Section: .. / 0605-advisories /
| /// File Name: |
FLSA-2006-152898.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152898 - Max Vozeler discovered several format string vulnerabilities in the movemail utility of Emacs. If a user connects to a malicious POP server, an attacker can execute arbitrary code as the user running emacs.
| | Homepage: | http://fedoralegacy.org | | File Size: | 5462 | | Last Modified: | May 17 17:44:28 2006 |
| MD5 Checksum: | 5ab7dda0da60ba35659105672f4b620b |
|
| /// File Name: |
FLSA-2006-164512.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:164512 - A bug was found in the way fetchmail allocates memory for long lines. A remote attacker could cause a denial of service by sending a specially- crafted email.
| | Homepage: | http://fedoralegacy.org | | File Size: | 6274 | | Last Modified: | May 17 17:43:46 2006 |
| MD5 Checksum: | bee065c36fbe83bb42b3da38cba494f9 |
|
| /// File Name: |
FLSA-2006-152868.txt |
Description:
|
Fedora Legacy Update Advisory FLSA:152868 - Updated tetex packages that fix several security issues are now available.
| | Homepage: | http://fedoralegacy.org | | File Size: | 10959 | | Last Modified: | May 17 17:35:14 2006 |
| MD5 Checksum: | 35d7bc6a1aed44d91ecf2633b33baa61 |
|
| /// File Name: |
glsa-200605-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-13 - The processing of the COM_TABLE_DUMP command by a MySQL server fails to properly validate packets that arrive from the client via a network socket. Versions less than 4.1.19 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3045 | | Last Modified: | May 17 17:32:14 2006 |
| MD5 Checksum: | b2ca69364a820fd3dee54092a1449d85 |
|
| /// File Name: |
glsa-200605-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-12 - landser discovered a vulnerability within the remapShader command. Due to a boundary handling error in remapShader, there is a possibility of a buffer overflow. Versions less than 1.32c are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3185 | | Last Modified: | May 17 17:32:07 2006 |
| MD5 Checksum: | f7dd943268ecf61119584fb820f5c67a |
|
| /// File Name: |
glsa-200605-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-11 - Ruby uses blocking sockets for WEBrick and XMLRPC servers. Versions less than 1.8.4-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2532 | | Last Modified: | May 17 17:32:00 2006 |
| MD5 Checksum: | e8ad98eadea703f883b04dcef7574cb8 |
|
| /// File Name: |
glsa-200605-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200605-10 - The pdnsd team has discovered an unspecified buffer overflow vulnerability. The PROTOS DNS Test Suite, by the Oulu University Secure Programming Group (OUSPG), has also revealed a memory leak error within the handling of the QTYPE and QCLASS DNS queries, leading to consumption of large amounts of memory. Versions less than 1.2.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2794 | | Last Modified: | May 17 17:31:54 2006 |
| MD5 Checksum: | 900daf1602d0039d0f97882a378a742c |
|
| /// File Name: |
dsa-1057-1.txt |
Description:
|
Debian Security Advisory 1057-1: Several cross-site scripting vulnerabilities have been discovered in phpLDAPadmin, a web based interface for administering LDAP servers, that allows remote attackers to inject arbitrary web script or HTML.
| | Homepage: | http://www.debian.org/security | | File Size: | 3060 | | Last Modified: | May 17 17:28:33 2006 |
| MD5 Checksum: | fc64431d29c0b48e67395cb80bb302fa |
|
| /// File Name: |
dsa-1056-1.txt |
Description:
|
Debian Security Advisory 1056-1: David Maciejak noticed that webcalendar, a PHP-Based multi-user calendar, returns different error messages on login attempts for an invalid password and a non-existing user, allowing remote attackers to gain information about valid usernames.
| | Homepage: | http://www.debian.org/security | | File Size: | 3020 | | Last Modified: | May 17 17:28:28 2006 |
| MD5 Checksum: | 8df6312e2ed5b0ea238931182afddd37 |
|
| /// File Name: |
dsa-1055-1.txt |
Description:
|
Debian Security Advisory 1055-1: Martijn Wargers and Nick Mott described crashes of Mozilla due to the use of a deleted controller context. In theory this could be abused to execute malicious code. Since Mozilla and Firefox share the same codebase, Firefox may be vulnerable as well.
| | Homepage: | http://www.debian.org/security | | File Size: | 9759 | | Last Modified: | May 17 17:28:21 2006 |
| MD5 Checksum: | 9e95b667ea22add79d8851fe29784077 |
|
| /// File Name: |
dsa-1054-1.txt |
Description:
|
Debian Security Advisory 1054-1: Tavis Ormandy discovered several vulnerabilities in the TIFF library that can lead to a denial of service or the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 19150 | | Last Modified: | May 17 17:28:11 2006 |
| MD5 Checksum: | 83edbc442ba1306150ceebfc94545213 |
|
| /// File Name: |
dsa-1053-1.txt |
Description:
|
Debian Security Advisory 1053-1: Martijn Wargers and Nick Mott described crashes of Mozilla due to the use of a deleted controller context. In theory this could be abused to execute malicious code.
| | Homepage: | http://www.debian.org/security | | File Size: | 28516 | | Last Modified: | May 17 17:28:05 2006 |
| MD5 Checksum: | b89d621eb35fb1218928e4ab6c4fd50f |
|
| /// File Name: |
sa20081.txt |
Description:
|
Secunia Security Advisory - Nomenumbra has discovered a vulnerability in Website Baker, which can be exploited by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/20081/ | | File Size: | 1837 | | Last Modified: | May 17 17:10:06 2006 |
| MD5 Checksum: | 4bf220f0b01822d94138e1c1ca91c03d |
|
| /// File Name: |
sa20106.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in EUR, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/20106/ | | File Size: | 2397 | | Last Modified: | May 17 17:10:06 2006 |
| MD5 Checksum: | fa9016a3d0acebcc2faa4f886a584c80 |
|
| /// File Name: |
LinuxSCTP2616.txt |
Description:
|
Multiple vulnerabilities exist in Linux SCTP 2.6.16 (lksctp) all resulting in kernel panics. The crafted packets must be sent to a listening endpoint in order to exploit these vulnerabilities.
| | Author: | Mu Security research team | | Homepage: | http://labs.musecurity.com/ | | File Size: | 3424 | | Last Modified: | May 17 03:24:37 2006 |
| MD5 Checksum: | 3f2625b941cd66125726a340373abb44 |
|
| /// File Name: |
SYMSA-2006-003.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2006-003 - Cisco Secure ACS 3.x for Windows stores passwords for administrative users in the registry. The passwords are encrypted using the Crypto API Microsoft Base Cryptographic Provider version 1.0. Along with the passwords, ACS also stores the key used to encrypt the information.
| | Author: | Andreas Junestam | | Homepage: | http://www.symantec.com | | File Size: | 8874 | | Related CVE(s): | CVE-2006-0561 | | Last Modified: | May 17 02:59:28 2006 |
| MD5 Checksum: | 0becbb60b8417095fc88231c381bfd70 |
|
| /// File Name: |
ZDI-06-012.txt |
Description:
|
ZDI-06-012 - A vulnerability in Sophos AntiVirus, PureMessage, and MailMonitor allows remote attackers to execute arbitrary code. Authentication is not required to exploit this vulnerability.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2871 | | Related CVE(s): | CVE-2006-0994 | | Last Modified: | May 17 02:57:27 2006 |
| MD5 Checksum: | 8523f72ea99666ff2f22a9539892673c |
|
| /// File Name: |
cisco-websense-bypass.txt |
Description:
|
For each HTTP request the Cisco PIX or other Cisco device forwards individual packets to Websense to determine whether or not the request should be permitted. However, when splitting the HTTP request into two or more packets on the HTTP method it is possible to circumvent the filtering mechanism. Affected versions are Websense 5.5.2, Cisco PIX OS / ASA versions below 7.0.4.12, Cisco PIX OS versions below 6.3.6(112), FWSM 2.3.x, and FWSM 3.x.
| | Author: | George D. Gal | | File Size: | 9731 | | Related CVE(s): | CVE-2006-0515 | | Last Modified: | May 17 02:54:00 2006 |
| MD5 Checksum: | e4117b7343ffc213b150f115207bd0a9 |
|
| /// File Name: |
phpListPro-21.txt |
Description:
|
phpListPro versions less than or equal to 2.01 suffer from a remote file inclusion vulnerability.
| | Author: | Aesthetico | | Homepage: | http://www.majorsecurity.de | | File Size: | 1145 | | Last Modified: | May 17 02:48:05 2006 |
| MD5 Checksum: | b0a8a127c25e827ac1a9c65acaaa511f |
|
| /// File Name: |
sa19596.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in UltimateZip, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19596/ | | File Size: | 1970 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 1e6145cb23c043e7f78d3a0788b0a788 |
|
| /// File Name: |
sa19834.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in FilZip, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/19834/ | | File Size: | 1887 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 406393ecddc5d1c868f0954885b657fb |
|
| /// File Name: |
sa19845.txt |
Description:
|
Secunia Security Advisory - Gerry Eisenhaur has discovered a vulnerability in WeOnlyDo wodSSHServer, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19845/ | | File Size: | 1853 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 10a1f913b82e55227137daf7cbae9096 |
|
| /// File Name: |
sa19846.txt |
Description:
|
Secunia Security Advisory - Gerry Eisenhaur has discovered a vulnerability in FreeSSHd, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19846/ | | File Size: | 1676 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 998edebdca50c75e3d9bd4bc93f122d2 |
|
| /// File Name: |
sa20010.txt |
Description:
|
Secunia Security Advisory - QQlan has reported a vulnerability in ICQ, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/20010/ | | File Size: | 1872 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 3ddccbe68ef14981754d8cd8b6827630 |
|
| /// File Name: |
sa20049.txt |
Description:
|
Secunia Security Advisory - Dj ReMix has discovered some vulnerabilities in OzzyWork Galeri, which can be exploited by malicious people to conduct SQL injection attacks and to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/20049/ | | File Size: | 2029 | | Last Modified: | May 17 01:39:52 2006 |
| MD5 Checksum: | 5e386bf666bb9208bb1a2bcf63f4c814 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
