Section: .. / 0608-advisories /
| /// File Name: |
SUSE-SA-2006-045.txt |
Description:
|
SUSE Security Announcement SUSE-SA:2006:045 - This security update fixes crashes in the PCF handling of freetype2 which might be used to crash freetype2 using applications or even to execute code in them.
| | Homepage: | http://www.suse.com | | File Size: | 17005 | | Related CVE(s): | CVE-2006-3467 | | Last Modified: | Aug 17 03:06:45 2006 |
| MD5 Checksum: | e234516d065322a0d80a7908be412297 |
|
| /// File Name: |
SUSE-SA-2006-046.txt |
Description:
|
SUSE Security Announcement SUSE-SA:2006:046 - Damian Put discovered a bug in the UPX decoder used for scanning UPX compressed Windows executables. The bug allows for a heap buffer overflow and may potentially be exploitable to execute arbitrary code. ClamAV has been version updated to version 0.88.4 in order to fix this problem.
| | Homepage: | http://www.suse.com | | File Size: | 14352 | | Related CVE(s): | CVE-2006-4018 | | Last Modified: | Aug 26 20:37:26 2006 |
| MD5 Checksum: | 333e2c38996341689e5668e8bcc92934 |
|
| /// File Name: |
SYM06-015_signed.txt |
Description:
|
Symantec Security Advisory - Symantec discovered a security issue in Symantec's Veritas NetBackup 6.0 PureDisk Remote Office Edition. An unauthorized user with access to the network and the server hosting the management interface can potentially bypass the management interface authentication to gain access and elevate their privileges on the system.
| | Homepage: | http://www.symantec.com/ | | File Size: | 4027 | | Last Modified: | Aug 27 13:48:09 2006 |
| MD5 Checksum: | c26fa8cff8eac26b4e16da77ddcc62c2 |
|
| /// File Name: |
symantecOddity.txt |
Description:
|
Symantec Anti-Virus Corporate Edition clients controlled via the Symantec System Center Console do not follow the "Download product updates using LiveUpdate" setting.
| | Author: | Chris Faigle | | File Size: | 4055 | | Last Modified: | Aug 27 13:46:42 2006 |
| MD5 Checksum: | 9a844e2941a9fdf3b554b0424c572981 |
|
| /// File Name: |
SYMSA-2006-014.txt |
Description:
|
Symantec Security Advisory - Symantec Backup Exec for Windows Server suffers from a RPC interface heap overflow and a flaw that allows an authorized user potential elevation of privileges.
| | Author: | Nicolas Pouvesle | | Homepage: | http://www.symantec.com/research | | File Size: | 5435 | | Last Modified: | Aug 26 22:44:56 2006 |
| MD5 Checksum: | 47217c772674ff14497c4bce84e5fe84 |
|
| /// File Name: |
SYMSA-2006-09.txt |
Description:
|
Symantec Security Advisory - A connection from a SAP-DB/MaxDB WebDBM Client to the DBM Server causes a buffer overflow when the given database name is too large. This can result in the execution of arbitrary code in the context of the database server. Affected version is SAP-DB/MaxDB 7.6.00.22.
| | Author: | Oliver Karow | | Homepage: | http://www.symantec.com/research | | File Size: | 5067 | | Related CVE(s): | CVE-2006-4305 | | Last Modified: | Aug 29 12:57:14 2006 |
| MD5 Checksum: | 1a4f3efe490fe07cf59ec186e15920e4 |
|
| /// File Name: |
TA06-214A.txt |
Description:
|
Technical Cyber Security Alert TA06-214A - Apple has released Security Update 2006-004 to correct multiple vulnerabilities affecting Mac OS X, Mac OS X Server, Safari web browser, Mail, and other products. The most serious of these vulnerabilities may allow a remote attacker to execute arbitrary code. Impacts of other vulnerabilities include bypass of security restrictions and denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3976 | | Last Modified: | Aug 17 04:16:35 2006 |
| MD5 Checksum: | 1d3003988033ca51cbe1b4e15a3319cd |
|
| /// File Name: |
TA06-220A.txt |
Description:
|
Technical Cyber Security Alert TA06-220A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Office, and Internet Explorer. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4425 | | Last Modified: | Aug 18 02:33:41 2006 |
| MD5 Checksum: | 7ec097a96a4e090747f3fde6af006749 |
|
| /// File Name: |
TSLSA-2006-0052.txt |
Description:
|
Trustix Secure Linux Security Advisory #2006-0052: multiple vulnerabilities in freetype, gnutls, gzip.
