Section: .. / Last 100 Advisory Files /
| /// File Name: | USN-706-1.txt | Description:
| Ubuntu Security Notice USN-706-1 - It was discovered that Bind did not properly perform certificate verification. When DNSSEC with DSA certificates are in use, a remote attacker could exploit this to bypass certificate validation to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 37624 | | Related CVE(s): | CVE-2009-0025 | | Last Modified: | Jan 8 19:59:32 2009 | | MD5 Checksum: | 506056264ebfe80a7eaba22a136f9c66 |
|
| /// File Name: | AST-2009-001.txt | Description:
| Asterisk Project Security Advisory - IAX2 provides a different response during authentication when a user does not exist, as compared to when the password is merely wrong. This allows an attacker to scan a host to find specific users on which to concentrate password cracking attempts. | | Author: | Tilghman Lesher | | Homepage: | http://www.asterisk.org/security | | File Size: | 10478 | | Related CVE(s): | CVE-2009-0041 | | Last Modified: | Jan 8 19:27:39 2009 | | MD5 Checksum: | 51f47441fcd4678b7c237afe816ab371 |
|
| /// File Name: | USN-705-1.txt | Description:
| Ubuntu Security Notice USN-705-1 - It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 12500 | | Related CVE(s): | CVE-2009-0021 | | Last Modified: | Jan 8 17:27:06 2009 | | MD5 Checksum: | 14a35d7392f9fb849678e1dc2fb2c6f8 |
|
| /// File Name: | FreeBSD-SA-09-02.openssl.txt | Description:
| FreeBSD Security Advisory - The EVP_VerifyFinal() function from OpenSSL is used to determine if a digital signature is valid. The SSL layer in OpenSSL uses EVP_VerifyFinal(), which in several places checks the return value incorrectly and treats verification errors as a good signature. This is only a problem for DSA and ECDSA keys. | | Homepage: | http://security.freebsd.org/ | | File Size: | 9519 | | Related CVE(s): | CVE-2008-5077 | | Last Modified: | Jan 7 17:43:21 2009 | | MD5 Checksum: | 2328586310ef4612f8f258d3c8e4f921 |
|
| /// File Name: | USN-704-1.txt | Description:
| Ubuntu Security Notice USN-704-1 - It was discovered that OpenSSL did not properly perform signature verification on DSA and ECDSA keys. If user or automated system connected to a malicious server or a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 19482 | | Related CVE(s): | CVE-2008-5077 | | Last Modified: | Jan 7 17:42:50 2009 | | MD5 Checksum: | 077790a3f249b28578aa11ebed3c7d63 |
|
| /// File Name: | CA20090107-01.txt | Description:
| CA Service Metric Analysis and CA Service Level Management contain a vulnerability that can allow a remote attacker to execute arbitrary commands. CA has issued patches to address the vulnerability. The vulnerability is due to insufficient access restrictions associated with the smmsnmpd service. A remote attacker can exploit this vulnerability to execute arbitrary commands in the context of the service. Affected products include CA Service Level Management 3.5, CA Service Metric Analysis r11.0, CA Service Metric Analysis r11.1, and CA Service Metric Analysis r11.1 SP1. | | Author: | Ken Williams | | Homepage: | http://www3.ca.com/ | | File Size: | 4398 | | Related CVE(s): | CVE-2009-0043 | | Last Modified: | Jan 7 17:39:25 2009 | | MD5 Checksum: | 29eac4fb82df696ee49b0366799f009d |
|
| /// File Name: | dsa-1697-1.txt | Description:
| Debian Security Advisory 1697-1 - Several remote vulnerabilities have been discovered in Iceape an unbranded version of the Seamonkey internet suite. | | Homepage: | http://www.debian.org/security | | File Size: | 23670 | | Related CVE(s): | CVE-2008-0016, CVE-2008-0304, CVE-2008-2785, CVE-2008-2798, CVE-2008-2799, CVE-2008-2800, CVE-2008-2801, CVE-2008-2802, CVE-2008-2803, CVE-2008-2805, CVE-2008-2807, CVE-2008-2808, CVE-2008-2809, CVE-2008-2810, CVE-2008-2811, CVE-2008-2933, CVE-2008-3835, CVE-2008-3836, CVE-2008-3837, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060, CVE-2008-4061, CVE-2008-4062, CVE-2008-4065, CVE-2008-4067, CVE-2008-4068, CVE-2008-4069, CVE-2008-4070, CVE-2008-5012, CVE-2008-5013, CVE-2008-5014, CVE-2008-5017, CVE-2008-0017, CVE-2008-5021, CVE-2008-5022, CVE-2008-5500, CVE-2008-5503, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5511, CVE-2008-5512 | | Last Modified: | Jan 7 17:38:42 2009 | | MD5 Checksum: | ea76c5b29f1d0319d27fce26bab370e7 |
|
| /// File Name: | dsa-1696-1.txt | Description:
| Debian Security Advisory 1696-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. | | Homepage: | http://www.debian.org/security | | File Size: | 21741 | | Related CVE(s): | CVE-2008-0016, CVE-2008-1380, CVE-2008-3835, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060, CVE-2008-4061, CVE-2008-4062, CVE-2008-4065, CVE-2008-4067, CVE-2008-4068, CVE-2008-4070, CVE-2008-5012, CVE-2008-5014, CVE-2008-5017, CVE-2008-5018, CVE-2008-5021, CVE-2008-5022, CVE-2008-5024, CVE-2008-5500, CVE-2008-5503, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5511, CVE-2008-5512 | | Last Modified: | Jan 7 17:37:26 2009 | | MD5 Checksum: | 210d8ff45d55800a263974339b0aa0df |
