Section: .. / 0612-advisories /
| /// File Name: |
sa23270.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been discovered in TorrentFlux, which can be exploited by malicious users to gain system access or disclose sensitive information and by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/23270/ | | File Size: | 4034 | | Last Modified: | Dec 14 10:45:41 2006 |
| MD5 Checksum: | 50aec2ab2df1591f61e4225115eb292f |
|
| /// File Name: |
sa23317.txt |
Description:
|
Secunia Security Advisory - A vulnerability and a security issue have been reported in Sun Solaris, which can be exploited by malicious, local users to disclose sensitive information or potentially gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/23317/ | | File Size: | 3974 | | Last Modified: | Dec 14 10:45:41 2006 |
| MD5 Checksum: | bb94ce43b9e1b374ed224679ca0cbcd3 |
|
| /// File Name: |
TSRT-06-14.txt |
Description:
|
Vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager. Authentication is not required to exploit these vulnerabilities. Versions below 5.2.9 and below 5.3.4 are affected.
| | Homepage: | http://www.tippingpoint.com/ | | File Size: | 3967 | | Related CVE(s): | CVE-2006-5855 | | Last Modified: | Dec 6 07:32:43 2006 |
| MD5 Checksum: | 06a9842e1dad53cc6352302e7020854c |
|
| /// File Name: |
sa23467.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for links2. This fixes some vulnerabilities, which can be exploited by malicious people to expose sensitive information and manipulate data.
| | Homepage: | http://secunia.com/advisories/23467/ | | File Size: | 3934 | | Last Modified: | Dec 27 23:54:47 2006 |
| MD5 Checksum: | 51f01b3eec7ed12ed6d3aeb031764b82 |
|
| /// File Name: |
sa23268.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23268/ | | File Size: | 3934 | | Last Modified: | Dec 8 22:32:56 2006 |
| MD5 Checksum: | f2a7af6297a2135f65ce63f24baab5a8 |
|
| /// File Name: |
secunia-iescript.txt |
Description:
|
Secunia Research has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error within the exception handling of script errors. This can be exploited to corrupt memory via an HTML document containing specially crafted JavaScript that triggers certain errors simultaneously. Microsoft Internet Explorer 6.0 is affected.
| | Author: | Jakob Balle, Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 3904 | | Related CVE(s): | CVE-2006-5579 | | Last Modified: | Dec 15 10:03:31 2006 |
| MD5 Checksum: | 0d1a5d8fed13912ddba36e83cd8697d5 |
|
| /// File Name: |
dsa-1240-1.txt |
Description:
|
Debian Security Advisory 1240-1 - Teemu Salmela discovered that the links2 character mode web browser performs insufficient sanitizing of smb:// URIs, which might lead to the execution of arbitrary shell commands.
| | Homepage: | http://www.debian.org/security | | File Size: | 3904 | | Related CVE(s): | CVE-2006-5925 | | Last Modified: | Dec 22 01:28:46 2006 |
| MD5 Checksum: | 9c7071225feb82126fb74828c98cbf9f |
|
| /// File Name: |
sa23307.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23307/ | | File Size: | 3900 | | Last Modified: | Dec 14 10:45:41 2006 |
| MD5 Checksum: | 0a85a65e00ecf5547123cf376f9a9e1f |
|
| /// File Name: |
MDKSA-2006-214-1.txt |
Description:
|
Mandriva Linux Security Advisory - A stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the DocumentMedia header.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3885 | | Related CVE(s): | CVE-2006-5864 | | Last Modified: | Dec 6 06:51:42 2006 |
| MD5 Checksum: | 217423cbf724de2784e9f414070441dd |
|
| /// File Name: |
12.12.06-2.txt |
Description:
|
iDefense Security Advisory 12.12.06 - Local exploitation of a directory traversal vulnerability in ld.so could potentially allow a non root user to execute arbitrary code as root. iDefense has confirmed that Solaris 10 for both x86 and SPARC is vulnerable. It is speculated that older versions of Solaris are vulnerable as well.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3882 | | Last Modified: | Dec 15 10:01:38 2006 |
| MD5 Checksum: | ca8e1ff30728bf31c6ffdc63bf0606d1 |
|
| /// File Name: |
glsa-200612-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200612-07 - Mozilla Firefox improperly handles Script objects while they are being executed. Mozilla Firefox has also been found to be vulnerable to various possible buffer overflows. Lastly, the binary release of Mozilla Firefox is vulnerable to a low exponent RSA signature forgery issue because it is bundled with a vulnerable version of NSS. Versions less than 1.5.0.8 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3868 | | Last Modified: | Dec 11 17:03:24 2006 |
| MD5 Checksum: | 3f9acfb4aa6a0ad36a57c6f5a9429778 |
|
| /// File Name: |
USN-390-3.txt |
Description:
|
