Section: .. / 0708-advisories /
| /// File Name: |
SSRT061260.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Operations Manager for Windows (OVOW) with the OpenView Operations (OVO) add on module for OpenView Operations-Business Availability Center (OVO-BAC) integration running Shared Trace Service. The vulnerability could be remotely exploited to execute arbitrary code.
| | Homepage: | http://www.hp.com/ | | File Size: | 6525 | | Last Modified: | Aug 16 10:43:04 2007 |
| MD5 Checksum: | 9e3666ef99dd1e1a4f75453786e8ca18 |
|
| /// File Name: |
HPSBMA02245.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Dashboard running Shared Trace Service. The vulnerability could be remotely exploited to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 6487 | | Last Modified: | Aug 14 06:07:06 2007 |
| MD5 Checksum: | b43e0e124b2bfe3f6f27e6d124487d29 |
|
| /// File Name: |
sa26394.txt |
Description:
|
Secunia Security Advisory - Some vulnerabilities have been reported in HP OpenView products, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26394/ | | File Size: | 6423 | | Last Modified: | Aug 11 23:26:09 2007 |
| MD5 Checksum: | c8ac6286fcc3b0bc12a238d57ad41b95 |
|
| /// File Name: |
SSRT071437.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited remotely to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6231 | | Last Modified: | Aug 8 06:30:48 2007 |
| MD5 Checksum: | 7c65d7d639fe44bf652593ea71456e15 |
|
| /// File Name: |
MDKSA-2007-161.txt |
Description:
|
Mandriva Linux Security Advisory - Maurycy Prodeus found an integer overflow vulnerability in the way various PDF viewers processed PDF files. An attacker could create a malicious PDF file that could cause poppler to crash and possibly execute arbitrary code open a user opening the file.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 6200 | | Related CVE(s): | CVE-2007-3387 | | Last Modified: | Aug 14 19:46:34 2007 |
| MD5 Checksum: | 1ddfb844a0e010bc390fc82cfa167984 |
|
| /// File Name: |
SSRT071432.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running ARPA Transport. The vulnerability could be exploited locally by an authorized user to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6097 | | Last Modified: | Aug 8 06:31:19 2007 |
| MD5 Checksum: | 5c175efff24fa477038a94d061aeebcc |
|
| /// File Name: |
sa26392.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for xfce4-terminal. This fixes a security issue, which can be exploited by malicious people to inject shell commands.
| | Homepage: | http://secunia.com/advisories/26392/ | | File Size: | 6077 | | Last Modified: | Aug 14 19:37:33 2007 |
| MD5 Checksum: | 61c99a626f91d9cb0d3ac2a1145e2e29 |
|
| /// File Name: |
glsa-200708-09.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200708-09 - Mozilla developers fixed several bugs, including an issue with modifying XPCNativeWrappers, a problem with event handlers executing elements outside of the document, and a cross-site scripting (XSS) vulnerability. They also fixed a problem with promiscuous IFRAME access and an XULRunner URL spoofing issue with the wyciwyg:// URI and HTTP 302 redirects. Denials of Service involving corrupted memory were fixed in the browser engine and the JavaScript engine. Finally, another XSS vulnerability caused by a regression in the CVE-2007-3089 patch was fixed. Versions less than 2.0.0.6 are affected.
| | Homepage: | http://security.gentoo.org/ | | File Size: | 5968 | | Related CVE(s): | CVE-2007-3089, CVE-2007-3656, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738, CVE-2007-3844 | | Last Modified: | Aug 15 06:39:21 2007 |
| MD5 Checksum: | 644a817d047e617caf2ae4057ff42c67 |
|
| /// File Name: |
MDKSA-2007-170.txt |
Description:
|
Mandriva Linux Security Advisory - Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5954 | | Related CVE(s): | CVE-2006-4519, CVE-2007-2949, CVE-2007-3741 | | Last Modified: | Aug 24 03:29:59 2007 |
| MD5 Checksum: | 3ee48811019713081fecf6422a0eb892 |
|
| /// File Name: |
multi-vulns.txt |
Description:
|
Windows Calendar (Vista) ICS file handling suffers from a denial of service vulnerability. Toolbar suffers from multiple vulnerabilities. OpenOffice version 2.2 suffers from a denial of service vulnerability when handling multiple file extensions.
| | Author: | Michal Bucko | | Homepage: | http://www.eleytt.com/ | | File Size: | 5729 | | Last Modified: | Aug 8 09:08:45 2007 |
| MD5 Checksum: | 7fab78447f051e2bad6df0cfd775b884 |
|
| /// File Name: |
nullsoftwinamp-dos.txt |
Description:
|
Nullsoft's Winamp Lite versions 5.35 and below suffer from a denial of service condition.
