Section: .. / 0704-advisories /
| /// File Name: |
dsa-1275-1.txt |
Description:
|
Debian Security Advisory 1275-1 - A cross-site scripting vulnerability in zope, a web application server, could allow an attacker to inject arbitrary HTML and/or JavaScript into the victim's web browser. This code would run within the security context of the web browser, potentially allowing the attacker to access private data such as authentication cookies, or to affect the rendering or behavior of zope web pages.
| | Homepage: | http://www.debian.org/security | | File Size: | 5253 | | Related CVE(s): | CVE-2007-0240 | | Last Modified: | Apr 5 00:41:22 2007 |
| MD5 Checksum: | 2f86de82e9ea1a1f1c50c699ebcb6594 |
|
| /// File Name: |
dsa-1276-1.txt |
Description:
|
Debian Security Advisory 1276-1 - Several remote vulnerabilities have been discovered in the MIT reference implementation of the Kerberos network authentication protocol suite, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 44762 | | Related CVE(s): | CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 | | Last Modified: | Apr 5 02:44:39 2007 |
| MD5 Checksum: | 4a46f217ea0deddd84e14e5b5c8c430b |
|
| /// File Name: |
dsa-1277-1.txt |
Description:
|
Debian Security Advisory 1277-1 - Multiple errors have been found in the skin handling routines in xmms, the X Multimedia System. These vulnerabilities could allow an attacker to run arbitrary code as the user running xmms by inducing the victim to load specially crafted interface skin files.
| | Homepage: | http://www.debian.org/security | | File Size: | 7228 | | Related CVE(s): | CVE-2007-0654, CVE-2007-0653 | | Last Modified: | Apr 5 08:52:07 2007 |
| MD5 Checksum: | f60f4cd95776dca6a9a414c79f56497a |
|
| /// File Name: |
dsa-1278-1.txt |
Description:
|
Debian Security Advisory 1278-1 - A buffer overflow has been discovered in the man command that could allow an attacker to execute code as the man user by providing specially crafted arguments to the -H flag. This is likely to be an issue only on machines with the man and mandb programs installed setuid.
| | Homepage: | http://www.debian.org/security | | File Size: | 5019 | | Related CVE(s): | CVE-2006-4250 | | Last Modified: | Apr 8 02:55:31 2007 |
| MD5 Checksum: | e606532640cf05baa6b7bcd9bd4e9e31 |
|
| /// File Name: |
dsa-1279-1.txt |
Description:
|
Debian Security Advisory 1279-1 - It was discovered that WebCalendar, a PHP-based calendar application, performs insufficient sanitizing in the exports handler, which allows injection of web script.
| | Homepage: | http://www.debian.org/security | | File Size: | 2935 | | Related CVE(s): | CVE-2006-6669 | | Last Modified: | Apr 24 09:14:03 2007 |
| MD5 Checksum: | b5951da89d3b7a7ca2871e83f381a17a |
|
| /// File Name: |
dsa-1280-1.txt |
Description:
|
Debian Security Advisory 1280-1 - It was discovered that aircrack-ng, a WEP/WPA security analysis tool, performs insufficient validation of 802.11 authentication packets, which allows the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 4377 | | Related CVE(s): | CVE-2007-2057 | | Last Modified: | Apr 25 07:26:34 2007 |
| MD5 Checksum: | 40c2da40902c8e73cef513eb022fd7c8 |
|
| /// File Name: |
dsa-1283-1.txt |
Description:
|
Debian Security Advisory 1283-1 - Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 32003 | | Related CVE(s): | CVE-2007-1286, CVE-2007-1375, CVE-2007-1376, CVE-2007-1380, CVE-2007-1453, CVE-2007-1454, CVE-2007-1521, CVE-2007-1583, CVE-2007-1700, CVE-2007-1711, CVE-2007-1718, CVE-2007-1777, CVE-2007-1824, CVE-2007-1887, CVE-2007-1889, CVE-2007-1900 | | Last Modified: | May 3 05:25:57 2007 |
| MD5 Checksum: | 75fbfcf5dbc7740ecc59ffbcfaa8a3a7 |
|
| /// File Name: |
EEYE-csrss.txt |
Description:
|
eEye Digital Security has discovered a local privilege escalation vulnerability in Windows Vista that allows a program executing without privileges to fully compromise an affected system. A malicious user or malware program could exploit this vulnerability to execute arbitrary code with SYSTEM privileges within the CSRSS process, permitting the bypass of Vista's vaunted user privilege limitations and administrator approval mode. By establishing and closing multiple connections to CSRSS's "ApiPort", an application may cause a private data structure within CSRSS that describes its process to be used after it has been freed, creating an exploitable "dangling pointer" condition. This vulnerability is entirely separate from the CSRSS NtRaiseHardError message box flaw publicly disclosed in December 2006, although both affect code within the CSRSS process. It is interesting to note that this vulnerability only affects Windows Vista, due to new, flawed code added to CSRSRV.DLL in support of functionality introduced in Vista.
