[ MDVSA-2008:035 ] - Updated libcdio packages fix DoS vulnerability

 ( 654 days 7 hours ago)

Mandriva Linux Security Advisory MDVSA-2008:035 Package : ImageMagick Date : February 5, 2008 Affected: 2007.0, 2007.1, 2008.0, Corporate 4.0 Problem Description: Multiple vulnerabilities were discovered in the image decoders of ImageMagick. If a user or automated system were tricked into ...

Apple iPhone 1.1.3 remote DoS exploit

 ( 654 days 7 hours ago)

Vendor: Apple Version affected: 1.1.2 and 1.1.3 Overview:The Apple iPhone remote DoS for 1.1.2 was discovered by c0ntex, but it actually works on 1.1.3 as well. After further research it also appears that this was a known issue with Firefox version 1.5.04 and was effected cross-platform. ...

rPSA-2008-0040-1 mysql mysql-bench mysql-server

 ( 654 days 7 hours ago)

rPath Security Advisory: 2008-0040-1 Published: 2008-02-05 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Deterministic Weakness Updated Versions: mysql=conary.rpath.comatrpl:1/5.0.51a-0.2-1 mysql-bench=conary.rpath.comatrpl:1/5.0.51a-0.2-1 mysql-server=conary.rpath.comatrpl:1/5.0.51a-0.2-1 rPath Issue Tracking System: Description: Previous versions of the mysql package contain multiple weaknesses that ...

dBpowerAMP Audio Player Release 2 Remote Buffer Overflow

 ( 654 days 7 hours ago)

dBpowerAMP Audio Player Release 2 Remote Buffer Overflow 0:002> r eax=00000000 ebx=77c17a50 ecx=00000000 edx=00000107 esi=00000000 edi=00b8f217 eip=00004141 esp=00b8ede0 ebp=77c0f931 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010202 00004141 ?? ??? EXCEPTIONRECORD: ffffffff -- (.exr ffffffffffffffff) ExceptionAddress: 00004141 ...

CYBSEC Security Advisory: Arbitrary file overwrite in Documentum Administrator / Documentum Webtop

 ( 654 days 7 hours ago)

The following pre-advisory is also available in PDF format for download at: Advisory Name: Arbitrary file overwrite in Documentum Administrator / Documentum Webtop Vulnerability Class: Arbitrary file overwrite Release Date: 2008-02-05 Affected Applications: * Documentum Administrator version 5.3.0.313 * Documentum Webtop version version 5.3.0.317 ...

[SECURITY] [DSA 1480-1] New poppler packages fix several vulnerabilities

 ( 654 days 7 hours ago)

- Debian Security Advisory DSA-1480-1 securityatdebian.org Moritz Muehlenhoff February 05, 2008 - Package : poppler Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 Alin Rad Pop discovered several buffer overflows in the Poppler PDF ...

[SECURITY] [DSA 1486-1] New gnatsweb packages fix cross-site scripting

 ( 654 days 7 hours ago)

- Debian Security Advisory DSA-1486-1 securityatdebian.org Steve Kemp February 04, 2008 - Package : gnatsweb Vulnerability : cross-site scripting Problem type : remote Debian-specific: no CVE Id(s) : CVE-2007-2808 Debian Bug : 427156 "r0t" discovered that gnatsweb, a web interface to GNU GNATS, did not ...

[DSECRG-08-012] Multiple LFI in Azucar CMS 1.3

 ( 654 days 7 hours ago)

Digital Security Research Group [DSecRG] Advisory #DSECRG-08-012 Application: Azucar CMS Versions Affected: 1.3 Vendor URL: Bug: Multiple Local File Include Exploits: YES Reported: 30.01.2008 Vendor Response: NONE Date of Public Advisory: 05.02.2008 Authors: Alexandr Polyakov, Stas Svistunovich Digital Security Research Group [DSecRG] (research [at] dsec [dot] ru) ...

Debian: New python-cherrypy packages fix denial of service

 ( 654 days 8 hours ago)

LinuxSecurity.com: It was discovered that a directory traversal vulnerability in CherryPy, a pythonic, object-oriented web development framework may lead to denial of service by deleting files through malicious session IDs in cookies.

Debian: New poppler packages fix several vulnerabilities

 ( 654 days 8 hours ago)

LinuxSecurity.com: Alin Rad Pop discovered several buffer overflows in the Poppler PDF library, which could allow the execution of arbitrary code if a malformed PDF file is opened.

Debian: New gnatsweb packages fix cross-site scripting

 ( 654 days 8 hours ago)

LinuxSecurity.com: "r0t" discovered that gnatsweb, a web interface to GNU GNATS, did not correctly sanitize the database parameter in the main CGI script. This could allow the injection of arbitrary HTML, or javascript code.

Mandriva: Updated emacs packages fix vulnerabilities

 ( 654 days 8 hours ago)

LinuxSecurity.com: The hack-local-variable function in Emacs 22 prior to version 22.2, when enable-local-variables is set to ':safe', did not properly search lists of unsafe or risky variables, which could allow user-assisted attackers to bypass intended restrictions and modify critical program variables via a file containing a Local variables declaration.

Ubuntu: Apache vulnerabilities

 ( 654 days 8 hours ago)

LinuxSecurity.com: It was discovered that Apache did not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which could result in browsers becoming vulnerable to cross-site scripting attacks when processing the output. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data (such as passwords), within the same domain. This was only vulnerable in Ubuntu 6.06. (CVE-2006-3918)

Computerworld Executive Bulletin: Building a Robust Antivirus Defense

 ( 654 days 9 hours ago)

(Source: Computerworld) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and estricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.

Forgotten IT chores may have led to bank meltdown

 ( 654 days 15 hours ago)

The French bank hit by eleven-figure losses thanks to a rogue employee probably wasn't harmed by poor IT systems, but by poor management of those systems, according to analysts.

[SECURITY] [DSA 1481-1] New python-cherrypy packages fix denial of service

 ( 654 days 15 hours ago)

- Debian Security Advisory DSA-1481-1 securityatdebian.org Moritz Muehlenhoff February 05, 2008 - Package : python-cherrypy Vulnerability : missing input sanitising Problem type : remote Debian-specific: no CVE Id(s) : CVE-2008-0252 It was discovered that a directory traversal vulnerability in CherryPy, ...

Re: PR07-38: XSS on sIFR

 ( 654 days 15 hours ago)

This issue is fixed since Version 2.03 from 4th of July 2007. See for the blog entry about this security fix.

[security bulletin] HPSBMA02307 SSRT071420 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Denial of Service (DoS)

 ( 654 days 15 hours ago)

SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01321117 Version: 1 HPSBMA02307 SSRT071420 rev.1 - HP OpenView Network Node Manager (OV NNM) Remote Denial of Service (DoS) NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2008-02-04 ...

[ MDVSA-2008:034 ] - Updated emacs packages fix vulnerabilities

 ( 654 days 15 hours ago)

Mandriva Linux Security Advisory MDVSA-2008:034 Package : emacs Date : February 4, 2008 Affected: 2007.0, 2007.1, 2008.0, Corporate 3.0, Corporate 4.0 Problem Description: The hack-local-variable function in Emacs 22 prior to version 22.2, when enable-local-variables is set to ':safe', did not properly search ...

Re: Multiple vulnerabilities in SAPlpd 6.28

 ( 654 days 15 hours ago)

According to SAP this vulnerability also affects the program SAPSprint versions < 1018. Currently there is a patch available for SAPlpd SAP GUI for Windows 6.20 - patch level 72 SAP GUI for Windows 6.40 - patch level 30 SAP Gui for Windows 7.00 - patch level 6 ...

NERO Media Player <= 1.4.0.35b Remote Buffer Overflow( .M3U)

 ( 654 days 15 hours ago)

# NERO Media Player <= 1.4.0.35b Remote Buffer Overflow( .M3U) # # # This exception may be expected and handled. # eax=03e90f40 ebx=41414141 ecx=009d01c8 edx=009d015c esi=03e90f38 edi=41414141 # eip=7c92b3fb esp=0010bff8 ebp=0010c214 iopl=0 nv up ei pl nz ac pe nc # cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00210212 # ntdll!wcsncat0x387: ...

Re: Re: PIX Privilege Escalation Vulnerability

 ( 654 days 15 hours ago)

tested on 515e platform 7.2 as indicated by eloy, this only works if the enable password is blank. not sure why the backspace works, but a simple enter key will get you to enable mode just as easily with an enable pwd set: c5-515E-pix> ena Password: ...

[USN-575-1] Apache vulnerabilities

 ( 654 days 15 hours ago)

Ubuntu Security Notice USN-575-1 February 04, 2008 apache2 vulnerabilities CVE-2006-3918, CVE-2007-3847, CVE-2007-4465, CVE-2007-5000, CVE-2007-6388, CVE-2007-6421, CVE-2007-6422, CVE-2008-0005 A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10 Ubuntu 7.04 Ubuntu 7.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...