Section: .. / 0805-advisories /
| /// File Name: |
glsa-200805-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-07 - LTSP version 4.2, ships prebuilt copies of programs such as the Linux Kernel, the X.org X11 server (GLSA 200705-06, GLSA 200710-16, GLSA 200801-09), libpng (GLSA 200705-24, GLSA 200711-08), Freetype (GLSA 200705-02, GLSA 200705-22) and OpenSSL (GLSA 200710-06, GLSA 200710-30) which were subject to multiple security vulnerabilities since 2006. Please note that the given list of vulnerabilities might not be exhaustive. Versions less than 5.0 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4366 | | Last Modified: | May 9 13:53:07 2008 |
| MD5 Checksum: | b99107d7cc4efe620d3b52050bad0f8f |
|
| /// File Name: |
sa29968.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for cpio. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/29968/ | | File Size: | 4357 | | Last Modified: | May 7 20:31:38 2008 |
| MD5 Checksum: | 4339669fe7fbfb5d144cfa520fa2f1df |
|
| /// File Name: |
glsa-200805-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-03 - Bernhard R. Link discovered that Eterm opens a terminal on :0 if the -display option is not specified and the DISPLAY environment variable is not set. Further research by the Gentoo Security Team has shown that aterm, Mrxvt, multi-aterm, RXVT, rxvt-unicode, and wterm are also affected. Versions less than 1.0.1-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4335 | | Related CVE(s): | CVE-2008-1142, CVE-2008-1692 | | Last Modified: | May 7 20:37:56 2008 |
| MD5 Checksum: | e7bce4b2f319f035e053ff26dbb0497a |
|
| /// File Name: |
sa30159.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30159/ | | File Size: | 4318 | | Last Modified: | May 13 11:01:47 2008 |
| MD5 Checksum: | a79064430af599e735561dc1eb4cfd6f |
|
| /// File Name: |
MDVSA-2008-101.txt |
Description:
|
Mandriva Linux Security Advisory - Several vulnerabilities were discovered in rdesktop, a Remote Desktop Protocol client. An integer underflow vulnerability allowed attackers to cause a denial of service (crash) and possibly execute arbitrary code with the privileges of the logged-in user. A buffer overflow vulnerability allowed attackers to execute arbitrary code with the privileges of the logged-in user. An integer signedness vulnerability allowed attackers to execute arbitrary code with the privileges of the logged-in user. In order for these vulnerabilities to be exploited, an attacker must persuade a targeted user to connect to a malicious RDP server.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4231 | | Related CVE(s): | CVE-2008-1801, CVE-2008-1802, CVE-2008-1803 | | Last Modified: | May 19 15:41:05 2008 |
| MD5 Checksum: | b93b1c2bea03bd7916006106d1a10f7c |
|
| /// File Name: |
USN-612-4.txt |
Description:
|
Ubuntu Security Notice 612-4 - USN-612-1 fixed vulnerabilities in openssl. This update provides the corresponding updates for ssl-cert -- potentially compromised snake-oil SSL certificates will be regenerated. A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates. This vulnerability only affects operating systems which (like Ubuntu) are based on Debian. However, other systems can be indirectly affected if weak keys are imported into them.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4207 | | Related CVE(s): | CVE-2008-0166 | | Last Modified: | May 15 03:45:47 2008 |
| MD5 Checksum: | fbb384be18c0b97874a042383317e896 |
|
| /// File Name: |
05.13.08-1.txt |
Description:
|
iDefense Security Advisory 05.13.08 - Remote exploitation of a memory corruption vulnerability in Microsoft Corp.'s Word could allow attackers to execute arbitrary code with the privileges of the logged in user. This vulnerability exists in the way Word handles CSS rules in an HTML document. When the number of CSS selectors is above some specific amount, an unspecified object will be corrupted causing Word to access a memory region that has already been freed. iDefense has confirmed fully patched Microsoft Word 2003 SP2, Microsoft Word XP SP3, Microsoft Word 2000 SP3 are vulnerable. Microsoft Word 2003 SP3 and Microsoft Word 2007 do not appear to be affected. Microsoft reports that all supported versions of Word, Word Viewer, and Outlook 2007 are vulnerable.