| | Homepage: | http://www.trustix.org/ | | File Size: | 6109 | | Last Modified: | Oct 2 19:31:29 2006 |
| MD5 Checksum: | 2b5acb94d9d8a53ed659367fa68e0282 |
|
| /// File Name: |
TSRT-06-05.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on systems with affected installations of the Computer Associates eTrust AntiVirus WebScan ActiveX component that suffers from an automatic update code execution flaw.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3815 | | Related CVE(s): | CVE-2006-3976, CVE-2006-3977 | | Last Modified: | Aug 18 01:14:42 2006 |
| MD5 Checksum: | 5921bdcdd3a3863bd470dd9e1e7bfd01 |
|
| /// File Name: |
TSRT-06-06.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on systems with affected installations of the Computer Associates eTrust AntiVirus WebScan ActiveX component that suffers from a buffer overflow.
| | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 2923 | | Related CVE(s): | CVE-2006-3975 | | Last Modified: | Aug 18 01:13:22 2006 |
| MD5 Checksum: | 43211ea4830a1aa90d0270c5acd52d92 |
|
| /// File Name: |
TSRT-06-07.txt |
Description:
|
The eIQnetworks Enterprise Security Analyzer suffers from multiple vulnerabilities that allow remote attackers the ability to execute arbitrary code.
| | Author: | Pedram Amini | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 4580 | | Related CVE(s): | CVE-2006-3838 | | Last Modified: | Aug 18 01:54:32 2006 |
| MD5 Checksum: | b793276ff876a405eb48b8b0259692db |
|
| /// File Name: |
TSRT-06-08.txt |
Description:
|
An arbitrary code execution vulnerability exists in Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific vulnerability can lead to code execution when instantiating the Internet.HHCtrl COM object through Internet Explorer. The flaw exists due to invalid freeing of heap memory when several calls to the "Image" property of the ActiveX control are performed. By abusing the jscript.dll CScriptBody::Release() function user supplied data can be executed.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2281 | | Related CVE(s): | CVE-2006-3357 | | Last Modified: | Aug 18 02:17:42 2006 |
| MD5 Checksum: | 7828ca0ead357bb71ab8824fba67dda7 |
|
| /// File Name: |
TSRT-06-09.txt |
Description:
|
An arbitrary code execution vulnerability exists in Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the DirectAnimation.DATuple ActiveX control when improperly calling the Nth() method. By supplying a positive integer we can control a data reference calculation that is later used to control execution. The problem is due to the lack of sanity checking on the index used during a call to TupleNthBvrImpl::GetTypeInfo() in danim.dll.
