.:[ packet storm ]:.
                           
four continents, one idea
four continents, one idea

 Section:  .. / Last 50 Advisory Files /

 ///  File Name:scip-dreambox.txt
Description:
An input validation error within the web interface of Dreambox model DM500C allows for a denial of service condition.
Author:Marc Ruef
Homepage:http://www.scip.ch/
File Size:4512
Last Modified:Aug 29 12:06:16 2008
MD5 Checksum:249afecfcb2122f8d5df9de75eb67421

 ///  File Name:ZDI-08-054.txt
Description:
A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of messaging applications that make use of the libpurple library. User interaction is not required to exploit this vulnerability. The specific flaw exists in the implementation of the MSN protocol, specifically the handling of SLP messages. The function msn_slplink_process_msg() fails to properly validate an offset value specified in the SLP packet. By providing a specific value, an attacker can overflow a heap buffer resulting in arbitrary code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:3008
Related CVE(s):CVE-2008-2927
Last Modified:Aug 29 01:49:37 2008
MD5 Checksum:d76ab9bcd5ffc3e70e7f81027f487560

 ///  File Name:MDVSA-2008-181.txt
Description:
Mandriva Linux Security Advisory - Two denial of service vulnerabilities were discovered in the ipsec-tools racoon daemon, which could allow a remote attacker to cause it to consume all available memory. The updated packages have been patched to prevent these issues.
Homepage:http://www.mandriva.com/security/
File Size:5730
Related CVE(s):CVE-2008-3651, CVE-2008-3652
Last Modified:Aug 29 01:48:08 2008
MD5 Checksum:2d7f6108eed9a9dc420bf8b8ca56cdb7

 ///  File Name:firefox301-exec.txt
Description:
Firefox version 3.0.1 (final release) suffers from an unspecified remote code execution vulnerability.
Author:Beenu Arora
Homepage:http://www.beenuarora.com/
File Size:3979
Last Modified:Aug 29 01:46:34 2008
MD5 Checksum:e5305be99ab1f77ca6497f785fd1274e

 ///  File Name:SSRT080118.txt
Description:
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Apache. These vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or Denial of Service (DoS).
Homepage:http://www.hp.com/
File Size:8622
Related CVE(s):CVE-2007-4465, CVE-2008-2168, CVE-2008-2364
Last Modified:Aug 29 01:14:23 2008
MD5 Checksum:50243815f59ecafcedf99163c1ad9ff7

 ///  File Name:USN-638-1.txt
Description:
Ubuntu Security Notice 638-1 - Aaron Grattafiori discovered that the Gnome Help Viewer did not handle format strings correctly when displaying certain error messages. If a user were tricked into opening a specially crafted URI, a remote attacker could execute arbitrary code with user privileges.
Homepage:http://security.ubuntu.com/
File Size:3742
Related CVE(s):CVE-2008-3533
Last Modified:Aug 27 18:03:15 2008
MD5 Checksum:c3002bba563957c93b2edfad569c7c01

 ///  File Name:SSRT080106.txt
Description:
HP Security Bulletin - A potential security vulnerability has been identified in the HP Enterprise Discovery. The vulnerability could be exploited remotely by an authorized user to gain extended privileges.
Homepage:http://www.hp.com/
File Size:6719
Related CVE(s):CVE-2008-3538
Last Modified:Aug 27 17:57:18 2008
MD5 Checksum:a84ae83f38e250d72f3b90696e44be96

 ///  File Name:PLSA-2008-31.txt
Description:
Pardus Linux Security Advisory - A vulnerability has been reported in LibTIFF, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a user's system.
Author:Pardus Linux
File Size:1689
Related CVE(s):CVE-2008-2327
Last Modified:Aug 27 11:26:44 2008
MD5 Checksum:89fde6963eee81805e587266f74bbffa

 ///  File Name:MDVSA-2008-180-1.txt
Description:
Mandriva Linux Security Advisory - Andreas Solberg found a denial of service flaw in how libxml2 processed certain content. If an application linked against libxml2 processed such malformed XML content, it could cause the application to stop responding. The original fix used to correct this issue caused some applications that used the libxml2 library to crash. These new updated packages use a different fix that does not cause certain linked applications to crash as the old packages did.
Homepage:http://www.mandriva.com/security/
File Size:7129
Related CVE(s):CVE-2008-3281
Last Modified:Aug 26 22:43:46 2008
MD5 Checksum:cee89e63538737ae53aedf3ab3fd7410

