Section: .. / 0603-advisories /
| /// File Name: |
sa19460.txt |
Description:
|
Secunia Security Advisory - Silitix has discovered a vulnerability and a weakness in Fabien Gauharou Explorer XP, which can be exploited by malicious people to disclose system information and conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/advisories/19460/ | | File Size: | 2327 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 15ba9fb7f80abcc777e8d3aa7d7cc289 |
|
| /// File Name: |
sa19463.txt |
Description:
|
Secunia Security Advisory - NetBSD has acknowledged a vulnerability in racoon, which can be exploited by malicious people to cause a DoS (Denial of Service).
| | Homepage: | http://secunia.com/advisories/19463/ | | File Size: | 1665 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 7c1c5a3036fe3dc33045c5b16fcb30f9 |
|
| /// File Name: |
sa19464.txt |
Description:
|
Secunia Security Advisory - A vulnerability has been reported in NetBSD, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/19464/ | | File Size: | 1839 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 4bea9f9744faa66cc6fea042315f3f7a |
|
| /// File Name: |
sa19465.txt |
Description:
|
Secunia Security Advisory - A security issue has been reported in NetBSD, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information.
| | Homepage: | http://secunia.com/advisories/19465/ | | File Size: | 2000 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | ea9bf79b547600fe7f75af168674c06d |
|
| /// File Name: |
sa19466.txt |
Description:
|
Secunia Security Advisory - NetBSD has acknowledged a vulnerability in sendmail, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/19466/ | | File Size: | 1720 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 37ed75eb0377d40d860e560eed9ce3e7 |
|
| /// File Name: |
sa19468.txt |
Description:
|
Secunia Security Advisory - Fedora has issued an update for samba. This fixes a security issue, which can be exploited by malicious, local users to gain knowledge of sensitive information.
| | Homepage: | http://secunia.com/advisories/19468/ | | File Size: | 2867 | | Last Modified: | Mar 31 09:50:26 2006 |
| MD5 Checksum: | 0443f57c23679ad0112801378c2da9df |
|
| /// File Name: |
sambaExpose.txt |
Description:
|
Samba versions 3.0.21 through 3.0.21c expose passwords in clear text in debug logs.
| | Homepage: | http://www.samba.org/ | | File Size: | 2353 | | Related CVE(s): | CAN-2006-1059 | | Last Modified: | Apr 1 08:58:15 2006 |
| MD5 Checksum: | f830eaf6589684546aa8b248df1e837f |
|
| /// File Name: |
sapManipulate.txt |
Description:
|
SAP Web Application Server was found to be vulnerable to an URL manipulation allowing an attacker to prefix the http response to a request containing a manipulated URL with a sequence of bytes of their choice.
| | Author: | A. Grossmann | | File Size: | 2183 | | Last Modified: | Mar 3 04:14:36 2006 |
| MD5 Checksum: | 892254ee77be5c03bc68762360ed30e4 |
|
| /// File Name: |
sauerburn.txt |
Description:
|
Sauerbraten engine versions 2006_02_28 and below suffer from buffer overflow, invalid memory access, and crash vulnerabilities.
| | Author: | Luigi Auriemma | | Homepage: | http://aluigi.altervista.org | | Related Exploit: | sauerburn.zip | | File Size: | 4351 | | Last Modified: | Mar 8 09:00:54 2006 |
| MD5 Checksum: | dec0b28bae2df1738e313cc99d8194a7 |
|
| /// File Name: |
SCOSA-2006.11.txt |
Description:
|
SCO Security Advisory - OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSH Multiple Vulnerabilities: A vulnerability has been reported in the OpenSSH scp utilities. This issue may permit a malicious scp server to corrupt files on a client system when files are copied.
| | Author: | SCO | | Homepage: | http://www.sco.com/support/security/index.html | | File Size: | 3851 | | Last Modified: | Mar 15 21:13:20 2006 |
| MD5 Checksum: | a76853adb7e1876553a84b4c1ccb7e87 |
|
| /// File Name: |
SCOSA-2006.12.txt |
Description:
|
SCO Security Advisory - OpenServer 6.0.0 : OpenSSH Multiple Vulnerabilities: Two security issues have been reported in OpenSSH, which can be exploited by malicious users to gain escalated privileges or bypass certain security restrictions.