|
| /// File Name: | cisco-sa-20090107-gss.txt | Description:
| Cisco Security Advisory - The Cisco Application Control Engine Global Site Selector (GSS) contains a vulnerability when processing specific Domain Name System (DNS) requests that may lead to a crash of the DNS service on the GSS. | | Homepage: | http://www.cisco.com/ | | File Size: | 13432 | | Related CVE(s): | CVE-2008-3819 | | Last Modified: | Jan 7 15:24:21 2009 | | MD5 Checksum: | 111832b44a96a01d091ace59ff081afd |
|
| /// File Name: | secadv_20090107.txt | Description:
| Several functions inside OpenSSL incorrectly checked the result aftercalling the EVP_VerifyFinal function, allowing a malformed signatureto be treated as a good signature rather than as an error. This issueaffected the signature checks on DSA and ECDSA keys used withSSL/TLS.One way to exploit this flaw would be for a remote attacker who is incontrol of a malicious server or who can use a 'man in the middle'attack to present a malformed SSL/TLS signature from a certificate chainto a vulnerable client, bypassing validation. | | Homepage: | http://www.openssl.org/ | | Related File: | oCERT-2008-016.txt | | File Size: | 7906 | | Related CVE(s): | CVE-2008-5077 | | Last Modified: | Jan 7 15:21:31 2009 | | MD5 Checksum: | 5ff1f702db3b6ad0f391aaa8dc65fdbb |
|
| /// File Name: | oCERT-2008-016.txt | Description:
| Several functions inside the OpenSSL library incorrectly check the result after calling the EVP_VerifyFinal function. This bug allows a malformed signature to be treated as a good signature rather than as an error. This issue affects the signature checks on DSA and ECDSA keys used with SSL/TLS. The flaw may be exploited by a malicious server or a man-in-the-middle attack that presents a malformed SSL/TLS signature from a certificate chain to a vulnerable client, bypassing validation. | | Author: | Will Drewry | | Homepage: | http://www.ocert.org/ | | File Size: | 3545 | | Related CVE(s): | CVE-2008-5077, CVE-2008-0021, CVE-2008-0025 | | Last Modified: | Jan 7 15:17:20 2009 | | MD5 Checksum: | be0e81721da50c8f104a4d26e99d8d02 |
|
| /// File Name: | msienull-dos.txt | Description:
| A NULL pointer read vulnerability exists in Microsoft Internet Explorer versions 6.0, 7.0, and 8.0 Beta. | | Author: | SkyLined | | File Size: | 330 | | Last Modified: | Jan 7 15:10:42 2009 | | MD5 Checksum: | f739f49d13fa6d3d74c4fc6650a3ff73 |
|
| /// File Name: | secunia-sapgui.txt | Description:
| Secunia Research has discovered a vulnerability in SAP GUI, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to a boundary error in the included TabOne ActiveX control (sizerone.ocx) when copying tab captions. This can be exploited to cause a heap-based buffer overflow by e.g. adding multiple tabs via the "AddTab()" method. Successful exploitation may allow execution of arbitrary code. SAP GUI 6.40 Patch 29 and SAP GUI 7.10 are both affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4916 | | Related CVE(s): | CVE-2008-4827 | | Last Modified: | Jan 7 15:02:45 2009 | | MD5 Checksum: | f6d854e9387019c1663440299fd11826 |
|
| /// File Name: | secunia-tsc2.txt | Description:
| Secunia Research has discovered a vulnerability in TSC2 Help Desk, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to a boundary error in the included CTab ActiveX control (c1sizer.ocx) when copying tab captions. This can be exploited to cause a heap-based buffer overflow by e.g. adding multiple tabs via the "AddTab()" method. Successful exploitation may allow execution of arbitrary code. TSC2 Help Desk version 4.1.8 is affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 4185 | | Related CVE(s): | CVE-2008-4827 | | Last Modified: | Jan 7 15:01:12 2009 | | MD5 Checksum: | 8e5f09145f01b0c4f776688b090702fa |
|
| /// File Name: | secunia-componentone.txt | Description:
| Secunia Research has discovered a vulnerability in ComponentOne SizerOne, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused by a boundary error in the included Tab ActiveX control (c1sizer.ocx) when copying tab captions. This can be exploited to cause a heap-based buffer overflow by e.g. adding tabs with overly long captions via the "AddTab()" method. Successful exploitation may allow execution of arbitrary code. ComponentOne SizerOne version 8.0.20081.140 is affected. | | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 5118 | | Related CVE(s): | CVE-2008-4827 | | Last Modified: | Jan 7 14:59:14 2009 | | MD5 Checksum: | 8ad3f227012766eb7fe25b07b3b6a9ec |
|
| /// File Name: | secunia-hpopenview.txt | Description:
| Secunia Research has discovered vulnerabilities in HP OpenView Network Node Manager, which can be exploited by malicious people to compromise a vulnerable system. HP OpenView Network Node Manager 7.51 with NNM_01168 is affected. | | Author: | JJ Reyes | | Homepage: | http://secunia.com/ | | File Size: | 6405 | | Related CVE(s): | CVE-2008-0067 | | Last Modified: | Jan 7 14:23:56 2009 | | MD5 Checksum: | 9c680d6e547825ea20cdc34d517ebe8b |
|
| /// File Name: | dsa-1694-2.txt | Description:
| Debian Security Advisory 1694-2 - The xterm update in DSA-1694-1 disabled font changing as a precaution. However, users reported that they need this feature. The update in this DSA makes font shifting through escape sequences configurable, using a new allowFontOps X resource, and unconditionally enables font changing through keyboard sequences. | | Homepage: | http://www.debian.org/security | | File Size: | 4950 | | Related CVE(s): | CVE-2008-2383 | | Last Modified: | Jan 6 20:59:43 2009 | | MD5 Checksum: | 63fc5c0e5f6a119a647f787b6a6b68e9 |
|
| /// File Name: | USN-701-2.txt | Description:
| Ubuntu Security Notice USN-701-2 - Several flaws were discovered in the Thunderbird browser engine. Boris Zbarsky discovered that the same-origin check in Thunderbird could be bypassed by utilizing XBL-bindings. Marius Schilder discovered that Thunderbird did not properly handle redirects to an outside domain when an XMLHttpRequest was made to a same-origin resource. Chris Evans discovered that Thunderbird did not properly protect a user's data when accessing a same-domain Javascript URL that is redirected to an unparsable Javascript off-site resource. Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Thunderbird did not properly parse URLs when processing certain control characters. Several flaws were discovered in the Javascript engine. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 6686 | | Related CVE(s): | CVE-2008-5500, CVE-2008-5503, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5511, CVE-2008-5512 | | Last Modified: | Jan 6 20:54:59 2009 | | MD5 Checksum: | 8ee27bf646d62f2d7d36ea846501908d |
|
| /// File Name: | USN-701-1.txt | Description:
| Ubuntu Security Notice USN-701-1 - Several flaws were discovered in the Thunderbird browser engine. Boris Zbarsky discovered that the same-origin check in Thunderbird could be bypassed by utilizing XBL-bindings. Marius Schilder discovered that Thunderbird did not properly handle redirects to an outside domain when an XMLHttpRequest was made to a same-origin resource. Chris Evans discovered that Thunderbird did not properly protect a user's data when accessing a same-domain Javascript URL that is redirected to an unparsable Javascript off-site resource. Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Thunderbird did not properly parse URLs when processing certain control characters. Kojima Hajime discovered that Thunderbird did not properly handle an escaped null character. An attacker may be able to exploit this flaw to bypass script sanitization. Several flaws were discovered in the Javascript engine. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 14473 | | Related CVE(s): | CVE-2008-5500, CVE-2008-5503, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512 | | Last Modified: | Jan 6 20:51:28 2009 | | MD5 Checksum: | b633c149416e4d009e56252ffe61c45f |
|
| /// File Name: | USN-703-1.txt | Description:
| Ubuntu Security Notice USN-703-1 - Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 6861 | | Related CVE(s): | CVE-2006-7236, CVE-2008-2383 | | Last Modified: | Jan 5 21:02:54 2009 | | MD5 Checksum: | 9352865d1436dc3218db4a78e9ce1d04 |
|
| /// File Name: | USN-702-1.txt | Description:
| Ubuntu Security Notice USN-702-1 - Gunter Hockel discovered that Samba with registry shares enabled did not properly validate share names. An authenticated user could gain access to the root filesystem by using an older version of smbclient and specifying an empty string as a share name. This is only an issue if registry shares are enabled on the server by setting "registry shares = yes", "include = registry", or "config backend = registry", which is not the default. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 10900 | | Related CVE(s): | CVE-2009-0022 | | Last Modified: | Jan 5 21:00:41 2009 | | MD5 Checksum: | 16c06750eef20e3808874ed0c796b230 |
|
| /// File Name: | walusoft-traversal.txt | Description:
| Walusoft TFTPServer2000 version 3.6.1 suffers from a directory traversal vulnerability. | | Author: | princeofnigeria | | File Size: | 2845 | | Last Modified: | Jan 5 20:46:20 2009 | | MD5 Checksum: | 64146b5fc1a21ec677636cddac2a0ac7 |
|
| /// File Name: | dsa-1695-1.txt | Description:
| Debian Security Advisory 1695-1 - The regular expression engine of Ruby, a scripting language, contains a memory leak which can be triggered remotely under certain circumstances, leading to a denial of service condition (CVE-2008-3443). | | Homepage: | http://www.debian.org/security | | File Size: | 36870 | | Related CVE(s): | CVE-2008-3443 | | Last Modified: | Jan 2 19:45:45 2009 | | MD5 Checksum: | a8ee321a95a6272a724768a1fe3bed2e |