| | Author: | Cody Pierce | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 2228 | | Related CVE(s): | CVE-2006-3638 | | Last Modified: | Aug 18 02:18:39 2006 |
| MD5 Checksum: | 62ebccb883a929d71f78ed572f32721c |
|
| /// File Name: |
TSRT-06-10.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable applications that utilize Microsoft Hyperlink Component Object Model (COM) objects. Specifically, this includes at least Microsoft Word, PowerPoint and Excel. Exploitation over the web is doable via Office Web Components (OWC). It is not required for the target to have OWC installed.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 3356 | | Related CVE(s): | CVE-2006-3086 | | Last Modified: | Aug 18 02:19:50 2006 |
| MD5 Checksum: | 4cd4fcb31b87b3caf74c3f6a33872b84 |
|
| /// File Name: |
USN-331-1.txt |
Description:
|
Ubuntu Security Notice USN-331-1 - A Denial of service vulnerability was reported in iptables' SCTP conntrack module. On computers which use this iptables module, a remote attacker could expoit this to trigger a kernel crash. A buffer overflow has been discovered in the dvd_read_bca() function. By inserting a specially crafted DVD, USB stick, or similar automatically mounted removable device, a local user could crash the machine or potentially even execute arbitrary code with full root privileges. The ftdi_sio driver for serial USB ports did not limit the amount of pending data to be written. A local user could exploit this to drain all available kernel memory and thus render the system unusable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 43885 | | Related CVE(s): | CVE-2006-2934, CVE-2006-2935, CVE-2006-2936 | | Last Modified: | Aug 17 04:26:43 2006 |
| MD5 Checksum: | cff17b362b4332dec33ae3c99169ad8c |
|
| /// File Name: |
USN-332-1.txt |
Description:
|
Ubuntu Security Notice USN-332-1 - Evgeny Legerov discovered that gnupg did not sufficiently check the validity of the comment and a control field. Specially crafted GPG data could cause a buffer overflow. This could be exploited to execute arbitrary code with the user's privileges if an attacker can trick an user into processing a malicious encrypted/signed document with gnupg.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 6498 | | Related CVE(s): | CVE-2006-3746 | | Last Modified: | Aug 17 04:27:24 2006 |
| MD5 Checksum: | c9718c74eef0f3798e83eca5f4f6b414 |
|
| /// File Name: |
USN-333-1.txt |
Description:
|
Ubuntu Security Notice USN-333-1 - An integer overflow was found in the handling of the MaxRecordSize field in the WMF header parser. By tricking a user into opening a specially crafted WMF image file with an application that uses this library, an attacker could exploit this to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9089 | | Related CVE(s): | CVE-2006-3376 | | Last Modified: | Aug 26 20:25:42 2006 |
| MD5 Checksum: | 66a2abcf02931693756dc6d2efd0c150 |
|
| /// File Name: |
USN-334-1.txt |
Description:
|
Ubuntu Security Notice USN-334-1 - Michael Calmer and Marcus Meissner discovered that several krb5 tools did not check the return values from setuid() system calls. On systems that have configured user process limits, it may be possible for an attacker to cause setuid() to fail via resource starvation. In that situation, the tools will not reduce their privilege levels, and will continue operation as the root user.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 21564 | | Related CVE(s): | CVE-2006-3083, CVE-2006-3084 | | Last Modified: | Aug 27 03:26:43 2006 |
| MD5 Checksum: | 652ecb99ebcb7f2582976901906bd9d6 |
|
| /// File Name: |
USN-335-1.txt |
Description:
|
Ubuntu Security Notice USN-335-1 - Yan Rong Ge discovered that heartbeat did not sufficiently verify some packet input data, which could lead to an out-of-boundary memory access. A remote attacker could exploit this to crash the daemon (Denial of Service).
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 15862 | | Related CVE(s): | CVE-2006-3121 | | Last Modified: | Aug 27 03:29:43 2006 |
| MD5 Checksum: | a2ef70f25bb73e37fc6bfe5c41cbec35 |
|
| /// File Name: |
USN-336-1.txt |
Description:
|
Ubuntu Security Notice USN-336-1 - A buffer overflow was discovered in gas (the GNU assembler). By tricking an user or automated system (like a compile farm) into assembling a specially crafted source file with gcc or gas, this could be exploited to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7498 | | Last Modified: | Aug 27 14:04:56 2006 |
| MD5 Checksum: | 4b927c0702b7bf9cc3a7a0792e072a7e |
|
| /// File Name: |
USN-337-1.txt |
Description:
|
Ubuntu Security Notice USN-337-1 - Damian Put discovered a buffer overflow in imagemagick's SGI file format decoder. By tricking an user or automated system into processing a specially crafted SGI image, this could be exploited to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 14117 | | Related CVE(s): | CVE-2006-4144 | | Last Modified: | Aug 27 14:05:35 2006 |
| MD5 Checksum: | 53dbd706659088c959b65c8a7ae5db88 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
