Section: .. / 0708-advisories /
| /// File Name: |
ZDI-07-046.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Windows Media Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists during the parsing of malformed skin files (WMZ). A size compressed / decompressed size mismatch can result in an under allocated heap buffer which can be leveraged by an attacker to eventually execute arbitrary code under the context of the current user.
| | Author: | Piotr Bania | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3295 | | Related CVE(s): | CVE-2007-3037 | | Last Modified: | Aug 15 06:05:13 2007 |
| MD5 Checksum: | 84f2d95dea182d5d542a792c2aad1a40 |
|
| /// File Name: |
n.runs-SA-2007.027.txt |
Description:
|
A remotely exploitable vulnerability has been discovered in the file parsing engine of Sophos AntiVirus versions prior to 2.48.0. The bug exists during the file parsing of UPX packed files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3290 | | Last Modified: | Aug 25 21:09:38 2007 |
| MD5 Checksum: | b0835afbe5caf8f5efb6789787aef3df |
|
| /// File Name: |
ZDI-07-049.txt |
Description:
|
Multiple vulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of EMC Networker. Authentication is not required to exploit this vulnerability.
| | Author: | Tenable Network Security | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3282 | | Related CVE(s): | CVE-2007-3618 | | Last Modified: | Aug 21 22:47:48 2007 |
| MD5 Checksum: | 73df57f0606605ed45fd5cc1e84e1ea6 |
|
| /// File Name: |
sa26569.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in Live for Speed, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26569/ | | File Size: | 3278 | | Last Modified: | Aug 27 22:57:16 2007 |
| MD5 Checksum: | ed69f534504dcc6e46c40ed78bf1b993 |
|
| /// File Name: |
sa26584.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in Bugzilla, which can be exploited by malicious users to inject shell commands, and by malicious people to conduct cross-site scripting attacks and to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/26584/ | | File Size: | 3246 | | Last Modified: | Aug 24 22:57:16 2007 |
| MD5 Checksum: | 588892d656cc0fd2d62136d72bc58965 |
|
| /// File Name: |
hispasec-unreal.txt |
Description:
|
HISPASEC Security Advisory - X-Diesel Unreal Commander version 0.92 suffers from name spoofing and directory traversal vulnerabilities.
| | Author: | Gynvael Coldwind | | Homepage: | http://blog.hispasec.com/lab/ | | File Size: | 3239 | | Last Modified: | Aug 24 03:16:53 2007 |
| MD5 Checksum: | a7b9943a9c61d14e729bad7f2035bcea |
|
| /// File Name: |
MDKSA-2007-167-1.txt |
Description:
|
Mandriva Linux Security Advisory - David Thiel discovered that libvorbis did not correctly verify the size of certain headers, and did not correctly clean up a broken stream. If a user were tricked into processing a specially crafted Vorbis stream, a remote attacker could possibly cause a denial of service or execute arbitrary code with the user's privileges.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3238 | | Related CVE(s): | CVE-2007-3106, CVE-2007-4029 | | Last Modified: | Aug 21 22:14:33 2007 |
| MD5 Checksum: | c20786b35d77d28552cf809628bf4b16 |
|
| /// File Name: |
sa26533.txt |
Description:
|
Secunia Security Advisory - imei addmimistrator has reported some vulnerabilities in OlateDownload, which can be exploited by malicious people to bypass certain security restrictions, conduct SQL injection attacks, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26533/ | | File Size: | 3234 | | Last Modified: | Aug 21 22:07:00 2007 |
| MD5 Checksum: | 39092988e4d854d5d512df0a8df5fbda |
|
| /// File Name: |
ZDI-07-045.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Authentication is not required to exploit this vulnerability. The specific flaw exists in nwspool.dll which is responsible for handling RPC requests through the spools named pipe. Several RPC functions exposed by this DLL do not properly verify argument sizes and subsequently copy user-supplied data to a stack-based buffer resulting in an exploitable overflow.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3179 | | Last Modified: | Aug 8 09:39:11 2007 |
| MD5 Checksum: | cd418df7def7fa08d91aa73fdbe6c118 |
|
| /// File Name: |
glsa-200708-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-11 - Stefan Esser discovered errors with evidence of memory corruption in the code parsing the headers. Several independent researchers also reported errors involving the handling of HTTP headers, the mod_auth and mod_scgi modules, and the limitation of active connections. Versions less than 1.4.16 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3153 | | Related CVE(s): | CVE-2007-3946, CVE-2007-3947, CVE-2007-3948, CVE-2007-3949, CVE-2007-3950 | | Last Modified: | Aug 17 08:06:36 2007 |
| MD5 Checksum: | 9bd27ce7a20101b5b936e1a7c226f9cb |
|
| /// File Name: |
sa26402.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun JRE, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26402/ | | File Size: | 3130 | | Last Modified: | Aug 17 03:17:23 2007 |
| MD5 Checksum: | 22d66339b28987da12c44bc7c5fdb604 |
|
| /// File Name: |
sa26521.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for tcpdump. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26521/ | | File Size: | 3126 | | Last Modified: | Aug 21 05:18:38 2007 |
| MD5 Checksum: | 58850c1d22c26f428cb9ed0827c9ba6a |
|
| /// File Name: |
