Section: .. / Last 20 Advisory Files /
| /// File Name: | MDVSA-2010-170.txt | Description:
| Mandriva Linux Security Advisory 2010-170 - GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a.wgetrc filename followed by a 3xx redirect to a URL with a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5600 | | Related CVE(s): | CVE-2010-2252 | | Last Modified: | Sep 2 23:47:14 2010 | | MD5 Checksum: | 1d5d76c35a7524b8752e4dfab043cf0f |
|
| /// File Name: | glsa-201009-01.txt | Description:
| Gentoo Linux Security Advisory 201009-1 - An integer overflow vulnerability in wxGTK might enable remote attackers to cause the execution of arbitrary code. wxGTK is prone to an integer overflow error in the wxImage::Create() function in src/common/image.cpp, possibly leading to a heap-based buffer overflow. Versions less than 2.8.10.1-r1 are affected. | | Author: | Gentoo | | Homepage: | http://security.gentoo.org | | File Size: | 3040 | | Related CVE(s): | CVE-2009-2369 | | Last Modified: | Sep 2 23:46:38 2010 | | MD5 Checksum: | fdf7e822a65781e0b83fcc9be4491798 |
|
| /// File Name: | USN-982-1.txt | Description:
| Ubuntu Security Notice 982-1 - It was discovered that Wget would use filenames provided by the server when following 3xx redirects. If a user or automated system were tricked into downloading a file from a malicious site, a remote attacker could create the file with an arbitrary name (e.g. .wgetrc), and possibly run arbitrary code. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 11134 | | Related CVE(s): | CVE-2010-2252 | | Last Modified: | Sep 2 23:15:02 2010 | | MD5 Checksum: | 772e3ecddbb0e78f9ad1482e49e5c2b0 |
|
| /// File Name: | MDVSA-2010-169.txt | Description:
| Mandriva Linux Security Advisory 2010-169 - dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 does not properly suppress a script's URL in certain circumstances involving a redirect and an error message, which allows remote attackers to obtain sensitive information about script parameters via a crafted HTML document, related to the window.onerror handler. Mozilla Firefox permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document. Various other Mozilla related vulnerabilities have been addressed. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 74322 | | Related CVE(s): | CVE-2010-2754, CVE-2010-0654, CVE-2010-1213, CVE-2010-2753, CVE-2010-1211 | | Last Modified: | Sep 2 23:08:28 2010 | | MD5 Checksum: | 0f02f3eda393e2a0d929deb75ea471a5 |
|
| /// File Name: | moaub01-cpanel.pdf | Description:
| Month Of Abysssec Undisclosed Bugs - Cpanel suffers from a PHP restriction bypass vulnerability. Versions 11.25 and below are affected. | | Author: | Abysssec,Shahin | | Homepage: | http://www.abysssec.com/ | | Related Exploit: | moaub-cpanel.txt | | File Size: | 111765 | | Last Modified: | Sep 1 16:33:24 2010 | | MD5 Checksum: | 742e27e87f22754fb5fce6e831b68d44 |
|
| /// File Name: | MDVSA-2010-168.txt | Description:
| Mandriva Linux Security Advisory 2010-168 - Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service and possibly execute some sources refer to this as a use-after-free issue. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3636 | | Related CVE(s): | CVE-2010-2939 | | Last Modified: | Sep 1 16:28:29 2010 | | MD5 Checksum: | f0c6c2f4720853cfe16f3b61747fe479 |
|
| /// File Name: | macosxparental-bypass.txt | Description:
| The parental controls built into the Mac OS X Mail client can be easily bypassed by anyone who knows the email address of the child and his/her parent. | | Author: | Jonathan Kamens | | File Size: | 4344 | | Last Modified: | Sep 1 16:14:38 2010 | | MD5 Checksum: | a9781fd5642b187fa7ed3b0e9f72ac7f |
|
| /// File Name: | VMSA-2010-0013.txt | Description:
| VMware Security Advisory - The service console package cpio is updated to version 2.5-6.RHEL3. The service console package tar is updated to version 1.13.25-16.RHEL3. The service console packages for samba are updated to version samba-3.0.9-1.3E.17vmw, samba-client-3.0.9-1.3E.17vmw and samba-common-3.0.9-1.3E.17vmw. The service console package krb5 is updated to version 1.2.7-72. The service console package perl is updated to version 5.8.0-101.EL3. | | Homepage: | http://www.vmware.com/ | | File Size: | 10502 | | Related CVE(s): | CVE-2005-4268, CVE-2010-0624, CVE-2010-0624, CVE-2010-2063, CVE-2010-1321, CVE-2010-1168, CVE-2010-1447 | | Last Modified: | Sep 1 13:39:58 2010 | | MD5 Checksum: | b09485d6be1c4762b45d7696cf3e5929 |
|
| /// File Name: | MDVSA-2010-167.txt | Description:
