Section: .. / 0609-advisories /
| /// File Name: |
scip-2555.txt |
Description:
|
scip AG Vulnerability ID 2555 (09/21/2006) Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities
| | Homepage: | https://sgddemo.sun.com/ | | File Size: | 4604 | | Last Modified: | Oct 3 00:11:03 2006 |
| MD5 Checksum: | 7098aa6085d0290daa91bcffb066fc80 |
|
| /// File Name: |
secadv_20060905.txt |
Description:
|
OpenSSL Security Advisory - Daniel Bleichenbacher recently described an attack on PKCS #1 version 1.5 signatures. If an RSA key with exponent 3 is used it may be possible to forge a PKCS #1 version 1.5 signature signed by that key. Implementations may incorrectly verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature. Since there are CAs using exponent 3 in wide use, and PKCS #1 version 1.5 is used in X.509 certificates, all software that uses OpenSSL to verify X.509 certificates is potentially vulnerable, as well as any other use of PKCS #1 version 1.5. This includes software that uses OpenSSL for SSL or TLS. OpenSSL versions up to 0.9.7j and 0.9.8b are affected.
| | Homepage: | http://www.openssl.org/ | | File Size: | 3082 | | Related CVE(s): | CAN-2006-4339 | | Last Modified: | Sep 7 10:41:36 2006 |
| MD5 Checksum: | 7f355d2434c311c39a165bf5d82e0bd4 |
|
| /// File Name: |
smf11.txt |
Description:
|
SMF version 1.1 RC3 suffers from a SQL injection flaw in the admin section.
| | Author: | Omid | | File Size: | 1005 | | Last Modified: | Sep 7 09:17:26 2006 |
| MD5 Checksum: | 5e819f03b4ad9c56e5bdea16402bbf05 |
|
| /// File Name: |
SQLInjectionTix.txt |
Description:
|
Tix.com suffered from a SQL injection vulnerability where a user could access account information, and order tickets (and print them online) via a stolen account.
| | Author: | FxYxIxE | | File Size: | 1328 | | Last Modified: | Sep 7 09:16:21 2006 |
| MD5 Checksum: | 72d28f11553d9e86eef3a6d41e17b326 |
|
| /// File Name: |
SS28S-WiFi.txt |
Description:
|
Zachary McGrew has discovered and reported that the FiWin SS28S WiFi VoIP SIP/Skype Phone with firmware version 01_02_07 has VxWorks Telnet open with a hardcoded user/pass of 1/1. Various debug commands enable viewing SIP credentials, WEP keys, etc. on the phone.
| | Homepage: | http://www.osnews.com/story.php/15923/Review-FiWin-SS28S-WiFi-VoIP-SIPSkype-Phone/ | | File Size: | 617 | | Last Modified: | Oct 3 01:16:43 2006 |
| MD5 Checksum: | 9e64e6051a1993ab8b3ae5b7969f1364 |
|
| /// File Name: |
sslinks122.txt |
Description:
|
ssLinks version 1.22 suffers from multiple SQL injection vulnerabilities.
| | Author: | Sirdarckcat | | Homepage: | http://elhacker.net/ | | File Size: | 1098 | | Last Modified: | Sep 7 09:30:49 2006 |
| MD5 Checksum: | 900ce6e412577a5c3ba0d3b29f8c08b1 |
|
| /// File Name: |
SSRT050968.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in HP OpenView Operations. This potential vulnerability could be exploited remotely to allow unauthorized access or to create a denial of service condition.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 7538 | | Last Modified: | Sep 14 09:31:32 2006 |
| MD5 Checksum: | 83357b36efa5745187f98ed151465c7b |
|
| /// File Name: |
SSRT051019.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running X.25. The vulnerability could be exploited by a local user to create a denial of service.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 6309 | | Last Modified: | Sep 16 09:15:30 2006 |
| MD5 Checksum: | 106b53cf7d945246ea3dd7a7cc589311 |
|
| /// File Name: |
SSRT051021.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA transport software. The vulnerability could be exploited by a local, authenticated user to create a denial of service condition.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 5762 | | Last Modified: | Sep 14 09:32:16 2006 |
| MD5 Checksum: | 0f64e33cb7f32ed76be3f459a27be4a2 |
|
| /// File Name: |
SSRT061202.txt |
Description:
|
HP Security Bulletin - Potential security vulnerabilities have been identified with Apache running on HP-UX. These vulnerabilities could be exploited remotely to allow execution of arbitrary code, denial of service, or unauthorized access.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 8641 | | Related CVE(s): | CVE-2006-3747, CVE-2005-3352, CVE-2005-3357 | | Last Modified: | Sep 7 11:01:54 2006 |
| MD5 Checksum: | 7060db2e730ca644a55dcccbba488d35 |
|
| /// File Name: |
SSRT061235-1.txt |
Description:
|
HPSBUX02155 SSRT061235 rev.1 HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges
| | Homepage: | http://www.hp.com | | File Size: | 5927 | | Last Modified: | Oct 3 02:06:43 2006 |
| MD5 Checksum: | aba1a7a1445785ee13adb1de9d17224c |
|
| /// File Name: |
SSRT5973-1.txt |
Description:
|
HPSBUX02152 SSRT5973 rev.1 - HP-UX Kerberos Client Remote Unauthenticated Execution of Arbitrary Code
| | Homepage: | http://www.hp.com | | File Size: | 6673 | | Last Modified: | Oct 3 02:07:06 2006 |
| MD5 Checksum: | f4b2126a3aa24d1d1d3e1aed624c576a |
|
| /// File Name: |
SUSE-SA-2006-055.txt |
Description:
|
SUSE Security Announcement SUSE-SA:2006:055: If an RSA key with exponent 3 is used it may be possible to forge a PKCS verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature.
