Mandriva Linux Security Advisory MDKSA-2006-191: Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.
d9601175fd520e0d58f72362561eb51eadeff521b0833f5f4af28a2a6df6d857Mandriva Linux Security Advisory MDKSA-2006-191: Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.
d9601175fd520e0d58f72362561eb51eadeff521b0833f5f4af28a2a6df6d857Mandriva Linux Security Advisory MDKSA-2006-190: A race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
121d6641bede0bca7cda032405675ffdeae7cec29b44ebadbddb2b06c79978bfMandriva Linux Security Advisory MDKSA-2006-190: A race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
121d6641bede0bca7cda032405675ffdeae7cec29b44ebadbddb2b06c79978bfMandriva Linux Security Advisory MDKSA-2006-189: Yannick Van Osselaer discovered a stack overflow in Xsupplicant, which could potentially be exploited by a remote, authenticated user to gain root privileges. Additional code cleanups to fix potential memory leaks are also included.
4465bacfe277c499446ae643a2852e1099d8b820c1f8ae82cceacf2ade868b37Mandriva Linux Security Advisory MDKSA-2006-189: Yannick Van Osselaer discovered a stack overflow in Xsupplicant, which could potentially be exploited by a remote, authenticated user to gain root priviledges. Additional code cleanups to fix potential memory leaks are also included.
4465bacfe277c499446ae643a2852e1099d8b820c1f8ae82cceacf2ade868b37Mandriva Linux Security Advisory MDKSA-2006-188: Sebastian Krahmer of the SUSE security team found that the System.CodeDom.Compiler classes in mono used temporary files in an insecure way that could allow a symbolic link attack to overwrite arbitrary files with the privileges of the user running a program that made use of those classes.
75362f04ffe58ba78e72e8a1410dc65a7b572c94db473d529f5e4e9357aecfdfMandriva Linux Security Advisory MDKSA-2006-188: Sebastian Krahmer of the SUSE security team found that the System.CodeDom.Compiler classes in mono used temporary files in an insecure way that could allow a symbolic link attack to overwrite arbitrary files with the privileges of the user running a program that made use of those classes.
75362f04ffe58ba78e72e8a1410dc65a7b572c94db473d529f5e4e9357aecfdfAsterisk Open Source PBX versions prior to 1.2.13 are vulnerable to local and remote denial of service attacks via a sequence of malformed packets.
2b0be2f77b87a8b5e9ce286060248fb1dbf05ea28f09a44a6813660999d9e6f6Axalto Protiva 1.1 stores sensitive information in plaintext world readable files.
1d4fa0c1a0c77d3b016d87d417bbd2af7698989d80d70df0be6ad79cf4af5901Any router running DD-WRT only checks the first 8 characters of a users password. The DD-WRT firmware is used in many Linksys routers.
b39b63064f539d2fcf3558b21e0539ef9ca1fef50960fc82361ed466a56069ecphpFaber CMS versions 1.3.36 and below suffer from a cross site scripting flaw.
8dfc27e31874e0a98831d402239fae1cd3c852329ebd7026b7c3ecef108dfe6bParallels Desktop for Mac - Build 1940 creates files with insecure permissions.
e4c883be914c2e585934e5e834b9e62c1863e95b15be5a3217e5c05a2f5a9f93Secunia Security Advisory - A vulnerability with unknown impact has been reported in MDaemon Server.
ae96224189ebce8ad8415cf7ea0d11f511faca46cf321946b5062294e9bdaa8eSecunia Security Advisory - Some vulnerabilities have been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).
040e4b6b36ca6032e4a0b24c0573b4e597d885b6fa1fb3fef7b6e1eb08437b60Secunia Security Advisory - h07 has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service).
2a376a9f83ab0f511dcb6e36e30b28bf9b13a24203daf4057a3db62ecfb4a67aSecunia Security Advisory - Kacper has discovered a vulnerability in Free Image Hosting, which can be exploited by malicious people to compromise a vulnerable system.
600adf8f1903967de3838ebd23afbd739a070edd374e3f5145a9bde94ef04977Secunia Security Advisory - Cyber-Security has discovered a vulnerability in mp3SDS, which can be exploited by malicious people to compromise a vulnerable system.
f5181dc6924c999afa5b62c61a5f6521b8afa95a62dd978d21a0befaa315c8f3Secunia Security Advisory - ajann has reported a vulnerability in Netref, which can be exploited by malicious people to disclose sensitive information.
d01b2ea09c2f6d4c9f112cbc8cac83de5753a1c9f6eff9e657287c616a83bc7dSecunia Security Advisory - Mandriva has issued an update for screen. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
feb9b3ee8385e0ac9c90d1e36005dc397ee877921efc6582fb58fbe24de5c4d0Secunia Security Advisory - A vulnerability has been reported in Xsupplicant, which potentially can be exploited by malicious people to compromise a vulnerable system.
bce6c215ae3bf13c8f18b36c25623ef2ca4f0639f0d2fffde395ff0fa9f566efSecunia Security Advisory - Some weaknesses have been reported in mutt, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
0d1be388da14008652eab43cea1afa6c5cc038dd53e09418094f17816c9063e4Secunia Security Advisory - Mandriva has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
c2855fc792ebabede4967bb1ccce6a1be3612b3673ac5ac78e34c346a00ba7beSecunia Security Advisory - Mandriva has issued an update for ruby. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
b1eafad0ed1a1991b058b20bdd94be2b2c6770df3b6db2f88120cfd2de7f362bSecunia Security Advisory - ajann has reported a vulnerability in PHPEasyData Pro, which can be exploited by malicious people to conduct SQL injection attacks.
2de6059c9d866e13cc2beb77afd7e3eb3f09c79bde2f28ac56d116468647ff55
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed