Section: .. / 0601-advisories /
| /// File Name: |
FSA-2006-07.txt |
Description:
|
Fortinet Security Advisory: FSA-2006-07 - Fortinet Security Research Team (FSRT) has discovered a URI buffer overflow Vulnerability in the BitComet P2P Client software. It indicates a possible exploit of buffer overflow vulnerability in BitComet. BitComet is one of the most popular P2P Client for file sharing, which uses bittorrent protocol. There is a bug in BitComet, a remote attacker could construct a special .torrent file and put it on any bt publish web site. When a user downloads the .torrent file and clicks on publishers name, BitComet will crash. An attacker can run arbitrary Command on victims host by specially crafted .torrent file.
| | Author: | Fortinet Research | | File Size: | 1818 | | Last Modified: | Jan 25 08:55:51 2006 |
| MD5 Checksum: | de298f443a5f52b7c96eb94db0e3321d |
|
| /// File Name: |
cisco-sa-20060118-ccmpe.txt |
Description:
|
Cisco CallManager (CCM) is the software-based call-processing component of the Cisco IP telephony solution which extends enterprise telephony features and functions to packet telephony network devices such as IP phones, media processing devices, voice-over-IP (VoIP) gateways, and multimedia applications. Cisco CallManager versions with Multi Level Administration (MLA) enabled may be vulnerable to privilege escalation, which may result in read-only users gaining administrative access.
| | Author: | Cisco | | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmpe.shtml. | | File Size: | 12536 | | Last Modified: | Jan 25 08:48:10 2006 |
| MD5 Checksum: | 2f14c43515e9ab84f49c757094d62cf5 |
|
| /// File Name: |
cisco-sa-20060118-ccmdos.txt |
Description:
|
Cisco CallManager (CCM) is the software-based call-processing component of the Cisco IP telephony solution which extends enterprise telephony features and functions to packet telephony network devices such as IP phones, media processing devices, voice-over-IP (VoIP) gateways, and multimedia applications. All Cisco CallManager versions are vulnerable to these Denial of Service (DoS) attacks, which may result in services being interrupted or servers rebooting.
| | Author: | Cisco | | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20060118-ccmdos.shtml. | | File Size: | 11830 | | Last Modified: | Jan 25 08:47:19 2006 |
| MD5 Checksum: | eb85865e7da449d533766493e57bd4c4 |
|
| /// File Name: |
cisco-sa-20060118-sgbp.txt |
Description:
|
The Cisco IOS Stack Group Bidding Protocol (SGBP) feature in certain versions of Cisco IOS software is vulnerable to a remotely-exploitable denial of service condition. Devices that do not support or have not enabled the SGBP protocol are not affected by this vulnerability.
| | Author: | Cisco | | Homepage: | http://www.cisco.com/warp/public/707/cisco-sa-20060118-sgbp.shtml | | File Size: | 29733 | | Last Modified: | Jan 25 08:46:07 2006 |
| MD5 Checksum: | 16fd609bec0d74a6b06643fa010a06a9 |
|
| /// File Name: |
Blogger_HTTP_response_splitting.txt |
Description:
|
Blogger's personal page redirection mechanism contains a classic HTTP response splitting vulnerability in the "Location" HTTP header. The problem occurs due to use of unsanitized user-supplied data in the "Location" HTTP header, which enables attacker to inject CRLF(%0d%0a) characters thus splitting server's response taking full control over the contents of second HTTP response. Exploitation of the vulnerability can lead to cross-site scripting (XSS), cache poisoning and phishing attacks.
| | Author: | Meder Kydyraliev | | Homepage: | http://o0o.nu/~meder/o0o_Blogger_HTTP_response_splitting.txt | | File Size: | 1460 | | Last Modified: | Jan 25 08:32:45 2006 |
| MD5 Checksum: | 6d0529a5d76e9b40136f39019976a540 |
|
| /// File Name: |
oracle_tde_wallet_password.txt |
Description:
|
The event 10053 is storing the masterkey of Oracle Transparent Data Encryption unencrypted in a trace-file. A skilled attacker or non-security DBA could set this special event to get the plaintext masterkey for the TDE encryption.
| | Author: | Alexander Kornbrust | | Homepage: | http://www.red-database-security.com/ | | File Size: | 1982 | | Last Modified: | Jan 25 08:05:23 2006 |
| MD5 Checksum: | fe402342205b5fc2b23f6f163f7030b9 |
|
| /// File Name: |
oracle_reports_overwrite_any_file.t..> |
Description:
|
By specifing a special value for the parameter desname Oracle Reports can overwrite any file on the application server. On Windows systems an attacker can overwrite any files (e.g. boot.ini) on the application server. On UNIX system an attacker can overwrite all files (e.g. opmn.xml) which belongs to the Oracle Application Server user. This attack can be done with a simple URL.
| | Author: | Alexander Kornbrust | | Homepage: | http://www.red-database-security.com/ | | File Size: | 3806 | | Last Modified: | Jan 25 07:53:47 2006 |
| MD5 Checksum: | e6f5d67be6d37ba4b608e5f3e0a7af35 |
|
| /// File Name: |
sa18595.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for openssh. This fixes a weakness, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/18595/ | | File Size: | 3192 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | e234e8378c9fb813d73e51abaae6308d |
|
| /// File Name: |
sa18593.txt |
Description:
|
Secunia Security Advisory - Two security issues and a vulnerability have been reported in WebLogic Portal, which potentially can be exploited by malicious people to disclose sensitive information and bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/18593/ | | File Size: | 2858 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | ccbf504856da23e8e789d1f7a70a7607 |
|
| /// File Name: |
sa18592.txt |
Description:
|
Secunia Security Advisory - Multiple vulnerabilities and security issues have been reported in WebLogic Server and WebLogic Express, where the most critical ones potentially can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, and bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/18592/ | | File Size: | 5237 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 8025d7db31a0ff17d4f2891534817f7d |
|
| /// File Name: |
sa18591.txt |
Description:
|
Secunia Security Advisory - Erika Mendoza has reported a vulnerability in various CA products, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18591/ | | File Size: | 5253 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 1c580397588bf4d9af68bad55e384d76 |
|
| /// File Name: |
sa18587.txt |
Description:
|
Secunia Security Advisory - Herve Drolon has reported a vulnerability in LibTIFF, which can be exploited by malicious people to crash certain applications on a user's system.
| | Homepage: | http://secunia.com/advisories/18587/ | | File Size: | 1947 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 17380185e01df9cd99d03dadf8d423d3 |
|
| /// File Name: |
sa18585.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for httpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/18585/ | | File Size: | 2981 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | ae8c8b28fd6ef1aa9b6bce5770669f36 |
|
| /// File Name: |
sa18583.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for kdelibs. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18583/ | | File Size: | 2417 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 733f026b5c9a324506db773553762d9b |
|
| /// File Name: |
sa18582.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for cupsys. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/18582/ | | File Size: | 26370 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | bbd37cc774ce67dc9b2702d0a2b59b8a |
|
| /// File Name: |
sa18581.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in WebLogic Server and WebLogic Express, which can be exploited by malicious users to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/18581/ | | File Size: | 2310 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | 52806e4ffb837fec7e65301c16b8fb76 |
|
| /// File Name: |
sa18580.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Sun Grid Engine (SGE), which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/18580/ | | File Size: | 1875 | | Last Modified: | Jan 25 07:44:12 2006 |
| MD5 Checksum: | eee0a6ae1381f117d60b49fc1d81da87 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
