Section: .. / 0703-advisories /
| /// File Name: |
NETRAGARD-20070316.txt |
Description:
|
Netragard, L.L.C Advisory - An exploitable vulnerability exists in FrontBase that can be used to gain NT AUTHORITY\SYSTEM or root privileges on an affected system. FrontBase versions 4.2.7 and below are affected.
| | Author: | Kevin Finisterre, Adriel T. Desautels | | Homepage: | http://www.netragard.com/html/recent_research.html | | File Size: | 9460 | | Last Modified: | Mar 20 16:07:44 2007 |
| MD5 Checksum: | 0f094283a3727f1618c74cdc736e5348 |
|
| /// File Name: |
sa24600.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in Cisco IP Phone 7940 and 7960, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24600/ | | File Size: | 2345 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 17310a0cb9e79f9f6002c851dec94a3e |
|
| /// File Name: |
sa24598.txt |
Description:
|
Secunia Security Advisory - Rubén Santamarta has reported a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24598/ | | File Size: | 2729 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | b7b13e09fec9d2711e122b42fee5fb15 |
|
| /// File Name: |
sa24589.txt |
Description:
|
Secunia Security Advisory - bd0rk has reported a vulnerability in the Landkarten module for pragmaMX, which can be exploited by malicious people to disclose potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/24589/ | | File Size: | 2346 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | add1bfbd5f5c4cce5c389258a8063c8d |
|
| /// File Name: |
sa24581.txt |
Description:
|
Secunia Security Advisory - Ubuntu has issued an update for libwpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/24581/ | | File Size: | 11586 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 6f583f884f4def0732897a155eec9451 |
|
| /// File Name: |
sa24577.txt |
Description:
|
Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in various Avaya products, which can be exploited by malicious users to gain knowledge of potentially sensitive information and cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/24577/ | | File Size: | 2603 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | eaa43d5bbf6db941b87fb86829a7971d |
|
| /// File Name: |
sa24575.txt |
Description:
|
Secunia Security Advisory - Fedora has acknowledged a security issue, which can be exploited by malicious users to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/24575/ | | File Size: | 3551 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 65acb8c7e4ea1b6b94c7dc5d895cbcbf |
|
| /// File Name: |
sa24573.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for libwpd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library.
| | Homepage: | http://secunia.com/advisories/24573/ | | File Size: | 4388 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | dc2ea2440bbbe3cc4f20b776e0b5a732 |
|
| /// File Name: |
sa24571.txt |
Description:
|
Secunia Security Advisory - DarkFig has discovered a vulnerability in NPDS, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/24571/ | | File Size: | 2318 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 9618b47a5fe485a28cb401dd177cfe08 |
|
| /// File Name: |
sa24569.txt |
Description:
|
Secunia Security Advisory - SUSE has issued an update for MozillaThunderbird and seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of sensitive information, and potentially compromise a user's system.
| | Homepage: | http://secunia.com/advisories/24569/ | | File Size: | 18167 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | ad870ab2067e1d8db3541cb04ef6d656 |
|
| /// File Name: |
sa24560.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in SQL-Ledger, which potentially can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/24560/ | | File Size: | 2245 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 8945e8a920f8108978cb66a162aa5eb0 |
|
| /// File Name: |
sa24559.txt |
Description:
|
Secunia Security Advisory - UniquE-Key has discovered a vulnerability in Particle Blogger, which can be exploited by malicious people to conduct SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/24559/ | | File Size: | 2156 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 38458ce261fc509ad8c2528dff14a077 |
|
| /// File Name: |
sa24546.txt |
Description:
|
Secunia Security Advisory - A vulnerability with an unknown impact has been reported in TYPOlight webCMS.
| | Homepage: | http://secunia.com/advisories/24546/ | | File Size: | 1929 | | Last Modified: | Mar 20 16:05:29 2007 |
| MD5 Checksum: | 8aeb0e40d0a19f419f46b3eb2483d4e1 |
|
| /// File Name: |
MDKSA-2007-064.txt |
Description:
|
Mandriva Linux Security Advisory - iDefense reported several overflow bugs in libwpd. An attacker could create a carefully crafted Word Perfect file that could cause an application linked with libwpd, such as OpenOffice, to crash or possibly execute arbitrary code if the file was opened by a victim. OpenOffice.org-2.X contains an embedded copy of libpwd, and as such is susceptible to the same issues.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 11908 | | Related CVE(s): | CVE-2007-0002 | | Last Modified: | Mar 20 16:05:17 2007 |
| MD5 Checksum: | 2eb47e64cc41ab1ac026562e2c94fbf0 |
|
| /// File Name: |
MDKSA-2007-063.txt |
Description:
|
Mandriva Linux Security Advisory - iDefense reported several overflow bugs in libwpd. An attacker could create a carefully crafted Word Perfect file that could cause an application linked with libwpd, such as OpenOffice, to crash or possibly execute arbitrary code if the file was opened by a victim.
