Section: .. / 0804-advisories /
| /// File Name: |
ibmdb2-exec.txt |
Description:
|
Team SHATTER Security Advisory - IBM DB2 UDB suffers from an arbitrary code execution vulnerability in the ADMIN_SP_C/ADMIN_SP_C2 procedures.
| | Author: | Martin Rakhmanov | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2125 | | Last Modified: | Apr 18 14:41:46 2008 |
| MD5 Checksum: | de94e730f8daddae561a8998a10bbfd2 |
|
| /// File Name: |
sa29634.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for cups. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29634/ | | File Size: | 2123 | | Last Modified: | Apr 3 00:45:58 2008 |
| MD5 Checksum: | 245fe5fc6b4058bf4817b845673d3b4b |
|
| /// File Name: |
sa29706.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for mysql. This fixes a security issue and two vulnerabilities, which can be exploited by malicious users to gain escalated privileges, manipulate certain data, or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29706/ | | File Size: | 2109 | | Last Modified: | Apr 7 22:57:36 2008 |
| MD5 Checksum: | 39ff2714ef8e09786c0e50b1ecd7a1ca |
|
| /// File Name: |
sa29745.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for pecl-apc. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions and potentially by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29745/ | | File Size: | 2109 | | Last Modified: | Apr 10 10:08:38 2008 |
| MD5 Checksum: | ab888252929f933060a55b7ef5ef7ed2 |
|
| /// File Name: |
sa29740.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29740/ | | File Size: | 2099 | | Last Modified: | Apr 10 10:08:38 2008 |
| MD5 Checksum: | 949f957870325077a8f0967647bc52f7 |
|
| /// File Name: |
sa29698.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29698/ | | File Size: | 2096 | | Last Modified: | Apr 10 10:08:38 2008 |
| MD5 Checksum: | b4d9e702934283465dfd8e7f7f7acf87 |
|
| /// File Name: |
sa29647.txt |
Description:
|
Secunia Security Advisory - A security issue with an unknown impact has been reported in IBM DB2 Content Manager.
| | Homepage: | http://secunia.com/advisories/29647/ | | File Size: | 2075 | | Last Modified: | Apr 3 00:45:58 2008 |
| MD5 Checksum: | 1fcc70f8684191bb1da9fd77cdbe4aa8 |
|
| /// File Name: |
sa29661.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for cups. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29661/ | | File Size: | 2067 | | Last Modified: | Apr 7 22:57:36 2008 |
| MD5 Checksum: | 0bc9755c386d11554519f1bd7d7cbd14 |
|
| /// File Name: |
sa29695.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for wireshark. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29695/ | | File Size: | 2052 | | Last Modified: | Apr 7 22:57:36 2008 |
| MD5 Checksum: | 672d88bd8dc1254cd83c19d2baec460c |
|
| /// File Name: |
sa29754.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for audit. This fixes a vulnerability, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/29754/ | | File Size: | 2052 | | Last Modified: | Apr 10 10:08:38 2008 |
| MD5 Checksum: | 4d86fd956a79c383f3012ac422490a38 |
|
| /// File Name: |
sa29756.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29756/ | | File Size: | 2049 | | Last Modified: | Apr 10 10:08:38 2008 |
| MD5 Checksum: | 10d90d206cb114756e026ea7f96a4262 |
|
| /// File Name: |
sa29681.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for unzip. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29681/ | | File Size: | 2009 | | Last Modified: | Apr 7 22:57:36 2008 |
| MD5 Checksum: | b2c9ee2d57ff9f47e1335bd932fb3791 |
|
| /// File Name: |
sa29649.txt |
Description:
|
Secunia Security Advisory - rPath has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29649/ | | File Size: | 2003 | | Last Modified: | Apr 3 00:45:58 2008 |
| MD5 Checksum: | 791c5dc9196a7a02f9209649d96fdb6a |
|
| /// File Name: |
sa29656.txt |
Description:
|
Secunia Security Advisory - Gentoo has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29656/ | | File Size: | 1984 | | Last Modified: | Apr 4 16:56:23 2008 |
| MD5 Checksum: | 7383a9fdd0bd29757314bc7d0ff9ec6d |
|
| /// File Name: |
virtuozzo-xsrf.txt |
Description:
|
Virtuozzo from Parallels suffers from cross site request forgery vulnerabilities.
| | Author: | poplix | | Homepage: | http://px.dynalias.org/ | | File Size: | 1756 | | Last Modified: | Apr 4 17:43:35 2008 |
| MD5 Checksum: | fecc08d75ae7ba875e668dc7dabf3479 |
|
| /// File Name: |
oCERT-2008-003.txt |
Description:
|
Applications using libpng that install unknown chunk handlers, or copy unknown chunks, may be vulnerable to a security issue which may result in incorrect output, information leaks, crashes, or arbitrary code execution. The libpng project indicates libpng-1.0.6 through 1.0.32, libpng-1.2.0 through 1.2.26, and libpng-1.4.0beta01 through libpng-1.4.0beta19 built with PNG_READ_UNKNOWN_CHUNKS_SUPPORTED or PNG_READ_USER_CHUNKS_SUPPORTED (default configuration) are affected.
| | Author: | Tavis Ormandy | | Homepage: | http://www.ocert.org/ | | File Size: | 1703 | | Related CVE(s): | CVE-2008-1382 | | Last Modified: | Apr 14 16:39:05 2008 |
| MD5 Checksum: | 95c71dc1fb7cff1e7190e752ae50d625 |
|
| /// File Name: |
greenbow-memory.txt |
Description:
|
TheGreenBow IPSec VPN client version 4.10.010 suffers from a vulnerability where login credentials are stored in the clear in memory.
| | Author: | Evilcry | | Homepage: | http://evilcry.altervista.org/ | | File Size: | 1694 | | Last Modified: | Apr 8 01:14:08 2008 |
| MD5 Checksum: | 4583049e2c02821e9106695dfd4bf778 |
|
| /// File Name: |
carcbackazz-adv.txt |
Description:
|
CA ARCserve Backup versions 12.0.5454.0 and below suffer from a denial of service vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | File Size: | 1652 | | Last Modified: | Jun 18 18:11:37 2008 |
| MD5 Checksum: | 65077fb7acdd3b42527ffe88b95fe8ef |
|
| /// File Name: |
gwh-csrf.txt |
Description:
|
It appears that Google Web History is susceptible to an attack along the lines of cross site request forgery.
| | Author: | Alexander Konovalenko | | File Size: | 1565 | | Last Modified: | Apr 21 16:13:03 2008 |
| MD5 Checksum: | e587fcdc388c939153ad9998c5f2f0e4 |
|
| /// File Name: |
DDIVRT-2008-11.txt |
Description:
|
BadBlue is a web server used for peer-to-peer file sharing. By default, several executable files are stored in the web root: badblue.exe, uninst.exe, and dyndns.exe. Executable files stored in the web root of BadBlue can be launched remotely by any user. This can be leveraged to create a DoS condition by repeatedly invoking the uninst.exe executable. Due to the fact that BadBlue has not released a patch for the previously documented directory traversal vulnerability, an attacker may utilize these two flaws in conjunction to place a malicious executable in the web root and compromise a vulnerable server.
| | Homepage: | http://www.digitaldefense.net/ | | File Size: | 1453 | | Related CVE(s): | CVE-2007-6378 | | Last Modified: | Apr 24 16:24:36 2008 |
| MD5 Checksum: | 97b22c9a16c638ad5d8a3727cfad7bfb |
|
| /// File Name: |
W01-0408.txt |
Description:
|
Wintercore Advisory - Realtek HD Audio Codec Drivers are prone to a local privilege escalation due to insufficient validation of user-mode buffers. RTKVHDA.sys versions below 6.0.1.5605 and RTKVHDA64.sys signed versions below 6.0.1.5605 are affected.
| | Author: | Ruben Santamarta | | Homepage: | http://www.wintercore.com/ | | File Size: | 1149 | | Last Modified: | Apr 23 20:56:23 2008 |
| MD5 Checksum: | 47a309b2daf808a41f1509b4c34eb2bc |
|
| /// File Name: |
dotclear-upload.txt |
Description:
|
Dotclear versions 1.2.7.1 and below suffer from an arbitrary upload vulnerability in ecrire/images.php.
| | Author: | Morgan ARMAND | | File Size: | 858 | | Last Modified: | Apr 15 13:27:08 2008 |
| MD5 Checksum: | 8f3d51baf48ad372a0b2fca6a59b1107 |
|
| /// File Name: |
excel-xss.txt |
Description:
|
Excel may suffer from cross site scripting issues if launched within the DOM.
| | Author: | Juan Pablo Lopez Yacubian | | File Size: | 841 | | Last Modified: | Apr 28 11:04:21 2008 |
| MD5 Checksum: | 3cc3372ee2a4323d859b4e10f7c48a75 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