|
| /// File Name: | dsa-1694-1.txt | Description:
| Debian Security Advisory 1694-1 - Paul Szabo discovered that xterm, a terminal emulator for the X Window System, places arbitrary characters into the input buffer when displaying certain crafted escape sequences (CVE-2008-2383). | | Homepage: | http://www.debian.org/security | | File Size: | 5253 | | Related CVE(s): | CVE-2008-2383 | | Last Modified: | Jan 2 19:45:14 2009 | | MD5 Checksum: | aa67e5228c1b8bb3bcc0a928a6a27de9 |
|
| /// File Name: | nokia560-dos.txt | Description:
| Nokia S60 phones suffer from a SMS/MMS "curse of silence" denial of service vulnerability when having received a message with an email address over 32 characters. | | Author: | Tobias Engel | | Homepage: | https://berlin.ccc.de/ | | File Size: | 6994 | | Last Modified: | Jan 1 13:56:22 2009 | | MD5 Checksum: | 8838f9316f4df43274436902525b8d2b |
|
| /// File Name: | MDVSA-2008-246.txt | Description:
| Mandriva Linux Security Advisory 2008-246 - Some vulnerabilities were discovered and corrected in the Linux kernel. These include buffer overflow and denial of service vulnerabilities. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 44153 | | Related CVE(s): | CVE-2008-5033, CVE-2008-5025 | | Last Modified: | Dec 30 22:41:38 2008 | | MD5 Checksum: | 88e7a51465ebb1e8366af1c351f07a6e |
|
| /// File Name: | dsa-1692-1.txt | Description:
| Debian Security Advisory 1692-1 - It was discovered that php-xajax, a library to develop Ajax applications, did not sufficiently sanitise URLs, which allows attackers to perform cross-site scripting attacks by using malicious URLs. | | Homepage: | http://www.debian.org/security | | File Size: | 3156 | | Related CVE(s): | CVE-2007-2739 | | Last Modified: | Dec 30 20:50:37 2008 | | MD5 Checksum: | f41ed7a4666dd0bffd2f68570c5bb697 |
|
| /// File Name: | phpgd-leak.txt | Description:
| The PHP GD library suffers from an imageRotate() function information leak vulnerability. | | Author: | Hamid Ebadi | | Homepage: | http://www.bugtraq.ir/ | | File Size: | 14482 | | Related CVE(s): | CVE-2008-5498 | | Last Modified: | Dec 30 19:25:34 2008 | | MD5 Checksum: | 3b10310b2b3238b9e232348dcde9ee11 |
|
| /// File Name: | USN-700-1.txt | Description:
| Ubuntu Security Notice USN-700-1 - Jonathan Smith discovered that the Archive::Tar Perl module did not correctly handle symlinks when extracting archives. If a user or automated system were tricked into opening a specially crafted tar file, a remote attacker could over-write arbitrary files. Tavis Ormandy and Will Drewry discovered that Perl did not correctly handle certain utf8 characters in regular expressions. If a user or automated system were tricked into using a specially crafted expression, a remote attacker could crash the application, leading to a denial of service. Ubuntu 8.10 was not affected by this issue. A race condition was discovered in the File::Path Perl module's rmtree function. If a local attacker successfully raced another user's call of rmtree, they could create arbitrary setuid binaries. Ubuntu 6.06 and 8.10 were not affected by this issue. A race condition was discovered in the File::Path Perl module's rmtree function. If a local attacker successfully raced another user's call of rmtree, they could delete arbitrary files. Ubuntu 6.06 was not affected by this issue. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 26194 | | Related CVE(s): | CVE-2007-4829, CVE-2008-1927, CVE-2008-5302, CVE-2008-5303 | | Last Modified: | Dec 30 18:38:44 2008 | | MD5 Checksum: | 65a3adf90302db633e4eb6ec2740caba |
|
| /// File Name: | glsa-200812-23.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-23 - A buffer overflow vulnerability has been discovered in Imlib2. Julien Danjou reported a pointer arithmetic error and a heap-based buffer overflow within the load() function of the XPM image loader. Versions less than 1.4.2-r1 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2608 | | Related CVE(s): | CVE-2008-5187 | | Last Modified: | Dec 30 18:37:36 2008 | | MD5 Checksum: | f36f76defa7313385c3af139d9d1c8ac |
|
| /// File Name: | glsa-200812-22.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-22 - An insecure temporary file usage has been reported in Ampache, allowing for symlink attacks. Dmitry E. Oboukhov reported an insecure temporary file usage within the gather-messages.sh script. Versions less than 3.4.3 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2507 | | Related CVE(s): | CVE-2008-3929 | | Last Modified: | Dec 30 18:37:09 2008 | | MD5 Checksum: | 6fe9149cb6c50424e826a2b986308f87 |
|
