Section: .. / 0706-advisories /
| /// File Name: |
SYM07-012.txt |
Description:
|
Symantec Security Advisory - Files created by a Reporting Server may be accessible to an unauthorized user.
| | Author: | Ertunga Arsal | | Homepage: | http://www.symantec.com/ | | File Size: | 4052 | | Related CVE(s): | CVE-2007-3021 | | Last Modified: | Jun 7 02:06:31 2007 |
| MD5 Checksum: | 39d2e38125f383b441c4affa80337add |
|
| /// File Name: |
SYM07-011.txt |
Description:
|
Symantec Security Advisory - The administrator password for Symantec Reporting Server could be disclosed after a failed login attempt.
| | Author: | Mikka Korppi | | Homepage: | http://www.symantec.com/ | | File Size: | 4416 | | Related CVE(s): | CVE-2007-3022 | | Last Modified: | Jun 7 02:01:15 2007 |
| MD5 Checksum: | 741b37feba2991f52b7ae27def8b7fe0 |
|
| /// File Name: |
glsa-200706-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200706-01 - Victor Stinner reported an integer overflow in the exif_data_load_data_entry() function from file exif-data.c while handling Exif data. Versions less than 0.6.15 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2774 | | Related CVE(s): | CVE-2007-2645 | | Last Modified: | Jun 7 01:24:03 2007 |
| MD5 Checksum: | b90109964f6ae8aa646dc77291ea2fd2 |
|
| /// File Name: |
SSRT071424.txt |
Description:
|
HP Security Bulletin - Potential vulnerabilities have been identified with HP-UX running CIFS Server (Samba). The vulnerabilities could be exploited remotely to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 6553 | | Related CVE(s): | CVE-2007-2446, CVE-2007-2447 | | Last Modified: | Jun 7 01:23:54 2007 |
| MD5 Checksum: | 1010e4187ccb67453b634b5c0cf3e5b8 |
|
| /// File Name: |
MDKSA-2007-115.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability in the OLE2 parser in ClamAV was found that could allow a remote attacker to cause a denial of service via resource consumption with a carefully crafted OLE2 file.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8097 | | Related CVE(s): | CVE-2007-2650 | | Last Modified: | Jun 7 01:16:25 2007 |
| MD5 Checksum: | b77ed71d32d55b8e04eafb3ba7be4d8b |
|
| /// File Name: |
TPTI-07-10.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of software utilizing Centennial Software XferWan. Authentication is not required to exploit this vulnerability. The specific flaw exists during the parsing of overly long requests to the XferWAN process. When logging requests, user-supplied data is copied to the stack resulting in an exploitable buffer overflow condition.
| | Author: | Cody Pierce | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2761 | | Related CVE(s): | CVE-2007-2514 | | Last Modified: | Jun 7 01:15:19 2007 |
| MD5 Checksum: | 2c7fbf4a0c55259332aff7d6cbcfef25 |
|
| /// File Name: |
TPTI-07-09.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Business Objects Crystal Reports. Exploitation requires the target to visit a malicious web site. This specific flaw exists within the ActiveX control with CLSID 85A4A99C-8C3D-499E-A386-E0743DFF8FB7. Specifying large values to two specific functions available in this control results in an exploitable stack based buffer overflow.
| | Author: | Pedram Amini | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2331 | | Related CVE(s): | CVE-2007-2419 | | Last Modified: | Jun 7 01:13:24 2007 |
| MD5 Checksum: | a440dfaa362613690d1d0536cd4c4e4f |
|
| /// File Name: |
TPTI-07-08.txt |
Description:
|
This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists in the functionality exposed by the Storage Foundation for Windows Scheduler Service, VxSchedService.exe, which listens by default on TCP port 4888. During normal use an administrator may add schedules to be run using the management console which requires authentication. However, if an attacker connects directly to the scheduler service and issues the commands, there exists no validation of credentials.
| | Author: | Aaron Portnoy | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2550 | | Related CVE(s): | CVE-2007-2279 | | Last Modified: | Jun 7 01:11:53 2007 |
| MD5 Checksum: | 5b36938a55a4ce65bf9cd36450d3f4b7 |
|
| /// File Name: |
MDKSA-2007-113.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw in the way mutt processed certain APOP authentication requests was discovered. By sending certain responses when mutt attempted to authenticate again an APOP server, a remote attacker could possibly obtain certain portions of the user's authentication credentials. A flaw in how mutt handled certain characters in gecos fields could lead to a buffer overflow. A local user able to give themselves a carefully crafted Real Name could potentially execute arbitrary code if a victim used mutt to expand the attacker's alias.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4130 | | Related CVE(s): | CVE-2007-1558, CVE-2007-2683 | | Last Modified: | Jun 7 01:08:58 2007 |
| MD5 Checksum: | 44522efdf33254500a24afe3d7a65841 |
|
| /// File Name: |
MDKSA-2007-112.txt |
Description:
|
Mandriva Linux Security Advisory - Buffer overflow in the asmrp_eval function for the Real Media input plugin allows remote attackers to cause a denial of service and possibly execute arbitrary code via a rulebook with a large number of rulematches.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5193 | | Related CVE(s): | CVE-2006-6172 | | Last Modified: | Jun 7 01:06:18 2007 |
| MD5 Checksum: | 031625c37cb4542b1e4d1782a2c52e11 |
|
| /// File Name: |
MDKSA-2007-111.txt |
Description:
|
Mandriva Linux Security Advisory - login in util-linux-2.12a (and later versions) skips pam_acct_mgmt and chauth_tok when authentication is skipped, such as when a Kerberos krlogin session has been established, which might allow users to bypass intended access policies that would be enforced by pam_acct_mgmt and chauth_tok.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5545 | | Related CVE(s): | CVE-2006-7108 | | Last Modified: | Jun 7 01:05:10 2007 |
| MD5 Checksum: | 1525838457cd13c0565a4cdee3d87c97 |
|
| /// File Name: |
MDKSA-2007-110.txt |
Description:
|
Mandriva Linux Security Advisory - A security hole was discovered in all versions of the PEAR Installer (http://pear.php.net/PEAR). The security hole is the most serious hole found to date in the PEAR Installer, and would allow a malicious package to install files anywhere in the filesystem. The vulnerability only affects users who are installing an intentionally created package with a malicious intent. Because the package is easily traced to its source, this is most likely to happen if a hacker were to compromise a PEAR channel server and alter a package to install a backdoor. In other words, it must be combined with other exploits to be a problem.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4061 | | Related CVE(s): | CVE-2007-2519 | | Last Modified: | Jun 7 01:04:11 2007 |
| MD5 Checksum: | f6ecbce3634caf15e62dd8912f2a1b76 |
|
| /// File Name: |
firefox-traverse.txt |
Description:
|
The directory traversal fix in Firefox version 2.0.0.4 only partially fixed the flaw and accidentally circumvents an existing input validation check.
