Section: .. / 0703-advisories /
| /// File Name: |
sa24681.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in MailDwarf, which can be exploited by malicious people to conduct cross-site scripting attacks and to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24681/ | | File Size: | 2457 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | b11c18a7306d002c1d71198135304927 |
|
| /// File Name: |
sa24682.txt |
Description:
|
Secunia Security Advisory - M. Shirk has discovered a vulnerability in BrightStor ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24682/ | | File Size: | 2503 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 7a6189f3c6a914f0c44c41123a1e06d0 |
|
| /// File Name: |
sa24684.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/HiCommand products, which can be exploited by malicious, local users to disclose certain sensitive information.
| | Homepage: | http://secunia.com/advisories/24684/ | | File Size: | 2811 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 8002a5b2e558b5dba061b6af00aeae1d |
|
| /// File Name: |
sa24687.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in LDAP Account Manager, which can be exploited by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/24687/ | | File Size: | 2305 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 4dde6fe9a9be7558e1e9b9c7f337f220 |
|
| /// File Name: |
sa24691.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Minna De Office, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/24691/ | | File Size: | 2286 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | b9f0b8026fed94d2db9a73c3f49216fc |
|
| /// File Name: |
sa24693.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Hitachi products, which can be exploited by malicious users to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/24693/ | | File Size: | 2664 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 9992b1acc9b865ce6b728e857e2d8d28 |
|
| /// File Name: |
sa24695.txt |
Description:
|
Secunia Security Advisory - Zeni Susanto has discovered a vulnerability in Advanced Login, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24695/ | | File Size: | 2378 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 052666f3ea08f692c100499d237bee37 |
|
| /// File Name: |
sa24696.txt |
Description:
|
Secunia Security Advisory - ThE dE@Th has discovered several vulnerabilities in Kaqoo Auction Software Free Edition, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24696/ | | File Size: | 3386 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | e7a9aef069e642a04e32d111941573e8 |
|
| /// File Name: |
sa24702.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Flyspray, which can be exploited by malicious people to bypass certain security restrictions and to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/24702/ | | File Size: | 2593 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 73df744c8860fa3e2b9f52a82405fff9 |
|
| /// File Name: |
sa24703.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Sun Solaris and Sun Java Enterprise System, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24703/ | | File Size: | 2496 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | f545428c6f5ae933258c224026334cb8 |
|
| /// File Name: |
sa24707.txt |
Description:
|
Secunia Security Advisory - yearsilent has reported a security issue in ManageEngine Firewall Analyzer, which can be exploited by malicious users to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/24707/ | | File Size: | 2166 | | Last Modified: | Apr 2 04:42:23 2007 |
| MD5 Checksum: | 0455ac8ff90ab963279b4147f0f9fd37 |
|
| /// File Name: |
sava-sql.txt |
Description:
|
Sava's Guestbook version 23.11.2006 is susceptible to SQL injection attacks.
| | Author: | Belsec Team | | Homepage: | http://belsec.com/ | | File Size: | 1189 | | Last Modified: | Mar 9 00:23:57 2007 |
| MD5 Checksum: | dac7a2334b7ccd5b386bed5385ea0e81 |
|
| /// File Name: |
secunia-evolution.txt |
Description:
|
Secunia Research has discovered a vulnerability in Evolution, which can be exploited by malicious people to potentially compromise a vulnerable system. A format string error in the "write_html()" function in calendar/gui/ e-cal-component-memo-preview.c when displaying a memo's categories can potentially be exploited to execute arbitrary code via a specially crafted shared memo containing format specifiers. Evolution version 2.8.2.1 is affected. Other versions may also be affected.
| | Author: | Ulf Harnhammar | | Homepage: | http://secunia.com/ | | File Size: | 4462 | | Related CVE(s): | CVE-2007-1002 | | Last Modified: | Mar 22 02:43:31 2007 |
| MD5 Checksum: | c25dd0d5044c196a88162da016af7cb5 |
|
| /// File Name: |
secunia-interactual.txt |
Description:
|
Secunia Research has discovered a vulnerability in InterActual Player and CinePlayer, which can be exploited by malicious people to compromise a user's system. Affected software include InterActual Player 2.60.12.0717 and CinePlayer 3.2.Other versions may also be affected.
| | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4786 | | Related CVE(s): | CVE-2007-0348 | | Last Modified: | Mar 22 02:37:34 2007 |
| MD5 Checksum: | 41fce4c67b06f5e16221aa2c30b2dd91 |
|
| /// File Name: |
secunia-xmms.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in XMMS, which can be exploited by malicious people to compromise a user's system. Version 1.2.10 for Linux is affected. Other versions may also be affected.