| | Author: | Derek Soeder | | Homepage: | http://www.eeye.com/ | | File Size: | 5539 | | Last Modified: | Apr 11 06:43:04 2007 |
| MD5 Checksum: | 142455a90333b87b5d6c76789dddf56e |
|
| /// File Name: |
EEYE-vdmzero.txt |
Description:
|
eEye Digital Security has discovered a local privilege escalation vulnerability in the Windows kernel that allows an unprivileged user with the ability to execute a program to fully compromise an affected system. All x86 versions of Windows up to and including Windows Server 2003 SP2 are vulnerable. The Windows kernel's Virtual DOS Machine (VDM) implementation features a race condition through which a malicious program can modify the first 4KB page of physical memory (also known as the "zero page"). The data in this region of memory is trusted and may be subsequently used by other Virtual DOS Machines, including a VDM instantiated by the Windows kernel as part of hibernating or effecting a blue-screen crash. Exploitation of this vulnerability therefore allows arbitrary code to run within other users' VDM processes, and even within the kernel if hibernation or a blue-screen can be provoked by any available means.
| | Author: | Derek Soeder | | Homepage: | http://www.eeye.com | | File Size: | 6573 | | Last Modified: | Apr 11 06:42:17 2007 |
| MD5 Checksum: | ec84677a8c896473eceed1a620424060 |
|
| /// File Name: |
glsa-200704-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-01 - The Madynes research team at INRIA has discovered that Asterisk contains a null pointer dereferencing error in the SIP channel when handling INVITE messages. Furthermore qwerty1979 discovered that Asterisk 1.2.x fails to properly handle SIP responses with return code 0. Versions less than 1.2.14-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2921 | | Related CVE(s): | CVE-2007-1561, CVE-2007-1594 | | Last Modified: | Apr 3 02:58:57 2007 |
| MD5 Checksum: | 9fdb1a849013c572f7bfb09a2f565536 |
|
| /// File Name: |
glsa-200704-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-02 - The Kerberos telnet daemon fails to properly handle usernames allowing unauthorized access to any account (CVE-2007-0956). The Kerberos administration daemon, the KDC and possibly other applications using the MIT Kerberos libraries are vulnerable to the following issues. The krb5_klog_syslog function from the kadm5 library fails to properly validate input leading to a stack overflow (CVE-2007-0957). The GSS-API library is vulnerable to a double-free attack (CVE-2007-1216). Versions less than 1.5.2-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3148 | | Related CVE(s): | CVE-2007-0956, CVE-2007-0957, CVE-2007-1216 | | Last Modified: | Apr 5 02:44:48 2007 |
| MD5 Checksum: | 87659c312d1d721a42e37c9af2adeb79 |
|
| /// File Name: |
glsa-200704-03.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-03 - Benjamin Bennett discovered that the OpenAFS client contains a design flaw where cache managers do not use authenticated server connections when performing actions not requested by a user. Versions less than 1.4.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2786 | | Related CVE(s): | CVE-2007-1507 | | Last Modified: | Apr 5 02:45:52 2007 |
| MD5 Checksum: | 6947684a34a7afac6bc87e100378b83b |
|
| /// File Name: |
glsa-200704-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-04 - SUSE reported vulnerabilities due to unspecified errors in OpenPBS. Versions less than or equal to 2.3.16-r4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2962 | | Related CVE(s): | CVE-2006-5616 | | Last Modified: | Apr 5 02:46:26 2007 |
| MD5 Checksum: | 010a38a2bcccb902bb0206e24c55b81d |
|
| /// File Name: |
glsa-200704-05.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-05 - dmcox dmcox discovered a boundary error in the zzip_open_shared_io() function from zzip/file.c . Versions less than 0.13.49 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2567 | | Related CVE(s): | CVE-2007-1614 | | Last Modified: | Apr 5 02:46:42 2007 |
| MD5 Checksum: | 407a961e44b688039ee7d00350de2e08 |
|
| /// File Name: |
glsa-200704-06.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-06 - Evince includes code from GNU gv that does not properly boundary check user-supplied data before copying it into process buffers. Versions less than 0.6.1-r3 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2627 | | Related CVE(s): | CVE-2006-5864 | | Last Modified: | Apr 8 02:55:51 2007 |