 ///  File Name:kyocera-upload.txt
Description:
The Kyocera Mita Scanner File Utility version 3.3.0.1 suffers from multiple file manipulation vulnerabilities.
Author:Seth Fogle
Homepage:http://www.whitewolfsecurity.com/
Related Exploit:fileutility.txt
File Size:3010
Last Modified:Aug 26 22:40:05 2008
MD5 Checksum:c188a08ce39e9da8719c911ff27e4178

 ///  File Name:dsa-1631-2.txt
Description:
Debian Security Advisory 1631-2 - The previous security update of the libxml2 package introduced some problems with other packages, most notably with librsvg. This update corrects these problems whilst still fixing the reported security problem.
Homepage:http://www.debian.org/security
File Size:13127
Related CVE(s):CVE-2008-3281
Last Modified:Aug 26 22:15:04 2008
MD5 Checksum:f024501160502cc01f3a8a6951c7c361

 ///  File Name:dsa-1632-1.txt
Description:
Debian Security Advisory 1632-1 - Drew Yao discovered that libTIFF, a library for handling the Tagged Image File Format, is vulnerable to a programming error allowing malformed tiff files to lead to a crash or execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:11108
Related CVE(s):CVE-2008-2327
Last Modified:Aug 26 22:14:44 2008
MD5 Checksum:0e6569a1ce6eb08995b0101c1d463469

 ///  File Name:zoneminder-multi.txt
Description:
ZoneMinder versions 1.23.3 and below suffer from command injection, SQL injection, and cross site scripting vulnerabilities.
Author:Filip Palian
File Size:1273
Last Modified:Aug 26 22:10:06 2008
MD5 Checksum:d8bb2d877419e579e9d76b0f207b8425

 ///  File Name:USN-637-1.txt
Description:
Ubuntu Security Notice 637-1 - It was discovered that there were multiple NULL-pointer function dereferences in the Linux kernel terminal handling code. A local attacker could exploit this to execute arbitrary code as root, or crash the system, leading to a denial of service. The do_change_type routine did not correctly validation administrative users. A local attacker could exploit this to block mount points or cause private mounts to be shared, leading to denial of service or a possible loss of privacy. Tobias Klein discovered that the OSS interface through ALSA did not correctly validate the device number. A local attacker could exploit this to access sensitive kernel memory, leading to a denial of service or a loss of privacy. Zoltan Sogor discovered that new directory entries could be added to already deleted directories. A local attacker could exploit this, filling up available memory and disk space, leading to a denial of service.
Homepage:http://security.ubuntu.com/
File Size:191184
Related CVE(s):CVE-2008-2812, CVE-2008-2931, CVE-2008-3272, CVE-2008-3275
Last Modified:Aug 26 21:53:24 2008
MD5 Checksum:4ff77f698b3af8e2303260d5110f0d63

 ///  File Name:secunia-calendarix.txt
Description:
Secunia Research has discovered two vulnerabilities in Calendarix Basic, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "catsearch" parameter in cal_search.php and "catview" in cal_cat.php is not properly sanitized before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Calendarix Basic 0.8.20071118 is affected.
Homepage:http://secunia.com/
File Size:4530
Related CVE(s):CVE-2008-2429
Last Modified:Aug 25 20:30:10 2008
MD5 Checksum:25805f56ddb5ea080e60cc240a6e595d

 ///  File Name:secunia-iprintget.txt
Description:
Secunia Research has discovered a security issue in Novell iPrint Client, which can be exploited by malicious people to gain knowledge of potentially sensitive information. Novell iPrint Client 4.36 and Novell iPrint Client for Windows Vista 5.04 are affected. The insecurity lies in GetFileList().
Author:Carsten Eiram
Homepage:http://secunia.com/
File Size:5102
Related CVE(s):CVE-2008-2432
Last Modified:Aug 25 20:28:38 2008
MD5 Checksum:fdd4e1fe471d8f8909683736fc941234

