploited by malicious people to disclose certain sensitive information and to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/22678/ | | File Size: | 2989 | | Last Modified: | Nov 2 10:01:38 2006 |
| MD5 Checksum: | 91053f105c1ddb63640257f1a2daa45a |
|
| /// File Name: |
sa23047.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in MailEnable IMAP service, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23047/ | | File Size: | 2988 | | Last Modified: | Nov 25 23:47:38 2006 |
| MD5 Checksum: | 6e4dba76c032a8035b331233195e615b |
|
| /// File Name: |
sa22865.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffié and Benjamin Mossé have reported some vulnerabilities in INFINICART, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/22865/ | | File Size: | 2984 | | Last Modified: | Nov 15 22:19:38 2006 |
| MD5 Checksum: | 980faedee4d8efedd528310fc0bc32a6 |
|
| /// File Name: |
sa22897.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffié and Benjamin Mossé have reported some vulnerabilities in E-Calendar Pro, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/22897/ | | File Size: | 2984 | | Last Modified: | Nov 16 10:09:27 2006 |
| MD5 Checksum: | 1d51eea3fd768f9f2d220e2143ef1b32 |
|
| /// File Name: |
sa22741.txt |
Description:
|
Secunia Security Advisory - Andrew Christensen has reported a vulnerability in IBM Lotus Domino, which can be exploited by malicious people to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/22741/ | | File Size: | 2980 | | Last Modified: | Nov 10 11:02:24 2006 |
| MD5 Checksum: | 9bf56b253c3fe81fa7e1820e9a716b06 |
|
| /// File Name: |
sa22669.txt |
Description:
|
Secunia Security Advisory - HP has acknowledged some vulnerabilities in VirtualVault and Webproxy, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/22669/ | | File Size: | 2974 | | Last Modified: | Nov 2 10:01:38 2006 |
| MD5 Checksum: | 505a5c645f60ca9d2a030301fa87870f |
|
| /// File Name: |
sa22908.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Citrix Access Gateway appliances, which can be exploited by malicious people to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/22908/ | | File Size: | 2967 | | Last Modified: | Nov 15 22:19:38 2006 |
| MD5 Checksum: | dce7d83f77f8ee8d4e106bbb75fe266b |
|
| /// File Name: |
sa22716.txt |
Description:
|
Secunia Security Advisory - David Vieira-Kurz has reported some vulnerabilities in xenis.creator, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/22716/ | | File Size: | 2966 | | Last Modified: | Nov 13 10:24:28 2006 |
| MD5 Checksum: | 19f08b59253d04083f80680c34f8962e |
|
| /// File Name: |
sa23063.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffié and Benjamin Mossé have reported some vulnerabilities in JiRo's Link Manager, which can be exploited by malicious people to conduct script insertion and SQL injections attacks.
| | Homepage: | http://secunia.com/advisories/23063/ | | File Size: | 2965 | | Last Modified: | Nov 25 23:47:38 2006 |
| MD5 Checksum: | e988d037e1d77e65532cdf1d565df3d6 |
|
| /// File Name: |
glsa-200611-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200611-11 - In numerous files TikiWiki provides an empty sort_mode parameter, causing TikiWiki to display additional information, including database authentication credentials, in certain error messages. TikiWiki also improperly sanitizes the url request variable sent to tiki-featured_link.php. Versions less than 1.9.6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2963 | | Last Modified: | Nov 21 04:52:10 2006 |
| MD5 Checksum: | 96b3aabeda2d884aaebb7cf3c7d0645e |
|
| /// File Name: |
sa22818.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in the 3Com SuperStack 3 Switch 4400 family, which can be exploited by malicious people to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/22818/ | | File Size: | 2957 | | Last Modified: | Nov 15 22:19:38 2006 |
| MD5 Checksum: | 1a767d179bea39b2da40ae7cd84fccb0 |
|
| /// File Name: |
dsa-1216-1.txt |
Description:
|
Debian Security Advisory 1216-1 - Eric Romang discovered that the flexbackup backup tool creates temporary files in an insecure manner, which allows denial of service through a symlink attack.
| | Homepage: | http://www.debian.org/security | | File Size: | 2956 | | Related CVE(s): | CVE-2006-4802 | | Last Modified: | Nov 21 02:18:54 2006 |
| MD5 Checksum: | a4d98f65c30a4a5a8c1a0517db5425d8 |
|
| /// File Name: |
sa22987.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffie and Benjamin Mosse have reported some vulnerabilities in Classified System 2004, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/22987/ | | File Size: | 2954 | | Last Modified: | Nov 21 19:45:15 2006 |
| MD5 Checksum: | e14bdef3c45ff1f9a371a78a7ffd2e64 |
|
| /// File Name: |
glsa-200611-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200611-05 - Paul Szabo reported that an incorrect seteuid() call after the chdir() function can allow an attacker to access a normally forbidden directory, in some very particular circumstances, for example when the NFS-hosted targeted directory is not reachable by the client-side root user. Additionally, some potentially exploitable unchecked setuid() calls were also fixed. Versions less than 0.17-r4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2950 | | Last Modified: | Nov 13 11:08:34 2006 |
| MD5 Checksum: | 009b4341f09b3bc65697cf677e71f060 |
|
| /// File Name: |
sa22797.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/22797/ | | File Size: | 2950 | | Last Modified: | Nov 10 11:02:24 2006 |
| MD5 Checksum: | 9f5278472a8e3907b4aa822e1521792b |
|
| /// File Name: |
10.31.06-2.txt |
Description:
|
iDefense Security Advisory 10.31.06 - Sophos Anti-Virus Petite File Denial of Service Vulnerability: Remote exploitation of a denial of service vulnerability in version 5.1 of Sophos Anti-Virus could result in unusable system conditions. The problem manifests itself when the scanning engine encounters an executable compressed with petite that contains a large number of sections.
| | Homepage: | http://www.idefense.com/intelligence/vulnerabilities/ | | File Size: | 2943 | | Last Modified: | Nov 2 19:32:42 2006 |
| MD5 Checksum: | ec154f68f717003f05c2ccf57ada6f55 |
|
| /// File Name: |
sa23128.txt |
Description:
|
Secunia Security Advisory - Paisterist has discovered two vulnerabilities in PHP-Nuke, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/23128/ | | File Size: | 2939 | | Last Modified: | Nov 29 10:21:40 2006 |
| MD5 Checksum: | 4bdc4e8611eac06d250a0132ecf6e2f4 |
|
| /// File Name: |
sa22786.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffié and Benjamin Mossé have discovered some vulnerabilities in FreeWebshop.org Script, which can be exploited by malicious people to disclose sensitive information or conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/22786/ | | File Size: | 2938 | | Last Modified: | Nov 10 11:02:24 2006 |
| MD5 Checksum: | 174fc2f1eb02ca9d277013453cbac354 |
|
| /// File Name: |
sa22902.txt |
Description:
|
Secunia Security Advisory - Laurent Gaffié and Benjamin Mossé have reported some vulnerabilities in BlogMe, which can be exploited by malicious people to conduct script insertion and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/22902/ | | File Size: | 2937 | | Last Modified: | Nov 15 22:19:38 2006 |
| MD5 Checksum: | 73a74961a58c1847e3dd7ca2e876a3b9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
