Section: .. / 0804-advisories /
| /// File Name: |
ibmdb2-overwrite.txt |
Description:
|
Team SHATTER Security Advisory - IBM DB2 UDB suffers from an arbitrary file overwrite vulnerability in the SYSPROC.NNSTAT procedure.
| | Author: | Cesar Cerrudo | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2158 | | Last Modified: | Apr 18 14:39:56 2008 |
| MD5 Checksum: | c624ca8b2e7f283918eac4c013a73fbc |
|
| /// File Name: |
jar-dos.txt |
Description:
|
Team SHATTER Security Advisory - DB2 has multiple vulnerabilities which can lead to Denial of Service (DoS) attacks against the instance. When RECOVERJAR and REMOVE_JAR procedures are called with a specially crafted parameter the DB2 instance crashes. Any DB2 database user can exploit these vulnerabilities since PUBLIC permissions are granted to both procedures by default. The RECOVERJAR and REMOVE_JAR procedures are installed by default.
| | Author: | Ariel Sanchez | | Homepage: | http://www.appsecinc.com/ | | File Size: | 2322 | | Last Modified: | Apr 18 14:38:11 2008 |
| MD5 Checksum: | 08128a2265c7f303e00858a4bffc90af |
|
| /// File Name: |
MDVSA-2008-089.txt |
Description:
|
Mandriva Linux Security Advisory - Kees Cook of Ubuntu security found a flaw in how poppler prior to version 0.6 displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause applications using poppler to crash, or possibly execute arbitrary code when opened.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3122 | | Related CVE(s): | CVE-2008-1693 | | Last Modified: | Apr 18 14:31:41 2008 |
| MD5 Checksum: | e99a3c71b13af72c3e05bd7db5c591d8 |
|
| /// File Name: |
glsa-200804-22.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200804-22 - Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values and the UDP source port numbers. Versions less than 3.1.5 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2541 | | Related CVE(s): | CVE-2008-1637 | | Last Modified: | Apr 18 14:15:35 2008 |
| MD5 Checksum: | d95dde0c7ec1fd6b71cb4a5e6db0d8cf |
|
| /// File Name: |
glsa-200804-20.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200804-20 - Multiple vulnerabilities have been identified in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE). Versions less than 1.6.0.05 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 9092 | | Related CVE(s): | CVE-2007-2435, CVE-2007-2788, CVE-2007-2789, CVE-2007-3655, CVE-2007-5232, CVE-2007-5237, CVE-2007-5238, CVE-2007-5239, CVE-2007-5240, CVE-2007-5273, CVE-2007-5274, CVE-2007-5689, CVE-2008-0628, CVE-2008-0657, CVE-2008-1185, CVE-2008-1186, CVE-2008-1187, CVE-2008-1188, CVE-2008-1189, CVE-2008-1190, CVE-2008-1191, CVE-2008-1192, CVE-2008-1193, CVE-2008-1194, CVE-2008-1195, CVE-2008-1196 | | Last Modified: | Apr 18 14:14:48 2008 |
| MD5 Checksum: | 01e6a6b4b0d7ecdd0ebf50e52afe05db |
|
| /// File Name: |
glsa-200804-19.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200804-19 - Toni Arnold, David Sveningsson, Michal Bartoszkiewicz, and Joseph reported that php-select does not quote parameters passed to the tr command, which could convert the -D PHP5 argument in the APACHE2_OPTS setting in the file /etc/conf.d/apache2 to lower case. Versions less than 1.0.1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2948 | | Related CVE(s): | CVE-2008-1734 | | Last Modified: | Apr 18 14:14:31 2008 |
| MD5 Checksum: | 33029e9ba6643772603880fb8e1f1e6c |
|
| /// File Name: |
sa29787.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Mozilla Firefox, which can potentially be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29787/ | | File Size: | 2569 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 4a4b179c06f16c251b4daedca9d480bc |
|
| /// File Name: |
sa29790.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in eGroupWare, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29790/ | | File Size: | 2478 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | da74947406883b03c924b4b1993a9910 |
|
| /// File Name: |
sa29793.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for firefox. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29793/ | | File Size: | 2629 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 86839d1ac4b646183f65c138c48d53c2 |
|
| /// File Name: |
sa29820.txt |
Description:
|
Secunia Security Advisory - Security Assurance Team of the National Australia Bank have reported a vulnerability in the Jom Comment component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29820/ | | File Size: | 2489 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | a47bff5eb4fa136db4d416fd3ed95e1e |
|
| /// File Name: |
sa29822.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in Cisco Network Admission Control (NAC), which can be exploited by malicious people to disclose sensitive information.