glsa-200708-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-08 - The functions deletekey(), gpg_check_sign_pgp_mime() and gpg_recv_key() used in the SquirrelMail G/PGP encryption plugin do not properly escape user-supplied data. Versions less than 1.4.10a-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3125 | | Related CVE(s): | CVE-2005-1924, CVE-2006-4169 | | Last Modified: | Aug 14 03:33:17 2007 |
| MD5 Checksum: | 1db27123a22496b63e2abbb26675a784 |
|
| /// File Name: |
glsa-200708-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-01 - Mark Hills discovered some errors when interacting with a browser for keystrokes handling (CVE-2007-2022). Stefano Di Paola and Giorgio Fedon from Minded Security discovered a boundary error when processing FLV files (CVE-2007-3456). An input validation error when processing HTTP referrers has also been reported (CVE-2007-3457). Versions less than 9.0.48.0 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3119 | | Related CVE(s): | CVE-2007-2022, CVE-2007-3456, CVE-2007-3457 | | Last Modified: | Aug 9 03:07:10 2007 |
| MD5 Checksum: | 6b10fe9e49a4c53d83799e0f5245363d |
|
| /// File Name: |
sa26535.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/26535/ | | File Size: | 3113 | | Last Modified: | Aug 21 22:07:00 2007 |
| MD5 Checksum: | 20cd255029f290d135f73726cf3f8376 |
|
| /// File Name: |
MDKSA-2007-157.txt |
Description:
|
Mandriva Linux Security Advisory - The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title tag, a related issue to CVE-2007-0478. Also affects kdelibs 3.5.6, as per KDE official advisory.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3112 | | Related CVE(s): | CVE-2007-0537 | | Last Modified: | Aug 14 02:24:12 2007 |
| MD5 Checksum: | e569c31ed38b297ccce25a7fa0be9234 |
|
| /// File Name: |
sa26616.txt |
Description:
|
Secunia Security Advisory - Tan Chew Keong has reported some vulnerabilities in ALPass, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26616/ | | File Size: | 3102 | | Last Modified: | Aug 27 17:28:28 2007 |
| MD5 Checksum: | ceb7cec5ac30b8e2aba31f5901d60630 |
|
| /// File Name: |
sa26641.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Unified CallManager and Unified Communications Manager (CUCM), which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26641/ | | File Size: | 3101 | | Last Modified: | Aug 31 05:45:27 2007 |
| MD5 Checksum: | 2fa3d44cc98567d031399a3773c95ee9 |
|
| /// File Name: |
glsa-200708-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-03 - CPNI, CERT-FI, Tim Kientzle, and Colin Percival reported a buffer overflow (CVE-2007-3641), an infinite loop (CVE-2007-3644), and a NULL pointer dereference (CVE-2007-3645) within the processing of archives having corrupted PaX extension headers. Versions less than 2.2.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3100 | | Related CVE(s): | CVE-2007-3641, CVE-2007-3644, CVE-2007-3645 | | Last Modified: | Aug 9 03:10:38 2007 |
| MD5 Checksum: | d6d4b9c9d764f998fdea5b893712f6b4 |
|
| /// File Name: |
sa26615.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Firebird, where some have unknown impact and others can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26615/ | | File Size: | 3097 | | Last Modified: | Aug 31 05:45:27 2007 |
| MD5 Checksum: | 2b52f53a96e3c36bcdaf2bf4ea9c8adb |
|
| /// File Name: |
sa26630.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Entrust Entelligence Security Provider (ESP), which can lead to untrusted certificates misleadingly being displayed as trustworthy.
| | Homepage: | http://secunia.com/advisories/26630/ | | File Size: | 3094 | | Last Modified: | Aug 28 17:40:42 2007 |
| MD5 Checksum: | 381ba38970af6860890d013c84291e3d |
|
| /// File Name: |
sa26416.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in the Drupal Content Construction Kit, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26416/ | | File Size: | 3068 | | Last Modified: | Aug 14 19:37:33 2007 |
| MD5 Checksum: | 90fdb6189bdfbe9d10fb293a5ee10c7c |
|
| /// File Name: |
MDKSA-2007-154.txt |
Description:
|
Mandriva Linux Security Advisory - A format string vulnerability in the errors_create_window function in errors.c in xine-ui allows attackers to execute arbitrary code via unknown vectors. XINE 0.99.4 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain M3U file that contains a long #EXTINF line and contains format string specifiers in an invalid udp:// URI, possibly a variant of CVE-2007-0017.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3065 | | Related CVE(s): | CVE-2007-0254, CVE-2007-0255 | | Last Modified: | Aug 12 00:01:50 2007 |
| MD5 Checksum: | 268e895274be2192c27c40aa0f244c11 |
|
| /// File Name: |
MDKSA-2007-169.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was discovered in how gdm listens on its unix domain socket. A local user could crash a running X session by writing malicious data to gdm's unix domain socket.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3064 | | Related CVE(s): | CVE-2007-3381 | | Last Modified: | Aug 23 22:57:06 2007 |
| MD5 Checksum: | f105e8be1501b268010e0ec8fa798cab |
|
| /// File Name: |
sa26272.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for gd. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26272/ | | File Size: | 3030 | | Last Modified: | Aug 8 06:01:26 2007 |
| MD5 Checksum: | a208c11ee85e03eb39e0db8ee5f26f5b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