| Mandriva Linux Security Advisory 2010-167 - lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a. character, which allows remote servers to create or overwrite files via a 3xx redirect to a URL with a crafted filename or a Content-Disposition header that suggests a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5605 | | Related CVE(s): | CVE-2010-2253 | | Last Modified: | Sep 1 13:36:21 2010 | | MD5 Checksum: | a51472767c3f02ea5ccf9de1e8f2c8ef |
|
| /// File Name: | dsa-2101-1.txt | Description:
| Debian Linux Security Advisory 2101-1 - Several implementation errors in the dissector of the Wireshark network traffic analyzer for the ASN.1 BER protocol and in the SigComp Universal Decompressor Virtual Machine may lead to the execution of arbitrary code. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 11187 | | Related CVE(s): | CVE-2010-2994, CVE-2010-2995 | | Last Modified: | Aug 31 19:55:01 2010 | | MD5 Checksum: | 9e4517c5c11a2c8679174a546d3783a4 |
|
| /// File Name: | apphp-xssxsrf.txt | Description:
| ApPHP suffers from cross site request forgery and cross site scripting vulnerabilities. | | Author: | Edgard Chammas | | File Size: | 827 | | Last Modified: | Aug 31 19:50:07 2010 | | MD5 Checksum: | 98d1db1212daa5664ef8d0e3227ebf09 |
|
| /// File Name: | HPSBMA02571-SSRT100034.txt | Description:
| HP Security Bulletin - A potential security vulnerability has been identified with HP Insight Diagnostics Online Edition running on Linux. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). | | Homepage: | http://www.hp.com/ | | File Size: | 6111 | | Related CVE(s): | CVE-2010-3003 | | Last Modified: | Aug 31 14:49:21 2010 | | MD5 Checksum: | 4e1948b4fa0864277f76dc2ab1b3e3e0 |
|
| /// File Name: | tortoisesvn-dllhijack.txt | Description:
| Tortoise SVN version 1.6.10 build 19898 suffers from the Windows DLL hijacking vulnerability. | | Author: | Nikhil Mittal | | File Size: | 1131 | | Last Modified: | Aug 31 14:48:05 2010 | | MD5 Checksum: | 18c757c53461202273321eb91c9e2d09 |
|
| /// File Name: | ZDI-10-168.txt | Description:
| Zero Day Initiative Advisory 10-168 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the QTPlugin.ocx ActiveX control. The plugin accepts a parameter named _Marshaled_pUnk that it uses as a valid pointer. By specifying invalid values an attacker can force the application to jump to a controlled location in memory. This can be exploited to execute remote code under the context of the user running the web browser. | | Author: | TippingPoint | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2990 | | Last Modified: | Aug 31 14:47:29 2010 | | MD5 Checksum: | f1e202e02d5bb2b6edce390377069eac |
|
| /// File Name: | MDVSA-2010-166.txt | Description:
| Mandriva Linux Security Advisory 2010-166 - Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; a crafted JPEG file, related to the gdip_load_jpeg_image_internal function in jpegcodec.c; or a crafted BMP file, related to the gdip_read_bmp_image function in bmpcodec.c, leading to heap-based buffer overflows. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5483 | | Related CVE(s): | CVE-2010-1526 | | Last Modified: | Aug 31 14:47:03 2010 | | MD5 Checksum: | 74a5e32dcc8de585e13eaffbfbd944b5 |
|
| /// File Name: | USN-981-1.txt | Description:
| Ubuntu Security Notice 981-1 - It was discovered that libwww-perl incorrectly filtered filenames suggested by Content-Disposition headers. If a user were tricked into downloading a file from a malicious site, a remote attacker could overwrite hidden files in the user's directory. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 4848 | | Related CVE(s): | CVE-2010-2253 | | Last Modified: | Aug 31 14:40:21 2010 | | MD5 Checksum: | 1b6f8fba75621cbb77aeb7061fc7668c |
|
| /// File Name: | USN-980-1.txt | Description:
| Ubuntu Security Notice 980-1 - Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 13555 | | Related CVE(s): | CVE-2010-2494 | | Last Modified: | Aug 31 14:38:55 2010 | | MD5 Checksum: | 3e230abdd37c42ca6371757ffe07ce1b |
|
| /// File Name: | HPSBUX02552-SSRT100062.txt | Description:
| HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Software Distributor (sd). The vulnerability could be exploited locally to grant an increase in privilege, or to permit unauthorized access. | | Homepage: | http://www.hp.com/ | | File Size: | 6949 | | Related CVE(s): | CVE-2010-2712 | | Last Modified: | Aug 31 14:32:17 2010 | | MD5 Checksum: | acc794ce0bdf65f028c00b56a9387ca4 |
|
|
|
|
|