 ///  File Name:secunia-iprint.txt
Description:
Secunia Research has discovered multiple vulnerabilities in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system. These include boundary errors and buffer overflow issues. Novell iPrint Client 4.36 is affected.
Author:Carsten Eiram
Homepage:http://secunia.com/
File Size:7131
Related CVE(s):CVE-2008-2431
Last Modified:Aug 25 20:27:09 2008
MD5 Checksum:40a0bbe6cee53536da934ab4a38a4cb8

 ///  File Name:PLSA-2008-30.txt
Description:
Pardus Linux Security Advisory - Insufficient sanitization can lead to Vim executing arbitrary commands when performing keyword or tag lookup.
Author:Pardus Linux
File Size:1298
Last Modified:Aug 25 20:17:20 2008
MD5 Checksum:bba89f851911b3ef0f74460ddb4d69a5

 ///  File Name:PLSA-2008-29.txt
Description:
Pardus Linux Security Advisory - Multiple vulnerabilities have discovered by g_ which potentially can be exploited by malicious people to compromise a user's system.
Author:Pardus Linux
File Size:1886
Related CVE(s):CVE-2008-3732
Last Modified:Aug 25 20:16:33 2008
MD5 Checksum:353baefe1e7409fab29c0abd9c5f7291

 ///  File Name:PLSA-2008-28.txt
Description:
Pardus Linux Security Advisory - A vulnerability has been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
Author:Pardus Linux
File Size:1723
Related CVE(s):CVE-2008-3281
Last Modified:Aug 25 20:15:56 2008
MD5 Checksum:b5d695d395d852aa764c49dbd945acc7

 ///  File Name:IVIZ-08-009.txt
Description:
The password checking routine of Grub fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2867
Last Modified:Aug 25 20:09:38 2008
MD5 Checksum:19fafe4333b13d89b153a4c1a3b7a16c

 ///  File Name:IVIZ-08-008.txt
Description:
The password checking routine of LILO fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:3085
Last Modified:Aug 25 20:09:14 2008
MD5 Checksum:b6128bc94dc690994313103896500060

 ///  File Name:IVIZ-08-007.txt
Description:
The password checking routine of DriveCrypt fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2987
Last Modified:Aug 25 20:08:51 2008
MD5 Checksum:f5e88134d2c118dc27e0b5de40760281

 ///  File Name:IVIZ-08-006.txt
Description:
The password checking routine of DiskCryptor fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2724
Last Modified:Aug 25 20:08:18 2008
MD5 Checksum:28d14d2910f59a1abffea61e693b4bc3

 ///  File Name:IVIZ-08-005.txt
Description:
The password checking routine of the IBM Lenovo BIOS firmware fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2773
Last Modified:Aug 25 20:07:50 2008
MD5 Checksum:9372ec1711b09a008c09f97aaad48fc9

 ///  File Name:IVIZ-08-004.txt
Description:
The password checking routine of Intel BIOS firmware fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2989
Last Modified:Aug 25 20:07:01 2008
MD5 Checksum:fb13f9752e6c436b4d7a1e7c99a21fa2

 ///  File Name:IVIZ-08-003.txt
Description:
The password checking routine of TrueCrypt fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:3030
Last Modified:Aug 25 20:06:19 2008
MD5 Checksum:986464ca4ad63ebdd6c33978f68b69c6

 ///  File Name:IVIZ-08-002.txt
Description:
The password checking routine of Hewlett-Packard 68DTT version F.0D (11/22/2005) fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2938
Last Modified:Aug 25 20:05:45 2008
MD5 Checksum:7ed6e522d2b2d1576d1001319e9ae443

 ///  File Name:IVIZ-08-001.txt
Description:
The password checking routine of Microsoft Bitlocker fails to sanitize the BIOS keyboard buffer after reading passwords, resulting in plain text password leakage to unprivileged local users.
Author:Jonathan Brossard
Homepage:http://www.ivizsecurity.com/
File Size:2797
Last Modified:Aug 25 20:05:07 2008
MD5 Checksum:08bf0022caed32290893bce4e558fee6

 ///  File Name:WLB-2008080064.txt
Description:
libc inet_net_pton.c suffers from an integer overflow vulnerability.
Author:Maksymilian Arciemowicz
Homepage:http://securityreason.com/
File Size:7494
Last Modified:Aug 24 15:41:10 2008
MD5 Checksum:618bef6d69afe88da171491f07cd89a3

 ///  File Name:dsa-1631-1.txt
Description:
Debian Security Advisory 1631-1 - Andreas Solberg discovered that libxml2, the GNOME XML library, could be forced to recursively evaluate entities, until available CPU & memory resources were exhausted.
Homepage:http://www.debian.org/security
File Size:11181
Related CVE(s):CVE-2008-3281
Last Modified:Aug 22 18:15:36 2008
MD5 Checksum:4e11a0bf3ea05140834d932f3231418d

 ///  File Name:oCERT-2008-008.txt
Description:
The xine free multimedia player suffers from a number of vulnerabilities ranging in severity. The worst of these vulnerabilities results in arbitrary code execution and the least, in unexpected process termination. xine-lib versions 1.1.14 and below are affected.
Author:Will Drewry
Homepage:http://ocert.org/
File Size:2650
Last Modified:Aug 22 18:13:15 2008
MD5 Checksum:030d4b684f35e92aea985834e35cd251

 ///  File Name:PR08-20.txt
Description:
Microsoft ASP.NET ValidateRequest filters can be bypassed allowing for cross site scripting and HTML injection attacks.
Homepage:http://www.procheckup.com/
File Size:3862
Last Modified:Aug 22 17:59:39 2008
MD5 Checksum:55f98a75179a16092e86c4dbcd9340b2

 ///  File Name:secunia-trendmicro.txt
Description:
Secunia Research has discovered a vulnerability in certain Trend Micro products, which can be exploited by malicious people to bypass authentication. The vulnerability is caused by insufficient entropy being used to create a random session token for identifying an authenticated manager using the web management console. The entropy in the session token comes solely from the system time when the real manager logs in with a granularity of one second. This can be exploited to impersonate a currently logged on manager by brute forcing the authentication token. Successful exploitation further allows execution of arbitrary code via manipulation of the configuration.
Author:Dyon Balding
Homepage:http://secunia.com/
File Size:4926
Related CVE(s):CVE-2008-2433
Last Modified:Aug 22 17:55:38 2008
MD5 Checksum:b5bcc9775cd18024e81e9933c9fa97da

 ///  File Name:MDVSA-2008-180.txt
Description:
Mandriva Linux Security Advisory - Andreas Solberg found a denial of service flaw in how libxml2 processed certain content. If an application linked against libxml2 processed such malformed XML content, it could cause the application to stop responding. The updated packages have been patched to prevent this issue.
Homepage:http://www.mandriva.com/security/
File Size:7142
Related CVE(s):CVE-2008-3281
Last Modified:Aug 21 20:37:14 2008
MD5 Checksum:d020ce82b78a55691be3b77a8258749f

 ///  File Name:MDVSA-2008-179.txt
Description:
Mandriva Linux Security Advisory - An input validation flaw was found in X.org's MIT-SHM extension. A client connected to the X.org server could read arbitrary server memory, resulting in the disclosure of sensitive data of other users of the X.org server. Multiple integer overflows were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service (crash) or possibly execute arbitrary code with root privileges on the X.org server. The Metisse program is likewise affected by these issues; the updated packages have been patched to prevent them.
Homepage:http://www.mandriva.com/security/
File Size:5189
Related CVE(s):CVE-2008-1379, CVE-2008-2360, CVE-2008-2361, CVE-2008-2362
Last Modified:Aug 21 20:36:27 2008
MD5 Checksum:7fa23a387b9a6aa48f33a17134658e9b

 ///  File Name:MDVSA-2008-178.txt
Description:
Mandriva Linux Security Advisory - Alin Rad Pop found an array index vulnerability in the SDP parser of xine-lib. If a user or automated system were tricked into opening a malicious RTSP stream, a remote attacker could possibly execute arbitrary code with the privileges of the user using the program. The ASF demuxer in xine-lib did not properly check the length of ASF headers. If a user was tricked into opening a crafted ASF file, a remote attacker could possibly cause a denial of service or execute arbitrary code with the privileges of the user using the program. The Matroska demuxer in xine-lib did not properly verify frame sizes, which could possibly lead to the execution of arbitrary code if a user opened a crafted ASF file. Luigi Auriemma found multiple integer overflows in xine-lib. If a user was tricked into opening a crafted FLV, MOV, RM, MVE, MKV, or CAK file, a remote attacker could possibly execute arbitrary code with the privileges of the user using the program. Guido Landi found A stack-based buffer overflow in xine-lib that could allow a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via a long NSF title. The updated packages have been patched to correct this issue.
Homepage:http://www.mandriva.com/security/
File Size:5942
Related CVE(s):CVE-2008-0073, CVE-2008-1110, CVE-2008-1161, CVE-2008-1482, CVE-2008-1878
Last Modified:Aug 21 20:36:00 2008
MD5 Checksum:f81b67007a37ee028b814f93f17b95cb

 ///  File Name:dsa-1630-1.txt
Description:
Debian Security Advisory 1630-1 - Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or arbitrary code execution.
Homepage:http://www.debian.org/security
File Size:37155
Related CVE(s):CVE-2007-6282, CVE-2008-0598, CVE-2008-2729, CVE-2008-2812, CVE-2008-2826, CVE-2008-2931, CVE-2008-3272, CVE-2008-3275
Last Modified:Aug 21 20:35:47 2008
MD5 Checksum:367b80017310ff6cee24b30977a80f99

 ///  File Name:glsa-200804-22-03.txt
Description:
Gentoo Linux Security Advisory [UPDATE] GLSA 200804-22:03 - Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values and the UDP source port numbers (CVE-2008-1637). Thomas Biege of SUSE pointed out that a prior fix to resolve this issue was incomplete, as it did not always enable the stronger random number generator for source port selection (CVE-2008-3217). Versions less than 3.1.6 are affected.
Homepage:http://security.gentoo.org
File Size:2870
Related CVE(s):CVE-2008-1637, CVE-2008-3217
Last Modified:Aug 21 20:28:39 2008
MD5 Checksum:ebb72f271795a16c7a89e0cc3a25ae70

 ///  File Name:MDVSA-2008-177.txt
Description:
Mandriva Linux Security Advisory - Guido Landi found a stack-based buffer overflow in xine-lib that could allow a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via a long NSF title. The updated packages have been patched to correct this issue.
Homepage:http://www.mandriva.com/security/
File Size:5130
Related CVE(s):CVE-2008-1878
Last Modified:Aug 21 00:46:04 2008
MD5 Checksum:be91fa3452d00d25310bbe167ebe5038

 ///  File Name:MDVSA-2008-176.txt
Description:
Mandriva Linux Security Advisory - A stack-based buffer overflow was found in mtr prior to version 0.73 that allowed remote attackers to execute arbitrary code via a crafted DNS PTR record, when called with the --split option. The updated packages provide mtr 0.73 which corrects this issue.
Homepage:http://www.mandriva.com/security/
File Size:2757
Related CVE(s):CVE-2008-2357
Last Modified:Aug 21 00:45:02 2008
MD5 Checksum:0ea1927644dee386902a2c15ae603cee

 ///  File Name:MDVSA-2008-175.txt
Description:
Mandriva Linux Security Advisory - A format string vulnerability was discovered in yelp after version 2.19.90 and before 2.24 that could allow remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command-line or via URI helpers in Firefox, Evolution, or possibly other programs. The updated packages have been patched to correct this issue.
Homepage:http://www.mandriva.com/security/
File Size:3047
Related CVE(s):CVE-2008-3533
Last Modified:Aug 21 00:44:43 2008
MD5 Checksum:68a89521e8a4ebd2c2bd15623294278c

 ///  File Name:CORE-2008-0813.txt
Description:
Core Security Technologies Advisory - vBulletin versions 3.7.2 Patch Level 1 and 3.6.10 Patch Level 3 suffer from a cross site scripting vulnerability.
Author:Federico Muttis
Homepage:http://www.coresecurity.com/corelabs/
File Size:8589
Last Modified:Aug 21 00:35:17 2008
MD5 Checksum:762ace67edbf513d11ef873fdb4e0b14

