Section: .. / 0604-advisories /
| /// File Name: |
SSRT061133-6.txt |
Description:
|
HPSBUX02108 SSRT061133 rev.6 - HP-UX running Sendmail, Remote Execution of Arbitrary Code
| | Homepage: | http://hp.com | | File Size: | 8811 | | Last Modified: | Apr 19 16:16:08 2006 |
| MD5 Checksum: | 039d15e78e65f4790b0131a9efa12aba |
|
| /// File Name: |
SSRT061133-7.txt |
Description:
|
HPSBUX02108 SSRT061133 rev.7 - HP-UX running Sendmail, Remote Execution of Arbitrary Code
| | Homepage: | http://hp.com | | File Size: | 9981 | | Last Modified: | Apr 27 18:11:34 2006 |
| MD5 Checksum: | 0b82bcf0f01481ef49eaa723295a7ca8 |
|
| /// File Name: |
SSRT061133-9.txt |
Description:
|
HPSBUX02108 SSRT061133 rev.9 - HP-UX running Sendmail, Remote Execution of Arbitrary Code
| | Homepage: | http://www.hp.com | | File Size: | 10995 | | Last Modified: | Apr 28 21:03:54 2006 |
| MD5 Checksum: | c2ea59897237b1015a5d3f5ea829a86d |
|
| /// File Name: |
SSRT061141-1.txt |
Description:
|
HPSBPI2109 SSRT061141 rev.1 - HP Color LaserJet 2500 and 4600 Toolbox Running on Microsoft Windows Remote Unauthorized Disclosure of Information
| | Homepage: | http://ww.hp.com | | File Size: | 6631 | | Last Modified: | Apr 10 21:24:33 2006 |
| MD5 Checksum: | c8d1984bc5f66421deb05050b2a50110 |
|
| /// File Name: |
SSRT061148-1.txt |
Description:
|
HPSBMA02113 SSRT061148 rev.1 - HP Oracle for OpenView (OfO) Critical Patch Update April 2006: Oracle(R) has issued a Critical Patch Update which contains solutions for a number of potential security vulnerabilities. These vulnerabilities may be exploited locally or remotely to compromise the confidentiality, availability or integrity of Oracle for OpenView (OfO).
| | Homepage: | http://www.hp.com | | File Size: | 8061 | | Last Modified: | Apr 28 21:05:46 2006 |
| MD5 Checksum: | 8d18e73b7da99433a37969f6c0814671 |
|
| /// File Name: |
SUSE-SA-2006-017.txt |
Description:
|
SUSE Security Announcement - sendmail is vulnerable to a race condition when handling signals. Under certain circumstances this bug can be exploited by an attacker to execute commands remotely.
| | Homepage: | http://www.suse.com | | File Size: | 14246 | | Last Modified: | Mar 31 19:18:34 2006 |
| MD5 Checksum: | e186af82f5ab079304b8116271cbc991 |
|
| /// File Name: |
SUSE-SA-2006-018.txt |
Description:
|
SUSE Security Announcement - remote code execution in RealPlayer
| | Homepage: | http://www.suse.com | | File Size: | 13549 | | Last Modified: | Mar 31 19:20:29 2006 |
| MD5 Checksum: | 5a93fadbee519de1a670866f0f60580e |
|
| /// File Name: |
SUSE-SA-2006-021.txt |
Description:
|
SUSE Security Announcement SUSE-SA:2006:021: various security problems in Mozilla based browsers.
| | Homepage: | http://www.suse.com | | File Size: | 33510 | | Last Modified: | Apr 28 14:48:29 2006 |
| MD5 Checksum: | 0ce91f5efc612402ba64bda5579152bd |
|
| /// File Name: |
SYMSA-2006-002.txt |
Description:
|
Symantec Vulnerability Research: SYMSA-2006-002- There exists a format string vulnerability within the McAfee WebShield SMTP server which allows an attacker to execute arbitrary code on the host computer via an unauthenticated connection. With successful exploitation, an unauthenticated attacker is able to obtain SYSTEM access.
| | Author: | Ollie Whitehouse | | Homepage: | http://www.symantec.com | | File Size: | 4727 | | Last Modified: | Apr 10 21:14:00 2006 |
| MD5 Checksum: | ef4b165438b1779ee136310b7a68ab5f |
|
| /// File Name: |
SynchronEyes.txt |
Description:
|
SMART Technologies SynchronEyes versions 6.0 and below suffer from several remote DOS vulnerabilities.
| | Author: | Dennis Elser | | Homepage: | http://dennis.backtrace.de | | File Size: | 3648 | | Last Modified: | Apr 10 21:16:09 2006 |
| MD5 Checksum: | b602854a834a37f707b964141923b199 |
|
| /// File Name: |
TA06-101A.txt |
Description:
|
National Cyber Alert System: Technical Cyber Security Alert TA06-101A - Microsoft Windows and Internet Explorer Vulnerabilities
| | Homepage: | http://cert.org | | File Size: | 7736 | | Last Modified: | Apr 12 00:12:55 2006 |
| MD5 Checksum: | 024756336528670367797c1009282b76 |
|
| /// File Name: |
TA06-107A.txt |
Description:
|
National Cyber Alert System Technical Cyber Security Alert TA06-107A Mozilla Products Contain Multiple Vulnerabilities.
| | Homepage: | http://www.us-cert.gov | | File Size: | 8922 | | Last Modified: | Apr 19 17:39:29 2006 |
| MD5 Checksum: | f6e9a328d511993d12a11edf387b859e |
|
| /// File Name: |
TA06-109A.txt |
Description:
|
National Cyber Alert System Technical Cyber Security Alert TA06-109A: Oracle Products Contain Multiple Vulnerabilities
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 7483 | | Last Modified: | Apr 19 17:57:18 2006 |
| MD5 Checksum: | 47018f781e30d88aaf44c6ca8ed16d4f |
|
| /// File Name: |
TalentSoft.txt |
Description:
|
TalentSoft Web Shop v5.3.6 suffers from a full path disclosure vulnerability.
| | Author: | Revnic Vasile | | File Size: | 2051 | | Last Modified: | Apr 19 16:20:14 2006 |
| MD5 Checksum: | bc06aaf14c8228e942d7e04b4ab18af5 |
|
| /// File Name: |
textfilebbXSS.txt |
Description:
|
TextFileBB is susceptible to three cross site scripting vulnerabilities.
| | Author: | r0xes.ratm | | File Size: | 2099 | | Last Modified: | Apr 30 00:16:55 2006 |
| MD5 Checksum: | dc38b40236d1084fcd97edac17ed6b3b |
|
| /// File Name: |
TinyPHP-3.6.txt |
Description:
|
Tiny PHP forum v3.6 suffers from XSS and allows access to the admin password hash.
| | Author: | Hessam-x | | Homepage: | http://www.hessamx.net | | File Size: | 700 | | Last Modified: | Apr 19 17:38:36 2006 |
| MD5 Checksum: | a7583b1cf54d8c8abb246d34cfe45e76 |
|
| /// File Name: |
TinyWebGallery.txt |
Description:
|
Tiny Web Gallery versions equal to or less than 1.4 suffer from XSS
| | Author: | qex | | File Size: | 135 | | Last Modified: | Apr 19 17:30:10 2006 |
| MD5 Checksum: | 5c6684f5c489e649e105da5f86d67210 |
|
| /// File Name: |
TotalCalendar2.30.txt |
Description:
|
TotalCalendar 2.30 suffers from a remote file inclusion vulnerability if register_globals = On.
| | Author: | Aesthetico | | File Size: | 1415 | | Last Modified: | Apr 28 11:58:58 2006 |
| MD5 Checksum: | 0bff4bde203cd08c9c490db57f1111a1 |
|
| /// File Name: |
TUGZip.txt |
Description:
|
TUGZip 3.4.0.0, TUGZip 3.3.0.0, and TUGZip 3.1.0.2 do not properly sanitize archives, making it possible to overwrite arbitrary files using a directory transversal attack.
| | Author: | Hamid Network Security Team | | Homepage: | http://www.hamid.ir/ | | File Size: | 1704 | | Last Modified: | Apr 12 14:17:59 2006 |
| MD5 Checksum: | 72c2a99b79f16aed2cfd7a89e0011b75 |
|
| /// File Name: |
USN-265-1.txt |
Description:
|
Ubuntu Security Notice USN-265-1 - libcairo vulnerability: When rendering glyphs, the cairo graphics rendering library did not check the maximum length of character strings. A request to display an excessively long string with cairo caused a program crash due to an X library error.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 2887 | | Last Modified: | Apr 4 16:43:40 2006 |
| MD5 Checksum: | 0a2ec4e25fc06fafb610e630ea9d68f6 |
|
| /// File Name: |
USN-266-1.txt |
Description:
|
Ubuntu Security Notice USN-266-1 - dia vulnerabilities: Three buffer overflows were discovered in the Xfig file format importer. By tricking a user into opening a specially crafted .fig file with dia, an attacker could exploit this to execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7398 | | Last Modified: | Apr 4 16:43:06 2006 |
| MD5 Checksum: | e10a97caa07a4ec44dc0b9b7a4ee54a7 |
|
| /// File Name: |
USN-267-1.txt |
Description:
|
Ubuntu Security Notice USN-267-1 - mailman vulnerability: A remote Denial of Service vulnerability was discovered in the decoder for multipart messages. Certain parts of type "message/delivery-status" or parts containing only two blank lines triggered an exception. An attacker could exploit this to crash Mailman by sending a specially crafted email to a mailing list.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5058 | | Last Modified: | Apr 4 16:42:22 2006 |
| MD5 Checksum: | 102c06f7726019467050642f48bddf19 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
