Section: .. / 0702-advisories /
| /// File Name: |
snort-preprocessor.txt |
Description:
|
Sourcefire has learned of a remotely exploitable vulnerability in the Snort DCE/RPC preprocessor. This preprocessor is vulnerable to a stack-based buffer overflow that could potentially allow attackers to execute code with the same privileges as the Snort binary. Sourcefire has prepared updates for Snort open-source software to address this issue. Snort Versions affected include Snort 2.6.1, 2.6.1.1, and 2.6.1.2 and Snort 2.7.0 beta 1.
| | Homepage: | http://www.snort.org/ | | File Size: | 2663 | | Related CVE(s): | CVE-2006-5276 | | Last Modified: | Feb 19 20:23:04 2007 |
| MD5 Checksum: | c9a6dc07a4be80810468e210655d24be |
|
| /// File Name: |
SSRT061233.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA transport. The vulnerability could be exploited by a local user to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com | | File Size: | 5911 | | Last Modified: | Feb 14 17:12:02 2007 |
| MD5 Checksum: | 4d278250b558285d4cbbf240c2e8652d |
|
| /// File Name: |
SSRT061280.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with the Mercury LoadRunner Agent, Performance Center Agent, and Monitor over Firewall. The vulnerability could be exploited by a remote unauthenticated user to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 9119 | | Last Modified: | Feb 13 00:35:52 2007 |
| MD5 Checksum: | 4d28bd713f31419814e7aaf1cebcf7d4 |
|
| /// File Name: |
SSRT071297.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP Serviceguard for Linux that may allow remote unauthorized access.
| | Homepage: | http://www.hp.com | | File Size: | 5869 | | Last Modified: | Feb 16 02:25:36 2007 |
| MD5 Checksum: | 50621fe0d24d852fce9647398549b1ed |
|
| /// File Name: |
SSRT071300.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Storage Data Protector running on HP-UX with PHSS_35149 or PHSS_35150 installed and Solaris with DPSOL_00229 installed. The vulnerability could be exploited by a local user to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 6147 | | Last Modified: | Feb 13 00:36:38 2007 |
| MD5 Checksum: | 2e05d8c33fca388466119fcfc16048c2 |
|
| /// File Name: |
SSRT071302.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running SLSd. The vulnerability could be exploited by a remote unauthorized user to create arbitrary files leading to root access.
| | Homepage: | http://www.hp.com | | File Size: | 6042 | | Last Modified: | Feb 14 17:11:01 2007 |
| MD5 Checksum: | 015956da27b510da97dcffecbe7db1ef |
|
| /// File Name: |
SYM07-002.txt |
Description:
|
Symantec Security Advisory SYM07-002 - Vulnerabilities were identified in third-party trouble-shooting ActiveX controls, developed by SupportSoft, www.supportsoft.com. Two of these controls were signed, shipped and installed with the identified versions of Symantec's consumer products and as part of the Symantec Automated Support Assistant support tool. The vulnerability identified in the Symantec shipped controls could potentially result in a stack overflow requiring user interaction to exploit. If successfully exploited this vulnerability could potentially compromise a user's system possibly allowing execution of arbitrary code or unauthorized access to system assets with the permissions of the user's browser.
| | Author: | Mark Litchfield | | Homepage: | http://www.symantec.com/security/ | | File Size: | 10817 | | Related CVE(s): | CVE-2006-6490 | | Last Modified: | Feb 23 22:05:34 2007 |
| MD5 Checksum: | ef738e6cc836e4b569b9df1624c54701 |
|
| /// File Name: |
SYMSA-2007-002.txt |
Description:
|
Symantec Vulnerability Research SYMSA-2007-002 - Palm OS Treo smartphones are equipped with a system password lock to secure contents of handheld data from unauthorized access. When this lock is engaged, Treo's built-in Find feature is still accessible and can be used to perform searches on text in Treo applications and databases (e.g. SMS Messages, Memos, Calendar, Tasks, etc). Search results are accessible, and depending on their size, may be truncated. An attacker may use this vulnerability to retrieve information from a locked device.
