Section: .. / 0805-advisories /
| /// File Name: |
sa30053.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Common Data Format, which potentially can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/30053/ | | File Size: | 2296 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | 14c7e999aa52e907ad450fbe3cc24841 |
|
| /// File Name: |
sa30063.txt |
Description:
|
Secunia Security Advisory - Core Security Technologies has reported a vulnerability in Invensys Wonderware InTouch, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30063/ | | File Size: | 2536 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | b3398649aca07d23b0b988855e04cc12 |
|
| /// File Name: |
sa30078.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for cups. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30078/ | | File Size: | 17530 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | e62a764ed001c572b3e5df4c293c08ab |
|
| /// File Name: |
sa30084.txt |
Description:
|
Secunia Security Advisory - EgiX has discovered two vulnerabilities in DeluxeBB, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30084/ | | File Size: | 2406 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | 26f2039657a217fa798d2ac8e7e55f5d |
|
| /// File Name: |
sa30085.txt |
Description:
|
Secunia Security Advisory - HaCkeR-EgY has reported a vulnerability in Miniweb, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30085/ | | File Size: | 2138 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | 8162d44748f9e856555b47547b4de0e1 |
|
| /// File Name: |
sa30089.txt |
Description:
|
Secunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in Auction XL, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30089/ | | File Size: | 2028 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | 508ec73af9f7830d49b08e0f5bb90b4d |
|
| /// File Name: |
sa30093.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for b2evolution. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30093/ | | File Size: | 2685 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | c1a2f2965ea09d311868016edb4b8f56 |
|
| /// File Name: |
sa30097.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for blender. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30097/ | | File Size: | 4481 | | Last Modified: | May 6 18:57:38 2008 |
| MD5 Checksum: | 82d690cfbe78d7848a29e2d02e48e120 |
|
| /// File Name: |
bugzilla-multi.txt |
Description:
|
Bugzilla Security Advisory - Bugzilla version 3.1.3 suffers from an unauthorized bug change vulnerability. Versions 2.17.2 and higher suffer from a cross site scripting vulnerability. Versions 2.23.4 and higher suffer from an account impersonation vulnerability.
| | Author: | Frederic Buclin, Max Kanat-Alexander, Bradley Baetz, Loren Butler, Marc Schumann | | Homepage: | http://www.bugzilla.org/ | | File Size: | 3485 | | Last Modified: | May 6 18:53:45 2008 |
| MD5 Checksum: | 13db085e595afc0bfe20386178dd1ece |
|
| /// File Name: |
dsa-1570-1.txt |
Description:
|
Debian Security Advisory 1570-1 - Andrews Salomon reported that kazehakase, a GTK+-base web browser that allows pluggable rendering engines, contained an embedded copy of the PCRE library in its source tree which was compiled in and used in preference to the system-wide version of this library. The PCRE library has been updated to fix the security issues reported against it in previous Debian Security Advisories. This update ensures that kazehakase uses that supported library, and not its own embedded and insecure version.
| | Homepage: | http://www.debian.org/security | | File Size: | 4937 | | Related CVE(s): | CVE-2006-7227, CVE-2006-7228, CVE-2006-7230, CVE-2007-1659, CVE-2007-1660, CVE-2007-1661, CVE-2007-1662, CVE-2007-4766, CVE-2007-4767, CVE-2007-4768 | | Last Modified: | May 6 16:44:01 2008 |
| MD5 Checksum: | 7c06871d3debf143c6fa695b70d15b23 |
|
| /// File Name: |
SSRT080034.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Netscape Directory Server (NDS). The vulnerability could be used locally to gain extended privileges.
| | Homepage: | http://www.hp.com/ | | File Size: | 7308 | | Related CVE(s): | CVE-2008-0892 | | Last Modified: | May 6 16:42:02 2008 |
| MD5 Checksum: | d484200e5c25c9765700282b3a715e10 |
|
| /// File Name: |
dsa-1554-2.txt |
Description:
|
Debian Security Advisory 1554-2 - Roundup, an issue tracking system, fails to properly escape HTML input, allowing an attacker to inject client-side code (typically JavaScript) into a document that may be viewed in the victim's browser.
| | Homepage: | http://www.debian.org/security | | File Size: | 3142 | | Related CVE(s): | CVE-2008-1474 | | Last Modified: | May 6 16:40:22 2008 |
| MD5 Checksum: | 23546650cebe54b7719fbd4c9d712eed |
|
| /// File Name: |
dsa-1569-2.txt |
Description:
|
Debian Security Advisory 1569-2 - The original update for cacti unfortunately introduced a regression. Updated packages have been created to address this. It was discovered that Cacti, a systems and services monitoring frontend, performed insufficient input sanitising, leading to cross site scripting and SQL injection being possible.