| /// File Name: | glsa-200812-21.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-21 - Two vulnerabilities in ClamAV may allow for the remote execution of arbitrary code or a Denial of Service. Moritz Jodeit reported an off-by-one error within the get_unicode_name() function in libclamav/vba_extract.c when processing VBA project files (CVE-2008-5050). Ilja van Sprundel reported an infinite recursion error within the cli_check_jpeg_exploit() function in libclamav/special.c when processing JPEG files (CVE-2008-5314). Versions less than 0.94.2 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 2959 | | Related CVE(s): | CVE-2008-5050, CVE-2008-5314 | | Last Modified: | Dec 30 18:36:35 2008 | | MD5 Checksum: | 726a95c30e8603b9e4641b9ad06dadfa |
|
| /// File Name: | USN-677-2.txt | Description:
| Ubuntu Security Notice USN-677-2 - USN-677-1 fixed vulnerabilities in OpenOffice.org. The changes required that openoffice.org-l10n also be updated for the new version in Ubuntu 8.04 LTS. Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker might be able to execute arbitrary code with user privileges. Dmitry E. Oboukhov discovered that senddoc, as included in OpenOffice.org, created temporary files in an insecure way. Local users could exploit a race condition to create or overwrite files with the privileges of the user invoking the program. This issue only affected Ubuntu 8.04 LTS. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 25833 | | Last Modified: | Dec 30 18:25:32 2008 | | MD5 Checksum: | c5ce60e29ca1d9ec61428d86ae3b05f8 |
|
| /// File Name: | DDIVRT-2008-16.txt | Description:
| The Citrix Broadcast Server administrative login page is vulnerable to trivial SQL injections via the txtUID HTTP POST parameter. An attacker could leverage this flaw to obtain unauthorized access to the web interface or to extract data from the database via blind SQL injection. | | Author: | Corey LeBleu,r@b13$ | | Homepage: | http://www.digitaldefense.net/ | | File Size: | 1229 | | Last Modified: | Dec 30 18:24:14 2008 | | MD5 Checksum: | 657e79ffbf7ce2e8ad204969e22dbf2f |
|
| /// File Name: | USN-698-3.txt | Description:
| Ubuntu Security Notice USN-698-3 - It was discovered that Nagios was vulnerable to a Cross-site request forgery (CSRF) vulnerability. If an authenticated nagios user were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands to be processed by Nagios and execute arbitrary programs. This update alters Nagios behaviour by disabling submission of CMD_CHANGE commands. It was discovered that Nagios did not properly parse commands submitted using the web interface. An authenticated user could use a custom form or a browser addon to bypass security restrictions and submit unauthorized commands. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 3927 | | Related CVE(s): | CVE-2008-5027, CVE-2008-5028 | | Last Modified: | Dec 30 18:23:49 2008 | | MD5 Checksum: | a7ec34bbabf9efacbbc0c7554ba52dbb |
|
| /// File Name: | FreeBSD-SA-08-12.ftpd.txt | Description:
| FreeBSD Security Advisory - The ftpd server splits long commands into several requests. This may result in the server executing a command which is hidden inside another very long command. This could, with a specifically crafted command, be used in a cross-site request forgery attack. | | Homepage: | http://security.freebsd.org/ | | File Size: | 6563 | | Related CVE(s): | CVE-2008-4247 | | Last Modified: | Dec 30 17:49:16 2008 | | MD5 Checksum: | d4e9949e6da9de0feb54477c867297cd |
|
| /// File Name: | FreeBSD-SA-08-13.protosw.txt | Description:
| FreeBSD Security Advisory - Some function pointers for netgraph and bluetooth sockets are not properly initialized. A local user can cause the FreeBSD kernel to execute arbitrary code. This could be used by an attacker directly; or it could be used to gain root privilege or to escape from a jail. | | Homepage: | http://security.freebsd.org/ | | File Size: | 5596 | | Last Modified: | Dec 30 17:47:22 2008 | | MD5 Checksum: | 3b4c79643fc921b786c6b143619ddf8d |
|
| /// File Name: | SSRT080187.txt | Description:
| HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin. | | Homepage: | http://www.hp.com/ | | File Size: | 8656 | | Related CVE(s): | CVE-2008-4844 | | Last Modified: | Dec 30 17:41:43 2008 | | MD5 Checksum: | efa652c000780478f70ac48e06dc9997 |
|
| /// File Name: | dsa-1688-2.txt | Description:
| Debian Security Advisory 1688-2 - The update of courier-authlib in DSA 1688-1 caused a regression with setups that do not use mail addresses for authentification. This update fixes this regression. | | Homepage: | http://www.debian.org/security | | File Size: | 17720 | | Related CVE(s): | CVE-2008-2380, CVE-2008-2667 | | Last Modified: | Dec 30 17:04:24 2008 | | MD5 Checksum: | 884a88331d9ae470046f8144b1fa49be |
|
| /// File Name: | secunia-housecall.txt | Description:
| Secunia Research has discovered a vulnerability in Trend Micro HouseCall, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an implementation error within the HouseCall ActiveX control (Housecall_ActiveX.dll). This can be exploited to e.g. download and load an arbitrary library file by specifying a custom update server. Successful exploitation allows execution of arbitrary code. Trend Micro HouseCall ActiveX Control versions 6.51.0.1028 and 6.6.0.1278 are affected. | | Author: | Alin Rad Pop | | Homepage: | http://secunia.com/ | | File Size: | 5484 | | Related CVE(s): | CVE-2008-2434 | | Last Modified: | Dec 30 16:39:25 2008 | | MD5 Checksum: | c39f454134e8e3db4411d722cfe3e92d |
|
| /// File Name: | USN-698-2.txt | Description:
| Ubuntu Security Notice USN-698-2 - It was discovered that Nagios was vulnerable to a Cross-site request forgery (CSRF) vulnerability. If an authenticated nagios user were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands to be processed by Nagios and execute arbitrary programs. This update alters Nagios behaviour by disabling submission of CMD_CHANGE commands. It was discovered that Nagios did not properly parse commands submitted using the web interface. An authenticated user could use a custom form or a browser addon to bypass security restrictions and submit unauthorized commands. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 3871 | | Related CVE(s): | CVE-2008-5027, CVE-2008-5028 | | Last Modified: | Dec 30 16:30:48 2008 | | MD5 Checksum: | 99b83b98f9c65bf290a362750390f524 |
|
| /// File Name: | USN-698-1.txt | Description:
| Ubuntu Security Notice USN-698-1 - It was discovered that Nagios did not properly parse commands submitted using the web interface. An authenticated user could use a custom form or a browser addon to bypass security restrictions and submit unauthorized commands. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 3788 | | Related CVE(s): | CVE-2008-5027 | | Last Modified: | Dec 30 16:30:32 2008 | | MD5 Checksum: | 95879967a3ac3c366de8d3174d8732c7 |
|
| /// File Name: | USN-697-1.txt | Description:
| Ubuntu Security Notice USN-697-1 - It was discovered that Imlib2 did not correctly handle certain malformed XPM and PNG images. If a user were tricked into opening a specially crafted image with an application that uses Imlib2, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 7696 | | Related CVE(s): | CVE-2008-2426 | | Last Modified: | Dec 30 16:29:58 2008 | | MD5 Checksum: | b84d6f9b4ef98b4ccd8f69cf4d152e2f |
|
| /// File Name: | USN-699-1.txt | Description:
| Ubuntu Security Notice USN-699-1 - It was discovered that Blender did not correctly handle certain malformed Radiance RGBE images. If a user were tricked into opening a .blend file containing a specially crafted Radiance RGBE image, an attacker could execute arbitrary code with the user's privileges. It was discovered that Blender did not properly sanitize the Python search path. A local attacker could execute arbitrary code by inserting a specially crafted Python file in the Blender working directory. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 2479 | | Related CVE(s): | CVE-2008-1102, CVE-2008-4863 | | Last Modified: | Dec 30 16:29:26 2008 | | MD5 Checksum: | c8d53d5490045ee86e1fec957f826785 |
|
| /// File Name: | glsa-200812-20.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-20 - Multiple vulnerabilities have been discovered in phpCollab allowing for remote injection of shell commands, PHP code and SQL statements. Versions less than or equal to 2.5_rc3 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 4281 | | Related CVE(s): | CVE-2006-1495, CVE-2008-4303, CVE-2008-4304, CVE-2008-4305 | | Last Modified: | Dec 30 15:34:20 2008 | | MD5 Checksum: | a14f795b5cd30218af0c9e568d7f68fb |
|
| /// File Name: | secunia-notifyon.txt | Description:
| Secunia Research has discovered a vulnerability in Trend Micro HouseCall, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a use-after-free error in the HouseCall ActiveX control (Housecall_ActiveX.dll). This can be exploited to dereference previously freed memory by tricking the user into opening a web page containing a specially crafted "notifyOnLoadNative()" callback function. Successful exploitation allows execution of arbitrary code. Trend Micro HouseCall ActiveX Control versions 6.51.0.1028 and 6.6.0.1278 are affected. | | Author: | Alin Rad Pop | | Homepage: | http://secunia.com/ | | File Size: | 4528 | | Related CVE(s): | CVE-2008-2435 | | Last Modified: | Dec 30 15:31:45 2008 | | MD5 Checksum: | c93caccd638dc68b56e10f7dc0ec5764 |
|
| /// File Name: | CVE-2008-5557.txt | Description:
| PHP versions 5.2.7 and below suffer from a mbstring buffer overflow vulnerability. | | Author: | Moriyoshi Koizumi | | File Size: | 6937 | | Related CVE(s): | CVE-2008-5557 | | Last Modified: | Dec 30 15:28:31 2008 | | MD5 Checksum: | f116cab6520953a151af9c9aa5232bc6 |
