Section: .. / 0712-advisories /
| /// File Name: |
glsa-200712-25.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-25 - The HSQLDB engine, as used in Openoffice.org, does not properly enforce restrictions to SQL statements. Versions less than 2.3.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3650 | | Related CVE(s): | CVE-2007-4575 | | Last Modified: | Dec 31 16:41:49 2007 |
| MD5 Checksum: | 7bd6825d3d9c7fa826462f9720d3acd3 |
|
| /// File Name: |
glsa-200712-24.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-24 - The Cairo versions used by the AMD64 x86 emulation GTK+ libraries were vulnerable to integer overflow vulnerabilities (GLSA 200712-04). Versions less than 20071214 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2954 | | Last Modified: | Dec 31 16:41:32 2007 |
| MD5 Checksum: | 9952142e0dc83abd85329c25fefb11b4 |
|
| /// File Name: |
glsa-200712-23.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-23 - Multiple buffer overflows and infinite loops were discovered in multiple dissector and parser components, including those for MP3 and NCP (CVE-2007-6111), PPP (CVE-2007-6112), DNP (CVE-2007-6113), SSL and iSeries (OS/400) Communication traces (CVE-2007-6114), ANSI MAP (CVE-2007-6115), Firebird/Interbase (CVE-2007-6116), HTTP (CVE-2007-6117), MEGACO (CVE-2007-6118), DCP ETSI (CVE-2007-6119), Bluetooth SDP (CVE-2007-6120), RPC Portmap (CVE-2007-6121), SMB (CVE-2007-6438), IPv6 amd USB (CVE-2007-6439), WiMAX (CVE-2007-6441), RPL (CVE-2007-6450), CIP (CVE-2007-6451). The vulnerabilities were discovered by Stefan Esser, Beyond Security, Fabiodds, Peter Leeming, Steve and ainsley. Versions less than 0.99.7 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4621 | | Related CVE(s): | CVE-2007-6111, CVE-2007-6112, CVE-2007-6113, CVE-2007-6114, CVE-2007-6115, CVE-2007-6116, CVE-2007-6117, CVE-2007-6118, CVE-2007-6119, CVE-2007-6120, CVE-2007-6121, CVE-2007-6438, CVE-2007-6439, CVE-2007-6441, CVE-2007-6450, CVE-2007-6451 | | Last Modified: | Dec 31 16:40:52 2007 |
| MD5 Checksum: | 902ebf0362f82d466adf79ab3f46d7d0 |
|
| /// File Name: |
glsa-200712-22.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-22 - David Bloom reported two vulnerabilities where plug-ins (CVE-2007-6520) and Rich text editing (CVE-2007-6522) could be used to allow cross domain scripting. Alexander Klink (Cynops GmbH) discovered an issue with TLS certificates (CVE-2007-6521). Gynvael Coldwind reported that bitmaps might reveal random data from memory (CVE-2007-6524). Versions less than 9.25 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3279 | | Related CVE(s): | CVE-2007-6520, CVE-2007-6521, CVE-2007-6522, CVE-2007-6524 | | Last Modified: | Dec 31 16:40:36 2007 |
| MD5 Checksum: | f8410efea15b673e7cf2c21266cc5b0c |
|
| /// File Name: |
tk53-clamav.txt |
Description:
|
TK53 Advisory 2 - Multiple vulnerabilities exist in ClamAV version 0.92 including a race condition and bypass flaws.
| | Author: | Roflek, Lolek | | File Size: | 7766 | | Last Modified: | Dec 31 16:26:46 2007 |
| MD5 Checksum: | e18caa0c092d7067ea71b97be00c10c7 |
|
| /// File Name: |
nmapfinger-whoops.txt |
Description:
|
Fingerprints in Astaro Security Gateway version 7.1 could allow a remote attacker to create malicious payloads.