| | Author: | Jun Mao | | Homepage: | http://www.idefense.com/ | | File Size: | 4164 | | Related CVE(s): | CVE-2008-1434 | | Last Modified: | May 13 15:39:58 2008 |
| MD5 Checksum: | fd7486dbe9fda5cc2883cbfa6ad3cc65 |
|
| /// File Name: |
MDVSA-2008-103.txt |
Description:
|
Mandriva Linux Security Advisory - field.c in the libid3tag 0.15.0b library allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via an ID3_FIELD_TYPE_STRINGLIST field that ends in '\0', which triggers an infinite loop.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4050 | | Related CVE(s): | CVE-2008-2109 | | Last Modified: | May 19 21:34:29 2008 |
| MD5 Checksum: | 10430aaf27dc37931d82123caa93cd4b |
|
| /// File Name: |
cod4statz.txt |
Description:
|
Call of Duty 4: Modern Warfare versions 1.5 and below are susceptible to a denial of service vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | cod4statz.zip | | File Size: | 4044 | | Last Modified: | May 2 16:39:52 2008 |
| MD5 Checksum: | e1f594ee499ddd8246fbc815033fbe6c |
|
| /// File Name: |
MDVSA-2008-097.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was found in start_kdeinit in KDE 3.5.5 through 3.5.9 where, if it was installed setuid root, it could allow local users to cause a denial of service or possibly execute arbitrary code. By default, start_kdeinit is not installed setuid root on Mandriva Linux, however updated packages have been patched to correct this issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4032 | | Related CVE(s): | CVE-2008-1671 | | Last Modified: | May 7 13:29:17 2008 |
| MD5 Checksum: | c4ad65a04bf01fc452431de16f2c99c3 |
|
| /// File Name: |
05.12.08-1.txt |
Description:
|
iDefense Security Advisory 05.12.08 - Local exploitation of an input validation vulnerability within version 5.1.2600.2180 of i2omgmt.sys, as included with Microsoft Corp's Windows XP operating system, could allow an attacker to execute arbitrary code in the context of the kernel. iDefense has confirmed the existence of this vulnerability in i2omgmt.sys version 5.1.2600.2180 as installed on some Windows XP SP2 systems. All other Windows releases with this driver, including previous versions, are suspected to be vulnerable.
| | Author: | Ruben Santamarta | | Homepage: | http://www.idefense.com/ | | File Size: | 4025 | | Related CVE(s): | CVE-2008-0322 | | Last Modified: | May 12 18:28:36 2008 |
| MD5 Checksum: | 9a855b4f3e57f9d46308c1a0f2293ded |
|
| /// File Name: |
dsa-1564-1.txt |
Description:
|
Debian Security Advisory 1564-1 - Several remote vulnerabilities have been discovered in wordpress, a weblog manager. Multiple cross-site scripting vulnerabilities allowed remote authenticated administrators to inject arbitrary web script or HTML. SQL injection vulnerability allowed allowed remote authenticated administrators to execute arbitrary SQL commands. WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data. Insufficient input sanitising caused an attacker with a normal user account to access the administrative interface.
| | Homepage: | http://www.debian.org/security | | File Size: | 3992 | | Related CVE(s): | CVE-2007-3639, CVE-2007-4153, CVE-2007-4154, CVE-2007-0540 | | Last Modified: | May 1 18:32:00 2008 |
| MD5 Checksum: | c02afb1d586036ee19f75990816839c2 |
|
| /// File Name: |
sa30122.txt |
Description:
|
Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Java System Web Server and Sun Java System Application Server, which can be exploited by malicious people to disclose certain sensitive information.
| | Homepage: | http://secunia.com/advisories/30122/ | | File Size: | 3924 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 1cb072aca923bb421573cf708dff2a04 |
|
| /// File Name: |
lokicms-multi.txt |
Description:
|
LokiCMS versions 0.3.4 and below suffer from arbitrary file overwrite, code injection, file inclusion, and administrative hash retrieval vulnerabilities.
| | Author: | trueend5 | | Homepage: | http://www.kapda.ir/ | | File Size: | 3811 | | Last Modified: | May 31 15:39:49 2008 |
| MD5 Checksum: | 6baccc735f053b9073d18f892030bc12 |
|
| /// File Name: |
05.21.08-1.txt |
Description:
|
iDefense Security Advisory 05.21.08 - Remote exploitation of a design error vulnerability in Snort, as included in various vendors' operating system distributions, could allow an attacker to bypass filter rules. Due to a design error vulnerability, Snort does not properly reassemble fragmented IP packets. When receiving incoming fragments, Snort checks the Time To Live (TTL) value of the fragment, and compares it to the TTL of the initial fragment. If the difference between the initial fragment and the following fragments is more than a configured amount, the fragments will be silently discard. This results in valid traffic not being examined and/or filtered by Snort. iDefense has confirmed the existence of this vulnerability in Snort 2.8 and 2.6. Snort 2.4 is not vulnerable.