|
| /// File Name: | dsa-1689-1.txt | Description:
| Debian Security Advisory DSA 1689-1 - Maksymilian Arciemowicz of securityreason.com reported that ProFTPD is vulnerable to cross-site request forgery (CSRF) attacks and executes arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web browser. | | Homepage: | http://www.debian.org/security | | File Size: | 5708 | | Related CVE(s): | CVE-2008-4242 | | Last Modified: | Dec 30 15:15:02 2008 | | MD5 Checksum: | 0a654088980ec4b2676a2293532b8ae9 |
|
| /// File Name: | dsa-1678-2.txt | Description:
| Debian Security Advisory 1678-2 - The perl update in DSA-1678-1 contains a regression which is triggered by some Perl scripts which have changed into the directory tree removed by File::Path::rmtree. In particular, this happens if File::Temp::tempdir is used. This new update corrects this regression. | | Homepage: | http://www.debian.org/security | | File Size: | 12937 | | Related CVE(s): | CVE-2008-5302, CVE-2008-5303 | | Last Modified: | Dec 30 15:13:58 2008 | | MD5 Checksum: | 6dee21849e4a8d1449839d9d191979d1 |
|
| /// File Name: | dsa-1688-1.txt | Description:
| Debian Security Advisory 1688 - Two SQL injection vulnerabilities have beein found in courier-authlib, the courier authentification library. The MySQL database interface used insufficient escaping mechanisms when constructing SQL statements, leading to SQL injection vulnerabilities if certain charsets are used (CVE-2008-2380). A similar issue affects the PostgreSQL database interface (CVE-2008-2667). | | Homepage: | http://www.debian.org/security | | File Size: | 18898 | | Related CVE(s): | CVE-2008-2380, CVE-2008-2667 | | Last Modified: | Dec 30 15:13:13 2008 | | MD5 Checksum: | c0fdbbd2a2c3d18be4a688936e922a09 |
|
| /// File Name: | SA-20081219-0.txt | Description:
| SEC-CONSULT Security Advisory 20081219-0 - Fujitsu-Siemens WebTransactions is vulnerable to remote command injection due to insufficient input validation. Under certain conditions, WBPublish.exe passes unvalidated user input to the system() function when cleaning up temporary session data. This vulnerability allows an attacker to execute arbitrary commands on the affected system. The vulnerability does not require prior authentication and can be exploited from a web browser. | | Author: | Bernhard Mueller | | Homepage: | http://www.sec-consult.com | | File Size: | 2196 | | Last Modified: | Dec 30 14:16:42 2008 | | MD5 Checksum: | 690e99b452a88438cf858afe765e8bb5 |
|
| /// File Name: | glsa-200812-19.txt | Description:
| Gentoo Linux Security Advisory GLSA 200812-19 - Two vulnerabilities have been discovered in PowerDNS, possibly leading to a Denial of Service and easing cache poisoning attacks. Daniel Drown reported an error when receiving a HINFO CH query (CVE-2008-5277). Brian J. Dowling of Simplicity Communications discovered a previously unknown security implication of the PowerDNS behavior to not respond to certain queries it considers malformed (CVE-2008-3337). Versions less than 2.9.21.2 are affected. | | Homepage: | http://security.gentoo.org | | File Size: | 3069 | | Related CVE(s): | CVE-2008-3337, CVE-2008-5277 | | Last Modified: | Dec 30 13:46:11 2008 | | MD5 Checksum: | 3d41b43b23733218419ae3c5bd3dde79 |
|
| /// File Name: | SSRT080183.txt | Description:
| HP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin. | | Homepage: | http://www.hp.com/ | | File Size: | 11277 | | Related CVE(s): | CVE-2008-3704, CVE-2008-4252, CVE-2008-4253, CVE-2008-4254, CVE-2008-4255, CVE-2008-4256, CVE-2008-2249, CVE-2008-3465, CVE-2008-4024, CVE-2008-4025, CVE-2008-4026, CVE-2008-4027, CVE-2008-4028, CVE-2008-4030, CVE-2008-4031, CVE-2008-4837, CVE-2008-4258, CVE-2008-4259, CVE-2008-4260, CVE-2008-4261, CVE-2008-4264, CVE-2008-4265, CVE-2008-4266, CVE-2008-4268, CVE-2008-4269, CVE-2008-3009, CVE-2008-3010, CVE-2008-4032 | | Last Modified: | Dec 30 13:42:52 2008 | | MD5 Checksum: | fe675c8d87f8780d4f70da7046c24332 |
|
| /// File Name: | USN-696-1.txt | Description:
| Ubuntu Security Notice USN-696-1 - Emanuele Aina discovered that Avahi did not properly validate it's input when processing data over D-Bus. A local attacker could send an empty TXT message via D-Bus and cause a denial of service (failed assertion). This issue only affected Ubuntu 6.06 LTS. Hugo Dias discovered that Avahi did not properly verify it's input when processing mDNS packets. A remote attacker could send a crafted mDNS packet and cause a denial of service (assertion failure). | | Homepage: | http://security.ubuntu.com/ | | File Size: | 76748 | | Related CVE(s): | CVE-2007-3372, CVE-2008-5081 | | Last Modified: | Dec 30 13:38:58 2008 | | MD5 Checksum: | 60b6934d868a3443a353c54f110b8d56 |
|
| /// File Name: | CVE-2008-2938-2.txt | Description:
| This vulnerability was originally reported to the Apache Software Foundation as a Tomcat vulnerability. Investigations quickly identified that the root cause was an issue with the UTF-8 charset implementation within the JVM. The issue existed in multiple JVMs including current versions from Sun, HP, IBM, Apple and Apache. It was decided to continue to report this as a Tomcat vulnerability until such time as the JVM vendors had released fixed versions. | | Author: | Mark Thomas | | Homepage: | http://tomcat.apache.org/ | | File Size: | 1684 | | Related CVE(s): | CVE-2008-2938 | | Last Modified: | Dec 21 23:48:14 2008 | | MD5 Checksum: | aac09978d0e33c9dcb8891b44f5a8f8b |
|
| /// File Name: | TKADV2008-015.txt | Description:
| Sun Solaris suffers from a SIOCGTUNPARAM IOCTL kernel null pointer vulnerability. | | Author: | Tobias Klein | | Homepage: | http://www.trapkit.de/ | | File Size: | 5580 | | Last Modified: | Dec 21 23:33:12 2008 | | MD5 Checksum: | 430f2aa535b8d9102e09f85f2105c3db |
|
| /// File Name: | MDVSA-2008-245.txt | Description:
| Mandriva Linux Security Advisory 2008-245 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 3.x, version 3.0.5. This update provides the latest Mozilla Firefox 3.x to correct these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 22368 | | Related CVE(s): | CVE-2008-5500, CVE-2008-5501, CVE-2008-5502, CVE-2008-5505, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512, CVE-2008-5513 | | Last Modified: | Dec 21 19:31:05 2008 | | MD5 Checksum: | 758d2228d1ecf51110a7ff874f947b54 |
|
| /// File Name: | USN-695-1.txt | Description:
| Ubuntu Security Notice USN-695-1 - Paul Szabo discovered a race condition in login. While setting up tty permissions, login did not correctly handle symlinks. If a local attacker were able to gain control of the system utmp file, they could cause login to change the ownership and permissions on arbitrary files, leading to a root privilege escalation. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 9773 | | Last Modified: | Dec 21 19:30:40 2008 | | MD5 Checksum: | f4d152c7573170c063a6d8ee072c1c23 |
|
| /// File Name: | USN-694-1.txt | Description:
| Ubuntu Security Notice USN-694-1 - It was discovered that libvirt did not mark certain operations as read-only. A local attacker may be able to perform privileged actions such as migrating virtual machines, adjusting autostart flags, or accessing privileged data in the virtual machine memory and disks. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 10749 | | Related CVE(s): | CVE-2008-5086 | | Last Modified: | Dec 21 19:30:20 2008 | | MD5 Checksum: | 4b67a53fd63dc845757118e06acdc13c |
|
| /// File Name: | USN-690-1.txt | Description:
| Ubuntu Security Notice USN-690-1 - Several flaws were discovered in the firefox browser engine. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 24943 | | Related CVE(s): | CVE-2008-5500, CVE-2008-5501, CVE-2008-5502, CVE-2008-5505, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512, CVE-2008-5513 | | Last Modified: | Dec 21 19:24:26 2008 | | MD5 Checksum: | 7c6afd977df8cc03611c32c8e2d23302 |
|
| /// File Name: | USN-693-1.txt | Description:
| Ubuntu Security Notice USN-693-1 - It was discovered that certain gamma operations in lcms were not correctly bounds-checked. If a user or automated system were tricked into processing a malicious image, a remote attacker could crash applications linked against liblcms1, leading to a denial of service, or possibly execute arbitrary code with user privileges. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 12293 | | Related CVE(s): | CVE-2008-5317 | | Last Modified: | Dec 21 19:25:32 2008 | | MD5 Checksum: | 084f662be5ba29b67d6fffe8fc19dcd4 |
|
| /// File Name: | USN-692-1.txt | Description:
| Ubuntu Security Notice USN-692-1 - It was discovered that the Gadu library, used by some Instant Messaging clients, did not correctly verify certain packet sizes from the server. If a user connected to a malicious server, clients using Gadu could be made to crash, leading to a denial of service. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 12934 | | Related CVE(s): | CVE-2008-4776 | | Last Modified: | Dec 21 19:25:16 2008 | | MD5 Checksum: | 794fc7afcfcde520be0c011939b6fdb8 |
|
| /// File Name: | MDVSA-2008-244.txt | Description:
| Mandriva Linux Security Advisory 2008-244 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 2.x, version 2.0.0.19. This update provides the latest Mozilla Firefox 2.x to correct these issues. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 42380 | | Related CVE(s): | CVE-2008-5500, CVE-2008-5503, CVE-2008-5504, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512, CVE-2008-5513 | | Last Modified: | Dec 21 19:24:00 2008 | | MD5 Checksum: | 612ec750a349c8dfbba8ef984bd1a199 |
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