| | Author: | Josh Morin | | File Size: | 5572 | | Last Modified: | Dec 31 16:22:21 2007 |
| MD5 Checksum: | eff32c5c167100ba4562d1ea60f353e0 |
|
| /// File Name: |
glsa-200712-21.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-21 - Jesse Ruderman and Petko D. Petkov reported that the jar protocol handler in Mozilla Firefox and Seamonkey does not properly check MIME types (CVE-2007-5947). Gregory Fleischer reported that the window.location property can be used to generate a fake HTTP Referer (CVE-2007-5960). Multiple memory errors have also been reported (CVE-2007-5959). Versions less than 2.0.0.11 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3897 | | Related CVE(s): | CVE-2007-5947, CVE-2007-5959, CVE-2007-5960 | | Last Modified: | Dec 29 15:43:18 2007 |
| MD5 Checksum: | 62d7fd5d1e0e1068e081617596992ee8 |
|
| /// File Name: |
glsa-200712-20.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-20 - iDefense reported an integer overflow vulnerability in the cli_scanpe() function when parsing Portable Executable (PE) files packed in the MEW format, that could be exploited to cause a heap-based buffer overflow (CVE-2007-6335). Toeroek Edwin reported an off-by-one error when decompressing MS-ZIP compressed CAB files (CVE-2007-6336). An unspecified vulnerability related to the bzip2 decompression algorithm has also been discovered (CVE-2007-6337). Versions less than 0.91.2-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3181 | | Related CVE(s): | CVE-2007-6335, CVE-2007-6336, CVE-2007-6337 | | Last Modified: | Dec 29 15:43:01 2007 |
| MD5 Checksum: | d24f2caf1e6066ee693b8371b745cbde |
|
| /// File Name: |
glsa-200712-19.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-19 - Oriol Carreras reported a NULL pointer dereference in the log_msg_parse() function when processing timestamps without a terminating whitespace character. Versions less than 2.0.6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2433 | | Related CVE(s): | CVE-2007-6437 | | Last Modified: | Dec 29 15:42:37 2007 |
| MD5 Checksum: | 5e698d3b561576cc13d4422b5922d9f2 |
|
| /// File Name: |
glsa-200712-18.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-18 - nnp discovered multiple vulnerabilities in the XML-RPC handler in the file webserver.c. The ws_addarg() function contains a format string vulnerability, as it does not properly sanitize username and password data from the Authorization: Basic HTTP header line (CVE-2007-5825). The ws_decodepassword() and ws_getheaders() functions do not correctly handle empty Authorization header lines, or header lines without a ':' character, leading to NULL pointer dereferences (CVE-2007-5824). Versions less than 0.2.4.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3200 | | Related CVE(s): | CVE-2007-5824, CVE-2007-5825 | | Last Modified: | Dec 29 15:42:01 2007 |
| MD5 Checksum: | 42ba0e2495aa71dc5c890aaff6b91084 |
|
| /// File Name: |
glsa-200712-17.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-17 - Meder Kydyraliev (Google Security) discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop() and other functions (CVE-2007-6354). He also discovered integer overflow vulnerabilities in the parsetag() and other functions (CVE-2007-6355) and an infinite recursion in the readifds() function caused by recursive IFD references (CVE-2007-6356). Versions less than 1.01 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3580 | | Related CVE(s): | CVE-2007-6354, CVE-2007-6355, CVE-2007-6356 | | Last Modified: | Dec 29 15:41:24 2007 |
| MD5 Checksum: | a584664894341f424cd8e43143f62ef8 |
|
| /// File Name: |
glsa-200712-16.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-16 - Meder Kydyraliev (Google Security) discovered an integer overflow vulnerability in the JpegThumbnail::setDataArea() method leading to a heap-based buffer overflow. Versions less than 0.13-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3099 | | Related CVE(s): | CVE-2007-6353 | | Last Modified: | Dec 29 15:40:56 2007 |
| MD5 Checksum: | fc872ddcea86f6cda5645bb69903878b |
|
| /// File Name: |
glsa-200712-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200712-15 - Meder Kydyraliev (Google Security) discovered an integer overflow vulnerability in the exif_data_load_data_thumbnail() function leading to a memory corruption (CVE-2007-6352) and an infinite recursion in the exif_loader_write() function (CVE-2007-6351). Versions less than 0.6.16-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3267 | | Related CVE(s): | CVE-2007-6351, CVE-2007-6352 | | Last Modified: | Dec 29 15:40:37 2007 |
| MD5 Checksum: | 0036504c0eb90eb8567eeebf7ed675d9 |
|
| /// File Name: |
dsa-1442-1.txt |
Description:
|
Debian Security Advisory 1442-1 - Rubert Buchholz discovered that libsndfile, a library for reading / writing audio files performs insufficient boundary checks when processing FLAC files, which might lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 8448 | | Related CVE(s): | CVE-2007-4974 | | Last Modified: | Dec 29 15:40:29 2007 |
| MD5 Checksum: | 57b37d2a4f4496939ae7a1675e08b537 |
|
| /// File Name: |
coolplayer-overflow.txt |
Description:
|
CoolPlayer versions 217 and below suffer from a buffer overflow vulnerability in CPLI_Readtag_OGG.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 1851 | | Last Modified: | Dec 28 20:22:15 2007 |
| MD5 Checksum: | 2ce29fda2f085a9662141dc8d5b8db3c |
|
| /// File Name: |
dsa-1441-1.txt |
Description:
|
Debian Security Advisory 1441-1 - Luigi Auriemma discovered that PeerCast, a P2P audio and video streaming server, is vulnerable to a heap overflow in the HTTP server code, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SOURCE request.