| | Author: | J.R. Wikes, Matt Cooley, Scott King | | Homepage: | http://www.symantec.com/research | | File Size: | 6124 | | Related CVE(s): | CVE-2007-0859 | | Last Modified: | Feb 14 15:26:06 2007 |
| MD5 Checksum: | 245f920185e5a29e93c6666977ff1d45 |
|
| /// File Name: |
TA07-044A.txt |
Description:
|
Technical Cyber Security Alert TA07-044A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Internet Explorer, Office, Works, Malware Protection Engine, Visual Studio, and Step-by-Step Interactive Training. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4752 | | Last Modified: | Feb 14 15:11:31 2007 |
| MD5 Checksum: | 4dcdd89aaeb0f7a4457b50fd535a3b69 |
|
| /// File Name: |
TA07-047A.txt |
Description:
|
Technical Cyber Security Alert TA07-047A - Apple has released Security Update 2007-002 to correct multiple vulnerabilities affecting Apple Mac OS X, Mac OS X Server, and iChat. The most serious of these vulnerabilities may allow a remote attacker to execute arbitrary code. Attackers may take advantage of the less serious vulnerabilities to bypass security restrictions or cause a denial of service.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3570 | | Last Modified: | Feb 16 23:53:40 2007 |
| MD5 Checksum: | 697dd19021c5ab8daf120207241dbc28 |
|
| /// File Name: |
TA07-050A.txt |
Description:
|
Technical Cyber Security Alert TA07-050A - A stack buffer overflow vulnerability in the Sourcefire Snort DCE/RPC preprocessor could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the Snort process.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4803 | | Related CVE(s): | CVE-2006-5276 | | Last Modified: | Feb 22 22:05:45 2007 |
| MD5 Checksum: | 467f0c6bd2bea40dd9e18c82e2debdac |
|
| /// File Name: |
TA07-059A.txt |
Description:
|
Technical Cyber Security Alert TA07-059A - A worm is exploiting a vulnerability in the telnet daemon (in.telnetd) on unpatched Sun Solaris systems. The vulnerability allows the worm (or any attacker) to log in via telnet (23/tcp) with elevated privileges.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5567 | | Related CVE(s): | CVE-2007-0882 | | Last Modified: | Mar 5 23:37:19 2007 |
| MD5 Checksum: | 3c73f4b71f6456ca1c51dfdb2699536c |
|
| /// File Name: |
trendmicro-escalate.txt |
Description:
|
TmComm.sys is exposed through various Trend Micro products allowing for arbitrary code execution.
| | Author: | Ruben Santamarta | | File Size: | 3305 | | Last Modified: | Feb 13 01:01:46 2007 |
| MD5 Checksum: | 725a5887d0ddf9548ab8e3d77c976790 |
|
| /// File Name: |
TSRT-07-01.txt |
Description:
|
Multiple vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaws exist within the StCommon.dll library and are reachable remotely through a DCE/RPC endpoint on TCP port 5168 bound to by the service SpntSvc.exe.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 4470 | | Related CVE(s): | CVE-2007-1070 | | Last Modified: | Feb 23 18:54:34 2007 |
| MD5 Checksum: | 408c2a0760febb98645392abc3554f7e |
|
| /// File Name: |
TSRT-07-02.txt |
Description:
|
These vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaws exist within the eng50.dll library.
| | Author: | Pedram Amini | | Homepage: | http://www.tippingpoint.com/ | | File Size: | 4074 | | Related CVE(s): | CVE-2007-1070 | | Last Modified: | Feb 23 18:56:09 2007 |
| MD5 Checksum: | dc02c0f8ffc95794928a507aa5b120a0 |
|
| /// File Name: |
ublog-inject.txt |
Description:
|
Ublog Reload version 1.0.5 suffers from multiple html injection vulnerabilities.
| | Author: | Doz | | Homepage: | http://www.hackerscenter.com/ | | File Size: | 1406 | | Last Modified: | Feb 5 23:58:23 2007 |
| MD5 Checksum: | ea4329422981a57a2c37faeda06c9630 |
|
| /// File Name: |
USN-415-1.txt |
Description:
|
Ubuntu Security Notice 415-1 - A flaw was discovered in the error handling of GTK's image loading library. Applications opening certain corrupted images could be made to crash, causing a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 15706 | | Related CVE(s): | CVE-2007-0010 | | Last Modified: | Feb 5 23:18:03 2007 |
| MD5 Checksum: | 64f24ebe7615fac59d16b1844dabbe74 |
|
| /// File Name: |
USN-416-1.txt |
Description:
|
Ubuntu Security Notice 416-1 - A large quantity of Linux 2.6 kernel vulnerabilities have been discovered and fixed.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 179577 | | Related CVE(s): | CVE-2006-4572, CVE-2006-4814, CVE-2006-5749, CVE-2006-5753, CVE-2006-5755, CVE-2006-5757, CVE-2006-5823, CVE-2006-6053, CVE-2006-6054, CVE-2006-6056, CVE-2006-6057, CVE-2006-6106 | | Last Modified: | Feb 13 01:11:00 2007 |
| MD5 Checksum: | 1d62b1b3baa4783c7afe8a58fc50fbe3 |
|
| /// File Name: |
USN-417-1.txt |
Description:
|
Ubuntu Security Notice 417-1 - Jeff Trout discovered that the PostgreSQL server did not sufficiently check data types of SQL function arguments in some cases. An authenticated attacker could exploit this to crash the database server or read out arbitrary locations in the server's memory, which could allow retrieving database content the attacker should not be able to see. Jeff Trout reported that the query planner did not verify that a table was still compatible with a previously made query plan. By using ALTER COLUMN TYPE during query execution, an attacker could exploit this to read out arbitrary locations in the server's memory, which could allow retrieving database content the attacker should not be able to see.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 36221 | | Related CVE(s): | CVE-2007-0555, CVE-2007-0556 | | Last Modified: | Feb 6 00:42:54 2007 |
| MD5 Checksum: | 94784312b719d3d0d5857d0ebe86a78f |
|
| /// File Name: |
USN-417-2.txt |
Description:
|
Ubuntu Security Notice 417-2 - USN-417-1 fixed several vulnerabilities in the PostgreSQL server. Unfortunately this update had a regression that caused some valid queries to be aborted with a type error. This update corrects that problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 20277 | | Last Modified: | Feb 8 00:21:45 2007 |
| MD5 Checksum: | 753d542683bf017fe602c6c634855545 |
|
| /// File Name: |
USN-418-1.txt |
Description:
|
Ubuntu Security Notice 418-1 - A flaw was discovered in Bind's DNSSEC validation code. Remote attackers could send a specially crafted DNS query which would cause the Bind server to crash, resulting in a denial of service. Only servers configured to use DNSSEC extensions were vulnerable.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23677 | | Related CVE(s): | CVE-2007-0493, CVE-2007-0494 | | Last Modified: | Feb 6 00:55:06 2007 |
| MD5 Checksum: | 41abac30121fdc265f3ded01646f1ed8 |
|
| /// File Name: |
USN-419-1.txt |
Description:
|
Ubuntu Security Notice 419-1 - A flaw was discovered in Samba's file opening code, which in certain situations could lead to an endless loop, resulting in a denial of service. A format string overflow was discovered in Samba's ACL handling on AFS shares. Remote users with access to an AFS share could create crafted filenames and execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 24484 | | Related CVE(s): | CVE-2007-0452, CVE=2007-0454 | | Last Modified: | Feb 7 23:47:41 2007 |
| MD5 Checksum: | 6d5b2a73065b8da60a0435c4ca92b866 |
|
| /// File Name: |
USN-420-1.txt |
Description:
|
Ubuntu Security Notice 420-1 - Jose Avila III and Robert Tasarz discovered that the KDE HTML library did not correctly parse HTML comments inside the "title" tag. By tricking a Konqueror user into visiting a malicious website, an attacker could bypass cross-site scripting protections.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11571 | | Related CVE(s): | CVE-2007-0537 | | Last Modified: | Feb 7 23:48:24 2007 |
| MD5 Checksum: | 523b365c106d3e751f0f3e1200096356 |
|
| /// File Name: |
USN-421-1.txt |
Description:
|
Ubuntu Security Notice 421-1 - A flaw was discovered in MoinMoin's page name sanitizer which could lead to a cross-site scripting attack. By tricking a user into viewing a crafted MoinMoin page, an attacker could execute arbitrary JavaScript as the current MoinMoin user, possibly exposing the user's authentication information for the domain where MoinMoin was hosted.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 4990 | | Related CVE(s): | CVE-2007-0857 | | Last Modified: | Feb 13 01:50:56 2007 |
| MD5 Checksum: | 44717443417d82dc96c24f9efbfc671c |
|
| /// File Name: |
USN-422-1.txt |
Description:
|
Ubuntu Security Notice 422-1 - Vladimir Nadvornik discovered that the fix for CVE-2006-5456, released in USN-372-1, did not correctly solve the original flaw in PALM image handling. By tricking a user into processing a specially crafted image with an application that uses imagemagick, an attacker could execute arbitrary code with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 15445 | | Related CVE(s): | CVE-2006-5456, CVE-2007-0770 | | Last Modified: | Feb 16 03:03:05 2007 |
| MD5 Checksum: | 83ef0fab7da91635c6a588e992b001c8 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
