Section: .. / 0807-advisories /
| /// File Name: |
sa31192.txt |
Description:
|
Secunia Security Advisory - Khashayar Fereidani has discovered some vulnerabilities in EasyE-Cards, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/31192/ | | File Size: | 2776 | | Last Modified: | Jul 22 13:58:25 2008 |
| MD5 Checksum: | bcd22d8265c4e2a4769f91baa1e46744 |
|
| /// File Name: |
sa31135.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in MoinMoin, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/31135/ | | File Size: | 2234 | | Last Modified: | Jul 21 18:19:10 2008 |
| MD5 Checksum: | 02180bc4dc0f2c88aea2c2170d4c71b6 |
|
| /// File Name: |
zdaemonull.txt |
Description:
|
ZDaemon version 1.08.07 suffers from a NULL pointer vulnerability that allows for a denial of service.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | zdaemonull.zip | | File Size: | 1652 | | Last Modified: | Jul 21 18:17:27 2008 |
| MD5 Checksum: | 8c85d8ec22bbb9062cb114f68f5402b1 |
|
| /// File Name: |
glsa-200807-12.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-12 - bannedit reported a boundary error when handling overly long IRC MODE messages (CVE-2007-4584). Nico Golde reported an insecure creation of a temporary file within the e_hostname() function (CVE-2007-5839). Versions less than or equal to 1.1-r4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3594 | | Related CVE(s): | CVE-2007-4584, CVE-2007-5839 | | Last Modified: | Jul 21 18:08:23 2008 |
| MD5 Checksum: | 8100eca3c7360f4b84b412bf7550fda5 |
|
| /// File Name: |
FGA-2008-16-2.txt |
Description:
|
EMC Dantz Retrospect 7 backup Client 7.5.116 suffers from a NULL pointer reference denial of service vulnerability.
| | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2475 | | Last Modified: | Jul 21 18:04:08 2008 |
| MD5 Checksum: | 812c10b6dc3e756242463147b8c58022 |
|
| /// File Name: |
FGA-2008-16.txt |
Description:
|
EMC Dantz Retrospect 7 backup Client 7.5.116 suffers from a plaintext password hash disclosure vulnerability.
| | Author: | Zhenhua Liu | | Homepage: | http://www.fortinet.com/ | | File Size: | 2562 | | Last Modified: | Jul 21 18:00:23 2008 |
| MD5 Checksum: | cbb194fe670583886c0eed55f04e9339 |
|
| /// File Name: |
sa31158.txt |
Description:
|
Secunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in SWAT 4, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/31158/ | | File Size: | 2291 | | Last Modified: | Jul 21 17:50:40 2008 |
| MD5 Checksum: | a86393facf78d9cb42aefd34798b6bed |
|
| /// File Name: |
sa31167.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some security issues and some vulnerabilities, which can be exploited by malicious people to manipulate certain data, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/31167/ | | File Size: | 2852 | | Last Modified: | Jul 21 17:50:40 2008 |
| MD5 Checksum: | 5207cb874003d101102840fec5b64995 |
|
| /// File Name: |
sa31175.txt |
Description:
|
Secunia Security Advisory - Jesus Olmos Gonzalez has discovered a vulnerability in Filesys::SmbClientParser, which can be exploited by malicious people to compromise an application using the module.
| | Homepage: | http://secunia.com/advisories/31175/ | | File Size: | 2393 | | Last Modified: | Jul 21 17:50:40 2008 |
| MD5 Checksum: | 6e837b86f3eb0fcdc7e516f2afa2263c |
|
| /// File Name: |
glsa-200807-11.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-11 - Nico Golde reported a boundary error in the HTTP::getAuthUserPass() function when processing overly long HTTP Basic authentication requests. Versions less than 0.1218-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2849 | | Related CVE(s): | CVE-2008-2040 | | Last Modified: | Jul 21 17:28:36 2008 |
| MD5 Checksum: | d1146df456660d542131ae60286a71a2 |
|
| /// File Name: |
glsa-200807-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200807-10 - Matthijs Kooijman reported that the make_catalog_backup script uses the MySQL password as a command line argument when invoking other programs. Versions less than 2.4.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2985 | | Related CVE(s): | CVE-2007-5626 | | Last Modified: | Jul 21 17:28:26 2008 |
| MD5 Checksum: | 57f7c6379386e1685d50979f5ad3bd27 |
|
| /// File Name: |
oracleuntrust-local.txt |
Description:
|
Oracle 10g R2 and Oracle 11g suffers from a local root compromise vulnerable via the extjob binary.
