Section: .. / Last 20 Advisory Files /
| /// File Name: | vupensafari-overflow.txt | Description:
| VUPEN Vulnerability Research Team discovered a vulnerability in Apple Safari. The flaw is caused by an integer overflow error in ColorSync when processing certain images with an embedded color profile, which could be exploited by attackers to potentially execute arbitrary code via a specially crafted web page. Versions prior to 4.0.5 are vulnerable. | | Author: | Sebastien Renaud | | Homepage: | http://www.vupen.com/ | | File Size: | 2475 | | Related CVE(s): | CVE-2010-0040 | | Last Modified: | Mar 12 18:05:36 2010 | | MD5 Checksum: | c8de629e8f529ce136e1977f175da33a |
|
| /// File Name: | USN-911-1.txt | Description:
| Ubuntu Security Notice 911-1 - It was discovered that several wiki actions and preference settings in MoinMoin were not protected from cross-site request forgery (CSRF). If an authenticated user were tricked into visiting a malicious website while logged into MoinMoin, a remote attacker could change the user's configuration or wiki content. It was discovered that MoinMoin did not properly sanitize its input when processing user preferences. An attacker could enter malicious content which when viewed by a user, could render in unexpected ways. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 5379 | | Related CVE(s): | CVE-2010-0668, CVE-2010-0669, CVE-2010-0717 | | Last Modified: | Mar 12 10:11:56 2010 | | MD5 Checksum: | 179c22aa8c5455e7896bd8ece2c0d474 |
|
| /// File Name: | dsa-2012-1.txt | Description:
| Debian Linux Security Advisory 2012-1 - Two vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 35839 | | Related CVE(s): | CVE-2009-3725, CVE-2010-0622 | | Last Modified: | Mar 12 10:11:41 2010 | | MD5 Checksum: | d0826d7ce79b6e7442876c9a86165d73 |
|
| /// File Name: | 03.11.10-1.txt | Description:
| iDefense Security Advisory 03.11.10 - Remote exploitation of a memory corruption vulnerability in WebKit, as included with multiple vendors' browsers, could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when a certain property of an HTML element is reset via JavaScript code. When this occurs, a C++ object is incorrectly accessed after it has been freed. This results in an attacker controlled value being used as a C++ VTABLE, which leads to the execution of arbitrary code. iDefense has confirmed the existence of this vulnerability in Google Chrome 3.0.195.38 and Safari 4.0.4. Previous versions are suspected to be vulnerable. A full list of affected Apple products can be found in Security Advisory APPLE-SA-2010-03-11-1 Safari 4.0.5. | | Author: | iDefense Labs,wushi | | Homepage: | http://www.idefense.com/ | | File Size: | 4088 | | Related CVE(s): | CVE-2010-0040 | | Last Modified: | Mar 11 20:21:21 2010 | | MD5 Checksum: | eff6f9943174490b261bb46a955f26ee |
|
| /// File Name: | dsa-2013-1.txt | Description:
| Debian Linux Security Advisory 2013-1 - Nahuel Grisolia discovered two vulnerabilities in Egroupware, a web-based may lead to the execution of arbitrary commands and a cross-site scripting vulnerability was discovered in the login page. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 7435 | | Last Modified: | Mar 11 18:22:49 2010 | | MD5 Checksum: | 97f5f98b2702c940fec433fe369eccb6 |
|
| /// File Name: | MDVSA-2010-061.txt | Description:
| Mandriva Linux Security Advisory 2010-061 - sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain detailed error messages about the results of privileged file-access attempts, which allows local users to determine the existence of arbitrary files via the mountpoint name. The (1) ncpmount, (2) ncpumount, and (3) ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service (application failure) via unspecified vectors that trigger the creation of a /etc/mtab~ file that persists after the program exits. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct these issues. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8905 | | Related CVE(s): | CVE-2010-0790, CVE-2010-0791 | | Last Modified: | Mar 11 17:30:57 2010 | | MD5 Checksum: | 8eddb3ad2d5d24403b0b99e52c566d3b |
|
| /// File Name: | ZDI-10-027.txt | Description:
| Zero Day Initiative Advisory 10-027 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Skype. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists with how the OS web-browser passes command line arguments to Skype through the registered 'skype:' protocol handler. Insufficient sanity checking to the /datapath argument allows an attacker to construct a link that will execute Skype with arbitrary arguments. This can be abused to specify a remote configuration storage directory which can be leveraged to glean target user credentials. | | Author: | TippingPoint | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3574 | | Last Modified: | Mar 11 17:29:44 2010 | | MD5 Checksum: | a5b3d84df1886a5f304313233a95f00f |
|
| /// File Name: | ZDI-10-028.txt | Description:
| Zero Day Initiative Advisory 10-028 - This vulnerability allows remote attackers to remove arbitrary XML files on vulnerable installations of Skype. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in Skype's handling of the 'skype-plugin:' protocol. An attacker can specify a malicious URI, that upon clicking, will trigger the deletion of an arbitrary attacker specified XML file. | | Author: | TippingPoint | | Homepage: | http://www.zerodayinitiative.com/ | | File Size: | 3137 | | Last Modified: | Mar 11 17:29:18 2010 | | MD5 Checksum: | 793f05951ab9ec0a9302555f95d6603b |
