Section: .. / 0803-advisories /
| /// File Name: |
starteamz.txt |
Description:
|
Borland StarTeam server 2008 versions 10.0.0.57 and below suffer from multiple integer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | starteamz.zip | | File Size: | 2272 | | Last Modified: | Mar 3 17:55:21 2008 |
| MD5 Checksum: | e43d293d8c4977372175759742a8b4b1 |
|
| /// File Name: |
SUSE-SA-2008-012.txt |
Description:
|
SUSE Security Announcement - The current security update of cups fixes a double-free bug in the function process_browse_data() that can lead to a remote denial-of-service by crashing cupsd or possibly to a remote code execution. The bug can only be exploited if cupsd listens to 631/udp by crafted UDP Browse packets. Additionally two remote denial-of-service bugs were fixed. The first one can be triggered via crafted IPP packets to use a pointer after it was freed and the second issue is a memory-leak caused by a large number of requests to add and remove shared printers.
| | Homepage: | http://www.suse.com | | File Size: | 19377 | | Related CVE(s): | CVE-2008-0596, CVE-2008-0597, CVE-2008-0882 | | Last Modified: | Mar 12 16:42:28 2008 |
| MD5 Checksum: | 51864b80345817ce7b8c9ce7a309ef14 |
|
| /// File Name: |
SUSE-SA-2008-014.txt |
Description:
|
SUSE Security Announcement - The Evolution personal information manager is vulnerable to format string bugs in the emf_multipart_encrypted() function that is used to process encrypted messages. This bug can be abused by a remote attacker to execute arbitrary code by sending a crafted encrypted e-mail.
| | Homepage: | http://www.suse.com | | File Size: | 16664 | | Related CVE(s): | CVE-2008-0072 | | Last Modified: | Mar 14 13:27:39 2008 |
| MD5 Checksum: | 63c078ed08a9a392c57149b3837a185d |
|
| /// File Name: |
TA08-066A.txt |
Description:
|
Technical Cyber Security Alert TA08-066A - Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5718 | | Last Modified: | Mar 12 17:37:54 2008 |
| MD5 Checksum: | 4eb5e661a700d24cb71564a76e4ea9bf |
|
| /// File Name: |
TA08-071A.txt |
Description:
|
Technical Cyber Security Alert TA08-071A - Microsoft has released updates to address vulnerabilities that affect Microsoft Office, Outlook, Excel, Excel Viewer, Office for Mac, and Office Web Components as part of the Microsoft Security Bulletin Summary for March 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3423 | | Last Modified: | Mar 13 00:19:58 2008 |
| MD5 Checksum: | 226d06ea1a47159a754dd82cebb4f921 |
|
| /// File Name: |
TA08-079B.txt |
Description:
|
Technical Cyber Security Alert TA08-079B - The MIT Kerberos implementation contains several vulnerabilities. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code, compromise the key database or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3103 | | Last Modified: | Mar 19 18:59:32 2008 |
| MD5 Checksum: | 0bdbfca5096257849c0e7fcc3b6f5e97 |
|
| /// File Name: |
TA08-087A.txt |
Description:
|
Technical Cyber Security Alert TA08-087A - New versions of Firefox, Thunderbird, and SeaMonkey address several vulnerabilities, the most severe of which could allow a remote attacker to execute arbitrary code on an affected system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3879 | | Last Modified: | Mar 27 17:31:04 2008 |
| MD5 Checksum: | 03f79e5e0d87463f7cf7655be23f8e49 |
|
| /// File Name: |
TA08-087B.txt |
Description:
|
Technical Cyber Security Alert TA08-087B - Cisco has released Cisco Security Advisory cisco-sa-20080326-bundle to correct multiple vulnerabilities affecting Cisco IOS. Attackers could exploit these vulnerabilities to access sensitive information or cause a denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3813 | | Last Modified: | Mar 27 17:29:26 2008 |
| MD5 Checksum: | 36d7bccfb39e10dad9d483b5fa5f6b6b |
|
| /// File Name: |
tftpx.txt |
Description:
|
Argon Client Management Services versions 1.31 and below suffer from a directory traversal vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | tftpx.zip | | File Size: | 1787 | | Last Modified: | Mar 12 23:21:17 2008 |
| MD5 Checksum: | e7a43b55e2c7a3ac47c2d1acb831da28 |
|
| /// File Name: |
timbuto.txt |
Description:
|
Timbuktu Pro Remote Control Software version 8.6.5 and below suffer from denial of service and limited upload directory traversal vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | timbuto.zip | | File Size: | 2500 | | Last Modified: | Mar 12 23:16:43 2008 |
| MD5 Checksum: | 763cb9596fc1721e8f2c2d09cb1741d0 |
|
| /// File Name: |
TKADV2008-001.txt |
Description:
|
The kernel driver cpoint.sys shipped with Panda Internet Security and Antivirus Firewall 2008 contains a vulnerability in the code that handles IOCTL requests. The vulnerability can lead to denial of service and arbitrary code execution attacks.
| | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | File Size: | 7506 | | Last Modified: | Mar 12 18:31:24 2008 |
| MD5 Checksum: | e01729fb3cbdef6910c36ee5ca6205f0 |
|
| /// File Name: |
TKADV2008-002.txt |
Description:
|
The kernel driver aavmker4.sys as shipped with avast! version 4.7 contains a vulnerability in the code that handles IOCTL requests. Exploitation of this vulnerability can result in denial of service or arbitrary code execution.
| | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | File Size: | 5856 | | Last Modified: | Mar 31 22:11:49 2008 |
| MD5 Checksum: | a91baa4ca841a4c009e53f89ba7f6afb |
|
| /// File Name: |
TPTI-08-03.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the parsing of the BIFF file format used by Microsoft Excel. During the processing of a malformed tag a heap allocation can be adversely controlled. When user supplied data is copied to a heap buffer the resulting data results in a arbitrary memory overwrite. If successfully exploited this could lead to system compromise under the credentials of the currently logged in user.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 1613 | | Related CVE(s): | CVE-2008-0116 | | Last Modified: | Mar 13 00:47:20 2008 |
| MD5 Checksum: | 7d12530a43a2ce9e769aa39d05521eb2 |
|
| /// File Name: |
USN-583-1.txt |
Description:
|
Ubuntu Security Notice 583-1 - Ulf Harnhammar discovered that Evolution did not correctly handle format strings when processing encrypted emails. A remote attacker could exploit this by sending a specially crafted email, resulting in arbitrary code execution.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16048 | | Related CVE(s): | CVE-2008-0072 | | Last Modified: | Mar 12 14:39:45 2008 |
| MD5 Checksum: | fe5b41ce24798affdeab80ca869f6bbd |
|
| /// File Name: |
USN-584-1.txt |
Description:
|
Ubuntu Security Notice 584-1 - Jonathan Clarke discovered that the OpenLDAP slapd server did not properly handle modify requests when using the Berkeley DB backend and the NOOP control was used. An authenticated user with modify permissions could send a crafted modify request and cause a denial of service via application crash. Ubuntu 7.10 is not affected by this issue. Ralf Haferkamp discovered that the OpenLDAP slapd server did not properly handle modrdn requests when using the Berkeley DB backend and the NOOP control was used. An authenticated user with modrdn permissions could send a crafted modrdn request and possibly cause a denial of service via application crash.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12117 | | Related CVE(s): | CVE-2007-6698, CVE-2007-6698 | | Last Modified: | Mar 12 14:43:37 2008 |
| MD5 Checksum: | b8bd914311af7fc9f581d6b14e854301 |
|
| /// File Name: |
USN-585-1.txt |
Description:
|
Ubuntu Security Notice 585-1 - Piotr Engelking discovered that strxfrm in Python was not correctly calculating the size of the destination buffer. This could lead to small information leaks, which might be used by attackers to gain additional knowledge about the state of a running Python script. A flaw was discovered in the Python imageop module. If a script using the module could be tricked into processing a specially crafted set of arguments, a remote attacker could execute arbitrary code, or cause the application to crash.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 28449 | | Related CVE(s): | CVE-2007-2052, CVE-2007-4965 | | Last Modified: | Mar 12 23:42:17 2008 |
| MD5 Checksum: | 0c7215efe5f82a111877a450bcbf14d0 |
|
| /// File Name: |
USN-586-1.txt |
Description:
|
Ubuntu Security Notice 586-1 - Multiple cross-site scripting flaws were discovered in mailman. A malicious list administrator could exploit this to execute arbitrary JavaScript, potentially stealing user credentials.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6649 | | Related CVE(s): | CVE-2008-0564 | | Last Modified: | Mar 15 16:19:42 2008 |
| MD5 Checksum: | 82521e3077399b7a1e41c3305b1fba39 |
|
| /// File Name: |
USN-587-1.txt |
Description:
|