| | Author: | Silvio Cesare | | Homepage: | http://www.idefense.com/ | | File Size: | 3803 | | Related CVE(s): | CVE-2008-1804 | | Last Modified: | May 22 02:10:52 2008 |
| MD5 Checksum: | 46b4a8b5943f65351b159cc2fdd85eff |
|
| /// File Name: |
TA08-134A.txt |
Description:
|
Technical Cyber Security Alert TA08-134A - Microsoft has released updates to address vulnerabilities that affect Microsoft Windows, Office, Jet Database Engine, Windows Live OneCare, Antigen, Windows Defender, and Forefront Security as part of the Microsoft Security Bulletin Summary for May 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. For more information, see the US-CERT Vulnerability Notes Database.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3749 | | Last Modified: | May 13 15:41:07 2008 |
| MD5 Checksum: | 1b674f3df657c92d13731b2e7392126e |
|
| /// File Name: |
glsa-200805-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-13 - Multiple issues were found in the teTeX 2 codebase that PTeX builds upon (GLSA 200709-17, GLSA 200711-26). PTeX also includes vulnerable code from the GD library (GLSA 200708-05), from Xpdf (GLSA 200709-12, GLSA 200711-22) and from T1Lib (GLSA 200710-12). Versions less than 3.1.10_p20071203 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3730 | | Last Modified: | May 12 18:27:15 2008 |
| MD5 Checksum: | 15830348aa8fe782c793f470674bbf22 |
|
| /// File Name: |
sa30048.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in PHP, where some have unknown impacts and others can be exploited by malicious users to bypass certain security restrictions, and potentially by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30048/ | | File Size: | 3701 | | Last Modified: | May 8 13:30:50 2008 |
| MD5 Checksum: | 34518482e65a14d08df17ed7be68c225 |
|
| /// File Name: |
sa30261.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities and security issues have been reported in Symantec Altiris Deployment Solution, which can be exploited by malicious, local users to gain escalated privileges or manipulate certain data, and by malicious people to disclose sensitive information, conduct SQL injection attacks, and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30261/ | | File Size: | 3700 | | Last Modified: | May 19 14:31:39 2008 |
| MD5 Checksum: | cc0fc77a673b0c43ad5c3939154ec541 |
|
| /// File Name: |
05.27.08-2.txt |
Description:
|
iDefense Security Advisory 05.27.08 - Remote exploitation of an arbitrary command execution vulnerability in EMC Corp.'s AlphaStor could allow an attacker to execute arbitrary code with SYSTEM privileges. AlphaStor consists of multiple applications, one of which is the Library Manager. The Library Manager is used to manage the replacement of disk drives in distributed locations. The Manager consists of a single process, the "robotd" process, that listens on TCP port 3500 for incoming connections. The Library Manager is prone to an arbitrary command execution vulnerability. When sent a specific request, "robotd" will use a string from the packet as a command to execute on the system via the CreateProcess() function. This allows an attacker to run arbitrary programs on the host with SYSTEM privileges. iDefense has confirmed the existence of this vulnerability in AlphaStor version 3.1 SP1 for Windows. Previous versions, as well as versions for other platforms, may also be affected.
| | Author: | Stephen Fewer | | Homepage: | http://www.idefense.com/ | | File Size: | 3614 | | Related CVE(s): | CVE-2008-2157 | | Last Modified: | May 27 19:44:27 2008 |
| MD5 Checksum: | 6c8ff6e0b7f32b25ed4398d7091c900b |
|
| /// File Name: |
glsa-200805-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200805-04 - A vulnerability has been reported in FCKEditor due to the way that file uploads are handled in the file editor/filemanager/upload/php/upload.php when a filename has multiple file extensions (CVE-2008-2041). Another vulnerability exists in the _bad_protocol_once() function in the file phpgwapi/inc/class.kses.inc.php, which allows remote attackers to bypass HTML filtering (CVE-2008-1502). Versions less than 1.4.004 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3609 | | Related CVE(s): | CVE-2008-1502, CVE-2008-2041 | | Last Modified: | May 7 20:38:18 2008 |
| MD5 Checksum: | 0ef7dd1b359cd5c05af051363a60b6d3 |
|
| /// File Name: |
MDVSA-2008-107.txt |
Description:
|
Mandriva Linux Security Advisory - Testing using the Codenomicon TLS test suite discovered a flaw in the handling of server name extension data in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If OpenSSL has been compiled using the non-default TLS server name extensions, a remote attacker could send a carefully crafted packet to a server application using OpenSSL and cause a crash. Testing using the Codenomicon TLS test suite discovered a flaw if the 'Server Key exchange message' is omitted from a TLS handshake in OpenSSL 0.9.8f and OpenSSL 0.9.8g. If a client connects to a malicious server with particular cipher suites, the server could cause the client to crash.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3599 | | Related CVE(s): | CVE-2008-0891, CVE-2008-1672 | | Last Modified: | May 28 20:23:36 2008 |
| MD5 Checksum: | bfaecbed16231165b9ab27f75a832068 |
|
| /// File Name: |
aap-bypass.txt |
Description:
|
Two critical vulnerabilities exist in the javascript API of Adobe Acrobat Professional 7. A remote attacker who successfully exploits these vulnerabilities can execute restricted functions and arbitrary codes on the affected system. Adobe Acrobat Professional version 7.0.9 is affected.
| | Author: | cocoruder | | Homepage: | http://ruder.cdut.net/ | | File Size: | 3586 | | Related CVE(s): | CVE-2008-2042 | | Last Modified: | May 7 13:32:04 2008 |
| MD5 Checksum: | d5e4c5adb0d84a55148b570fa73bccdc |
|
| /// File Name: |
sa30150.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Publisher, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/30150/ | | File Size: | 3579 | | Last Modified: | May 13 15:35:09 2008 |
| MD5 Checksum: | 5bf958eb7e53a52b0c81fcb50049fc3f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
