prev · 04.02.2008 · next 
| Mon | Tue | Wed | Thu | Fri | Sat | Sun |
| 1 | 2 | 3 | ||||
| 4 | 5 | 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 | 16 | 17 |
| 18 | 19 | 20 | 21 | 22 | 23 | 24 |
| 25 | 26 | 27 | 28 | 29 | ||
iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server onedcu File Creation Vulnerability
( 655 days 8 hours ago)
iDefense Security Advisory 01.31.08 Jan 31, 2008 I. BACKGROUND IBM Corp.'s Informix Dynamic Server is an online transaction processing data server. For more information, visit the product's homepage at the following URL. II. DESCRIPTION Local exploitation of a file creation vulnerability in IBM Corp.'s ...
iDefense Security Advisory 01.31.08: IBM Informix Dynamic Server SQLIDEBUG File Creation Vulnerability
( 655 days 8 hours ago)
iDefense Security Advisory 01.31.08 Jan 31, 2008 I. BACKGROUND IBM Corp.'s Informix Dynamic Server is an online transaction processing data server. For more information, visit the product's homepage at the following URL. II. DESCRIPTION Local exploitation of a file creation vulnerability in IBM Corp.'s ...
Multiple vulnerabilities in WinCom LPD Total 3.0.2.623
( 655 days 8 hours ago)
Luigi Auriemma Application: WinCom LPD Total - Line Printer Daemon Versions: <= 3.0.2.623 Platforms: Windows Bugs: A] buffer-overflow in control filename B] remote administration bypassing C] integer memcpy crash in remote administration D] buffer-overflow in remote administration Exploitation: remote Date: 04 Feb 2008 ...
Multiple vulnerabilities in SAPlpd 6.28
( 655 days 8 hours ago)
Luigi Auriemma Application: SAPlpd Versions: <= 6.28 (included in SAP GUI 7.10) Platforms: Windows Bugs: various vulnerabilities Exploitation: remote Date: 04 Feb 2008 Author: Luigi Auriemma e-mail: aluigiatautistici.org web: aluigi.org 1) Introduction 2) Bugs 3) The Code 4) Fix 1) Introduction ...
Socket termination in FTP Log Server 7.9.14.0
( 655 days 8 hours ago)
Luigi Auriemma Application: FTP Log Server Versions: <= 7.9.14.0 Platforms: Windows Bug: socket termination Exploitation: remote Date: 04 Feb 2008 Author: Luigi Auriemma e-mail: aluigiatautistici.org web: aluigi.org 1) Introduction 2) Bug 3) The Code 4) Fix 1) Introduction ...
Ubuntu: Linux kernel vulnerabilities
( 655 days 9 hours ago)
LinuxSecurity.com: The minix filesystem did not properly validate certain filesystem values. If a local attacker could trick the system into attempting to mount a corrupted minix filesystem, the kernel could be made to hang for long periods of time, resulting in a denial of service. This was only vulnerable in Ubuntu 7.04 and 7.10. (CVE-2006-6058)
CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability
( 655 days 14 hours ago)
Core Security Technologies - CoreLabs Advisory MPlayer 1.0rc2 buffer overflow vulnerability *Advisory Information* Title: MPlayer 1.0rc2 buffer overflow vulnerability Advisory ID: CORE-2007-1218 Advisory URL: Date published: 2008-02-04 Date of last update: 2008-02-01 Vendors contacted: MPlayer and Xine team Release mode: Coordinated release *Vulnerability Information* ...
CORE-2008-0122: MPlayer arbitrary pointer dereference
( 655 days 14 hours ago)
Core Security Technologies - CoreLabs Advisory MPlayer arbitrary pointer dereference *Advisory Information* Title: MPlayer arbitrary pointer dereference Advisory ID: CORE-2008-0122 Advisory URL: Date published: 2008-02-04 Date of last update: 2008-01-30 Vendors contacted: MPlayer team Release mode: Coordinated release *Vulnerability Information* Class: Buffer overflow ...
