Section: .. / 0611-advisories /
| /// File Name: |
sa23100.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for horde-ingo. This fixes a vulnerability, which can be exploited by malicious users to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23100/ | | File Size: | 2339 | | Last Modified: | Nov 28 15:12:33 2006 |
| MD5 Checksum: | 600289d787619ac4e164ae2b21ff86e9 |
|
| /// File Name: |
sa23019.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for qmailadmin. This fixes a vulnerability, which potentially can be exploited by malicious people to a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23019/ | | File Size: | 2338 | | Last Modified: | Nov 25 23:47:38 2006 |
| MD5 Checksum: | f752d55e9c26266d7cfc14d76af212ad |
|
| /// File Name: |
sa23089.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for fvwm. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/23089/ | | File Size: | 2332 | | Last Modified: | Nov 25 23:47:38 2006 |
| MD5 Checksum: | dc66baba7769f52f34f0f659467202d0 |
|
| /// File Name: |
sa23043.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for avahi. This fixes a vulnerability, which can be exploited by malicious, local users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/23042/ | | File Size: | 2330 | | Last Modified: | Nov 21 21:27:48 2006 |
| MD5 Checksum: | 4a7304501ed9f50babcc531a27e75073 |
|
| /// File Name: |
sa22941.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for libpng. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/22941/ | | File Size: | 2324 | | Last Modified: | Nov 20 11:05:00 2006 |
| MD5 Checksum: | 5e5c2babefbe4cf423b617070e3d5051 |
|
| /// File Name: |
sa22746.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Fedora Core, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/22746/ | | File Size: | 2322 | | Last Modified: | Nov 6 13:07:49 2006 |
| MD5 Checksum: | 78b5a51dec49b77816d4b3f83415a163 |
|
| /// File Name: |
sa23040.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23040/ | | File Size: | 2310 | | Last Modified: | Nov 21 19:45:15 2006 |
| MD5 Checksum: | 2826617d93e0892548b7529782706b60 |
|
| /// File Name: |
webmail-xss.txt |
Description:
|
The Web Mail platform by "Mirapoint" suffers from a cross site scripting flaw.
| | Author: | Tal Argoni | | File Size: | 2306 | | Last Modified: | Nov 2 20:41:29 2006 |
| MD5 Checksum: | e6a6b2cc18b61d5b4529491d0d66c77f |
|
| /// File Name: |
sa22889.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for libpng. This fixes a vulnerability, which can be exploited to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/22889/ | | File Size: | 2292 | | Last Modified: | Nov 16 10:09:27 2006 |
| MD5 Checksum: | 81334e1b7e3b459d196d60533eadeddb |
|
| /// File Name: |
OpenPKG-SA-2006.034.txt |
Description:
|
OpenPKG Security Advisory OpenPKG-SA-2006.034 - Miloslav Trmac from Red Hat discovered a buffer overflow in GNU Texinfo. The flaw was found in a function used by Texinfo's texi2dvi and texindex commands. An attacker could construct a carefully crafted Texinfo file that could cause texi2dvi or texindex to crash or possibly execute arbitrary code when opened.
| | Homepage: | http://www.openpkg.org/security/ | | File Size: | 2235 | | Related CVE(s): | CVE-2006-4810 | | Last Modified: | Nov 16 12:18:51 2006 |
| MD5 Checksum: | 357716bd18fe692b04d953df901466f2 |
|
| /// File Name: |
OpenPKG-SA-2006-036.txt |
Description:
|
OpenPKG Security Advisory OpenPKG-SA-2006.036 - As confirmed by the vendor, a Denial of Service (DoS) vulnerability exists in the PNG image format library libpng, versions 1.0.6 through 1.2.12 and 1.0.20. The bug is in the decoder for the sPLT ("suggested palette") chunk and can lead to crashes and, accordingly, a DoS, when an application using libpng for PNG processing displays a specially crafted PNG image.
| | Homepage: | http://www.openpkg.org/security/ | | File Size: | 2231 | | Related CVE(s): | CVE-2006-5793 | | Last Modified: | Nov 18 20:46:25 2006 |
| MD5 Checksum: | f04fdad473b87488d81871d58148d512 |
|
| /// File Name: |
major_rls36.txt |
Description:
|
dev4u CMS suffers from multiple SQL injection and cross site scripting issues.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2205 | | Last Modified: | Nov 20 11:12:29 2006 |
| MD5 Checksum: | eeeee3b9863e1b85fdf8041defc6873e |
|
| /// File Name: |
major_rls31.txt |
Description:
|
Xenis.creator CMS suffers from multiple cross site scripting and SQL injection flaws.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2184 | | Last Modified: | Nov 6 00:21:53 2006 |
| MD5 Checksum: | 5855653303157a4647bf0cb8d3e99455 |
|
| /// File Name: |
googleInclusion.txt |
Description:
|
The Google Crawler could be leveraged as an anonymizer for launching remote file inclusion attacks.