| MD5 Checksum: | 3a3242c9e2ec79fb6276d48088ec26b1 |
|
| /// File Name: |
glsa-200704-07.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-07 - libwpd contains heap-based overflows in two functions that convert WordPerfect document tables. In addition, it contains an integer overflow in a text-conversion function. Versions less than 0.8.9 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2644 | | Related CVE(s): | CVE-2007-0002, CVE-2007-1466 | | Last Modified: | Apr 8 02:56:06 2007 |
| MD5 Checksum: | d5e362d91a4c64bcc9be45ac5025f95d |
|
| /// File Name: |
glsa-200704-08.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-08 - DokuWiki does not sanitize user input to the GET variable 'media' in the fetch.php file. Versions less than 20061106 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2722 | | Related CVE(s): | CVE-2006-6965 | | Last Modified: | Apr 13 00:53:35 2007 |
| MD5 Checksum: | 19caec818580be8d3bd5afb1ac41e8a8 |
|
| /// File Name: |
glsa-200704-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-09 - xine-lib does not check boundaries on data being read into buffers from DMO video files in code that is shared with MPlayer (DMO_VideoDecoder.c). Versions less than 1.1.4-r2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2671 | | Related CVE(s): | CVE-2007-1246 | | Last Modified: | Apr 17 06:15:07 2007 |
| MD5 Checksum: | 213bb3dba356828e8cabb5b25f66ef0a |
|
| /// File Name: |
glsa-200704-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-10 - Kees Cook has discovered two vulnerabilities in Inkscape. The application does not properly handle format string specifiers in some dialog boxes. Inkscape is also vulnerable to another format string error in its Jabber whiteboard protocol. Versions less than 0.45.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2767 | | Related CVE(s): | CVE-2007-1463, CVE-2007-1464 | | Last Modified: | Apr 17 07:23:17 2007 |
| MD5 Checksum: | 84fc9f8eb5f6290dcbf9e3fc04161c91 |
|
| /// File Name: |
glsa-200704-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-11 - During an internal audit, Raphael Marichez of the Gentoo Linux Security Team found that Vixie Cron has weak permissions set on Gentoo, allowing for a local user to create hard links to system and users cron files, while a st_nlink check in database.c will generate a superfluous error. Versions less than 4.1-r10 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2767 | | Related CVE(s): | CVE-2007-1856 | | Last Modified: | Apr 17 18:33:41 2007 |
| MD5 Checksum: | a43e77a55d5756dddb7cd414526044d5 |
|
| /// File Name: |
glsa-200704-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-12 - John Heasman of NGSSoftware has discovered a stack-based buffer overflow in the StarCalc parser and an input validation error when processing metacharacters in a link. Also OpenOffice.Org includes code from libwpd making it vulnerable to heap-based overflows when converting WordPerfect document tables (GLSA 200704-07). Versions less than 2.1.0-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3582 | | Related CVE(s): | CVE-2007-0002, CVE-2007-0238, CVE-2007-0239 | | Last Modified: | Apr 17 19:09:04 2007 |
| MD5 Checksum: | 808ac7bd7870bd34227ed9c74e8c24ec |
|
| /// File Name: |
glsa-200704-13.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-13 - Conor Edberg discovered an error in the way file processes a specific regular expression. Versions 4.20 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2538 | | Related CVE(s): | CVE-2007-2026 | | Last Modified: | Apr 19 02:54:30 2007 |
| MD5 Checksum: | 3692c7508110928086101ca43096b6ed |
|
| /// File Name: |
glsa-200704-14.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200704-14 - The Coverity Scan project has discovered a memory leak within the handling of certain malformed Diameter format values inside an EAP-TTLS tunnel. Versions less than 1.1.6 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2554 | | Related CVE(s): | CVE-2007-2028 | | Last Modified: | Apr 19 02:54:45 2007 |
| MD5 Checksum: | 8596a06cdbf5c0c48a23fb0f0ab0577f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
