Section: .. / 0709-advisories /
| /// File Name: |
glsa-200709-01.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200709-01 - A stack buffer overflow (CVE-2007-3999) has been reported in svcauth_gss_validate() of the RPC library of kadmind. Another vulnerability (CVE-2007-4000) has been found in kadm5_modify_policy_internal(), which does not check the return values of krb5_db_get_policy() correctly. Versions less than 1.5.3-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3069 | | Related CVE(s): | CVE-2007-3999, CVE-2007-4000 | | Last Modified: | Sep 11 19:05:49 2007 |
| MD5 Checksum: | 343e130f02e93ca37f6d1a2dae4542ba |
|
| /// File Name: |
09.11.07-1.txt |
Description:
|
iDefense Security Advisory 09.11.07 - Remote exploitation of a stack based buffer overflow vulnerability in Microsoft Corp's Microsoft Windows 2000 Agent service could allow an attacker to execute arbitrary code with the privileges of the logged in user. The vulnerability exists within the Agent Service (agentsvr.exe). Due to improper handling of specially crafted URLs, an attack can cause stack based buffer overflow. iDefense has confirmed the existence of this vulnerability in the Agent service included in Windows 2000. Microsoft reports that newer versions of the Agent service are not vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3996 | | Related CVE(s): | CVE-2007-3040 | | Last Modified: | Sep 11 19:05:38 2007 |
| MD5 Checksum: | ffdb4254be1011f72b81e0af3478bd2b |
|
| /// File Name: |
dsa-1374-1.txt |
Description:
|
Debian Security Advisory 1374-1 - Several vulnerabilities have been discovered in jffnms, a web-based Network Management System for IP networks. These include cross site scripting and SQL injection vulnerabilities.
| | Homepage: | http://www.debian.org/security | | File Size: | 3388 | | Related CVE(s): | CVE-2007-3189, CVE-2007-3190, CVE-2007-3191 | | Last Modified: | Sep 11 19:03:53 2007 |
| MD5 Checksum: | e35fa105ea6da30bffd514a62d5ecd0f |
|
| /// File Name: |
dsa-1373-1.txt |
Description:
|
Debian Security Advisory 1373-1 - It was discovered that ktorrent, a BitTorrent client for KDE, was vulnerable to a directory traversal bug which potentially allowed remote users to overwrite arbitrary files.
| | Homepage: | http://www.debian.org/security | | File Size: | 4688 | | Related CVE(s): | CVE-2007-1799 | | Last Modified: | Sep 11 19:02:56 2007 |
| MD5 Checksum: | 99046cb4f83666c214b7c33d4d95a925 |
|
| /// File Name: |
dsa-1371-1.txt |
Description:
|
Debian Security Advisory 1371-1 - Several vulnerabilities have been discovered in phpWiki, a wiki engine written in PHP. It was discovered that phpWiki performs insufficient file name validation, which allows unrestricted file uploads. It was discovered that phpWiki performs insufficient file name validation, which allows unrestricted file uploads. If the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, phpWiki might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.
| | Homepage: | http://www.debian.org/security | | File Size: | 3500 | | Related CVE(s): | CVE-2007-2024, CVE-2007-2025, CVE-2007-3193 | | Last Modified: | Sep 11 19:02:20 2007 |
| MD5 Checksum: | d8552e8dcc821f4be186d2bedea0abbe |
|
| /// File Name: |
FSC20070911-11.txt |
Description:
|
The Microsoft Agent ActiveX control contains a buffer overflow vulnerability that allows remote attackers to inject and execute arbitrary code with the privileges of the currently logged in user. Version 2.0.0.3425 is affected.
| | Homepage: | http://www.assurent.com/ | | File Size: | 2770 | | Related CVE(s): | CVE-2007-3040 | | Last Modified: | Sep 11 19:00:50 2007 |
| MD5 Checksum: | 57f6fb249e756ac2c58f1f34da916834 |
|
| /// File Name: |
samba-gid0.txt |
Description:
|
An incorrect group assignment (gid 0) occurs for domain users using the rfc2307 or sfu Winbind nss info plugin.
