Section: .. / 0801-advisories /
| /// File Name: |
TA08-008A.txt |
Description:
|
Technical Cyber Security Alert TA08-008A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code, gain elevated privileges, or crash a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3495 | | Last Modified: | Jan 9 01:45:20 2008 |
| MD5 Checksum: | fc62116834d1a2fbb09732f813ee9f44 |
|
| /// File Name: |
sa28631.txt |
Description:
|
Secunia Security Advisory - Felipe Aragon and Alec Storm have reported some vulnerabilities and security issues in HTTP File Server, which can be exploited by malicious people to disclose system information, conduct spoofing and cross-site scripting attacks, bypass certain security restrictions, manipulate data, and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28631/ | | File Size: | 3475 | | Last Modified: | Jan 25 02:43:48 2008 |
| MD5 Checksum: | e29f197eefceb0b88ba7ecaf976688dc |
|
| /// File Name: |
sa28502.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Apple QuickTime, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28502/ | | File Size: | 3448 | | Last Modified: | Jan 16 23:45:41 2008 |
| MD5 Checksum: | 8ab3cd95a2a362b9c99ae96e3ef6e36a |
|
| /// File Name: |
ZDI-08-002.txt |
Description:
|
A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Citrix Presentation Server. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Independent Management Architecture service, ImaSrv.exe, which listens by default on TCP port 2512 or 2513. The process trusts a user-suppled value as a parameter to a memory allocation. By supplying a specific value, an undersized heap buffer may be allocated. Subsequently, an attacker can then overflow that heap buffer by sending an overly large packet leading to arbitrary code execution in the context of the SYSTEM user.
| | Author: | Eric DETOISIEN | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3437 | | Last Modified: | Jan 18 05:38:14 2008 |
| MD5 Checksum: | b633e3e2771697f71e17271da86d5369 |
|
| /// File Name: |
PR07-060708091012.txt |
Description:
|
Sun Java System Identity Manager version 6.0, Sun Java System Identity Manager version 7.0, and Sun Java System Identity Manager version 7.1 are susceptible to cross domain redirection, cross site scripting, and frame injection vulnerabilities.
| | Author: | Adrian Pastor, Jan Fry | | Homepage: | http://www.procheckup.com/ | | File Size: | 3435 | | Last Modified: | Jan 10 17:39:35 2008 |
| MD5 Checksum: | 250ecb0bc50938b9625bb9c96ef414fa |
|
| /// File Name: |
sa28515.txt |
Description:
|
Secunia Security Advisory - tomplixsee has discovered some vulnerabilities in aliTalk, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/28515/ | | File Size: | 3435 | | Last Modified: | Jan 18 03:50:24 2008 |
| MD5 Checksum: | 1a66156d6359184963ba6c72cb007c6c |
|
| /// File Name: |
MDVSA-2008-006.txt |
Description:
|
Mandriva Linux Security Advisory - An integer overflow in the Exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3424 | | Related CVE(s): | CVE-2007-6353 | | Last Modified: | Jan 10 18:04:35 2008 |
| MD5 Checksum: | 6998205f7a9adbfba9309a2e6767c2e3 |
|
| /// File Name: |
sa28244.txt |
Description:
|
Secunia Security Advisory - Alexandr Polyakov and Stas Svistunovich have reported some vulnerabilities in 2z project, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/28244/ | | File Size: | 3420 | | Last Modified: | Jan 4 19:11:23 2008 |
| MD5 Checksum: | 2d840ef5adc63e03eff674e72a23bf16 |
|
| /// File Name: |
glsa-200801-10.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200801-10 - Jesus Olmos Gonzalez from isecauditors reported insufficient sanitization of the movies parameter in file tiki-listmovies.php. Mesut Timur from H-Labs discovered that the input passed to the "area_name" parameter in file tiki-special_chars.php is not properly sanitised before being returned to the user. redflo reported multiple unspecified vulnerabilities in files tiki-edit_css.php, tiki-list_games.php, and tiki-g-admin_shared_source.php. Versions less than 1.9.9 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 3415 | | Related CVE(s): | CVE-2007-6526, CVE-2007-6528, CVE-2007-6529 | | Last Modified: | Jan 24 00:21:37 2008 |
| MD5 Checksum: | 25103debfa92866d5cbd7645429937f0 |
|
| /// File Name: |
01.22.08-1.txt |
Description:
|
iDefense Security Advisory 01.22.08 - Remote exploitation of a buffer overflow vulnerability in the web server component of IBM Corp.'s Tivoli Provisioning Manager for OS Deployment allows attackers to cause a denial of service condition or potentially execute arbitrary code with SYSTEM privileges. This vulnerability specifically exists within the logging functionality of the web server component. By making requests with a large HTTP request method, an attacker can cause a static-sized buffer to be overrun with data they supplied. iDefense has confirmed the existence of this vulnerability in IBM Tivoli Provisioning Manager for OS Deployment version 5.1.0.3. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3404 | | Related CVE(s): | CVE-2008-0401 | | Last Modified: | Jan 25 03:37:38 2008 |
| MD5 Checksum: | 2e1615ccca521c085288606e7b913359 |
|
| /// File Name: |
sa28506.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Excel, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/28506/ | | File Size: | 3395 | | Last Modified: | Jan 16 23:45:41 2008 |
| MD5 Checksum: | 4c32019849efb665e675972a22ea1976 |
|
| /// File Name: |
corsaire-jre.txt |
Description:
|
Corsaire Security Advisory - The Sun JRE product has a denial of service issue that may cause Internet Explorer to fail. Versions 5.0 prior to update 14 are affected.
