Section: .. / 0708-advisories /
| /// File Name: |
sa26652.txt |
Description:
|
Secunia Security Advisory - R00T[ATI] has discovered a vulnerability in NMDeluxe, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26652/ | | File Size: | 2460 | | Last Modified: | Aug 31 18:50:26 2007 |
| MD5 Checksum: | 7fc4cd41223c6cf92c220b13e43e4e91 |
|
| /// File Name: |
sa26657.txt |
Description:
|
Secunia Security Advisory - Micha Lenk has reported a security issue in Backup Manager, which can be exploited by malicious, local users to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/26657/ | | File Size: | 2436 | | Last Modified: | Aug 31 18:50:26 2007 |
| MD5 Checksum: | bbf94fe08ec4861329f9905c64d71024 |
|
| /// File Name: |
safari-upload.txt |
Description:
|
Safari version 3.0.3 allows for arbitrary file uploads.
| | Author: | laurent gaffi | | File Size: | 1093 | | Last Modified: | Aug 16 10:28:27 2007 |
| MD5 Checksum: | 229284aecd6ed83bb4917e9a29a1a241 |
|
| /// File Name: |
sidvault-overflow.txt |
Description:
|
The SIDVault LDAP server is susceptible to a remote buffer overflow vulnerability.
| | Author: | Joxean Koret | | Related Exploit: | exploit.py.txt | | File Size: | 2511 | | Last Modified: | Aug 27 17:15:55 2007 |
| MD5 Checksum: | 9da0b3d8c8d96f41560d50ebbd525941 |
|
| /// File Name: |
soldatdos.txt |
Description:
|
The Soldat game versions 1.4.2 and below and dedicated server versions 2.6.2 and below suffer from remote denial of service vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | soldatdos.zip | | File Size: | 4769 | | Last Modified: | Aug 24 03:41:30 2007 |
| MD5 Checksum: | 0db9a44c769eee7ba9011ea32d395f0d |
|
| /// File Name: |
SSRT061260.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Operations Manager for Windows (OVOW) with the OpenView Operations (OVO) add on module for OpenView Operations-Business Availability Center (OVO-BAC) integration running Shared Trace Service. The vulnerability could be remotely exploited to execute arbitrary code.
| | Homepage: | http://www.hp.com/ | | File Size: | 6525 | | Last Modified: | Aug 16 10:43:04 2007 |
| MD5 Checksum: | 9e3666ef99dd1e1a4f75453786e8ca18 |
|
| /// File Name: |
SSRT071432.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited locally by an authorized user to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6097 | | Last Modified: | Aug 8 06:31:19 2007 |
| MD5 Checksum: | 5c175efff24fa477038a94d061aeebcc |
|
| /// File Name: |
SSRT071437.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited remotely to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6231 | | Last Modified: | Aug 8 06:30:48 2007 |
| MD5 Checksum: | 7c65d7d639fe44bf652593ea71456e15 |
|
| /// File Name: |
SSRT071442.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in HP-UX running the Ignite-UX or the DynRootDisk (DRD) get_system_info command. The vulnerable command can change system networking parameters without notification.
| | Homepage: | http://www.hp.com/ | | File Size: | 7608 | | Last Modified: | Aug 28 04:39:42 2007 |
| MD5 Checksum: | 067196925602247164561609fce2ee65 |
|
| /// File Name: |
SSRT071449.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to poison the DNS cache.
| | Homepage: | http://www.hp.com/ | | File Size: | 8000 | | Related CVE(s): | CVE-2007-2926 | | Last Modified: | Aug 8 09:22:58 2007 |
| MD5 Checksum: | 39021d82f847d79c5714b130df3847bc |
|
| /// File Name: |
SSRT071456.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com/ | | File Size: | 10848 | | Last Modified: | Aug 23 23:17:10 2007 |
| MD5 Checksum: | 10c88caf777d574c87c69af08736ea0e |
|
| /// File Name: |
SUSE-SA-2007-050.txt |
Description:
|
SUSE Security Announcement - The Opera web-browser allows an attacker to execute arbitrary code by providing an invalid pointer to a virtual function in JavaScript. This bug can be exploited automatically when a user visits a web-site that contains the attacker's JavaScript code.
| | Homepage: | http://www.suse.com | | File Size: | 13290 | | Related CVE(s): | CVE-2007-4367 | | Last Modified: | Aug 31 18:49:50 2007 |
| MD5 Checksum: | 67d50149e61c18e0f82a4f187d83b23e |
|
| /// File Name: |
SYMSA-2007-007.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2007-007 - Treo Smartphones running the Palm OS are vulnerable to a remote Denial of Service attack while connected to data networks allowing inbound ICMP traffic. It is possible for an attacker to launch this attack from the Internet by sending specially crafted ICMP requests at the targeted phone's assigned IP address.
| | Author: | J.R. Wikes | | Homepage: | http://www.symantec.com/research | | File Size: | 4401 | | Related CVE(s): | CVE-2007-4213 | | Last Modified: | Aug 21 05:22:21 2007 |
| MD5 Checksum: | 7cead007b01ed150c7003d1fc526b74c |
|
| /// File Name: |
TA07-226A.txt |
Description:
|
Technical Cyber Security Alert TA07-226A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Internet Explorer, Windows Media Player, Office, Office for Mac, XML Core Services, Visual Basic, Virtual PC, and Virtual Server. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4667 | | Last Modified: | Aug 15 05:53:51 2007 |
| MD5 Checksum: | 5b3f94b1afad87da35c15909715d82cc |
|
| /// File Name: |
TA07-235A.txt |
Description:
|
Technical Cyber Security Alert TA07-235A - Multiple buffer overflow vulnerabilities and an integer overflow vulnerability have been discovered in the RPC interfaces used by various components in Trend Micro's ServerProtect software package. These vulnerabilities could be exploited by a remote attacker with the ability to supply a specially crafted RPC request to the system running the affected software.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3936 | | Last Modified: | Aug 24 03:31:01 2007 |
| MD5 Checksum: | 56b3ab279658bd0f3461745c2ff36629 |
|
| /// File Name: |
tikiwiki-xss.txt |
Description:
|
Tikiwiki version 1.9.7 is susceptible to cross site scripting attacks.
| | Author: | Josh Morin | | File Size: | 389 | | Last Modified: | Aug 25 20:53:29 2007 |
| MD5 Checksum: | 3a4c038a49657fd74799d0ea00cc40b7 |
|
| /// File Name: |
TISA-2007-09-Public.txt |
Description:
|
Team Intell Security Advisory TISA2007-09-Public - Microsoft Windows suffers from multiple improper file path handling issues.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 9402 | | Last Modified: | Aug 30 10:10:09 2007 |
| MD5 Checksum: | 65a5036b96d93b9e78d3e9adc4ecc4f1 |
|
| /// File Name: |
TISA2007-03.txt |
Description:
|
Joomla CMS version 1.0.12 suffers form a session fixation issue in the backend administration interface.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 5196 | | Last Modified: | Aug 12 00:06:24 2007 |
| MD5 Checksum: | b3c340b41285b6914a9a6d12bc98fdd4 |
|
| /// File Name: |
TISA2007-04-Public.txt |
Description:
|
DVD Rental System version 5.1 suffers from cross site scripting and cross site request forgery vulnerabilities.
| | Author: | Edi Strosar | | Homepage: | http://www.teamintell.com/ | | File Size: | 3008 | | Last Modified: | Aug 8 07:12:20 2007 |
| MD5 Checksum: | 7fcb752628b3c00797b33ae256d9f653 |
|
| /// File Name: |
TISA2007-08-Public.pdf |
Description:
|
Birokrat version 7.4 is susceptible to a heap corruption vulnerability.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 36796 | | Last Modified: | Aug 1 03:02:29 2007 |
| MD5 Checksum: | 4aa0616ed0911ff2609a4ff70a2d4c87 |
|
| /// File Name: |
TISA2007-13-Public.txt |
Description:
|
Team Intell Security Advisory TISA2007-13-Public - Multiple eScan products suffer from insecure file permissions.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 3337 | | Last Modified: | Aug 30 10:11:03 2007 |
| MD5 Checksum: | 5ca43c150a8716ff8903d7c997b8bf79 |
|
| /// File Name: |
tlbinf32-exec.txt |
Description:
|
The TypeLib Information object library, implemented in TlbInf32.dll, suffers from a code execution vulnerability.
| | Author: | Brett Moore | | Homepage: | http://security-assessment.com/ | | File Size: | 3496 | | Last Modified: | Aug 16 10:54:07 2007 |
| MD5 Checksum: | 8b8dc31409539f5c54ad3f777ade2d98 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