| | Author: | Rick King | | Homepage: | http://www.samba.org/ | | File Size: | 3123 | | Related CVE(s): | CVE-2007-4138 | | Last Modified: | Sep 11 18:58:34 2007 |
| MD5 Checksum: | 1ead5be64671afa77f5732e9227c6812 |
|
| /// File Name: |
sa26704.txt |
Description:
|
Secunia Security Advisory - Koshi has reported a vulnerability in Microsoft Visual Basic, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26704/ | | File Size: | 2411 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 6d8af96b3d8c26c9f38ee0ba43d7e2a3 |
|
| /// File Name: |
sa26712.txt |
Description:
|
Secunia Security Advisory - Henri Lindberg has reported a vulnerability in Buffalo AirStation WHR-G54S, which can be exploited by malicious people to conduct cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/26712/ | | File Size: | 2505 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 0225010f0264fb0b836eb5a843301b76 |
|
| /// File Name: |
sa26723.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26723/ | | File Size: | 7807 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 77461f9710912427449f4082d11f0180 |
|
| /// File Name: |
sa26735.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been discovered in Proxy Anket, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26735/ | | File Size: | 2352 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 4e8249b6ed27f198160d30a18ea5ed52 |
|
| /// File Name: |
sa26738.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for qgit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26738/ | | File Size: | 2761 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | c3504385aaf9d0bd1b2eb7e76b84a60e |
|
| /// File Name: |
sa26744.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Quagga, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/26744/ | | File Size: | 2509 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 7985750030de273b32799ba86a54aaeb |
|
| /// File Name: |
sa26753.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows 2000, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26753/ | | File Size: | 2816 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 2d94636bf59e03617b176a4687139f25 |
|
| /// File Name: |
sa26754.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Visual Studio, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26754/ | | File Size: | 3044 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | e113b277bac78c8b9d894342af89f2c9 |
|
| /// File Name: |
sa26757.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows Services for UNIX, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26757/ | | File Size: | 4730 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 4175adf86878af7b86cf2bf9b9cbbcb5 |
|
| /// File Name: |
sa26762.txt |
Description:
|
Secunia Security Advisory - Yollubunlar has discovered some vulnerabilities in phpMyQuote, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26762/ | | File Size: | 2764 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 43323c3a7087e26f204d3da3f738d970 |
|
| /// File Name: |
sa26767.txt |
Description:
|
Secunia Security Advisory - MhZ91 has discovered some vulnerabilities in Online Fantasy Football League, which can be exploited by malicious people to disclose sensitive information or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26767/ | | File Size: | 2522 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | db186116f3c4f678a87abb89adb7378d |
|
| /// File Name: |
sa26772.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in MediaWiki, which can be exploited by malicious people to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/26772/ | | File Size: | 2833 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 455232b9e3733a1c60c46861ac98846a |
|
| /// File Name: |
sa26774.txt |
Description:
|
Secunia Security Advisory - Aria-Security Team has reported a vulnerability in Psi Social Networking Script, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/26774/ | | File Size: | 2329 | | Last Modified: | Sep 11 18:19:30 2007 |
| MD5 Checksum: | 751ad3993954bee169f9f6789eb4de66 |
|
| /// File Name: |
sa26755.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for xorg-server. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26755/ | | File Size: | 14872 | | Last Modified: | Sep 10 17:30:15 2007 |
| MD5 Checksum: | 0d8d2d1720d6860b7290b671246d13e8 |
|
| /// File Name: |
sa26743.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in X.org X11, which potentially can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/26743/ | | File Size: | 2602 | | Last Modified: | Sep 10 17:30:03 2007 |
| MD5 Checksum: | 1d54a8d2ce79d93928a803e3144c0711 |
|
| /// File Name: |
sa26746.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for snort. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26746/ | | File Size: | 5374 | | Last Modified: | Sep 10 17:30:03 2007 |
| MD5 Checksum: | e3f4cdad77e4be0fd4c5a25797245e9d |
|
| /// File Name: |
sa26749.txt |
Description:
|
Secunia Security Advisory - ZhenHan.Liu has discovered some vulnerabilities in Baofeng Storm, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26749/ | | File Size: | 3174 | | Last Modified: | Sep 10 17:30:03 2007 |
| MD5 Checksum: | 71799b5083b589ef00dcc2bbbaa7acde |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
