Section: .. / 0802-advisories /
| /// File Name: |
MDVSA-2008-038.txt |
Description:
|
Mandriva Linux Security Advisory - Buffer overflow in the LWZReadByte() function in gd_gif_in.c in GD prior to 2.0.34 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array. This was originally fixed in PHP's embedded GD with MDKSA-2006:162; patches had not been applied to the system libgd at that time.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 4338 | | Related CVE(s): | CVE-2006-4484 | | Last Modified: | Feb 7 21:32:51 2008 |
| MD5 Checksum: | ddbc139605e4f4eef3b09d5b33b85cac |
|
| /// File Name: |
sa28764.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28764/ | | File Size: | 4302 | | Last Modified: | Feb 12 17:59:37 2008 |
| MD5 Checksum: | b70f60ae8e609d9a9fe0dce6a391f8ae |
|
| /// File Name: |
sa28829.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for wml. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
| | Homepage: | http://secunia.com/advisories/28829/ | | File Size: | 4237 | | Last Modified: | Feb 11 20:03:56 2008 |
| MD5 Checksum: | 5b065e7a1d4d8ce4f2de650a06f86a04 |
|
| /// File Name: |
ipsimene.txt |
Description:
|
Ipswitch Instant Messaging versions 2.0.8.1 and below suffer from format string, NULL pointer, and file creation vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.org/ | | Related Exploit: | ipsimene.zip | | File Size: | 4197 | | Last Modified: | Feb 7 23:18:53 2008 |
| MD5 Checksum: | 5aa330a61c03eedf9eccbf494192ef2f |
|
| /// File Name: |
02.07.08-2.txt |
Description:
|
iDefense Security Advisory 02.07.08 - Remote exploitation of a memory corruption vulnerability within version 9.1 of IBM Corp.'s DB2 Universal Database Administration Server (DAS) allows attackers to crash the service or potentially execute arbitrary code in the context of the affected service. iDefense has confirmed the existence of this vulnerability in the DAS (db2dassrm) as included with DB2 9.1 with Fix Pack 2 for both Linux and Windows platforms. Previous versions, as well as builds for other platforms, are suspected to be vulnerable.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4180 | | Related CVE(s): | CVE-2007-3676 | | Last Modified: | Feb 7 23:27:37 2008 |
| MD5 Checksum: | 77c7a11e062f401ce426e2c6b5e41b14 |
|
| /// File Name: |
sa29001.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for clamav. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29001/ | | File Size: | 4162 | | Last Modified: | Feb 18 21:35:08 2008 |
| MD5 Checksum: | 9941edb32249b1544986c27006b4d2f7 |
|
| /// File Name: |
sa28935.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Unified IP Phone models, which can be exploited by malicious users to compromise a vulnerable device or by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable device.
| | Homepage: | http://secunia.com/advisories/28935/ | | File Size: | 4115 | | Last Modified: | Feb 14 19:42:25 2008 |
| MD5 Checksum: | e3cafb13cff2232bbd0182f0affdab13 |
|
| /// File Name: |
02.08.08-1.txt |
Description:
|
iDefense Security Advisory 02.08.08 - Remote exploitation of an insecure method exposed by the JavaScript library in Adobe Reader and Acrobat could allow an attacker to execute arbitrary code as the current user. Adobe Reader and Acrobat implement a version of JavaScript in the EScript.api plug-in which is based on the reference implementation used in Mozilla products. One of the methods exposed allows direct control over low level features of the object, which in turn allows execution of arbitrary code. iDefense has confirmed this vulnerability exists in Adobe Reader 8.1 on Windows XP SP2. It is likely that other Adobe products that handle PDF files, including previous versions of Adobe Reader, are also affected.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 4107 | | Related CVE(s): | CVE-2007-5663 | | Last Modified: | Feb 11 14:17:21 2008 |
| MD5 Checksum: | 81ae9d30d67bdd25fb243122fe848dbc |
|
| /// File Name: |
sa28742.txt |
Description:
|
Secunia Security Advisory - Tomasz Kuczynski has reported some vulnerabilities in Liferay Portal, which can be exploited by malicious people to conduct cross-site request forgery and phishing attacks, and by malicious users to conduct script insertion attacks.
| | Homepage: | http://secunia.com/advisories/28742/ | | File Size: | 4097 | | Last Modified: | Feb 1 17:35:37 2008 |
| MD5 Checksum: | 869237d30a4ab9c4f5d5e8da24adabcf |
|
| /// File Name: |
glsa-200802-02.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200802-02 - Luigi Auriemma discovered multiple buffer overflows in the D_NetPlayerEvent() function, the Msg_Write() function and the NetSv_ReadCommands() function. He also discovered errors when handling chat messages that are not NULL-terminated (CVE-2007-4642) or contain a short data length, triggering an integer underflow (CVE-2007-4643). Furthermore a format string vulnerability was discovered in the Cl_GetPackets() function when processing PSV_CONSOLE_TEXT messages (CVE-2007-4644). Versions less than or equal to 1.9.0-beta5.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4054 | | Related CVE(s): | CVE-2007-4642, CVE-2007-4643, CVE-2007-4644 | | Last Modified: | Feb 6 17:48:35 2008 |
| MD5 Checksum: | 65fd343ccba638b72b11d03f55c43216 |
|
| /// File Name: |
02.08.08-3.txt |
Description:
|
iDefense Security Advisory 02.08.08 - Remote exploitation of multiple stack-based buffer overflows in JavaScript methods in Adobe Reader and Acrobat could allow an attacker to execute arbitrary code as the current user. These issues exist due to insufficient input validation in several JavaScript methods. Inadequate checking is performed on the string length before it is copied into a fixed sized buffer on the stack. If an attacker supplies a long string, control structures on the stack may be modified, allowing the execution of arbitrary code. iDefense has confirmed these vulnerabilities exist in Adobe Reader 8.1 on Windows XP SP2. It is likely that other Adobe products that handle PDF files, including previous versions of Adobe Reader, are also affected.
| | Author: | Greg MacManus | | Homepage: | http://www.idefense.com/ | | File Size: | 4052 | | Related CVE(s): | CVE-2007-5659 | | Last Modified: | Feb 11 14:18:35 2008 |
| MD5 Checksum: | a35ddd3374aaad131a1aa65c950f950b |
|
| /// File Name: |
02.12.08-2.txt |
Description:
|
iDefense Security Advisory 02.12.08 - Remote exploitation of a heap corruption vulnerability in Microsoft Corp.'s Works Converter, as included with Microsoft Office, could potentially allow an attacker to execute arbitrary code as the current user. This vulnerability stems from improper input validation of OLE structures within wkcvqd01.dll when converting a Microsoft Works document (WPS extension) to Rich Text Format (RTF). When certain fields are modified, such as the length or count values, heap corruption can occur. This leads to a potentially exploitable condition. iDefense has confirmed that wkcvqd01.dll version 7.03.0616.0, as included with Microsoft Office 2003, is vulnerable to this issue. Older versions are assumed to be vulnerable as well. Additionally, Microsoft Works itself is suspected to be vulnerable.
| | Author: | Damian Put | | Homepage: | http://www.idefense.com/ | | File Size: | 4030 | | Related CVE(s): | CVE-2007-0216 | | Last Modified: | Feb 12 21:47:57 2008 |
| MD5 Checksum: | 08d9b1088229a0b470104e19a8c1a6ba |
|
| /// File Name: |
02.12.08-3.txt |
Description:
|
iDefense Security Advisory 02.12.08 - Remote exploitation of a buffer overflow vulnerability in Microsoft Corp.'s Works Converter allows attackers to execute arbitrary code as the current user. This vulnerability stems from improper input validation of section length headers when converting a Microsoft Works document (WPS extension) to Rich Text Format (RTF). When certain fields are modified, such as the length or count values, a stack-based buffer overflow occurs. This leads to a directly exploitable condition. iDefense confirmed that wkcvqd01.dll version 7.03.0616.0, as included with Microsoft Office 2003, is vulnerable. Older versions of Microsoft Office as well as Microsoft Works are also assumed vulnerable.
| | Author: | sillypea | | Homepage: | http://www.idefense.com/ | | File Size: | 4020 | | Related CVE(s): | CVE-2008-0108 | | Last Modified: | Feb 12 21:50:04 2008 |
| MD5 Checksum: | ee77d750d6c26ba974b04cc311b3d90c |
|
| /// File Name: |
sa29140.txt |
Description:
|
Secunia Security Advisory - Two vulnerabilities have been reported in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29140/ | | File Size: | 4008 | | Last Modified: | Feb 27 21:32:52 2008 |
| MD5 Checksum: | 74e70324e20800d81676213db50b9752 |
|
| /// File Name: |
sa28922.txt |
Description:
|
Secunia Security Advisory - Slackware has issued an update for apache. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks or to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/28922/ | | File Size: | 3987 | | Last Modified: | Feb 15 18:04:00 2008 |
| MD5 Checksum: | f0b64b5b6e05957e2a39029dd0ea160f |
|
| /// File Name: |
dsa-1500-1.txt |
Description:
|
Debian Security Advisory 1500-1 - Mike Ashton discovered that splitvt, a utility to run two programs in a split screen, did not drop group privileges prior to executing 'xprop'. This could allow any local user to gain the privileges of group utmp.