| | Author: | Martin O'Neal | | Homepage: | http://www.corsaire.com/ | | File Size: | 3386 | | Related CVE(s): | CVE-2007-0012 | | Last Modified: | Jan 8 12:07:11 2008 |
| MD5 Checksum: | ef98ecad87ed7979150791bd253c8c52 |
|
| /// File Name: |
01.15.08-3.txt |
Description:
|
iDefense Security Advisory 01.15.08 - Remote exploitation of multiple untrusted pointer offset vulnerabilities in TIBCO Software Inc.'s SmartSockets RTserver may allow an attacker to crash the service or execute arbitrary code with SYSTEM privileges. When processing requests, SmartSockets uses values from the requests as offsets added to valid pointers. The resulting pointer values are then used in various memory operations. Since attackers can control these offset values, potentially exploitable conditions arise. iDefense has confirmed the existence of these vulnerabilities in TIBCO SmartSockets version 6.8.0. Previous versions may also be affected.
| | Author: | McSlibin, Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 3366 | | Related CVE(s): | CVE-2007-5657 | | Last Modified: | Jan 16 00:36:04 2008 |
| MD5 Checksum: | 5c6a4da086edd62deb07e6ab599235a5 |
|
| /// File Name: |
01.15.08-4.txt |
Description:
|
iDefense Security Advisory 01.15.08 - Remote exploitation of multiple untrusted loop bounds vulnerabilities in TIBCO Software Inc.'s SmartSockets RTserver may allow an attacker to crash the service or execute arbitrary code with SYSTEM privileges. When processing requests, SmartSockets uses values from the requests to control the number of iterations of several loops. Inside these loops, various memory operations are performed. Since attackers can control these values, potentially exploitable conditions arise. iDefense has confirmed the existence of these vulnerabilities in TIBCO SmartSockets version 6.8.0. Previous versions may also be affected.
| | Author: | McSlibin, Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 3350 | | Related CVE(s): | CVE-2007-5656 | | Last Modified: | Jan 16 00:36:59 2008 |
| MD5 Checksum: | 0ea32d532b898054a6944d733fdfa008 |
|
| /// File Name: |
sa28422.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to conduct cross-site scripting, script insertion, and cross-site request forgery attacks.
| | Homepage: | http://secunia.com/advisories/28422/ | | File Size: | 3348 | | Last Modified: | Jan 16 00:28:37 2008 |
| MD5 Checksum: | 01f677aad190e41baf9317a236db6761 |
|
| /// File Name: |
01.15.08-2.txt |
Description:
|
iDefense Security Advisory 01.15.08 - Remote exploitation of multiple untrusted pointer vulnerabilities in TIBCO Software Inc.'s SmartSockets RTserver may allow an attacker to crash the service or execute arbitrary code with SYSTEM privileges. When processing requests, SmartSockets uses values from the requests as pointers. These pointer values are then used in various memory operations. Since attackers can control these values, potentially exploitable conditions arise. iDefense has confirmed the existence of these vulnerabilities in TIBCO SmartSockets version 6.8.0. Previous versions may also be affected.