[DSECRG-08-008] Textpattern 4.0.5 Multiple Security Vulnerabilities
( 655 days 16 hours ago)
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-008 Application: Txp CMS Versions Affected: 4.0.5 Vendor URL: Bugs: DOS, multiple XSS, etc. Exploits: YES Reported: 11.01.2008 Vendor response: 14.01.2008 Patch Released: 03.02.2008 Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov, Stas Svistunovich ...
[DSECRG-08-011] Astrosoft HelpDesk Multiple XSS
( 655 days 16 hours ago)
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-011 Application: Astrosoft HelpDesk Versions Affected: Vendor URL: Bugs: Multiple XSS Injections Exploits: YES Reported: 29.01.2008 Vendor response: NONE Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov, Stas Svistunovich Digital Security Research Group [DSecRG] (research [at] dsec [dot] ru) Description *********** ...
[OPENADS-SA-2008-001] Openads 2.4.2 vulnerability fixed
( 655 days 16 hours ago)
Openads security advisory OPENADS-SA-2008-001 Advisory ID: OPENADS-SA-2008-001 Date: 2008-Feb-04 Security risk: Critical Applications affetced: Openads Versions affected: 2.4.0 <= x <= 2.4.2 Versions not affected: >= 2.4.3 Vulnerability: Remote PHP code injection and execution Description A remote PHP code injection and execution vulnerability has recently ...
[DSECRG-08-010] VHD Web Pack 2.0 Local File Include
( 655 days 16 hours ago)
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-010 Application: VHD Web Pack 2.0 Versions Affected: VHD Web Pack 2.0 Vendor URL: Bugs: Local File Include Exploits: YES Reported: 28.01.2008 Vendor response: NONE Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov, Stas Svistunovich ...
[DSECRG-08-009] xoops 2.0.18 Local File Include
( 655 days 16 hours ago)
Digital Security Research Group [DSecRG] Advisory #DSECRG-08-009 Application: XOOPS Versions Affected: XOOPS 2.0.18 Vendor URL: Bugs: Local File Include,URL Redirecting phishing Exploits: YES Reported: 28.01.2008 Vendor response: 28.01.2008 Date of Public Advisory: 04.02.2008 Authors: Alexandr Polyakov, Stas Svistunovich Digital Security Research Group [DSecRG] (research [at] dsec [dot] ru) ...
Anon Proxy Server <= 0.102 remote buffer overflow
( 655 days 19 hours ago)
Anon Proxy Server <= 0.102 remote buffer overflow Author: L4teral Impact: remote buffer overflow Status: patch available Affected software description: Application: Anon Proxy Server Version: <= 0.102 Vendor: Description: A fast http, https, socks caching proxy server. ...
[security bulletin] HPSBUX02308 SSRT080010 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code
( 655 days 19 hours ago)
SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01345501 Version: 1 HPSBUX02308 SSRT080010 rev.1 - HP-UX Running Apache, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2008-01-30 Last Updated: 2008-01-30 ...
Mandriva: Updated ruby-gnome2 packages fix arbitrary code
( 655 days 20 hours ago)
LinuxSecurity.com: A format string vulnerability in Ruby-GNOME 2 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter. The updated packages have been patched to prevent this issue.
Fedora 8 Update: rb_libtorrent-0.12-3.fc8
( 655 days 20 hours ago)
LinuxSecurity.com: A potential remote exploit was found in the bdecode_recursive routine that could trigger a stack overflow when passed malformed message data. This release adds a fix for this issue from the upstream subversion repository that limits the maximum recursive depth of this function.
Mandriva: Updated boost packages fix DoS vulnerabilities
( 655 days 20 hours ago)
LinuxSecurity.com: Tavis Ormandy and Will Drewry found that the bost library did not properly perform input validation on regular expressions. An attacker could exploit this by sening a specially crafted regular expression to an application linked against boost and cause a denial of service via an application crash. The updated packages have been patched to correct this issue.
Storm worm dethroned by sex botnet
( 655 days 22 hours ago)
Playing on the insecurities of the male of the species is big (sorry) business among the spammers, who have made the Mega-D botnet the most prolific sender of junk mail in history. The 'D' does not stand for the vitamin.
prev · 04.02.2008 · next