Ubuntu Security Notice 587-1 - It was discovered that krb5 did not correctly handle certain krb4 requests. An unauthenticated remote attacker could exploit this flaw by sending a specially crafted traffic, which could expose sensitive information, cause a crash, or execute arbitrary code. A flaw was discovered in the kadmind service's handling of file descriptors. An unauthenticated remote attacker could send specially crafted requests that would cause a crash, resulting in a denial of service. Only systems with configurations allowing large numbers of open file descriptors were vulnerable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 32084 | | Related CVE(s): | CVE-2008-0062, CVE-2008-0063, CVE-2008-0947 | | Last Modified: | Mar 19 18:47:40 2008 |
| MD5 Checksum: | ab3a961b4c4a04f96d6480a80163e5d1 |
|
| /// File Name: |
USN-588-1.txt |
Description:
|
Ubuntu Security Notice 588-1 - Masaaki Hirose discovered that MySQL could be made to dereference a NULL pointer. An authenticated user could cause a denial of service (application crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table. This issue only affects Ubuntu 6.06 and 6.10. Alexander Nozdrin discovered that MySQL did not restore database access privileges when returning from SQL SECURITY INVOKER stored routines. An authenticated user could exploit this to gain privileges. This issue does not affect Ubuntu 7.10. Martin Friebe discovered that MySQL did not properly update the DEFINER value of an altered view. An authenticated user could use CREATE SQL SECURITY DEFINER VIEW and ALTER VIEW statements to gain privileges. Luigi Auriemma discovered that yaSSL as included in MySQL did not properly validate its input. A remote attacker could send crafted requests and cause a denial of service or possibly execute arbitrary code. This issue did not affect Ubuntu 6.06 in the default installation.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 18741 | | Related CVE(s): | CVE-2006-7232, CVE-2007-2692, CVE-2007-6303, CVE-2008-0226, CVE-2008-0227 | | Last Modified: | Mar 20 16:58:07 2008 |
| MD5 Checksum: | b2bffdd12620551ceb8b47b9cd832cd2 |
|
| /// File Name: |
USN-589-1.txt |
Description:
|
Ubuntu Security Notice 589-1 - Tavis Ormandy discovered that unzip did not correctly clean up pointers. If a user or automated service was tricked into processing a specially crafted ZIP archive, a remote attacker could execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6191 | | Related CVE(s): | CVE-2008-0888 | | Last Modified: | Mar 20 17:15:06 2008 |
| MD5 Checksum: | 15597a25fee88497611ca4c749a8a19f |
|
| /// File Name: |
USN-590-1.txt |
Description:
|
Ubuntu Security Notice 590-1 - It was discovered that bzip2 did not correctly handle certain malformed archives. If a user or automated system were tricked into processing a specially crafted bzip2 archive, applications linked against libbz2 could be made to crash, possibly leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 16255 | | Related CVE(s): | CVE-2008-1372 | | Last Modified: | Mar 24 18:46:30 2008 |
| MD5 Checksum: | 73750d6d375d42abb00e73ac27324bc7 |
|
| /// File Name: |
USN-591-1.txt |
Description:
|
Ubuntu Security Notice 591-1 - Will Drewry discovered that libicu did not properly handle '\0' when processing regular expressions. If an application linked against libicu processed a crafted regular expression, an attacker could execute arbitrary code with privileges of the user invoking the program. Will Drewry discovered that libicu did not properly limit its backtracking stack size. If an application linked against libicu processed a crafted regular expression, an attacker could cause a denial of service via resource exhaustion.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9833 | | Related CVE(s): | CVE-2007-4770, CVE-2007-4771 | | Last Modified: | Mar 24 18:47:19 2008 |
| MD5 Checksum: | 709c3b4e0e8ffb4ab82d69a87f5b976e |
|
| /// File Name: |
USN-592-1.txt |
Description:
|
Ubuntu Security Notice 592-1 - A ridiculous amount of vulnerabilities in Firefox have been addressed in this advisory for Ubuntu.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 30883 | | Related CVE(s): | CVE-2007-4879, CVE-2008-0416, CVE-2008-1195, CVE-2008-1233, CVE-2008-1234, CVE-2008-1235, CVE-2008-1236, CVE-2008-1237, CVE-2008-1238, CVE-2008-1240, CVE-2008-1241 | | Last Modified: | Mar 26 17:56:51 2008 |
| MD5 Checksum: | aeed7a8b0cc4c145af558bade514732b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
