Section: .. / 0706-advisories /
| /// File Name: |
SSRT071438.txt |
Description:
|
HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
| | Homepage: | http://www.hp.com | | File Size: | 9887 | | Last Modified: | Jun 26 16:05:22 2007 |
| MD5 Checksum: | 48ba65640898843db17d427d04539d5b |
|
| /// File Name: |
SYM07-009.txt |
Description:
|
Symantec Security Advisory - An authentication bypass, remote code execution vulnerability has been identified and resolved in the Symantec Storage Foundation for Windows v5.0 Volume Manager Scheduler Service. Successful exploitation could result in potential compromise of the targeted system.
| | Author: | 3Com/ZDI | | Homepage: | http://www.symantec.com/ | | File Size: | 4155 | | Related CVE(s): | CVE-2007-2279 | | Last Modified: | Jun 7 00:34:05 2007 |
| MD5 Checksum: | 203315689e4b6fbbe1fdb17c63cacb16 |
|
| /// File Name: |
SYM07-011.txt |
Description:
|
Symantec Security Advisory - The administrator password for Symantec Reporting Server could be disclosed after a failed login attempt.
| | Author: | Mikka Korppi | | Homepage: | http://www.symantec.com/ | | File Size: | 4416 | | Related CVE(s): | CVE-2007-3022 | | Last Modified: | Jun 7 02:01:15 2007 |
| MD5 Checksum: | 741b37feba2991f52b7ae27def8b7fe0 |
|
| /// File Name: |
SYM07-012.txt |
Description:
|
Symantec Security Advisory - Files created by a Reporting Server may be accessible to an unauthorized user.
| | Author: | Ertunga Arsal | | Homepage: | http://www.symantec.com/ | | File Size: | 4052 | | Related CVE(s): | CVE-2007-3021 | | Last Modified: | Jun 7 02:06:31 2007 |
| MD5 Checksum: | 39d2e38125f383b441c4affa80337add |
|
| /// File Name: |
TA07-151A.txt |
Description:
|
Technical Cyber Security Alert TA07-151A - The Mozilla web browser and derived products contain several vulnerabilities, the most severe of which could allow a remote attacker to execute arbitrary code on an affected system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3962 | | Last Modified: | Jun 6 18:35:44 2007 |
| MD5 Checksum: | 41d2ea34cf7de2fee6e21671e3c26969 |
|
| /// File Name: |
TA07-163A.txt |
Description:
|
Technical Cyber Security Alert TA07-163A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, Windows Secure Channel, Internet Explorer, Win32 API, Windows Mail and Outlook Express. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4104 | | Last Modified: | Jun 12 21:25:48 2007 |
| MD5 Checksum: | e1b9b39be2763f6b1f9ee8392e97d7be |
|
| /// File Name: |
TA07-177A.txt |
Description:
|
Technical Cyber Security Alert TA07-177A - The MIT Kerberos 5 implementation contains several vulnerabilities. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 4551 | | Last Modified: | Jun 29 00:30:07 2007 |
| MD5 Checksum: | ca9fd5b0f8f4670723d93824b634d7f2 |
|
| /// File Name: |
TPTI-07-08.txt |
Description:
|
This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists in the functionality exposed by the Storage Foundation for Windows Scheduler Service, VxSchedService.exe, which listens by default on TCP port 4888. During normal use an administrator may add schedules to be run using the management console which requires authentication. However, if an attacker connects directly to the scheduler service and issues the commands, there exists no validation of credentials.
| | Author: | Aaron Portnoy | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2550 | | Related CVE(s): | CVE-2007-2279 | | Last Modified: | Jun 7 01:11:53 2007 |
| MD5 Checksum: | 5b36938a55a4ce65bf9cd36450d3f4b7 |
|
| /// File Name: |
TPTI-07-09.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Business Objects Crystal Reports. Exploitation requires the target to visit a malicious web site. This specific flaw exists within the ActiveX control with CLSID 85A4A99C-8C3D-499E-A386-E0743DFF8FB7. Specifying large values to two specific functions available in this control results in an exploitable stack based buffer overflow.
| | Author: | Pedram Amini | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2331 | | Related CVE(s): | CVE-2007-2419 | | Last Modified: | Jun 7 01:13:24 2007 |
| MD5 Checksum: | a440dfaa362613690d1d0536cd4c4e4f |
|
| /// File Name: |
TPTI-07-10.txt |
Description:
|
A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of software utilizing Centennial Software XferWan. Authentication is not required to exploit this vulnerability. The specific flaw exists during the parsing of overly long requests to the XferWAN process. When logging requests, user-supplied data is copied to the stack resulting in an exploitable buffer overflow condition.