 ///  File Name:USN-636-1.txt
Description:
Ubuntu Security Notice 636-1 - Sebastian Krahmer discovered that Postfix was not correctly handling mailbox ownership when dealing with Linux's implementation of hardlinking to symlinks. In certain mail spool configurations, a local attacker could exploit this to append data to arbitrary files as the root user. The default Ubuntu configuration was not vulnerable.
Homepage:http://security.ubuntu.com/
File Size:21465
Related CVE(s):CVE-2008-2936
Last Modified:Aug 20 02:46:11 2008
MD5 Checksum:cce112ac7583d275595f69c51a839d9d

 ///  File Name:MDVSA-2008-174.txt
Description:
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
Homepage:http://www.mandriva.com/security/
File Size:6478
Related CVE(s):CVE-2008-0007, CVE-2008-1673, CVE-2008-1615, CVE-2008-2136, CVE-2008-2826, CVE-2008-2729
Last Modified:Aug 20 02:45:28 2008
MD5 Checksum:00d8eaccddf52548564ee8c6e0a43883

 ///  File Name:MDVSA-2008-173.txt
Description:
Mandriva Linux Security Advisory - Kees Cook of Ubuntu security found a flaw in how poppler prior to version 0.6 displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause applications using poppler to crash, or possibly execute arbitrary code when opened. This vulnerability also affected older versions of kpdf, so the updated packages have been patched to correct this issue.
Homepage:http://www.mandriva.com/security/
File Size:8914
Related CVE(s):CVE-2008-1693
Last Modified:Aug 20 02:43:36 2008
MD5 Checksum:a4ecb934a32e106110b9ab5649af376c

 ///  File Name:SSRT080117-2.txt
Description:
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
Homepage:http://www.hp.com/
File Size:12417
Related CVE(s):CVE-2008-2463, CVE-2008-2244, CVE-2008-3003, CVE-2008-3004, CVE-2008-3005, CVE-2008-3006, CVE-2008-3018, CVE-2008-3019, CVE-2008-3020, CVE-2008-3021, CVE-2008-3460, CVE-2008-2254, CVE-2008-2255, CVE-2008-2256, CVE-2008-2257, CVE-2008-2258, CVE-2008-2259, CVE-2008-2245, CVE-2008-2246, CVE-2008-1448, CVE-2008-1456, CVE-2008-1457, CVE-2008-0082, CVE-2008-0120, CVE-2008-0121, CVE-2008-1455
Last Modified:Aug 20 02:06:05 2008
MD5 Checksum:eff92d137ada0a63b95a01b33d2c7643

 ///  File Name:dsa-1629-2.txt
Description:
Debian Security Advisory 1629-2 - Due to a version numbering problem, the Postfix update for DSA 1629 was not installable on the i386 (Intel ia32) architecture. This update increases the version number to make it installable on i386 as well.
Homepage:http://www.debian.org/security
File Size:10095
Related CVE(s):CVE-2008-2936
Last Modified:Aug 20 01:57:28 2008
MD5 Checksum:d5905b0f7ab31785748e93c41a799586

 ///  File Name:SSRT080039-2.txt
Description:
HP Security Bulletin - A potential security vulnerability has been identified with HP System Management Homepage (SMH) for Linux and Windows. This vulnerability could by exploited remotely to allow cross site scripting (XSS).
Homepage:http://www.hp.com/
File Size:6382
Related CVE(s):CVE-2008-1663
Last Modified:Aug 18 20:05:07 2008
MD5 Checksum:532beb0aee3e979142e353425bdaf021

 ///  File Name:dsa-1629-1.txt
Description:
Debian Security Advisory 1629-1 - Sebastian Krahmer discovered that Postfix, a mail transfer agent, incorrectly checks the ownership of a mailbox. In some configurations, this allows for appending data to arbitrary files as root.
Homepage:http://www.debian.org/security
File Size:13634
Related CVE(s):CVE-2008-2936
Last Modified:Aug 18 19:15:23 2008
MD5 Checksum:5a5029498e47c3b0c8f6caa98004975c