| | Author: | Joxean Koret | | File Size: | 3833 | | Related CVE(s): | CVE-2008-2613 | | Last Modified: | Jul 21 17:07:34 2008 |
| MD5 Checksum: | 3a19a5731f94ea904531a9aee0a3f8c6 |
|
| /// File Name: |
MDVSA-2008-150.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple buffer overflows in yaSSL, which is used in MySQL, allowed remote attackers to execute arbitrary code. a denial of service via a special Hello packet. Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct these issues.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 10153 | | Related CVE(s): | CVE-2008-0226, CVE-2008-0227, CVE-2008-2079 | | Last Modified: | Jul 21 15:49:13 2008 |
| MD5 Checksum: | 07351dd07cd3e2a27d6bac3909ab4c6f |
|
| /// File Name: |
MDVSA-2008-149.txt |
Description:
|
Mandriva Linux Security Advisory - Sergei Golubchik found that MySQL did not properly validate optional data or index directory paths given in a CREATE TABLE statement; as well it would not, under certain conditions, prevent two databases from using the same paths for data or index files. This could allow an authenticated user with appropriate privilege to create tables in one database to read and manipulate data in tables later created in other databases, regardless of GRANT privileges. The updated packages have been patched to correct this issue.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4893 | | Related CVE(s): | CVE-2008-2079 | | Last Modified: | Jul 21 15:48:59 2008 |
| MD5 Checksum: | 2bdc41c71cf2f26c4859d39710d22810 |
|
| /// File Name: |
SSRT080058-2.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.
| | Homepage: | http://www.hp.com/ | | File Size: | 7533 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 21 15:44:10 2008 |
| MD5 Checksum: | 9d73d9bba705842147d23e9b517a640d |
|
| /// File Name: |
sa30982.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, gain escalated privileges, and malicious people to cause a DoS and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/30982/ | | File Size: | 5006 | | Last Modified: | Jul 21 15:38:08 2008 |
| MD5 Checksum: | 43865f11779bfeb7831ecfe1b3ea9cf6 |
|
| /// File Name: |
sa31089.txt |
Description:
|
Secunia Security Advisory - Russ McRee has reported some vulnerabilities in Jobbex JobSite, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/31089/ | | File Size: | 2505 | | Last Modified: | Jul 21 15:38:08 2008 |
| MD5 Checksum: | a66f1d87dd777994cd8c33c9ee744f84 |
|
| /// File Name: |
sa31096.txt |
Description:
|
Secunia Security Advisory - SUSE has acknowledged a weakness in libxcrypt, which results in potentially weaker security and may allow further attacks.
| | Homepage: | http://secunia.com/advisories/31096/ | | File Size: | 2601 | | Last Modified: | Jul 21 15:38:08 2008 |
| MD5 Checksum: | 850806e4ea9e6ee0f7a3d2b0d464ca4f |
|
| /// File Name: |
sa31146.txt |
Description:
|
Secunia Security Advisory - KingCope has reported a vulnerability in Bea Weblogic, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/31146/ | | File Size: | 2471 | | Last Modified: | Jul 21 15:38:08 2008 |
| MD5 Checksum: | ad6cd7e112c00a36ac61953fd9777645 |
|
| /// File Name: |
sa31073.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Berkley Yacc, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/31073/ | | File Size: | 2094 | | Last Modified: | Jul 18 20:28:54 2008 |
| MD5 Checksum: | cb1cf048739f3c297b5b4a84c7b63ba6 |
|
| /// File Name: |
sa31081.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in FormEncode, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/31081/ | | File Size: | 2212 | | Last Modified: | Jul 18 20:28:54 2008 |
| MD5 Checksum: | e2e84dabb15f034194d85703ab87b7b3 |
|
| /// File Name: |
sa31091.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/31091/ | | File Size: | 2086 | | Last Modified: | Jul 18 20:28:54 2008 |
| MD5 Checksum: | 7d7f54d9313f227379a1250e1ec64636 |
|
| /// File Name: |
sa31097.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for phpMyAdmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/31097/ | | File Size: | 2120 | | Last Modified: | Jul 18 20:28:54 2008 |
| MD5 Checksum: | 4c84ef912c41ff466bf39ff62581dd20 |
|
| /// File Name: |
sa31129.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/31129/ | | File Size: | 22060 | | Last Modified: | Jul 18 20:28:54 2008 |
| MD5 Checksum: | 38fee3e9c2ab92298a86900c3bab8da8 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
