Section: .. / 0609-advisories /
| /// File Name: |
sa21776.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21776/ | | File Size: | 10995 | | Last Modified: | Sep 6 05:37:16 2006 |
| MD5 Checksum: | 040b6fd3883e69093ff5dab5eee6d41f |
|
| /// File Name: |
USN-339-1.txt |
Description:
|
Ubuntu Security Notice USN-339-1 - Philip Mackenzie, Marius Schilder, Jason Waddle and Ben Laurie of Google Security discovered that the OpenSSL library did not sufficiently check the padding of PKCS #1 version 1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.
| | Homepage: | http://security.ubuntu.com/ | | File Size: | 10791 | | Related CVE(s): | CVE-2006-4339 | | Last Modified: | Sep 7 04:57:27 2006 |
| MD5 Checksum: | 00df9bb032b34dba4b73a14aff0d1ca0 |
|
| /// File Name: |
sa22084.txt |
Description:
|
Secunia Security Advisory - Debian has issued updates for gnutls11 and gnutls13. These fix a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/22084/ | | File Size: | 10633 | | Last Modified: | Sep 25 13:56:53 2006 |
| MD5 Checksum: | 9521ba116472b322f0dfd624d7990c95 |
|
| /// File Name: |
sa21813.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for ethereal. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21813/ | | File Size: | 10543 | | Last Modified: | Sep 8 17:38:32 2006 |
| MD5 Checksum: | 38efeaf0b6b9ec5156a353ee502b0911 |
|
| /// File Name: |
greekbanks.txt |
Description:
|
Several greek banks suffer from cross site scripting vulnerabilities.
| | Author: | Sentinel Co | | Homepage: | http://www.sentinel.gr | | File Size: | 10229 | | Last Modified: | Oct 2 17:38:13 2006 |
| MD5 Checksum: | 304e9d8091083adf73b2103cd91f19fe |
|
| /// File Name: |
sa22056.txt |
Description:
|
Secunia Security Advisory - SUSE has issued updates for MozillaFirefox, MozillaThunderbird, and seamonkey. These fix some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22056/ | | File Size: | 9921 | | Last Modified: | Sep 25 13:56:53 2006 |
| MD5 Checksum: | d5b80920b7e75e7112fdc741a96172a7 |
|
| /// File Name: |
sa22055.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle and cross-site scripting attacks, bypass certain security restrictions and compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22055/ | | File Size: | 9665 | | Last Modified: | Sep 22 14:46:32 2006 |
| MD5 Checksum: | 04536aafe9c62b88135d3c7ddeb7d305 |
|
| /// File Name: |
sa21832.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for ImageMagick. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/21832/ | | File Size: | 9505 | | Last Modified: | Sep 12 18:17:26 2006 |
| MD5 Checksum: | 028ce54eadb8ed57da3aef9bdc09cafd |
|
| /// File Name: |
sa22044.txt |
Description:
|
Secunia Security Advisory - SUSE has issued updates for openssl and mozilla-nss. These fix some vulnerabilities, which potentially can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/22044/ | | File Size: | 9291 | | Last Modified: | Sep 25 13:56:53 2006 |
| MD5 Checksum: | 72b3576a15b2e8828b319035cfa6581f |
|
| /// File Name: |
MDKSA-2006-164.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-164: Updated xorg-x11/XFree86 packages fix integer overflow vulnerability.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 9164 | | Last Modified: | Sep 14 19:21:00 2006 |
| MD5 Checksum: | e6a65237d59566b18694fd9fae9045b5 |
|
| /// File Name: |
sa22025.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/22025/ | | File Size: | 9030 | | Last Modified: | Sep 25 13:56:53 2006 |
| MD5 Checksum: | fb1f683e85cfbe5ab8c0bda3ebd4ee5d |
|
| /// File Name: |
dsa-1173-1.txt |
Description:
|
Debian Security Advisory 1173-1 - Daniel Bleichenbacher discovered a flaw in OpenSSL cryptographic package that could allow an attacker to generate a forged signature that OpenSSL will accept as valid.
| | Homepage: | http://www.debian.org/security | | File Size: | 9009 | | Related CVE(s): | CVE-2006-4339 | | Last Modified: | Sep 13 03:37:56 2006 |
| MD5 Checksum: | 07b0af299c6770db8ce53967519e552b |
|
| /// File Name: |
MDKSA-2006-160.txt |
Description:
|
Mandriva Linux Security Advisory MDKSA-2006-160 - X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.
| | Homepage: | http://www.mandriva.com/security/advisories | | File Size: | 8775 | | Related CVE(s): | CVE-2006-4447 | | Last Modified: | Sep 7 02:33:22 2006 |
| MD5 Checksum: | 698d87bfb3d04f8db4969f223c936876 |
|
| /// File Name: |
dsa-1178-1.txt |
Description:
|
Debian Security Advisory 1178-1: It was discovered that an integer overflow in freetype's PCF font code may lead to denial of service and potential execution of arbitrary code.
