Debian Security Advisory 1834-2 - The previous update caused a regression for apache2 in Debian 4.0 "etch". Using mod_deflate together with mod_php could cause segfaults when a client aborts a connection. This update corrects this flaw. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. This issue did not affect Debian 4.0 "etch". A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. A similar flaw related to HEAD requests for compressed content was also fixed.
9ca2a901ffd9844bf8fc9e3f696d6691HP Security Bulletin - Potential security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service (DoS) or to execute arbitrary code.
de8d458838985b6d57b4a33cd148e5d4Cisco Security Advisory - Recent versions of Cisco IOS Software support RFC4893 ("BGP Support for Four-octet AS Number Space") and contain two remote denial of service (DoS) vulnerabilities when handling specific Border Gateway Protocol (BGP) updates. These vulnerabilities affect only devices running Cisco IOS Software with support for four-octet AS number space (here after referred to as 4-byte AS number) and BGP routing configured. The first vulnerability could cause an affected device to reload when processing a BGP update that contains autonomous system (AS) path segments made up of more than one thousand autonomous systems. The second vulnerability could cause an affected device to reload when the affected device processes a malformed BGP update that has been crafted to trigger the issue.
60221c86e9e529b6fdbbbb617369cc1aMandriva Linux Security Advisory 2009-181 - The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message, as exploited in the wild in July 2009. This update provides fixes for this vulnerability.
f818f4536c291da5a138b1639b467642Mandriva Linux Security Advisory 2009-180 - Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a.xbm file. This update provides fixes for this vulnerability.
ebd169656fa65b87ca8bc2ca60f79420Mandriva Linux Security Advisory 2009-179 - Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information. This update provides fixes for this vulnerability.
2333069db481ce74865ad8ee103548edMandriva Linux Security Advisory 2009-178 - Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses. Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses. This update provides fixes for these vulnerabilities.
d3506e2fc058915aece39932a401a492Secunia Security Advisory - Moudi has discovered some vulnerabilities in Miniweb, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
8c37a47367cf7869759cf57e4f740329Secunia Security Advisory - Moudi has reported a vulnerability in x10 Adult Media Script, which can be exploited by malicious people to conduct cross-site scripting attacks.
591fa83767296fc44b7b5b1a8cd4dec9Secunia Security Advisory - A vulnerability has been reported in Model Agency Manager PRO, which can be exploited by malicious people to conduct SQL injection attacks.
de718fa5bf81e4b1316637588c6e278fSecunia Security Advisory - Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
e402124d1c8593187202da0375d6de28Secunia Security Advisory - Some vulnerabilities have been reported in WebStatCaffe, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
6df0df484ae71e51ad1a144a16a7cd2aSecunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious users to cause a DoS (Denial of Service).
ddf61578eaaa68082cdc0f673545c461Secunia Security Advisory - Sun has acknowledged a vulnerability in named included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
ae9e8f5a4eb47f25f036f810a43f8148Secunia Security Advisory - rPath has issued an update for bind and bind-utils. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
83889f3088fabe1a516c34d60bd10ebdSecunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
2ec3ca441ed0e5caca469fdc5cc9be5dSecunia Security Advisory - Aung Khant has reported some vulnerabilities in TinyBrowser, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
c6262eab4d8369be8b6d29c2a907a967Secunia Security Advisory - NetBSD has issued an update for BIND. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
c88babb9c63b62100427110171edd7b7Secunia Security Advisory - A vulnerability has been reported in NetBSD, which can be exploited by malicious people to cause a DoS (Denial of Service).
fc2abcf1ef9f7840db6b1e7f6f9cb2edSecunia Security Advisory - A vulnerability has been reported in Firebird, which can be exploited by malicious people to cause a DoS (Denial of Service).
0ade383dfb14e74746ff56ab5f782ec2Secunia Security Advisory - Fedora has issued an update for kdelibs3. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
3c640b42f5221d69f97588cd8b502855Secunia Security Advisory - Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
a17551bf8b0671814e5101cb1c0a5eddSecunia Security Advisory - Some vulnerabilities have been reported in Adobe Shockwave Player, which can be exploited by malicious people to potentially bypass security features, gain knowledge of sensitive information, or compromise a user's system.
249ad4aad4d0c61c2f395b096f08eca3Secunia Security Advisory - A vulnerability has been reported in HP ProLiant Onboard Administrator Powered By LO100i (formerly Lights-Out 100 Remote Management), which can be exploited by malicious people to cause a DoS (Denial of Service).
2ebb8d657cc44b576136c47abe566df0Secunia Security Advisory - FreeBSD has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
a8689eb6721751b57f583f7a6864e07a
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed