Section: .. / 0802-advisories /
| /// File Name: |
MDVSA-2008-051.txt |
Description:
|
Mandriva Linux Security Advisory - A flaw was found in how CUPS handled the addition and removal of remote printers via IPP that could allow a remote attacker to send a malicious IPP packet to the UDP port causing CUPS to crash.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 7403 | | Related CVE(s): | CVE-2008-0886 | | Last Modified: | Feb 26 19:21:48 2008 |
| MD5 Checksum: | c1ad1151b4d1a2ed06c0b213eb2cba4a |
|
| /// File Name: |
MDVSA-2008-053.txt |
Description:
|
Mandriva Linux Security Advisory - A buffer overflow in PCRE 7.x before 7.6 allows remote attackers to execute arbitrary code via a regular expression that contains a character class with a large number of characters with Unicode code points greater than 255.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3452 | | Related CVE(s): | CVE-2008-0674 | | Last Modified: | Feb 27 21:34:32 2008 |
| MD5 Checksum: | d60edf5bd4e16f0e3aef0e5418fdf493 |
|
| /// File Name: |
MDVSA-2008-054.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was discovered by Havoc Pennington in how the dbus-daemon applied its security policy. A user with the ability to connect to the dbus-daemon could possibly execute certain method calls that they should not normally have access to.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4980 | | Related CVE(s): | CVE-2008-0595 | | Last Modified: | Feb 28 19:22:55 2008 |
| MD5 Checksum: | 394afef1d0e71f4050d6ba10e9acccd4 |
|
| /// File Name: |
MDVSA-2008-055.txt |
Description:
|
Mandriva Linux Security Advisory - Chris Evans found a buffer overflow condition in Ghostscript, which can lead to arbitrary code execution as the user running any application using it to process a maliciously crafted Postscript file.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 13100 | | Related CVE(s): | CVE-2008-0411 | | Last Modified: | Mar 3 14:20:41 2008 |
| MD5 Checksum: | 52ccd7ac9349294e22e4288af884a5a8 |
|
| /// File Name: |
MDVSA-2008-056.txt |
Description:
|
Mandriva Linux Security Advisory - A vulnerability was found in the excel_read_HLINK function in the Microsoft Excel plugin in Gnumeric prior to version 1.8.1 that would allow for the execution of arbitrary code via a crafted XLS file containing XLS HLINK opcodes.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3628 | | Related CVE(s): | CVE-2008-0668 | | Last Modified: | Mar 3 14:34:10 2008 |
| MD5 Checksum: | 48441dc70983aa2af7d1f2f899351e60 |
|
| /// File Name: |
mercury-xss.txt |
Description:
|
Mercury version 1.1.5 suffers from a cross site scripting vulnerability.
| | Homepage: | http://aria-security.net/ | | File Size: | 599 | | Last Modified: | Feb 11 16:24:24 2008 |
| MD5 Checksum: | 1fd7e3a5c4edc9febcf82e00e36db43e |
|
| /// File Name: |
mswordfori-vulns.txt |
Description:
|
Microsoft Word 2003 is prone to a memory corruption vulnerability while parsing a specially crafted Word file. The vulnerability is caused by calculation errors while parsing certain fields within the barely documented, File Information Block (FIB). Fortinet Endpoint Solution For Enterprise, FortiClient is prone to a local privilege escalation due to the improper device filtering carried out by its filter driver, fortimon.sys.
| | Author: | Ruben Santamarta | | Homepage: | http://www.reversemode.com/ | | File Size: | 2016 | | Last Modified: | Feb 13 19:18:09 2008 |
| MD5 Checksum: | 0ff6973398f2fbf1dc452177289bb0be |
|
| /// File Name: |
MU-200802-01.txt |
Description:
|
MPlayer versions 1.0rc2 and below suffer from a remote stack overflow vulnerability.
| | Author: | Adam Bozanich | | Homepage: | http://labs.musecurity.com/ | | File Size: | 2366 | | Last Modified: | Feb 15 14:30:12 2008 |
| MD5 Checksum: | 5240c76378d0d99ff864199b92598a22 |
|
| /// File Name: |
mwsc-disclose.txt |
Description:
|
Level Platforms, Inc.'s Managed Workplace Server Center versions 4.x, 5.x, and 6.x suffer from information disclosure vulnerabilities.
| | Homepage: | http://www.tech-serve.com/ | | File Size: | 5055 | | Related CVE(s): | CVE-2008-0636 | | Last Modified: | Feb 8 17:57:57 2008 |
| MD5 Checksum: | 674f27556167fd344d0144a2d3e39660 |
|
| /// File Name: |
nowsmsz.txt |
Description:
|
Now SMS/MMS Gateway versions 2007.06.27 and below suffer from multiple buffer overflow vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | nowsmsz.zip | | File Size: | 2257 | | Last Modified: | Feb 20 01:33:45 2008 |
| MD5 Checksum: | c9b1acfd342d62bf7dacc45d64df9e69 |
|
| /// File Name: |
officescaz.txt |
Description:
|
Trend Micro OfficeScan Corporate Edition versions 8.0 Patch 2 and below and versions 7.3 Patch 3 and below suffer from buffer overflow and dead process vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | officescaz.zip | | File Size: | 4820 | | Last Modified: | Feb 27 14:57:37 2008 |
| MD5 Checksum: | c82af56fdd5d57edf3fd9c330f3f503e |
|
| /// File Name: |
PR07-42.txt |
Description:
|
Juniper Networks Secure Access 2000 versions prior to 5.5R3 suffer from a webroot disclosure flaw when parameters are stripped from the remediate.cgi script.
| | Author: | Richard Brain | | Homepage: | http://www.procheckup.com/ | | File Size: | 3114 | | Last Modified: | Feb 28 15:52:18 2008 |
| MD5 Checksum: | f4a33c2f7d2e55d82f70f3ae73a4bc62 |
|
| /// File Name: |
rintintin.txt |
Description:
|
TinTin++ / WinTin++ versions 1.97.9 and below suffer from buffer overflow and file creation vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | rintintin.zip | | File Size: | 3129 | | Last Modified: | Feb 7 23:22:06 2008 |
| MD5 Checksum: | 2a79d4f49f6543c06689dd8aac3e7f20 |
|
| /// File Name: |
rpmlpdbof.txt |
Description:
|
The RPM Remote Print Manager versions 4.5.1.11 and below suffer from a unicode related buffer overflow vulnerability.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | rpmlpdbof.zip | | File Size: | 1464 | | Last Modified: | Feb 12 17:47:50 2008 |
| MD5 Checksum: | 64aa54c0c4a91a8e878c8bdd8955ebbf |
|
| /// File Name: |
s21sec-040-en.txt |
Description:
|
S21Sec Advisory - BEA Weblogic versions 7.0sp6, 8.1sp4, and 9.0sp2 suffer from a flaw where it is possible to launch a credential brute force attack against known users through an internal servlet that permits the bypass of the user locking mechanism.
| | Author: | Ramon Pinuaga Cascales | | Homepage: | http://www.s21sec.com/ | | File Size: | 1899 | | Last Modified: | Feb 25 15:58:30 2008 |
| MD5 Checksum: | 6b2ed5236648b861932af9ca7a34a770 |
|
| /// File Name: |
sa25400.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for diatheke. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/25400/ | | File Size: | 13966 | | Last Modified: | Feb 27 01:35:25 2008 |
| MD5 Checksum: | c64d8b1c9cb3e438071949b3eb4cb15d |
|
| /// File Name: |
sa27371.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in activePDF Server, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/27371/ | | File Size: | 2516 | | Last Modified: | Feb 27 21:32:52 2008 |
| MD5 Checksum: | 85dd4f696fe1927bc2d4f703d6f888cd |
|
| /// File Name: |
sa27994.txt |
Description:
|
Secunia Security Advisory - Paul Kurczaba has discovered a vulnerability in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/27994/ | | File Size: | 2487 | | Last Modified: | Feb 22 20:44:48 2008 |
| MD5 Checksum: | c25a8cb2419aa48870b9ee880a8913d2 |
|
| /// File Name: |
sa28554.txt |
Description:
|
Secunia Security Advisory - DarkFig has reported a vulnerability in Belkin Wireless G Plus MIMO Router, which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/28554/ | | File Size: | 2634 | | Last Modified: | Feb 5 19:59:36 2008 |
| MD5 Checksum: | 450def725015265c18ba2bfa523e9767 |
|
| /// File Name: |
sa28657.txt |
Description:
|
Secunia Security Advisory - Novell has acknowledged two security issues in ZENworks Patch Management, which can be exploited by malicious, local users to truncate arbitrary files and to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/28657/ | | File Size: | 2394 | | Last Modified: | Feb 6 20:07:33 2008 |
| MD5 Checksum: | 1d74402f1eb962646f9f30ced4189547 |
|
| /// File Name: |
sa28677.txt |
Description:
|
Secunia Security Advisory - Brendan M. Hickey has reported some vulnerabilities in Banner Student, which can be exploited by malicious people to conduct cross-site request forgery and cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/28677/ | | File Size: | 2759 | | Last Modified: | Feb 5 18:02:25 2008 |
| MD5 Checksum: | 69738a32c88b846975b11ba6530c96ad |
|
| /// File Name: |
sa28696.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in the Linux Kernel, which potentially can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28696/ | | File Size: | 2174 | | Last Modified: | Feb 1 18:39:51 2008 |
| MD5 Checksum: | 6ad9916b9aa9f5724aac1ceef294e606 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
