Section: .. / 1001-advisories /
| /// File Name: |
01.12.10-1.txt |
Description:
|
iDefense Security Advisory 01.12.10 - Remote exploitation of a memory corruption vulnerability in multiple versions of Adobe Systems Inc.'s Reader and Acrobat PDF reader and processor could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when processing the Jp2c stream of a JpxDecode encoded data stream within a PDF file. During the processing of a JPC_MS_RGN marker, an integer sign extension may cause a bounds check to be bypassed. This results in an exploitable memory corruption vulnerability. iDefense has confirmed the existence of this vulnerability in latest version of Adobe Reader, at the time of testing, version 9.1.0. Previous versions may also be affected. Adobe has stated that all 9.2 and below versions, as well as all 8.1.7 and below versions are vulnerable.
| | Author: | Code Audit Labs | | Homepage: | http://www.idefense.com/ | | File Size: | 4014 | | Related CVE(s): | CVE-2009-3955 | | Last Modified: | Jan 13 21:57:07 2010 |
| MD5 Checksum: | fe30d4757cf7460f42a4c833f6b4209d |
|
| /// File Name: |
acd-overflow.txt |
Description:
|
A remotely exploitable vulnerability has been discovered in multiple ACDSee Systems products. Specifically, the vulnerability is due to a boundary errorwhen processing XBM image files and can lead to a buffer overflow condition. This boundary error can allow attackers to inject and execute arbitrary code on the target host with the privileges of the logged-on user.
| | Author: | TELUS Security Labs | | Homepage: | http://www.telussecuritylabs.com/ | | File Size: | 3216 | | Last Modified: | Jan 8 20:57:06 2010 |
| MD5 Checksum: | 2758665ec021f8418e7ce696848fe0c0 |
|
| /// File Name: |
adobe-overflow.txt |
Description:
|
VUPEN Vulnerability Research Team discovered a critical vulnerability affecting Adobe Acrobat and Reader. This vulnerability is caused by an integer overflow error in the U3D module when processing malformed data, which could be exploited by attackers to execute arbitrary code by tricking a user into opening a specially crafted PDF document. Versions 9.2 and below are affected.
| | Author: | Nicolas JOLY | | Homepage: | http://www.vupen.com/ | | File Size: | 2505 | | Related CVE(s): | CVE-2009-3959 | | Last Modified: | Jan 15 20:01:58 2010 |
| MD5 Checksum: | 007db25be82a0081152575074324f3b0 |
|
| /// File Name: |
cisco-sa-20100120-ipm.txt |
Description:
|
Cisco Security Advisory - CiscoWorks Internetwork Performance Monitor (IPM) versions 2.6 and earlier for Microsoft Windows operating systems contain a buffer overflow vulnerability that could allow a remote unauthenticated attacker to execute arbitrary code. There are no workarounds for this vulnerability.
| | Author: | Cisco Systems | | Homepage: | http://www.cisco.com/ | | File Size: | 7577 | | Related CVE(s): | CVE-2010-0138 | | Last Modified: | Jan 20 21:28:56 2010 |
| MD5 Checksum: | 874df064f81537811c11c52532dddd39 |
|
| /// File Name: |
cisco-sa-20100120-xr-ssh.txt |
Description:
|
Cisco Security Advisory - The SSH server implementation in Cisco IOS XR Software contains a vulnerability that an unauthenticated, remote user could exploit to cause a denial of service condition. An attacker could trigger this vulnerability by sending a crafted SSH version 2 packet that may cause a new SSH connection handler process to crash. Repeated exploitation may cause each new SSH connection handler process to crash and lead to a significant amount of memory being consumed, which could introduce instability that may adversely impact other system functionality. During this event, the parent SSH daemon process will continue to function normally.
| | Homepage: | http://www.cisco.com/ | | File Size: | 19756 | | Last Modified: | Jan 20 17:55:43 2010 |
| MD5 Checksum: | 1c69d041f8c8933a7f45e23304e19554 |
|
| /// File Name: |
codescan-xoops.txt |
Description:
|
Xoops versions 2.4.3 and below suffer from file deletion and HTTP response splitting vulnerabilities.
| | Author: | CodeScan Labs | | File Size: | 3304 | | Last Modified: | Jan 19 20:30:13 2010 |
| MD5 Checksum: | 87ea1465bbbec9781923782185f85ca5 |
|
| /// File Name: |
CORE-2009-1209.txt |
Description:
|
Core Security Technologies Advisory - Google SketchUp is a 3D modeling program designed for architects, civil engineers, filmmakers, game developers, and related professions. Google SketchUp bundles an old version of 'lib3ds', a library used to process 3DS files. This library is being compiled in a way that leads to improper validation of data when importing 3DS files; this condition can be exploited by remote attackers to trigger a memory corruption vulnerability by enticing an unsuspecting user to open a specially crafted 3DS file, possibly leading to arbitrary code execution.
| | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 13788 | | Related CVE(s): | CVE-2010-0280 | | Last Modified: | Jan 13 22:09:35 2010 |
| MD5 Checksum: | a1f4e0496af80180c824e44437712700 |
|
| /// File Name: |
CVE-2009-2902.txt |
Description:
|
Apache Tomcat suffers from an unexpected file deletion in work directory vulnerability. Versions 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 are affected.
| | Author: | Mark Thomas | | Homepage: | http://tomcat.apache.org/ | | File Size: | 2205 | | Related CVE(s): | CVE-2009-2902 | | Last Modified: | Jan 26 01:58:46 2010 |
| MD5 Checksum: | 5c6028b28581f02f5b89e29c451906a4 |
|
| /// File Name: |
DDIVRT-2009-27.txt |
Description:
|
The login page of the F2L-3000 version 4.0.0 is vulnerable to SQL Injection. Exploitation of the vulnerability may allow attackers tobypass authentication and access sensitive information stored on the device.
| | Author: | Chris Graham,Digital Defense,Rob Kraus,r@b13$ | | File Size: | 1058 | | Last Modified: | Jan 26 02:34:32 2010 |
| MD5 Checksum: | 65fa30f3ed6a05bafcd2835c26e753a1 |
|
| /// File Name: |
drupal615-xss.txt |
Description:
|
Drupal versions 6.15 and below suffer from a cross site scripting vulnerability.
| | Author: | emgent | | File Size: | 2893 | | Last Modified: | Jan 7 20:09:07 2010 |
| MD5 Checksum: | ed754a868f2f72bfb18f1529f977291a |
|
| /// File Name: |
dsa-1841-2.txt |
Description:
|
Debian Linux Security Advisory 1841-2 - A bug in git-core caused the security update in DSA 1841 to fail to build on a number of architectures Debian supports. This update corrects the bug and releases builds for all supported architectures.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 11626 | | Related CVE(s): | CVE-2009-2108 | | Last Modified: | Jan 31 15:14:12 2010 |
| MD5 Checksum: | 12a9627559eb36cab0f41ca64eaf92ad |
|
| /// File Name: |
dsa-1965-1.txt |
Description:
|
Debian Linux Security Advisory 1965-1 - It was discovered that phpLDAPadmin, a web based interface for administering LDAP servers, doesn't sanitize an internal variable, which allows remote attackers to include and execute arbitrary local files.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 3212 | | Related CVE(s): | CVE-2009-4427 | | Last Modified: | Jan 6 23:38:50 2010 |
| MD5 Checksum: | 1eb434d7077a1fd72be864685ca211d0 |
|
| /// File Name: |
dsa-1967-1.txt |
Description:
|
Debian Linux Security Advisory 1967-1 - Dan Rosenberg discovered that Transmission, a lightwight client for the Bittorrent filesharing protocol performs insufficient sanitising of file names specified in .torrent files. This could lead to the overwrite of local files with the privileges of the user running Transmission if the user is tricked into opening a malicious torrent file.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 7583 | | Related CVE(s): | CVE-2010-0012 | | Last Modified: | Jan 7 16:29:17 2010 |
| MD5 Checksum: | e79878e82b0c8456e3ab0d9e82557fef |
|
| /// File Name: |
dsa-1968-2.txt |
Description:
|
Debian Linux Security Advisory 1968-2 - It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data (CVE-2009-4010).