| | Author: | Cody Pierce | | Homepage: | http://dvlabs.tippingpoint.com/ | | File Size: | 2761 | | Related CVE(s): | CVE-2007-2514 | | Last Modified: | Jun 7 01:15:19 2007 |
| MD5 Checksum: | 2c7fbf4a0c55259332aff7d6cbcfef25 |
|
| /// File Name: |
USN-439-2.txt |
Description:
|
Ubuntu Security Notice 439-2 - USN-439-1 fixed a vulnerability in file. The original fix did not fully solve the problem. This update provides a more complete solution.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 11324 | | Related CVE(s): | CVE-2007-2799 | | Last Modified: | Jun 12 20:33:21 2007 |
| MD5 Checksum: | 51dc7dbf35aca69fca878435f43d7e3b |
|
| /// File Name: |
USN-469-1.txt |
Description:
|
Ubuntu Security Notice 469-1 - A weakness in APOP authentication has been discovered in Mozilla Thunderbird. Additionally, various flaws were discovered in the layout and JavaScript engines.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 12807 | | Related CVE(s): | CVE-2007-1558, CVE-2007-2867, CVE-2007-2868 | | Last Modified: | Jun 7 02:51:49 2007 |
| MD5 Checksum: | d97fb26233a62fc426b6e154e5488c4c |
|
| /// File Name: |
USN-470-1.txt |
Description:
|
Ubuntu Security Notice 470-1 - Ilja van Sprundel discovered that Bluetooth setsockopt calls could leak kernel memory contents via an uninitialized stack buffer. A local attacker could exploit this flaw to view sensitive kernel information. The GEODE-AES driver did not correctly initialize its encryption key. Any data encrypted using this type of device would be easily compromised. The random number generator was hashing a subset of the available entropy, leading to slightly less random numbers. Additionally, systems without an entropy source would be seeded with the same inputs at boot time, leading to a repeatable series of random numbers.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 49897 | | Related CVE(s): | CVE-2007-1353, CVE-2007-2451, CVE-2007-2453 | | Last Modified: | Jun 10 20:30:28 2007 |
| MD5 Checksum: | aa14eca65f912b2d5e65561a17a896a3 |
|
| /// File Name: |
USN-471-1.txt |
Description:
|
Ubuntu Security Notice 471-1 - Victor Stinner discovered that libexif did not correctly validate the size of some EXIF header fields. By tricking a user into opening an image with specially crafted EXIF headers, a remote attacker could cause the application using libexif to crash, resulting in a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7052 | | Related CVE(s): | CVE-2007-2645 | | Last Modified: | Jun 12 20:34:59 2007 |
| MD5 Checksum: | 711a4b74a75ef47cebf59215d02f83ca |
|
| /// File Name: |
USN-472-1.txt |
Description:
|
Ubuntu Security Notice 472-1 - It was discovered that libpng did not correctly handle corrupted CRC in grayscale PNG images. By tricking a user into opening a specially crafted PNG, a remote attacker could cause the application using libpng to crash, resulting in a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9764 | | Related CVE(s): | CVE-2007-2445 | | Last Modified: | Jun 12 20:51:14 2007 |
| MD5 Checksum: | df720d8f0a308760b529d2c7ceb14964 |
|
| /// File Name: |
USN-473-1.txt |
Description:
|
Ubuntu Security Notice 473-1 - A buffer overflow was discovered in libgd2's font renderer. By tricking an application using libgd2 into rendering a specially crafted string with a JIS encoded font, a remote attacker could read heap memory or crash the application, leading to a denial of service. Xavier Roche discovered that libgd2 did not correctly validate PNG callback results. If an application were tricked into processing a specially crafted PNG image, it would monopolize CPU resources. Since libgd2 is often used in PHP and Perl web applications, this could lead to a remote denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13845 | | Related CVE(s): | CVE-2007-0455, CVE-2007-2756 | | Last Modified: | Jun 12 20:52:55 2007 |
| MD5 Checksum: | 8c53c90a1f9981b62999f9c72d19ae6e |
|
| /// File Name: |
USN-474-1.txt |
Description:
|
Ubuntu Security Notice 474-1 - It was discovered that xscreensaver did not correctly validate the return values from network authentication systems such as LDAP or NIS. A local attacker could bypass a locked screen if they were able to interrupt network connectivity.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 13296 | | Related CVE(s): | CVE-2007-1859 | | Last Modified: | Jun 14 00:35:41 2007 |