| | Homepage: | http://www.debian.org/security | | File Size: | 3253 | | Related CVE(s): | CVE-2008-0783, CVE-2008-0785 | | Last Modified: | May 6 16:39:48 2008 |
| MD5 Checksum: | 14da4de45a7965759e35ce4984df344d |
|
| /// File Name: |
sa30050.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported a vulnerability in Call of Duty 4: Modern Warfare, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30050/ | | File Size: | 2130 | | Last Modified: | May 6 16:38:55 2008 |
| MD5 Checksum: | c9cac4bfddae1bc41e57b12c7939e420 |
|
| /// File Name: |
sa30090.txt |
Description:
|
Secunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in Online Rental Property Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30090/ | | File Size: | 2290 | | Last Modified: | May 6 16:38:55 2008 |
| MD5 Checksum: | 8ac1240b163871157bcef4110d92f805 |
|
| /// File Name: |
glsa-200805-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-02 - Cezary Tomczak reported that an undefined UploadDir variable exposes an information disclosure vulnerability when running on shared hosts. Versions less than 2.11.5.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2828 | | Related CVE(s): | CVE-2008-1924 | | Last Modified: | May 6 16:22:30 2008 |
| MD5 Checksum: | f5057ea23bcd61d5a2859e06b80048e8 |
|
| /// File Name: |
glsa-200805-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-01 - Multiple vulnerabilities in the Horde Application Framework may lead to the execution of arbitrary files, information disclosure, and allow a remote attacker to bypass security restrictions. Versions less than 3.1.7 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4800 | | Related CVE(s): | CVE-2008-1284 | | Last Modified: | May 6 16:22:04 2008 |
| MD5 Checksum: | fbc502d5bf403437b5eb5c915a78fca3 |
|
| /// File Name: |
CORE-2008-0129.txt |
Description:
|
Core Security Technologies Advisory - A vulnerability was found in Wonderware SuiteLink Service ('slssvc.exe') that could allow an un-authenticated remote attacker with the ability to connect to the SuiteLink service TCP port to shutdown the service abnormally by sending a malformed packet. Exploitation of the vulnerability for remote code execution has not been proven, but it has not been eliminated as a potential scenario.
| | Author: | Sebastian Muniz | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 17419 | | Related CVE(s): | CVE-2008-2005 | | Last Modified: | May 6 16:21:55 2008 |
| MD5 Checksum: | cbba5446dc9d1e16b74a4f9c8d3500c9 |
|
| /// File Name: |
novelledir-soap.txt |
Description:
|
Novell eDirectory versions 8.7.x through 8.8.1 suffer from an arbitrary access vulnerability due to client-side access control when using the SOAP interface.
| | Author: | Nicob | | File Size: | 1472 | | Related CVE(s): | CVE-2008-0926 | | Last Modified: | May 6 16:17:50 2008 |
| MD5 Checksum: | bfc87cfd78dc50b27221742df7b7e90f |
|
| /// File Name: |
sa30024.txt |
Description:
|
Secunia Security Advisory - InjEctOr has reported some vulnerabilities in cpLinks, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/30024/ | | File Size: | 2664 | | Last Modified: | May 6 14:43:54 2008 |
| MD5 Checksum: | aba90adfea48f4a7cf90d3ba911ae19e |
|
| /// File Name: |
sa30040.txt |
Description:
|
Secunia Security Advisory - HP-UX has issued an update for Apache with PHP. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to bypass certain security restrictions, gain escalated privileges, or cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/30040/ | | File Size: | 2734 | | Last Modified: | May 6 14:43:54 2008 |
| MD5 Checksum: | ec403bd70603f6a0cbb673ad2576b096 |
|
| /// File Name: |
sa30059.txt |
Description:
|
Secunia Security Advisory - Cod3rZ has reported a vulnerability in ITCms, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30059/ | | File Size: | 2124 | | Last Modified: | May 6 14:43:54 2008 |
| MD5 Checksum: | b3f6905a0845f4c0969e489e41c587d5 |
|
| /// File Name: |
sa30079.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in the powermail extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30079/ | | File Size: | 2161 | | Last Modified: | May 6 14:43:54 2008 |
| MD5 Checksum: | 07789178a72ca3f751779b2325e3ecb5 |
|
| /// File Name: |
sa30092.txt |
Description:
|
Secunia Security Advisory - Khashayar Fereidani has discovered a vulnerability in LifeType, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/30092/ | | File Size: | 2221 | | Last Modified: | May 6 14:43:54 2008 |
| MD5 Checksum: | 39acdd4c365ea8f33622142390469943 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