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 4632 | | Related CVE(s): | CVE-2009-4010 | | Last Modified: | Jan 29 18:33:09 2010 |
| MD5 Checksum: | 206a48ca48247cafa78ec670f4c0480d |
|
| /// File Name: |
dsa-1969-1.txt |
Description:
|
Debian Linux Security Advisory 1969-1 - It was discovered that krb5, a system for authenticating users and services on a network, is prone to integer underflow in the AES and RC4 decryption operations of the crypto library. A remote attacker can cause crashes, heap corruption, or, under extraordinarily unlikely conditions, arbitrary code execution.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 49443 | | Related CVE(s): | CVE-2009-4212 | | Last Modified: | Jan 13 21:27:14 2010 |
| MD5 Checksum: | 941b47f478b812ad02bf8c80885c29f0 |
|
| /// File Name: |
dsa-1970-1.txt |
Description:
|
Debian Linux Security Advisory 1970-1 - It was discovered that a significant memory leak could occur in openssl, related to the reinitialization of zlib. This could result in a remotely exploitable denial of service vulnerability when using the Apache httpd server in a configuration where mod_ssl, mod_php5, and the php5-curl extension are loaded.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 12733 | | Related CVE(s): | CVE-2009-4355 | | Last Modified: | Jan 13 21:45:15 2010 |
| MD5 Checksum: | 8d1a271bb5317cdc26ad5321030a05a4 |
|
| /// File Name: |
dsa-1971-1.txt |
Description:
|
Debian Linux Security Advisory 1971-1 - Tim Starling discovered that libthai, a set of Thai language support routines, is vulnerable of integer/heap overflow. This vulnerability could allow an attacker to run arbitrary code by sending a very long string.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 11536 | | Related CVE(s): | CVE-2009-4012 | | Last Modified: | Jan 15 15:53:45 2010 |
| MD5 Checksum: | 267407bd306ba6624219ecf88c8f6686 |
|
| /// File Name: |
dsa-1972-1.txt |
Description:
|
Debian Linux Security Advisory 1972-1 - Max Kellermann discovered a heap-based buffer overflow in the handling of ADPCM WAV files in libaudiofile. This flaw could result in a denial of service (application crash) or possibly execution of arbitrary code via a crafted WAV file.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 9655 | | Related CVE(s): | CVE-2008-5824 | | Last Modified: | Jan 17 18:31:24 2010 |
| MD5 Checksum: | 6f101612587db4f444b30b0276292261 |
|
| /// File Name: |
dsa-1972-2.txt |
Description:
|
Debian Linux Security Advisory 1972-2 - This advisory adds the packages for the old stable distribution (etch), with the exception of the mips packages. The updates for the mips architecture will be released when they become available.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 6920 | | Related CVE(s): | CVE-2008-5824 | | Last Modified: | Jan 22 02:48:48 2010 |
| MD5 Checksum: | e8fe3a804f19528a9266ea922288a5f4 |
|
| /// File Name: |
dsa-1973-1.txt |
Description:
|
Debian Linux Security Advisory 1973-1 - Christoph Pleger has discovered that the GNU C Library (aka glibc) and its derivatives add information from the passwd.adjunct.byname map to entries in the passwd map, which allows local users to obtain the encrypted passwords of NIS accounts by calling the getpwnam function.
| | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 45592 | | Related CVE(s): | CVE-2010-0015 | | Last Modified: | Jan 20 17:47:01 2010 |
| MD5 Checksum: | 2f31441909e69e429dbb777e1fe79435 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