| MD5 Checksum: | d092c2c16d99d6ffa6ec16b321388785 |
|
| /// File Name: |
USN-475-1.txt |
Description:
|
Ubuntu Security Notice 475-1 - Philip Van Hoof discovered that the IMAP client in Evolution did not correctly verify the SEQUENCE value. A malicious or spoofed server could exploit this to execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 48613 | | Related CVE(s): | CVE-2007-3257 | | Last Modified: | Jun 26 16:43:45 2007 |
| MD5 Checksum: | 0d535d8beab5c8d5730b82bfe3de4ca2 |
|
| /// File Name: |
USN-476-1.txt |
Description:
|
Ubuntu Security Notice 476-1 - Fabio Massimo Di Nitto discovered that cman did not correctly validate the size of client messages. A local user could send a specially crafted message and execute arbitrary code with cluster manager privileges or crash the manager, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 9499 | | Last Modified: | Jun 26 17:37:30 2007 |
| MD5 Checksum: | b53d6f8705555fcf73e5395913d15c4b |
|
| /// File Name: |
USN-477-1.txt |
Description:
|
Ubuntu Security Notice 477-1 - Wei Wang discovered that the krb5 RPC library did not correctly handle certain error conditions. A remote attacker could cause kadmind to free an uninitialized pointer, leading to a denial of service or possibly execution of arbitrary code with root privileges. Wei Wang discovered that the krb5 RPC library did not correctly check the size of certain communications. A remote attacker could send a specially crafted request to kadmind and execute arbitrary code with root privileges. It was discovered that the kadmind service could be made to overflow its stack. A remote attacker could send a specially crafted request and execute arbitrary code with root privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 23997 | | Related CVE(s): | CVE-2007-2442, CVE-2007-2443, CVE-2007-2798 | | Last Modified: | Jun 29 00:41:40 2007 |
| MD5 Checksum: | 688105ec1e7c951d3c3189647680931f |
|
| /// File Name: |
USN-478-1.txt |
Description:
|
Ubuntu Security Notice 478-1 - Sean Larsson discovered that libexif did not correctly verify the size of EXIF components. By tricking a user into opening an image with specially crafted EXIF headers, a remote attacker could cause the application using libexif to execute arbitrary code with user privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 7044 | | Related CVE(s): | CVE-2006-4168 | | Last Modified: | Jun 29 00:42:44 2007 |
| MD5 Checksum: | b56772df3eb4fa4f7ae9133ddcf880f3 |
|
| /// File Name: |
USN-479-1.txt |
Description:
|
Ubuntu Security Notice 479-1 - Multiple flaws in the MadWifi driver were discovered that could lead to a system crash. A physically near-by attacker could generate specially crafted wireless network traffic and cause a denial of service. A flaw was discovered in the MadWifi driver that would allow unencrypted network traffic to be sent prior to finishing WPA authentication. A physically near-by attacker could capture this, leading to a loss of privacy, denial of service, or network spoofing. A flaw was discovered in the MadWifi driver's ioctl handling. A local attacker could read kernel memory, or crash the system, leading to a denial of service.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 33822 | | Related CVE(s): | CVE-2006-7177, CVE-2006-7178, CVE-2006-7179, CVE-2007-2829, CVE-2007-2830, CVE-2006-7180, CVE-2007-2831 | | Last Modified: | Jun 29 22:45:34 2007 |
| MD5 Checksum: | 7f1f06c23808577845fca734298e7ccc |
|
| /// File Name: |
vlc086b-overflow.txt |
Description:
|
VLC 0.8.6.b is vulnerable to a format string attack in the parsing of Vorbis comments in Ogg Vorbis and Ogg Theora files, CDDA data or SAP/SDP service discovery messages. Additionally, there are two errors in the handling of wav files, one a denial of service due to an uninitialized variable, and one integer overflow in sampling frequency calculations.
| | Homepage: | http://www.isecpartners.com/ | | File Size: | 1831 | | Last Modified: | Jun 26 15:59:15 2007 |
| MD5 Checksum: | fd2898dba3f967890e3be5702c5a427f |
|
| /// File Name: |
winpt-spoof.txt |
Description:
|
WinPT suffers from a user ID spoofing vulnerability.
| | Author: | nnposter | | File Size: | 2285 | | Last Modified: | Jun 12 20:28:05 2007 |
| MD5 Checksum: | b585bb3e70a3ea95cfeeb1821bf0e026 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