| | Homepage: | http://www.debian.org/security | | File Size: | 8713 | | Last Modified: | Sep 26 15:46:36 2006 |
| MD5 Checksum: | 0b113cb8854d940f70d9ab44364c7ecb |
|
| /// File Name: |
SSRT061202.txt |
Description:
|
HP Security Bulletin - Potential security vulnerabilities have been identified with Apache running on HP-UX. These vulnerabilities could be exploited remotely to allow execution of arbitrary code, denial of service, or unauthorized access.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 8641 | | Related CVE(s): | CVE-2006-3747, CVE-2005-3352, CVE-2005-3357 | | Last Modified: | Sep 7 05:01:54 2006 |
| MD5 Checksum: | 7060db2e730ca644a55dcccbba488d35 |
|
| /// File Name: |
sa21852.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/21852/ | | File Size: | 8368 | | Last Modified: | Sep 12 18:17:26 2006 |
| MD5 Checksum: | 3effefcc4dfb8ea5c656ccadbb484400 |
|
| /// File Name: |
dsa-1184-2.txt |
Description:
|
Debian Security Advisory 1184-2: kernel-source-2.6.8 - This advisory covers the S/390 components of the recent security update for the Linux 2.6.8 kernel that was missing due to technical problems. For reference below please see the original advisory text.
| | Homepage: | http://www.debian.org/security | | File Size: | 8239 | | Last Modified: | Sep 26 19:26:50 2006 |
| MD5 Checksum: | f5ac02e354e4166310374de9e832cdd0 |
|
| /// File Name: |
SSRT050968.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in HP OpenView Operations. This potential vulnerability could be exploited remotely to allow unauthorized access or to create a denial of service condition.
| | Author: | HP | | Homepage: | http://www.hp.com | | File Size: | 7538 | | Last Modified: | Sep 14 03:31:32 2006 |
| MD5 Checksum: | 83357b36efa5745187f98ed151465c7b |
|
| /// File Name: |
apple-kext-tools-20060822.txt |
Description:
|
Roxio Toast 7 Titanium on Mac OSX executes the kextload command with root privileges. The kextload command contains two vulnerabilities which can be exploited by a local user to gain local root access to the system. This advisory outlines both issues.
| | Author: | Adriel T. Desautels | | Homepage: | http://www.netragard.com/ | | File Size: | 7434 | | Last Modified: | Sep 14 03:36:51 2006 |
| MD5 Checksum: | c18c77a56f92aa78a1dde77414ee9aeb |
|
| /// File Name: |
RSAKeonManager.txt |
Description:
|
During the analysis of RSA Keon Certificate Authority Manager, Arhont Ltd consultants have discovered several vulnerabilities in the Log Verification function. A rogue CA (Certificate Authority) administrator or any local administrative user with the access to the CA server could manipulate the secure logging process to disguise his/her activities. Versions 6.6 and 6.5.1 are vulnerable.
| | Author: | Arhont Ltd - Information Security | | File Size: | 7046 | | Last Modified: | Oct 2 18:12:56 2006 |
| MD5 Checksum: | 80d3dba089214b06a42a1765eeb39e12 |
|
| /// File Name: |
dsa-1177-1.txt |
Description:
|
Debian Security Advisory 1177-1 - Hendrik Weimer discovered that it is possible for a normal user to disable the login shell of the root account via usermin, a web-based administration tool.
| | Homepage: | http://www.debian.org/security | | File Size: | 6994 | | Related CVE(s): | CVE-2006-4246 | | Last Modified: | Sep 16 04:39:11 2006 |
| MD5 Checksum: | 913f1d9ed35249ef9bafdda58cc4f448 |
|
| /// File Name: |
CiscoVTP.txt |
Description:
|
Phenoelit Advisory - Cisco Systems IOS contains bugs when handling the VLAN Trunking Protocol (VTP). Specially crafted packets may cause denial of service conditions, confusion of the network operator and a heap overflow with the possibility for arbitrary code execution.
| | Author: | FX | | Homepage: | http://www.phenoelit.de/ | | File Size: | 6768 | | Last Modified: | Sep 14 02:45:33 2006 |
| MD5 Checksum: | b8a3f27492d23e7b9594e53bc2864839 |
|
| /// File Name: |
SSRT5973-1.txt |
Description:
|
HPSBUX02152 SSRT5973 rev.1 - HP-UX Kerberos Client Remote Unauthenticated Execution of Arbitrary Code
| | Homepage: | http://www.hp.com | | File Size: | 6673 | | Last Modified: | Oct 2 20:07:06 2006 |
| MD5 Checksum: | f4b2126a3aa24d1d1d3e1aed624c576a |
|
| /// File Name: |
sa21981.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for usermin. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/21981/ | | File Size: | 6622 | | Last Modified: | Sep 21 19:56:25 2006 |
| MD5 Checksum: | 68913529c34388b8ab5cafa8ba478bd4 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