| | Author: | McSlibin, Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 3321 | | Related CVE(s): | CVE-2007-5655 | | Last Modified: | Jan 16 00:35:19 2008 |
| MD5 Checksum: | cb39535d499d31a340f99f3591932ea3 |
|
| /// File Name: |
sa28508.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Citrix Presentation Server, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28508/ | | File Size: | 3305 | | Last Modified: | Jan 18 03:50:24 2008 |
| MD5 Checksum: | 6047955e99d03f5cf95dd5bcd8615e05 |
|
| /// File Name: |
sa28574.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for apt-listchanges. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28574/ | | File Size: | 3304 | | Last Modified: | Jan 21 19:58:06 2008 |
| MD5 Checksum: | 8be3ebfb223d104fa8b8d96b9f2ac52a |
|
| /// File Name: |
01.15.08-5.txt |
Description:
|
iDefense Security Advisory 01.15.08 - Remote exploitation of a heap corruption vulnerability in Apple Computer Inc.'s QuickTime media player could allow attackers to execute arbitrary code in the context of the targeted user. The vulnerability specifically exists in the handling of Macintosh Resources embedded in QuickTime movies. When processing these records, a length value stored in the resource header is not properly validated. When a length value larger than the actual buffer size is supplied, potentially exploitable memory corruption occurs. iDefense Labs confirmed this vulnerability exists in QuickTime Player version 7.3.1. Previous versions are suspected to be vulnerable.
| | Author: | Jun Mao | | Homepage: | http://www.idefense.com/ | | File Size: | 3266 | | Related CVE(s): | CVE-2008-0032 | | Last Modified: | Jan 16 00:38:32 2008 |
| MD5 Checksum: | 9e6e90cfa4d64a44ebf691fac2f1f239 |
|
| /// File Name: |
01.15.08-1.txt |
Description:
|
iDefense Security Advisory 01.15.08 - Remote exploitation of a heap overflow vulnerability in TIBCO Software Inc.'s SmartSockets RTserver may allow an attacker to crash the service or execute arbitrary code with SYSTEM privileges. A heap overflow vulnerability exists within the code responsible for processing requests. Two distinct values from the request are used for the allocation size and the amount of data copied. Since both values are attacker controlled, this can lead to a heap overflow, potentially resulting in the execution of arbitrary code. iDefense has confirmed the existence of this vulnerability in TIBCO SmartSockets version 6.8.0. Previous versions may also be affected.
| | Author: | McSlibin | | Homepage: | http://www.idefense.com/ | | File Size: | 3257 | | Related CVE(s): | CVE-2007-5658 | | Last Modified: | Jan 16 00:34:14 2008 |
| MD5 Checksum: | a8dbf1e1da5a2a7f6a24e4e845e4d23c |
|
| /// File Name: |
sa28480.txt |
Description:
|
Secunia Security Advisory - Mandriva has issued an update for python. This fixes a security issue, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28480/ | | File Size: | 3253 | | Last Modified: | Jan 16 00:28:37 2008 |
| MD5 Checksum: | dded041757a13d8c1f6a4a67a6422a4c |
|
| /// File Name: |
sa28530.txt |
Description:
|
Secunia Security Advisory - Cody Pierce has reported a vulnerability in Cisco Unified Communications Manager (CUCM), which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/28530/ | | File Size: | 3237 | | Last Modified: | Jan 18 03:50:24 2008 |
| MD5 Checksum: | 6952188f3fc915fe30ffd20b128cef1f |
|
| /// File Name: |
sa28662.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in CandyPress Store, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/28662/ | | File Size: | 3236 | | Last Modified: | Jan 28 12:47:56 2008 |
| MD5 Checksum: | 912152d27111977d045631d95ef5e2b8 |
|
| /// File Name: |
01.23.08-1.txt |
Description:
|
iDefense Security Advisory 01.23.08 - Local exploitation of a buffer overflow vulnerability in IBM Corp.'s AIX operating system 'pioout' program allows attackers to execute arbitrary code with root privileges. The vulnerability exists due to insufficient input validation when copying user-supplied data to a fixed-size buffer. By passing a long string as a command line option, an attacker can cause an exploitable buffer overflow. iDefense has confirmed the existence of this vulnerability in version 5.2 and 5.3 of AIX with all patches applied as of November 29th, 2007. Previous versions are suspected to be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3215 | | Related CVE(s): | CVE-2007-5764 | | Last Modified: | Jan 25 03:38:26 2008 |
| MD5 Checksum: | ccae057bb83d9a716ba730ad509810d3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