|
| /// File Name: | USN-909-1.txt | Description:
| Ubuntu Security Notice 909-1 - William Grant discovered that dpkg-source did not safely apply diffs when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 11987 | | Related CVE(s): | CVE-2010-0396 | | Last Modified: | Mar 11 11:24:59 2010 | | MD5 Checksum: | 7d4e4c416e8850722bfebfb1f166c1df |
|
| /// File Name: | dsa-2011-1.txt | Description:
| Debian Linux Security Advisory 2011-1 - William Grant discovered that the dpkg-source component of dpkg, the low-level infrastructure for handling the installation and removal of Debian software packages, is vulnerable to path traversal attacks. A specially crafted Debian source package can lead to file modification outside of the destination directory when extracting the package content. | | Author: | Debian | | Homepage: | http://www.debian.org/security | | File Size: | 7029 | | Related CVE(s): | CVE-2010-0396 | | Last Modified: | Mar 11 11:23:39 2010 | | MD5 Checksum: | c4b2f418358eb264d4bb4d72a3b63d6a |
|
| /// File Name: | MDVSA-2010-060.txt | Description:
| Mandriva Linux Security Advisory 2010-060 - The htcpHandleTstRequest function in htcp.c in Squid 2.x and 3.0 through 3.0.STABLE23 allows remote attackers to cause a denial of service (crash) via crafted packets to the HTCP port, which triggers a NULL pointer dereference. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 5924 | | Related CVE(s): | CVE-2010-0639 | | Last Modified: | Mar 10 21:34:20 2010 | | MD5 Checksum: | 414b8437f31d74850426f8a525a3e1e8 |
|
| /// File Name: | USN-908-1.txt | Description:
| Ubuntu Security Notice 908-1 - It was discovered that mod_proxy_ajp did not properly handle errors when a client doesn't send a request body. A remote attacker could exploit this with a crafted request and cause a denial of service. This issue affected Ubuntu 8.04 LTS, 8.10, 9.04 and 9.10. It was discovered that Apache did not properly handle headers in subrequests under certain conditions. A remote attacker could exploit this with a crafted request and possibly obtain sensitive information from previous requests. | | Author: | Ubuntu | | Homepage: | http://security.ubuntu.com/ | | File Size: | 38935 | | Related CVE(s): | CVE-2010-0408, CVE-2010-0434 | | Last Modified: | Mar 10 21:26:31 2010 | | MD5 Checksum: | c325fa7847fc469032e3592c119cde4f |
|
| /// File Name: | MDVSA-2010-059.txt | Description:
| Mandriva Linux Security Advisory 2010-059 - Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. | | Author: | Mandriva | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 18565 | | Related CVE(s): | CVE-2009-3940 | | Last Modified: | Mar 10 21:26:09 2010 | | MD5 Checksum: | 48a4c84f6d63d9b13bd485a788bc892d |
|
| /// File Name: | secunia-xnviewdicom.txt | Description:
| Secunia Research has discovered a vulnerability in XnView, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an integer overflow when processing DICOM images with certain dimensions. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted DICOM file. Version 1.97 is affected. | | Author: | Stefan Cornelius | | Homepage: | http://secunia.com/ | | File Size: | 4126 | | Related CVE(s): | CVE-2009-4001 | | Last Modified: | Mar 10 21:23:39 2010 | | MD5 Checksum: | 06aae772fe010c07ca5d04fd20ac13e2 |
|
| /// File Name: | excel-codeexec.txt | Description:
| VUPEN Vulnerability Research Team discovered a critical vulnerability affecting Microsoft Office Excel. The flaw is caused by a memory corruption error when processing malformed "EntExU2" records in an Excel document, which could be exploited by attackers to execute arbitrary code. | | Author: | Nicolas JOLY | | Homepage: | http://www.vupen.com/ | | File Size: | 2681 | | Related CVE(s): | CVE-2010-0257 | | Last Modified: | Mar 10 21:21:05 2010 | | MD5 Checksum: | f66a1be4abfb1a54cae69d7791394e13 |
|
| /// File Name: | secunia-etsdisclose.txt | Description:
| Secunia Research has discovered security issue in Employee Timeclock Software, which can be exploited by malicious, local users to disclose sensitive information. The security issue is caused due to the application passing the database password via the command line to the "mysqldump" utility, which potentially can be exploited to disclose the password via the process list. Version 0.99 is affected. | | Homepage: | http://secunia.com/ | | File Size: | 4385 | | Related CVE(s): | CVE-2010-0124 | | Last Modified: | Mar 10 10:57:24 2010 | | MD5 Checksum: | 5c55f50ca9c91dbe8978a3bb60746a6c |
|
| /// File Name: | secunia-etssql.txt | Description:
| Secunia Research has discovered some vulnerabilities in Employee Timeclock Software, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "username" and "password" parameters in auth.php and login_action.php is not properly sanitized before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Version 0.99 is affected. | | Homepage: | http://secunia.com/ | | File Size: | 4407 | | Related CVE(s): | CVE-2010-0122 | | Last Modified: | Mar 10 10:55:45 2010 | | MD5 Checksum: | 97deca06ff6efb5d59e274ff9355eacb |
|
| /// File Name: | tarcpio-overflow.txt | Description:
| GNU Tar and GNU Cpio suffer from a heap-based buffer overflow vulnerability. Tar versions prior to 1.23 and Cpio versions prior to 2.11 are affected. | | Author: | Jakob Lell | | File Size: | 5110 | | Related CVE(s): | CVE-2010-0624 | | Last Modified: | Mar 10 10:48:29 2010 | | MD5 Checksum: | f12725e9c18845e64dcff526a6f7d29f |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
