Section: .. / 0602-advisories /
| /// File Name: |
dsa-976-1.txt |
Description:
|
Debian Security Advisory DSA 976-1 - Johnny Mast discovered a buffer overflow in libast, the library of assorted spiffy things, that can lead to the execution of arbitary code. This library is used by eterm which is installed setgid uid which leads to a vulnerability to alter the utmp file.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 11766 | | Last Modified: | Feb 15 19:57:08 2006 |
| MD5 Checksum: | 50d815121983f032baf4e3729f19fb1c |
|
| /// File Name: |
dsa-977-1.txt |
Description:
|
Debian Security Advisory DSA 977-1 - Two vulnerabilities have been discovered in heimdal, a free implementation of Kerberos 5.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 29818 | | Last Modified: | Feb 16 23:10:04 2006 |
| MD5 Checksum: | bc2741a8129951cfcdd54e44d0bc4539 |
|
| /// File Name: |
dsa-978-1.txt |
Description:
|
Debian Security Advisory DSA 978-1 - Tavis Ormandy noticed that gnupg, the GNU privacy guard - a free PGP replacement, verifies external signatures of files successfully even though they don't contain a signature at all.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 7435 | | Last Modified: | Feb 20 21:26:40 2006 |
| MD5 Checksum: | 6900ca41d318babf409f1e3221cfbb12 |
|
| /// File Name: |
dsa-979-1.txt |
Description:
|
Debian Security Advisory DSA 979-1 - Derek Noonburg has fixed several potential vulnerabilities in xpdf, the Portable Document Format (PDF) suite, which are also present in pdfkit.framework, the GNUstep framework for rendering PDF content.
| | Author: | Martin Schulze | | Homepage: | http://www.debian.org/security/ | | File Size: | 5177 | | Last Modified: | Feb 20 21:27:12 2006 |
| MD5 Checksum: | 44046740ceeb508383f329892127745f |
|
| /// File Name: |
DWL-G700AP.txt |
Description:
|
It is possible to crash the web interface on a D-Link DWL-G700AP by sending it a simple GET request. POC included.
| | Author: | innate | | Homepage: | http://www.excluded.org | | File Size: | 6466 | | Last Modified: | Feb 20 22:51:51 2006 |
| MD5 Checksum: | 54fe1137106d52d891bdb223424243a9 |
|
| /// File Name: |
easyCMSxss.txt |
Description:
|
EasyCMS is susceptible to cross site scripting attacks.
| | Author: | Preben | | File Size: | 565 | | Last Modified: | Feb 2 11:10:49 2006 |
| MD5 Checksum: | d71fe71311cb793ae27816d0268bedc9 |
|
| /// File Name: |
EEYEB-20051017.txt |
Description:
|
EEYEB-20051017 Windows Media Player BMP Heap Overflow - eEye Digital Security has discovered a critical vulnerability in Windows Media Player. The vulnerability allows a remote attacker to reliably overwrite heap memory with user-controlled data and execute arbitrary code in the context of the user who executed the player.
| | Homepage: | http://www.eeye.com/ | | File Size: | 3094 | | Last Modified: | Feb 17 00:43:00 2006 |
| MD5 Checksum: | 6328114b9c4187c9e360740e4b88f309 |
|
| /// File Name: |
estaraDoS.txt |
Description:
|
eStara SIP softphone is susceptible to denial of service and format string flaws.
| | Author: | zwell | | File Size: | 2934 | | Last Modified: | Feb 25 02:09:17 2006 |
| MD5 Checksum: | c7301e05816c9ce79dd1fe72fb6865d4 |
|
| /// File Name: |
etomiteCMS.txt |
Description:
|
Etomite CMS version 0.6 has been found backdoored after their site was compromised.
| | Author: | Luca Ercoli | | Homepage: | http://www.lucaercoli.it/ | | File Size: | 2386 | | Last Modified: | Feb 2 00:39:04 2006 |
| MD5 Checksum: | f4f72feed1658a6da072842fd83de60c |
|
| /// File Name: |
EV0052.txt |
Description:
|
Calendarix version 0.6.20050830 is susceptible to SQL injection and authorization bypass vulnerabilities.
| | Author: | Aliaksandr Hartsuyeu | | File Size: | 1112 | | Last Modified: | Feb 2 13:05:10 2006 |
| MD5 Checksum: | 00d1a1c5eb22730071b34c60eaeac99c |
|
| /// File Name: |
EV0053.txt |
Description:
|
SZUserMgmt version 1.4 suffers from an authentication bypass flaw.
| | Author: | Aliaksandr Hartsuyeu | | File Size: | 1017 | | Last Modified: | Feb 2 13:29:28 2006 |
| MD5 Checksum: | cc279f0015b5587403a87350f7c932b8 |
|
| /// File Name: |
EV0065.txt |
Description:
|
Scriptme products "SmE GB Host" and "SmE Blog Host" suffer from arbitrary script code insertion in the BBcode [url] tag.
| | Homepage: | http://evuln.com/ | | File Size: | 1104 | | Last Modified: | Feb 20 23:19:22 2006 |
| MD5 Checksum: | 25d61c002ed71e06acae3e2b25830e3a |
|
| /// File Name: |
EV0066.txt |
Description:
|
Scriptme SmE GB Host suffers from an authentication bypass vulnerability.
| | Homepage: | http://evuln.com/ | | File Size: | 1075 | | Last Modified: | Feb 20 23:20:36 2006 |
| MD5 Checksum: | fed5c2ba9fcd9e374df9241110baf4fb |
|
| /// File Name: |
EV0067.txt |
Description:
|
PHP/MYSQL Timesheet suffers from multiple SQL injection vulnerabilities.
| | Homepage: | http://evuln.com/ | | File Size: | 1104 | | Last Modified: | Feb 20 23:21:14 2006 |
| MD5 Checksum: | 19f3823a44addefdd74aa1479aadc180 |
|
| /// File Name: |
EV0068.txt |
Description:
|
CALimba suffers from an authentication bypass vulnerability.
| | Homepage: | http://evuln.com/ | | File Size: | 1145 | | Last Modified: | Feb 20 23:21:51 2006 |
| MD5 Checksum: | e8a2e8cb1fd0515f3868baf02546baca |
|
| /// File Name: |
EV0069.txt |
Description:
|
TTS Software Time Tracking Software suffers from multiple vulnerabilities including XSS and SQL injection.
| | Homepage: | http://evuln.com/ | | File Size: | 1435 | | Last Modified: | Feb 20 23:22:56 2006 |
| MD5 Checksum: | 8a20ef6fa342f0d4b5a73af9d310f5c6 |
|
| /// File Name: |
EV0070.txt |
Description:
|
PHP iCalendar versions 2.0.1, 2.1, and 2.2 suffer from a file inclusion vulnerability.
| | Author: | Aliaksandr Hartsuyeu | | File Size: | 1156 | | Last Modified: | Feb 9 06:04:41 2006 |
| MD5 Checksum: | 59d4342c1aa846ebd24aa8d211b38037 |
|
| /// File Name: |
EV0071.txt |
Description:
|
Magic Calendar Lite suffers from an authentication bypass vulnerability.
| | Homepage: | http://evuln.com/ | | File Size: | 1212 | | Last Modified: | Feb 20 23:23:55 2006 |
| MD5 Checksum: | 479d14c4da6c30607f462c5a6efab22f |
|
| /// File Name: |
everyone.net.txt |
Description:
|
www.everyone.net suffers from XSS. POC included.
| | Author: | simo | | Homepage: | http://www.morx.org/ | | File Size: | 3061 | | Last Modified: | Feb 13 11:15:51 2006 |
| MD5 Checksum: | 9b5ff72ef76ddbb1ee88bd1426982a3a |
|
| /// File Name: |
fcron.txt |
Description:
|
Fcron (convert-fcrontab) allow users to corruption on heap section.
| | Author: | Adam Zabrocki | | File Size: | 14480 | | Last Modified: | Feb 2 20:31:30 2006 |
| MD5 Checksum: | ca84b3a25d392ff23f445f59612c44ce |
|
| /// File Name: |
FLSA-2006-152809.txt |
Description:
|
Fedora Legacy Update Advisory - Updated squid package fixes security issues
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 13306 | | Last Modified: | Feb 20 21:39:21 2006 |
| MD5 Checksum: | ad5527f16346e4e158d5415b1a1a7869 |
|
| /// File Name: |
FLSA-2006-168935.txt |
Description:
|
Fedora Legacy Update Advisory - Updated openssh packages fix security issues.
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 11274 | | Last Modified: | Feb 20 21:39:58 2006 |
| MD5 Checksum: | 21e3439e7fdf00498df3153eb5505116 |
|
| /// File Name: |
FLSA-2006-175406.txt |
Description:
|
Fedora Legacy Update Advisory - Updated Apache httpd packages that correct three security issues are now available.
| | Homepage: | http://www.fedoralegacy.org | | File Size: | 10100 | | Last Modified: | Feb 20 21:40:35 2006 |
| MD5 Checksum: | ccf2ca9c4154795fcd2739e9bc5ada96 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