| | Homepage: | http://www.debian.org/security | | File Size: | 3985 | | Related CVE(s): | CVE-2008-0162 | | Last Modified: | Feb 22 02:50:23 2008 |
| MD5 Checksum: | 178f09ed0e085524174a14f285d527c8 |
|
| /// File Name: |
02.12.08-5.txt |
Description:
|
iDefense Security Advisory 02.12.08 - Remote exploitation of multiple integer overflow vulnerabilities in Adobe Systems Inc.'s Flash Media Server 2 could allow an unauthenticated attacker to execute arbitrary code with SYSTEM privileges. iDefense has confirmed the existence of these vulnerabilities in Flash Media Server 2 version 2.0.4 on Windows. Previous versions, as well as the Linux version, may also be affected.
| | Author: | Sebastian Apelt | | Homepage: | http://www.idefense.com/ | | File Size: | 3981 | | Related CVE(s): | CVE-2007-6149 | | Last Modified: | Feb 12 21:53:43 2008 |
| MD5 Checksum: | c01b3d0bd61486b81a51c53670a21e62 |
|
| /// File Name: |
02.26.08-3.txt |
Description:
|
iDefense Security Advisory 02.26.08 - Remote exploitation of a heap based buffer overflow vulnerability in Mozilla Organization's Thunderbird could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability exists when parsing the external-body MIME type in an electronic mail. When calculating the number of bytes to allocate for a heap buffer, sufficient space is not reserved for all of the data being copied into the buffer. This results in up to 3 bytes of the buffer being overflowed, potentially allowing for the execution of arbitrary code. iDefense has confirmed the existence of this vulnerability in Thunderbird version 2.0.0.9 on Linux and Windows. Previous versions may also be affected.
| | Author: | regenrecht | | Homepage: | http://www.idefense.com/ | | File Size: | 3904 | | Related CVE(s): | CVE-2008-0304 | | Last Modified: | Feb 26 19:38:41 2008 |
| MD5 Checksum: | ddaf07621a1a38f7abc2ec79b61d446a |
|
| /// File Name: |
TA08-043B.txt |
Description:
|
Technical Cyber Security Alert TA08-043B - Apple has released Security Update 2008-001 and OS X version 10.5.2 to correct multiple vulnerabilities affecting Apple Mac OS X and Mac OS X Server. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service. Systems affected include Apple Mac OS X versions prior to and including 10.4.11 and 10.5.1 and Apple Mac OS X Server versions prior to and including 10.4.11 and 10.5.1.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3904 | | Last Modified: | Feb 12 17:23:40 2008 |
| MD5 Checksum: | 6b4004f683feedb3b039a315f37c464b |
|
| /// File Name: |
glsa-200802-04.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200802-04 - The Gallery developement team reported and fixed critical vulnerabilities during an internal audit (CVE-2007-6685, CVE-2007-6686, CVE-2007-6687, CVE-2007-6688, CVE-2007-6689, CVE-2007-6690, CVE-2007-6691, CVE-2007-6692, CVE-2007-6693). Versions less than 2.2.4 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 3895 | | Related CVE(s): | CVE-2007-6685, CVE-2007-6686, CVE-2007-6687, CVE-2007-6688, CVE-2007-6689, CVE-2007-6690, CVE-2007-6691, CVE-2007-6692, CVE-2007-6693 | | Last Modified: | Feb 11 17:59:00 2008 |
| MD5 Checksum: | c889f2aa3562a4c984c769735c47ae32 |
|
| /// File Name: |
dsa-1507-1.txt |
Description:
|
Debian Security Advisory 1507-1 - Peter Paul Elfferich discovered that turba2, a contact management component for horde framework did not correctly check access rights before allowing users to edit addresses. This could result in valid users being able to alter private address records.
| | Homepage: | http://www.debian.org/security | | File Size: | 3888 | | Related CVE(s): | CVE-2008-0807 | | Last Modified: | Feb 25 11:14:27 2008 |
| MD5 Checksum: | bc1d1a94e06e85238bcdab46df7d4bbe |
|
| /// File Name: |
sa29064.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for splitvt. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
| | Homepage: | http://secunia.com/advisories/29064/ | | File Size: | 3877 | | Last Modified: | Feb 25 11:11:53 2008 |
| MD5 Checksum: | d31eb2dcf6730511918fc0a4eea3b7b6 |
|
| /// File Name: |
02.12.08-6.txt |
Description:
|
iDefense Security Advisory 02.12.08 - Remote exploitation of a memory corruption vulnerability in Adobe Systems Inc.'s Flash Media Server 2 could allow an unauthenticated attacker to execute arbitrary code with SYSTEM privileges. iDefense has confirmed the existence of this vulnerability in Flash Media Server 2 version 2.0.4 on Windows. Previous versions, as well as the Linux version, may also be affected.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 3875 | | Related CVE(s): | CVE-2007-6148 | | Last Modified: | Feb 12 21:54:44 2008 |
| MD5 Checksum: | 7fa9af0e97539be892bb793f90a0390c |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