| | Homepage: | http://www.suse.com | | File Size: | 21670 | | Last Modified: | Oct 3 01:36:50 2006 |
| MD5 Checksum: | 0a1792226cc68525898acf2df0016294 |
|
| /// File Name: |
SUSE-SA-2006-056.txt |
Description:
|
SUSE-SA:2006:056 - The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops.
| | Homepage: | http://www.suse.com | | File Size: | 14455 | | Last Modified: | Sep 28 00:22:53 2006 |
| MD5 Checksum: | c3080e7b37844e76782d8539c5a7a834 |
|
| /// File Name: |
Symantec-9-13-2006.txt |
Description:
|
Symantec Security Advisory: Symantec AntiVirus and Symantec Client Security Elevation of Privilege: An elevation of privilege vulnerability in Symantec Client Security and Symantec AntiVirus Corporate Edition could potentially allow a local attacker to execute code with elevated privileges on the target machine.
| | Homepage: | http://www.symantec.com | | File Size: | 2107 | | Last Modified: | Sep 27 23:42:32 2006 |
| MD5 Checksum: | 6cc8d1fb05a73cac64088d95d8de28d4 |
|
| /// File Name: |
TA06-255A.txt |
Description:
|
Technical Cyber Security Alert TA06-255A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows and Microsoft Publisher. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3748 | | Last Modified: | Sep 13 11:27:11 2006 |
| MD5 Checksum: | 7b15105da996cc0afa1bae7c5cc72297 |
|
| /// File Name: |
TA06-256A.txt |
Description:
|
Technical Cyber Security Alert TA06-256A - Apple QuickTime version 7.1.3 resolves multiple vulnerabilities in the way different types of image and media files are handled. An attacker could exploit these vulnerabilities by convincing a user to access a specially crafted image or media file with a vulnerable version of QuickTime. Since QuickTime configures most web browsers to handle QuickTime media files, an attacker could exploit these vulnerabilities using a web page.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3779 | | Last Modified: | Sep 14 09:23:59 2006 |
| MD5 Checksum: | 4d49e77bf6ee059848432886fbc98f6d |
|
| /// File Name: |
tikiwiki194.txt |
Description:
|
Tikiwiki version 1.9.4 suffers from two SQL injection vulnerabilities.
| | Author: | Omid | | Homepage: | http://www.hackers.ir/ | | File Size: | 1599 | | Last Modified: | Sep 13 09:36:36 2006 |
| MD5 Checksum: | f68198f1a34fb8775a9f3fd776e9c9a3 |
|
| /// File Name: |
toendaCMS..txt |
Description:
|
toendaCMS suffers from a local file inclusion vulnerability.
| | Author: | MoHaJaLi | | File Size: | 558 | | Last Modified: | Oct 3 01:50:51 2006 |
| MD5 Checksum: | 71fb4a31475c2f9320336ac582e8548f |
|
| /// File Name: |
TTG0602.txt |
Description:
|
Alt-N WebAdmin version 3.2.5 running with MDaemon version 9.0.6 suffers from a flaw that allows Domain administrators within the default domain the ability to take over the MDaemon system account.
| | Author: | TTG | | Homepage: | http://www.teklow.com/ | | File Size: | 3649 | | Last Modified: | Sep 7 10:34:31 2006 |
| MD5 Checksum: | 270f5bd829a04dcb1009bc06d95c951f |
|
| /// File Name: |
USN-338-1.txt |
Description:
|
Ubuntu Security Notice USN-338-1 - Dmitri Lenev discovered that arguments of setuid SQL functions were evaluated in the security context of the functions' definer instead of its caller. An authenticated user with the privilege to call such a function could exploit this to execute arbitrary statements with the privileges of the definer of that function. Peter Gulutzan reported a potentially confusing situation of the MERGE table engine. If an user creates a merge table, and the administrator later revokes privileges on the original table only (without changing the privileges on the merge table), that user still has access to the data by using the merge table. This is intended behavior, but might be undesirable in some installations; this update introduces a new server option "--skip-merge" which disables the MERGE engine completely.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5579 | | Related CVE(s): | CVE-2006-4227, CVE-2006-4031 | | Last Modified: | Sep 7 10:53:33 2006 |
| MD5 Checksum: | 384753d8cfbfe440cfc7d57b77071152 |
|
| /// File Name: |
USN-339-1.txt |
Description:
|
Ubuntu Security Notice USN-339-1 - Philip Mackenzie, Marius Schilder, Jason Waddle and Ben Laurie of Google Security discovered that the OpenSSL library did not sufficiently check the padding of PKCS #1 version 1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10791 | | Related CVE(s): | CVE-2006-4339 | | Last Modified: | Sep 7 10:57:27 2006 |
| MD5 Checksum: | 00df9bb032b34dba4b73a14aff0d1ca0 |
|
| /// File Name: |
USN-340-1.txt |
Description:
|
Ubuntu Security Notice USN-340-1 - Tavis Ormandy discovered several buffer overflows in imagemagick's Sun Raster and XCF (Gimp) image decoders. By tricking a user or automated system into processing a specially crafted image, this could be exploited to execute arbitrary code with the users' privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14143 | | Related CVE(s): | CVE-2006-3743, CVE-2006-3744 | | Last Modified: | Sep 7 11:07:01 2006 |
| MD5 Checksum: | 6e5488de7d25c5623b523bd91b1d26f4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