| | Author: | SCO | | Homepage: | http://www.sco.com/support/security/index.html | | File Size: | 2852 | | Last Modified: | Mar 15 21:12:19 2006 |
| MD5 Checksum: | 6fe496733bf80234fc9fbfa2cd6da557 |
|
| /// File Name: |
SCOSA-2006.13.txt |
Description:
|
SCO Security Advisory - SCOSA-2006.13 - Vim is susceptible to an arbitrary command execution vulnerability with ModeLines. This issue is due to insufficient sanitization of user-supplied input.
| | Author: | SCO | | Homepage: | http://www.sco.com/support/security/index.html | | File Size: | 2844 | | Last Modified: | Mar 21 23:55:22 2006 |
| MD5 Checksum: | 1296210fb79a5512ef492ca9eb9d3fc7 |
|
| /// File Name: |
SCOSA-2006.14.txt |
Description:
|
SCO Security Advisory - SCOSA-2006.14 - Multiple X Window System server applications share code that may contain a flaw in the memory allocation for large pixmaps. The affected products include the X.Org X server applications.
| | Author: | SCO | | Homepage: | http://www.sco.com/support/security/index.html | | File Size: | 3030 | | Last Modified: | Mar 21 23:56:09 2006 |
| MD5 Checksum: | 47938db420a00f40d2a98b550db1a608 |
|
| /// File Name: |
secunia-Adobe.txt |
Description:
|
Secunia Research 15/03/2006 - Adobe Document/Graphics Server File URI Resource Access - Secunia Research has discovered a vulnerability in Adobe Document Server and Adobe Graphics Server, which can be exploited by malicious people to gain knowledge of potentially sensitive information, overwrite arbitrary files, or compromise a vulnerable system.
| | Homepage: | http://secunia.com/secunia_research/ | | File Size: | 4920 | | Last Modified: | Mar 15 22:03:46 2006 |
| MD5 Checksum: | ddc1cfaaa0aebb4d94210a44bad28266 |
|
| /// File Name: |
secunia-ArGoSoft.txt |
Description:
|
Secunia Research has discovered a vulnerability in ArGoSoft Mail Server Pro, which can be exploited by malicious people to conduct script insertion attacks. ArGoSoft Mail Server Pro version 1.8.8.5 is affected. Earlier versions may also be affected.
| | Homepage: | http://secunia.com/ | | File Size: | 3976 | | Last Modified: | Mar 2 10:51:11 2006 |
| MD5 Checksum: | 5a7ef49ea3a32df0039606f81bb050cc |
|
| /// File Name: |
secunia-Blazix.txt |
Description:
|
Secunia Research has discovered a vulnerability in Blazix, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to a validation error of the filename extension supplied by the user in the URL. This can be exploited to retrieve the source code of JSP files from the server via specially crafted requests containing dot, space, and slash characters. Version 1.2.5 is affected.
| | Author: | Tan Chew Keong | | Homepage: | http://www.secunia.com/ | | File Size: | 3349 | | Last Modified: | Apr 1 08:33:29 2006 |
| MD5 Checksum: | a4da4d1a4bd64dab085d6482a4cb46c8 |
|
| /// File Name: |
secunia-dwarf.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in Dwarf HTTP Server, which can be exploited by malicious people to disclose potentially sensitive information and to conduct cross-site scripting attacks.