| | Author: | Noam Rathaus | | File Size: | 2078 | | Last Modified: | Nov 26 22:14:54 2006 |
| MD5 Checksum: | 87dafacbeaf0cfd1da7f16f5f388b377 |
|
| /// File Name: |
major_rls34.txt |
Description:
|
Plesk versions 8.0.1 and below suffer from multiple cross site scripting issues.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 2072 | | Last Modified: | Nov 17 19:07:46 2006 |
| MD5 Checksum: | 0b168cfe4aaea915b7e9599f3cdb1074 |
|
| /// File Name: |
TSRT-06-13.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable device installations of HP OpenView Client Configuraton Manager (CCM). Authentication is not required to exploit this vulnerability. The CCM server is not affected. OpenView Client Configuration Manager version 1.0 is affected.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2063 | | Related CVE(s): | CVE-2006-5782 | | Last Modified: | Nov 8 22:32:32 2006 |
| MD5 Checksum: | a9fb0a1d76c98986f4f646ac266020e2 |
|
| /// File Name: |
iplanet-xss.txt |
Description:
|
The iPlanet Messaging Server Messenger Express by "Sun" suffers from a cross site scripting flaw.
| | Author: | Tal Argoni | | File Size: | 2010 | | Last Modified: | Nov 2 20:40:55 2006 |
| MD5 Checksum: | e513e3a78a7efc79a99c6142d1beb6b7 |
|
| /// File Name: |
Armorize-ADV-2006-0008.txt |
Description:
|
Armorize Technologies Security Advisory Armorize-ADV-2006-0008 - ZendGData Preview version 0.2.0 is susceptible to a cross site scripting vulnerability.
| | Author: | Armorize | | Homepage: | http://www.armorize.com | | File Size: | 1996 | | Last Modified: | Nov 2 20:44:08 2006 |
| MD5 Checksum: | ccf50576537bf0e4315931f35d89e2f0 |
|
| /// File Name: |
walla-xss.txt |
Description:
|
The Web Mail service by "Walla! Communications LTD" suffers from a cross site scripting flaw.
| | Author: | Tal Argoni | | File Size: | 1906 | | Last Modified: | Nov 2 20:42:54 2006 |
| MD5 Checksum: | a14fb3f6596c2db75bc4714e0e553547 |
|
| /// File Name: |
SAP-multiple.txt |
Description:
|
The SAP Web Application Server suffers from denial of service, remote file disclosure, and local privilege escalation vulnerabilities.
| | Author: | Nicob | | File Size: | 1904 | | Last Modified: | Nov 5 23:52:43 2006 |
| MD5 Checksum: | fb3d3058c79e768dd0f000090523bd13 |
|
| /// File Name: |
major_rls32.txt |
Description:
|
phpComasy CMS versions 0.7.9 pre and below suffer from multiple cross site scripting issues.
| | Author: | David "Aesthetico" Vieira-Kurz | | Homepage: | http://www.majorsecurity.de | | File Size: | 1888 | | Last Modified: | Nov 7 00:35:49 2006 |
| MD5 Checksum: | 061f7fd11405e83eab3530d4c62e69b0 |
|
| /// File Name: |
openssh45.txt |
Description:
|
OpenSSH 4.5 has been released addressing a bug in the sshd privilege separation monitor that weakened its verification of successful authentication.
| | Homepage: | http://www.openssh.com/ | | Related File: | openssh-4.5p1.tar.gz | | File Size: | 1873 | | Last Modified: | Nov 9 01:26:34 2006 |
| MD5 Checksum: | 432780f91c42412fd8b5eeb9057c1d85 |
|
| /// File Name: |
WR254-CA-dns.txt |
Description:
|
The Hawking Technology wireless router model WR254-CA contains a hardcoded DNS server address which is used first even when an ISP dns server is specified, thus sending information to a potentially hostile server about what sites you are connecting to.
| | Author: | Nikolai Grigoriev | | File Size: | 1860 | | Last Modified: | Nov 1 17:34:23 2006 |
| MD5 Checksum: | c026af51dc3168fb4288dada6aceabc3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