| | Author: | Thor Larholm | | File Size: | 606 | | Last Modified: | Jun 7 01:02:29 2007 |
| MD5 Checksum: | 1cc2a8fe6f6588e18153f536b0ab8b06 |
|
| /// File Name: |
dsa-1291-4.txt |
Description:
|
Debian Security Advisory 1291-4 - The samba security update for CVE-2007-2446 introduced a regression, which broke connection to domain member servers in some scenarios. This update fixes this regression.
| | Homepage: | http://www.debian.org/security | | File Size: | 22497 | | Related CVE(s): | CVE-2007-2444, CVE-2007-2446, CVE-2007-2447 | | Last Modified: | Jun 7 01:00:42 2007 |
| MD5 Checksum: | 6a69c9a77344d1a0be464f58f6388bf1 |
|
| /// File Name: |
n.runs-SA-2007.015.txt |
Description:
|
Various F-Secure products are susceptible to a remotely exploitable vulnerability when parsing FSG packed files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 4432 | | Last Modified: | Jun 7 00:48:31 2007 |
| MD5 Checksum: | 5608701576460cdd69327843b43d82dd |
|
| /// File Name: |
n.runs-SA-2007.014.txt |
Description:
|
Various F-Secure products are susceptible to a remotely exploitable vulnerability when parsing .ARJ files.
| | Author: | Sergio Alvarez | | Homepage: | http://www.nruns.com/ | | File Size: | 4426 | | Last Modified: | Jun 7 00:47:24 2007 |
| MD5 Checksum: | 6a339419df7f57a078f097b5b4137ce3 |
|
| /// File Name: |
SYM07-009.txt |
Description:
|
Symantec Security Advisory - An authentication bypass, remote code execution vulnerability has been identified and resolved in the Symantec Storage Foundation for Windows v5.0 Volume Manager Scheduler Service. Successful exploitation could result in potential compromise of the targeted system.
| | Author: | 3Com/ZDI | | Homepage: | http://www.symantec.com/ | | File Size: | 4155 | | Related CVE(s): | CVE-2007-2279 | | Last Modified: | Jun 7 00:34:05 2007 |
| MD5 Checksum: | 203315689e4b6fbbe1fdb17c63cacb16 |
|
| /// File Name: |
browserbugs.txt |
Description:
|
Multiple vulnerabilities have been discovered that affect Microsoft Internet Explorer and Mozilla Firefox.
| | Author: | Michal Zalewski | | Homepage: | http://lcamtuf.coredump.cx/ | | File Size: | 2477 | | Last Modified: | Jun 7 00:28:06 2007 |
| MD5 Checksum: | 789a0f916b31b2b1b4c9ad3c31fbccf9 |
|
| /// File Name: |
mtupload-06_037.txt |
Description:
|
Movable Type suffers from an arbitrary code execution flaw via the upload mechanism.
| | Author: | Tim Brown | | Homepage: | http://www.portcullis-security.com/ | | File Size: | 1850 | | Last Modified: | Jun 7 00:17:03 2007 |
| MD5 Checksum: | c1b72c2e673f7196c99e021263e998b3 |
|
| /// File Name: |
mtphishing-06_36.txt |
Description:
|
Movable Type suffers from a potential phishing related vulnerability via the comments mechanism.
| | Author: | Tim Brown | | Homepage: | http://www.portcullis-security.com/ | | File Size: | 1873 | | Last Modified: | Jun 7 00:16:06 2007 |
| MD5 Checksum: | 5dfeef85af2468ea4c5dbdd7e3156729 |
|
| /// File Name: |
mtdirectory-06_034.txt |
Description:
|
Movable Type suffers from a flaw that allows for an arbitrary directory to be set during the creation of new blogs.
| | Author: | Tim Brown | | Homepage: | http://www.portcullis-security.com/ | | File Size: | 1964 | | Last Modified: | Jun 7 00:11:53 2007 |
| MD5 Checksum: | a39645b54ea62f9529a613458d37cdbd |
|
| /// File Name: |
mtcookie-06_033.txt |
Description:
|
Movable Type stores the login and password hash of a given account in an issued cookie allowing for replay attacks.
| | Author: | Tim Brown | | Homepage: | http://www.portcullis-security.com/ | | File Size: | 2184 | | Last Modified: | Jun 7 00:09:51 2007 |
| MD5 Checksum: | 4796a1ef69c9d45fbd0b4e5f7dd245ff |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