| | Homepage: | http://www.mandriva.com/security/ | | File Size: | 2808 | | Related CVE(s): | CVE-2007-0002 | | Last Modified: | Mar 20 16:04:43 2007 |
| MD5 Checksum: | 118377932b3adeecf595c8c7180a9143 |
|
| /// File Name: |
03.16.07-1.txt |
Description:
|
iDefense Security Advisory 03.16.07 - Remote exploitation of multiple buffer overflow vulnerabilities in libwpd, as included in various vendors' operating system distributions, could allow an attacker to execute arbitrary code. One problem specifically exists in the WP6GeneralTextPacket::_readContents function. This function reads in a series of integer values and sums them. This sum is then used to allocate a block of memory from the heap. The function then copies data from the file into the buffer using each operand from the addition as the number of bytes to copy. The summing operation leads to an integer overflow, and the buffer can then be overflowed by the copy operations. Two additional problems exist in the WP3TablesGroup::_readContents() and WP5DefinitionGroup_DefineTablesSubGroup::WP5DefinitionGroup_DefineTablesSubGroup() functions. These functions read an integer value from an attacker supplied file, and uses the value as a loop counter. In the loop a statically sized buffer is filled with arbitrary data from the file. This leads to an exploitable heap overflow. iDefense has confirmed the existence of this vulnerability in libwpd version 0.8.7. Previous versions may also be affected. This library is used by applications such as Abiword, Kword, and Open Office.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 3754 | | Related CVE(s): | CVE-2007-0002 | | Last Modified: | Mar 20 16:02:55 2007 |
| MD5 Checksum: | 9d9760e59178eb41935981aabae847cd |
|
| /// File Name: |
glsa-200703-20.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-20 - LSAT insecurely writes in /tmp with a predictable filename. Versions less than or equal to 0.9.2 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2984 | | Last Modified: | Mar 20 06:53:45 2007 |
| MD5 Checksum: | b533e47d6e91d6e5e2cab42300d805eb |
|
| /// File Name: |
glsa-200703-19.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-19 - The LTSP server includes vulnerable LibVNCServer code, which fails to properly validate protocol types effectively letting users decide what protocol to use, such as Type 1 - None (GLSA-200608-05). The LTSP VNC server will accept this security type, even if it is not offered by the server. Versions less than 4.2-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2738 | | Related CVE(s): | CVE-2006-2450 | | Last Modified: | Mar 20 06:53:26 2007 |
| MD5 Checksum: | c4f8d501e214aca045b88a50512bd819 |
|
| /// File Name: |
glsa-200703-18.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-18 - Georgi Guninski reported a possible integer overflow in the code handling text/enhanced or text/richtext MIME emails. Additionally, various researchers reported errors in the JavaScript engine potentially leading to memory corruption. Additionally, the binary version of Mozilla Thunderbird includes a vulnerable NSS library which contains two possible buffer overflows involving the SSLv2 protocol. Versions less than 1.5.0.10 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 4051 | | Related CVE(s): | CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, CVE-2007-1282 | | Last Modified: | Mar 20 06:53:10 2007 |
| MD5 Checksum: | 6811970b6b513a48aed797c279fe2975 |
|
| /// File Name: |
glsa-200703-17.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-17 - SUSE reported unspecified buffer overflows in ulogd involving the calculation of string lengths. Versions less than 1.23-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2570 | | Related CVE(s): | CVE-2007-0460 | | Last Modified: | Mar 20 06:52:56 2007 |
| MD5 Checksum: | 9e72418c77c9a744937472af173eee71 |
|
| /// File Name: |
glsa-200703-16.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-16 - ZDI reported an unsafe memory copy in mod_jk that was discovered by an anonymous researcher in the map_uri_to_worker function of native/common/jk_uri_worker_map.c . Versions less than 1.2.21-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2798 | | Related CVE(s): | CVE-2007-0774 | | Last Modified: | Mar 20 06:52:28 2007 |
| MD5 Checksum: | bcfa40f532618c5cfbff78b966840f57 |
|
| /// File Name: |
glsa-200703-15.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-15 - PostgreSQL does not correctly check the data types of the SQL function arguments under unspecified circumstances nor the format of the provided tables in the query planner. Versions less than 8.0.11 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2855 | | Related CVE(s): | CVE-2007-0555, CVE-2007-0556 | | Last Modified: | Mar 20 06:52:12 2007 |
| MD5 Checksum: | fba6b87dae5a1f3b10d3a349749c858d |
|
| /// File Name: |
glsa-200703-14.txt |
Description:
|
Gentoo Linux Security Advisory GLSA 200703-14 - The MU Security Research Team discovered that Asterisk contains a NULL-pointer dereferencing error in the SIP channel when handling request messages. Versions less than 1.2.14-r1 are affected.
| | Homepage: | http://security.gentoo.org | | File Size: | 2737 | | Related CVE(s): | CVE-2007-1306 | | Last Modified: | Mar 20 06:51:56 2007 |
| MD5 Checksum: | 566b1ca5a6accf27586188ff401748d7 |
|
| /// File Name: |
ms0713.txt |
Description:
|
The original MS07-012 patch was released to fix an issue in the MFC library MFC42u.dll. The issue was the result of MS not taking into account that a TCHAR string is actually twice as big as its CHAR counterparts. To fix this, the patch readjusted the nMaxCount variable to half of its original value in the GetMenuStringW(...) call. Unfortunately, GetMenuStringW will null terminate a long string at the end adding two additional characters to the string. This gives a returned string of (nMaxCount*2) + 2 bytes in size.
| | Author: | Greg Sinclair | | File Size: | 3021 | | Last Modified: | Mar 20 06:45:12 2007 |
| MD5 Checksum: | e483bae6d51075d3fc6bbbdc4adb0750 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