Ubuntu Security Notice 390-3 - USN-390-2 fixed vulnerabilities in evince. This update provides the corresponding update for evince-gtk. A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 3808 | | Related CVE(s): | CVE-2006-5864 | | Last Modified: | Dec 7 10:45:39 2006 |
| MD5 Checksum: | f29d1be388fa20d67e7e666ceff2abe6 |
|
| /// File Name: |
glsa-200612-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200612-15 - Jakub Moc of Gentoo Linux discovered that McAfee VirusScan was distributed with an insecure DT_RPATH which included the current working directory, rather than $ORIGIN which was probably intended. Versions less than or equal to 4510e are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3772 | | Last Modified: | Dec 14 22:00:07 2006 |
| MD5 Checksum: | 31da4fdde7e506aaf166a6b7429e15e0 |
|
| /// File Name: |
sa23437.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Novell NetMail, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system and by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23437/ | | File Size: | 3763 | | Last Modified: | Dec 27 23:54:47 2006 |
| MD5 Checksum: | f3b0c6212b79a3250208a20eb347f1a1 |
|
| /// File Name: |
sa23166.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for libgsf. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/23166/ | | File Size: | 3702 | | Last Modified: | Dec 6 03:07:49 2006 |
| MD5 Checksum: | ac9b01095c4d1f299868fdb1aa329027 |
|
| /// File Name: |
sitekiosk-xss.txt |
Description:
|
SiteKiosk versions below 6.5.150 suffer from a validation input flaw that allows for cross site scripting and arbitrary filesystem access.
| | Author: | Brett Moore | | Homepage: | http://security-assessment.com/ | | File Size: | 3691 | | Last Modified: | Dec 15 09:34:44 2006 |
| MD5 Checksum: | 85430b6f7d57504b6e04310ee5630ecb |
|
| /// File Name: |
sa23409.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and malicious people to conduct cross-site scripting and script insertion attacks, bypass certain security restrictions, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23409/ | | File Size: | 3678 | | Last Modified: | Dec 20 23:30:34 2006 |
| MD5 Checksum: | d1187d405801135e68df662ea5942933 |
|
| /// File Name: |
sa23361.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported within the Linux kernel, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/23361/ | | File Size: | 3653 | | Last Modified: | Dec 14 21:28:17 2006 |
| MD5 Checksum: | a245da7556f41f530045654f2be974e9 |
|
| /// File Name: |
barracude-uulib.txt |
Description:
|
Further research has been performed against the Barracuda Convert-UUlib library buffer overflow.
| | Author: | Jean-Sebastien Guay-Leroux | | File Size: | 3650 | | Related CVE(s): | CVE-2005-1349 | | Last Modified: | Dec 6 08:01:04 2006 |
| MD5 Checksum: | 0317d42592e8a5ff205667efc5ae7cf7 |
|
| /// File Name: |
iis51asp.txt |
Description:
|
IIS 5.1 suffers from a flaw where it allows an ASP shell to be spawned via execute rights for IUSR_Machine.
| | Author: | Brett Moore | | File Size: | 3630 | | Last Modified: | Dec 15 10:18:43 2006 |
| MD5 Checksum: | 27c670b23ab54e041855dfd8e033d2a7 |
|
| /// File Name: |
sa23435.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious people to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/23435/ | | File Size: | 3618 | | Last Modified: | Dec 21 22:14:31 2006 |
| MD5 Checksum: | 15660fec10d57de1a525b13f8da7191b |
|
| /// File Name: |
n.runs-SA-2006.003.txt |
Description:
|
A remotely exploitable vulnerability has been found in the file parsing engine for BitDefender allowing for remote code execution.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 3612 | | Last Modified: | Dec 21 23:53:21 2006 |
| MD5 Checksum: | 0ec9413ce828aa53d9b94e27fbca2852 |
|
| /// File Name: |
sa23290.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/23290/ | | File Size: | 3603 | | Last Modified: | Dec 12 16:19:53 2006 |
| MD5 Checksum: | 99c2b1c2f905a1b63d493c351bbd4704 |
|
| /// File Name: |
sa23219.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for ImageMagick. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/23219/ | | File Size: | 3558 | | Last Modified: | Dec 6 03:07:49 2006 |
| MD5 Checksum: | dbadaf8148ef94ce09460c46fd1eb436 |
|
| /// File Name: |
sa23502.txt |
Description:
|
Secunia Security Advisory - z1ckX has discovered some vulnerabilities in eNdonesia, which can be exploited by malicious people to disclose sensitive information, manipulate data and perform cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/23502/ | | File Size: | 3553 | | Last Modified: | Dec 27 23:54:47 2006 |
| MD5 Checksum: | 21123de13090f13092c2f984b52cd137 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