| | Author: | destructor, nait | | File Size: | 5714 | | Last Modified: | Aug 1 02:42:23 2007 |
| MD5 Checksum: | 22aa002b26d39874f531c9e80a058aaa |
|
| /// File Name: |
sa26286.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for tcpdump. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26286/ | | File Size: | 5699 | | Last Modified: | Aug 1 02:35:42 2007 |
| MD5 Checksum: | cd2174e481a10ad4b340230fc4b6cb0f |
|
| /// File Name: |
sa26518.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for rsync. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/26518/ | | File Size: | 5630 | | Last Modified: | Aug 21 22:07:00 2007 |
| MD5 Checksum: | ecd686034d5cab5d871747bf60d8d30b |
|
| /// File Name: |
bypassing-servlet.txt |
Description:
|
OWASP Stinger and Struts servlet input validation filters suffer from a bypass vulnerability.
| | Author: | Meder Kydyraliev | | Homepage: | http://o0o.nu/ | | File Size: | 5613 | | Last Modified: | Aug 14 05:55:50 2007 |
| MD5 Checksum: | 09b2efb70510c9796e3e1b76c2a7ee91 |
|
| /// File Name: |
sa26409.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26409/ | | File Size: | 5585 | | Last Modified: | Aug 15 04:09:30 2007 |
| MD5 Checksum: | 7a49577a575ad4a8b3aacdcc15f37f24 |
|
| /// File Name: |
sa26603.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for tar. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/26603/ | | File Size: | 5541 | | Last Modified: | Aug 30 02:11:25 2007 |
| MD5 Checksum: | f75b9bab1165ab350dfd9e3873e9d87c |
|
| /// File Name: |
HPSBMA02238.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP OpenView Reporter running Shared Trace Service. The vulnerability could be remotely exploited to execute arbitrary code.
| | Homepage: | http://www.hp.com | | File Size: | 5515 | | Last Modified: | Aug 14 06:02:35 2007 |
| MD5 Checksum: | ac288ad97d25f61b550dc2496729119a |
|
| /// File Name: |
USN-497-1.txt |
Description:
|
Ubuntu Security Notice 497-1 - Lasse Kärkkäinen discovered that the Xfce Terminal did not correctly escape shell meta-characters during "Open Link" actions. If a remote attacker tricked a user into opening a specially crafted URI, they could execute arbitrary commands with the user's privileges.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5384 | | Related CVE(s): | CVE-2007-3770 | | Last Modified: | Aug 14 19:53:31 2007 |
| MD5 Checksum: | 13ab212b8888bcc78c6cb3f91ba65e36 |
|
| /// File Name: |
infrant-password.txt |
Description:
|
Infrant ReadyNAS RAIDiator suffers from a weakly created root password vulnerability.
| | Author: | Brian Chapados, Felix Domke | | File Size: | 5377 | | Last Modified: | Aug 14 05:43:11 2007 |
| MD5 Checksum: | 0c74b0a2b708f456bc4a210b5d3d7162 |
|
| /// File Name: |
08.21.07-1.txt |
Description:
|
iDefense Security Advisory 08.21.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Trend Micro Inc.'s ServerProtect anti-virus software could allow attackers to execute arbitrary code with system level privilege. iDefense has confirmed the existence of these vulnerabilities in ServerProtect for Windows 5.58 Build 1176 (Security Patch 3). Previous versions, as well as versions for other platforms, are suspected to be vulnerable.
| | Author: | Code Audit Labs, Jun Mao | | Homepage: | http://www.idefense.com/ | | File Size: | 5291 | | Related CVE(s): | CVE-2007-4218 | | Last Modified: | Aug 22 05:28:51 2007 |
| MD5 Checksum: | d3438206ebffc136ca8bf363a5b397a6 |
|
| /// File Name: |
USN-469-2.txt |
Description:
|
Ubuntu Security Notice 469-2 - USN-469-1 fixed vulnerabilities in the Mozilla Thunderbird email client. The updated Thunderbird version broken compatibility with the Enigmail plugin. This update corrects the problem.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 5236 | | Related CVE(s): | CVE-2007-1558, CVE-2007-2867, CVE-2007-2868 | | Last Modified: | Aug 29 06:41:59 2007 |
| MD5 Checksum: | d6065899ef69d1526f395fc58b659828 |
|
| /// File Name: |
mambocms-fixation.txt |
Description:
|
Mambo CMS version 4.6.2 suffers from a session fixation vulnerability.
| | Author: | Tomaz Bratusa | | Homepage: | http://www.teamintell.com/ | | File Size: | 5215 | | Last Modified: | Aug 8 06:40:21 2007 |
| MD5 Checksum: | 2770f3bf47ebfd85f23883e72a2243c3 |
|
| /// File Name: |
TISA2007-03.txt |
Description:
|
Joomla CMS version 1.0.12 suffers form a session fixation issue in the backend administration interface.
| | Author: | Maldin d.o.o | | Homepage: | http://www.teamintell.com/ | | File Size: | 5196 | | Last Modified: | Aug 12 00:06:24 2007 |
| MD5 Checksum: | b3c340b41285b6914a9a6d12bc98fdd4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