| | Homepage: | http://www.debian.org/security | | File Size: | 11270 | | Related CVE(s): | CVE-2007-6454 | | Last Modified: | Dec 28 20:20:32 2007 |
| MD5 Checksum: | 1cc219462c7386396c86f93e433fbada |
|
| /// File Name: |
dsa-1440-1.txt |
Description:
|
Debian Security Advisory 1440-1 - It was discovered that a buffer overflow in the filename processing of the inotify-tools, a command-line interface to inotify, may lead to the execution of arbitrary code. This only affects the internal library and none of the frontend tools shipped in Debian.
| | Homepage: | http://www.debian.org/security | | File Size: | 5004 | | Related CVE(s): | CVE-2007-5037 | | Last Modified: | Dec 28 20:19:51 2007 |
| MD5 Checksum: | 6d8f37da4c823567251a11b86460b9b6 |
|
| /// File Name: |
dsa-1439-1.txt |
Description:
|
Debian Security Advisory 1439-1 - Henning Pingel discovered that TYPO3, a web content management framework, performs insufficient input sanitising, making it vulnerable to SQL injection by logged-in backend users.
| | Homepage: | http://www.debian.org/security | | File Size: | 3213 | | Related CVE(s): | CVE-2007-6381 | | Last Modified: | Dec 28 20:19:15 2007 |
| MD5 Checksum: | e6a6d67fe7190ab1580b7f1d8cb23e1d |
|
| /// File Name: |
dsa-1438-1.txt |
Description:
|
Debian Security Advisory 1438-1 - Several vulnerabilities have been discovered in GNU Tar. A directory traversal vulnerability enables attackers using specially crafted archives to extract contents outside the directory tree created by tar. A stack-based buffer overflow in the file name checking code may lead to arbitrary code execution when processing maliciously crafted archives.
| | Homepage: | http://www.debian.org/security | | File Size: | 7757 | | Related CVE(s): | CVE-2007-4131, CVE-2007-4476 | | Last Modified: | Dec 28 20:18:33 2007 |
| MD5 Checksum: | 9876b5a2363d163e5bd48c7c91cf6a80 |
|
| /// File Name: |
hp-snmp.txt |
Description:
|
The HP Photosmart C6280 network printer ships with unchangeable insecure default settings.
| | Author: | uncleron | | File Size: | 668 | | Last Modified: | Dec 28 20:17:27 2007 |
| MD5 Checksum: | 526cb2ee10c1bd7f0a8519a5b5fabf46 |
|
| /// File Name: |
dsa-1405-3.txt |
Description:
|
Debian Security Advisory 1405-3 - The Plone developers discovered that their hotfix, released as DSA 1405, introduced two regressions. This update corrects these flaws. It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies.
| | Homepage: | http://www.debian.org/security | | File Size: | 3275 | | Related CVE(s): | CVE-2007-5741 | | Last Modified: | Dec 28 20:10:01 2007 |
| MD5 Checksum: | 51efab4fc57ec107f1a38fb68b2c5b6c |
|
| /// File Name: |
joomla-csrf.txt |
Description:
|
Multiple cross site request forgery vulnerabilities may exist in all versions of Joomla!.
| | Author: | Zinho | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1888 | | Last Modified: | Dec 28 20:08:24 2007 |
| MD5 Checksum: | e5543c23ddaa171f1203ab0dd31397dd |
|
| /// File Name: |
fengulo.txt |
Description:
|
Feng versions 0.1.15 and below suffer from buffer overflow and denial of service vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | fengulo.zip | | File Size: | 7202 | | Last Modified: | Dec 28 19:58:39 2007 |
| MD5 Checksum: | b9d0d28e5b0104405b411a0afd34090d |
|
| /// File Name: |
xmpbof.txt |
Description:
|
Extended Module Player (XMP) versions 2.5.1 and below suffer from multiple buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | xmpbof.zip | | File Size: | 2856 | | Last Modified: | Dec 28 19:52:18 2007 |
| MD5 Checksum: | d4c05fd64f85efa49ad651b4b11adcae |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