| | Author: | Sven Krewitt | | Homepage: | http://secunia.com/ | | File Size: | 4578 | | Related CVE(s): | CVE-2007-0653, CVE-2007-0654 | | Last Modified: | Mar 22 02:45:07 2007 |
| MD5 Checksum: | b2798eb352e52bac1f567653e0e2c1dc |
|
| /// File Name: |
shk-004.txt |
Description:
|
Computer Associates (CA) Brightstor Backup suffers from a remote code execution vulnerability in Mediasvr.exe.
| | Author: | M. Shirk | | Homepage: | zhttp://www.shirkdog.us/ | | File Size: | 2097 | | Last Modified: | Apr 2 23:48:21 2007 |
| MD5 Checksum: | 80804597ada65b6b15b178e9a5717a62 |
|
| /// File Name: |
signkorea-activex.txt |
Description:
|
SignKorea's SKCommAX ActiveX Control Module version 7.2.0.2 and SKCommAX ActiveX Control Module(3280) version 6.6.0.1 suffer from a buffer overflow vulnerability.
| | Author: | GYU TAE PARK | | File Size: | 1757 | | Last Modified: | Mar 29 04:20:12 2007 |
| MD5 Checksum: | 158e488e8975c281596948b634b1dbdf |
|
| /// File Name: |
SSRT071306.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com | | File Size: | 11797 | | Last Modified: | Mar 6 01:54:23 2007 |
| MD5 Checksum: | b592ae245b56c47aa08c42b73055a4d5 |
|
| /// File Name: |
TA07-065A.txt |
Description:
|
Technical Cyber Security Alert TA07-065A - Apple QuickTime contains multiple vulnerabilities. Exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4523 | | Last Modified: | Mar 9 01:22:35 2007 |
| MD5 Checksum: | f8320697666b1b2ebc497fa01dfeb98c |
|
| /// File Name: |
TA07-072A.txt |
Description:
|
Technical Cyber Security Alert TA07-072A - Apple has released Security Update 2007-003 to correct multiple vulnerabilities affecting Apple Mac OS X and Mac OS X Server. The most serious of these vulnerabilities may allow a remote attacker to execute arbitrary code. Attackers may take advantage of the less serious vulnerabilities to bypass security restrictions or cause a denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4644 | | Last Modified: | Mar 20 03:57:08 2007 |
| MD5 Checksum: | 5818caa857489bc6d013b81030b14eeb |
|
| /// File Name: |
TA07-089A.txt |
Description:
|
Technical Cyber Security Alert TA07-089A - A stack buffer overflow exists in the code that Microsoft Windows uses to processes animated cursor files. Specifically, Microsoft Windows fails to properly validate the size of an animated cursor file header supplied in animated cursor files. Animated cursor files can be included with HTML files. For instance, a web site can use an animated cursor file to specify the icon that the mouse pointer should use when hovering over a hyperlink. Because of this, malicious web pages and HTML email messages can be used to exploit this vulnerability. In addition, animated cursor files are automatically parsed by Windows Explorer when the containing folder is opened or the file is used as a cursor. Because of this, opening a folder that contains a specially crafted animated cursor file will also trigger this vulnerability. Note that Windows Explorer will process animated cursor files with several different file extensions, such as .ani, .cur, or .ico. Furthermore, Windows will automatically render animated cursor files referenced by HTML documents regardless of the animated cursor file extension. This vulnerability is actively being exploited.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4346 | | Last Modified: | Apr 3 00:28:13 2007 |
| MD5 Checksum: | 83545faadfb01d5347176a9c86e57d39 |
|
| /// File Name: |
truecrypt-dos.txt |
Description:
|
It seems to be possible to perform various denial of service attacks on a Linux computer running TrueCrypt version 4.3 in setuid root mode, or possibly introduce evil binaries into normally trusted locations.
| | Author: | Tim Rees | | File Size: | 3357 | | Last Modified: | Mar 29 08:59:34 2007 |
| MD5 Checksum: | db98fbeafa6162466a942f5d230e0a4d |
|
| /// File Name: |
TSRT-07-03.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of America Online with Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. Affected software is America Online 9.0 Security Edition.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2659 | | Related CVE(s): | CVE-2006-5820 | | Last Modified: | Apr 3 00:33:39 2007 |
| MD5 Checksum: | feed154481807e4597344131ae4096a8 |
|
| /// File Name: |
unrarlib-overflow.txt |
Description:
|
Unrarlib version 0.4.0 suffers from a local buffer overflow condition.
| | Author: | starcadi | | File Size: | 1598 | | Last Modified: | Mar 14 03:22:53 2007 |
| MD5 Checksum: | 722cf49eec9653ea65c0736e23ef0c19 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