| | Homepage: | http://secunia.com/advisories/29822/ | | File Size: | 3008 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 1b97321ed3deb8a09f79dc1cf8fe1d7f |
|
| /// File Name: |
sa29828.txt |
Description:
|
Secunia Security Advisory - Red Hat has issued an update for seamonkey. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29828/ | | File Size: | 2845 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | e1ae6050d611dd9882eb28a24fa85ee2 |
|
| /// File Name: |
sa29837.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in various CA products, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29837/ | | File Size: | 4722 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | f61db8fc240c88218a5b720b3e07aca9 |
|
| /// File Name: |
sa29839.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for gallery2. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/29839/ | | File Size: | 2382 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 094e422cca7097b3036eff38462a1ca9 |
|
| /// File Name: |
sa29840.txt |
Description:
|
Secunia Security Advisory - cO2 has discovered a vulnerability in AutoTutorials, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/29840/ | | File Size: | 2534 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 19d0fb1d0a5802778c3e65b9cfe31d46 |
|
| /// File Name: |
sa29841.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in BEA JRockit, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29841/ | | File Size: | 3335 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | c82feee2c0b75ff6de57b5cb430f29e9 |
|
| /// File Name: |
sa29845.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for libfishsound. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/29845/ | | File Size: | 2298 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 7398276da7e0844139802e599f7420eb |
|
| /// File Name: |
sa29846.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in Safari, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29846/ | | File Size: | 3099 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 8a4ed6b506eae31ed40ea35da1bee78b |
|
| /// File Name: |
sa29849.txt |
Description:
|
Secunia Security Advisory - HP has acknowledged some vulnerabilities in OpenView Network Node Manager, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29849/ | | File Size: | 2747 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | e0e33163859442fb19ef61edb888226e |
|
| /// File Name: |
sa29852.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in OpenOffice, which can be exploited by malicious people to potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29852/ | | File Size: | 3003 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | da024ec9828f96cbc388d231a0ec712e |
|
| /// File Name: |
sa29860.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Mozilla SeaMonkey, which can potentially be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/29860/ | | File Size: | 2487 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 111cc9b1e2c0056b55b2c35d2b5ba622 |
|
| /// File Name: |
sa29862.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for nagios and nagios-plugins. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/29862/ | | File Size: | 2520 | | Last Modified: | Apr 18 14:12:52 2008 |
| MD5 Checksum: | 91b245381b951dd95a51945d296c740b |
|
| /// File Name: |
04.17.08-3.txt |
Description:
|
iDefense Security Advisory 04.17.08 - Remote exploitation of multiple buffer overflow vulnerabilities in OpenOffice, as included in various vendors' operating system distributions, allows attackers to execute arbitrary code with the privileges of the logged in user. The first vulnerability occurs when parsing "Attribute" records from the file. Due to a lack of bounds checking during a loop that reads these records, an attacker can trigger a heap overflow by inserting more than 256 records. The second vulnerability is nearly identical to the first one, but involves the "Font Description" record instead of the "Attribute" record.
| | Homepage: | http://www.idefense.com/ | | File Size: | 3803 | | Related CVE(s): | CVE-2007-5745 | | Last Modified: | Apr 17 18:59:21 2008 |
| MD5 Checksum: | a66e4b3978c2bc5122466afa7333419f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