| | Homepage: | http://secunia.com/secunia_research/ | | File Size: | 3764 | | Last Modified: | Mar 13 22:49:15 2006 |
| MD5 Checksum: | a6f7a78d3dc45a32d6d74abc3125f607 |
|
| /// File Name: |
secunia-Lighttpd.txt |
Description:
|
Secunia Research has discovered a vulnerability in Lighttpd, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to a validation error of the filename extension supplied by the user in the URL. This can be exploited to retrieve the source code of script files (e.g. PHP) from the server via specially-crafted requests containing dot and space characters. Version affected: Lighttpd version 1.4.10 for Windows. Other versions may also be affected.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3441 | | Related CVE(s): | CVE-2006-0814 | | Last Modified: | Mar 3 04:21:20 2006 |
| MD5 Checksum: | 0eaa305cfe356373fa0c374e8b6e41fe |
|
| /// File Name: |
secunia-NetworkActiv.txt |
Description:
|
Secunia Research has discovered a vulnerability in NetworkActiv Web Server, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to a validation error of the filename extension supplied by the user in the URL. This can be exploited to retrieve the source code of script files (e.g. PHP) from the server via specially-crafted requests containing the forward slash character. Version affected: NetworkActiv Web Server 3.5.15. Other versions may also be affected.
| | Author: | Tan Chew Keong | | Homepage: | http://secunia.com/ | | File Size: | 3451 | | Related CVE(s): | CVE-2006-0815 | | Last Modified: | Mar 3 04:22:38 2006 |
| MD5 Checksum: | e06479d1b3172495c9e27bbc974c0463 |
|
| /// File Name: |
secunia-Quick.txt |
Description:
|
Secunia Research has discovered a vulnerability in Quick 'n Easy/Baby Web Server, which can be exploited by malicious people to disclose potentially sensitive information.
| | Author: | Tan Chew Keong | | Homepage: | http://www.secunia.com/ | | File Size: | 3646 | | Last Modified: | Apr 1 05:52:27 2006 |
| MD5 Checksum: | ff9165b14007ab2756a61b6b6c10f101 |
|
| /// File Name: |
secunia-unalz.txt |
Description:
|
Secunia Research has discovered a vulnerability in unalz, which potentially can be exploited by malicious people to compromise a user's system.
| | Homepage: | http://secunia.com/secunia_research/ | | File Size: | 3443 | | Last Modified: | Mar 13 22:48:42 2006 |
| MD5 Checksum: | d3e17099a80c30d90207d8497b1b1909 |
|
| /// File Name: |
sendmail0058.txt |
Description:
|
Sendmail, Inc. has recently become aware of a security vulnerability in certain versions of sendmail Mail Transfer Agent (MTA) and UNIX and Linux products that contain it. Sendmail was notified by security researchers at ISS that, under some specific timing conditions, this vulnerability may permit a specifically crafted attack to take over the sendmail MTA process, allowing remote attackers to execute commands and run arbitrary programs on the system running the MTA, affecting email delivery, or tampering with other programs and data on this system. Versions 8.13.5 and below are affected.
| | Homepage: | http://www.sendmail.com | | File Size: | 17462 | | Related CVE(s): | CVE-2006-0058 | | Last Modified: | Mar 28 07:38:55 2006 |
| MD5 Checksum: | 16374816bcdc48726dfca23914a5b38b |
|
| /// File Name: |
SLAB500.txt |
Description:
|
Due to insufficient sanity checking, SLAB500 suffers from arbitrary file read and full path disclosure vulnerabilities.
| | Author: | Justin_T | | File Size: | 1246 | | Last Modified: | Mar 22 01:54:48 2006 |
| MD5 Checksum: | 676395ef3486ece5cb04ebae37ceaf02 |
|
| /// File Name: |
SSAG-001.txt |
Description:
|
Swedish Security Audit Group - [SSAG#001] :: cURL tftp:// URL Buffer Overflow: There is a buffer overflow in cURL when it fetches a long tftp:// URL with a path that is longer than 512 characters. Successful exploitation of this vulnerability allows attackers to execute code within the context of cURL. It affects cURL 7.15.0, 7.15.1* and 7.15.2*.
| | Author: | Ulf Harnhammar | | File Size: | 2715 | | Last Modified: | Mar 22 02:11:20 2006 |
| MD5 Checksum: | 058552d4ae327ac320d30bac7d232fe5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
