Section:  .. / 0411-advisories  /

Page 3 of 7
<< 1 2 3 4 5 6 7 >> Files 50 - 75 of 167
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: 11.22.04.txt
Description:
iDEFENSE Security Advisory 11.22.04 - J2SE prior to v1.4.2_06 contains serious remote vulnerabilities which allow applets loaded in browsers to load an unsafe class, and write to any file on a users system. IE, Mozilla, and Firefox can lead to compromise on Linux and Windows systems if a malicious web page is loaded.
Author:Jouko Pynnonen
Homepage:http://www.idefense.com
File Size:4310
Related CVE(s):CAN-2004-1029
Last Modified:Nov 24 08:03:46 2004
MD5 Checksum:589ce64427e67a02d8109eeaf1fd0809

 ///  File Name: cryus.imap.2.2.8.txt
Description:
Cryus v2.2.8 and below contains four remote vulnerabilities, including one which is pre-authentication. Fix available here.
Author:Stefan Esser &
Homepage:http://security.e-matters.de/
File Size:5498
Related CVE(s):CAN-2004-1011, CAN-2004-1012, CAN-2004-1013
Last Modified:Nov 24 07:46:00 2004
MD5 Checksum:d4db20d02f1bf3f8bb227f7379525a1a

 ///  File Name: SecureCRT_Remote_Command_Execution...>
Description:
SecureCRT v4.1 and below contains a remotely exploitable command execution vulnerability. Patch available here.
Author:Brett Moore
Homepage:http://www.security-assessment.com
File Size:435422
Last Modified:Nov 24 07:37:55 2004
MD5 Checksum:47bd4d35a9f090227c841786ea8584b3

 ///  File Name: Winamp_IN_CDDA_Buffer_Overflow.pdf
Description:
A remotely exploitable stack overflow has been found in Winamp version 5.05 and below which allows malformed m3u playlists to execute arbitrary code. Fix available here.
Author:Brett Moore
Homepage:http://www.security-assessment.com
File Size:434867
Last Modified:Nov 24 07:31:35 2004
MD5 Checksum:7b3cfd0296132b1fdbd30266a79b6e9c

 ///  File Name: glsa-200411-29.txt
Description:
Gentoo Linux Security Advisory GLSA 200411-29 - unarj contains a buffer overflow and a directory traversal vulnerability. This could lead to overwriting of arbitrary files or the execution of arbitrary code.
Homepage:http://security.gentoo.org/
File Size:2817
Last Modified:Nov 20 23:52:00 2004
MD5 Checksum:d64e8594bc3721d95c03e41c483c0370

 ///  File Name: 2427surprise.txt
Description:
A subtle race condition in Linux kernels below 2.4.28 allow a non-root user to increment (up to 256 times) any arbitrary location(s) in kernel space. This flaw could be used to gain elevated privileges.
Author:Paul Starzetz
Homepage:http://isec.pl/
File Size:1280
Last Modified:Nov 20 23:43:09 2004
MD5 Checksum:42de458b8f020d22510cbfb0a1a95d9e

 ///  File Name: c040720-001.txt
Description:
Corsaire Security Advisory - The aim of this document is to define a vulnerability in the Netopia Timbuktu 7.0.3 product for Mac OS X that suffers from a buffer overflow.
Author:Stephen de Vries
Homepage:http://www.penetration-testing.com/
File Size:2635
Related CVE(s):CAN-2004-0810
Last Modified:Nov 20 23:40:14 2004
MD5 Checksum:1444e99d41aca0d1fe6e55cfef2f2a69

 ///  File Name: c040619-001.txt
Description:
Corsaire Security Advisory - The aim of this document is to clearly define several vulnerabilities in the Danware NetOp Host product that suffers from multiple information disclosure issues.
Author:Martin O'Neal
Homepage:http://www.penetration-testing.com/
File Size:4850
Related CVE(s):CAN-2004-0950
Last Modified:Nov 20 23:37:33 2004
MD5 Checksum:62ac9ea687c7f3b8d3f743ef6881f1f0

 ///  File Name: opera754.txt
Description:
Opera 7.54 is vulnerable to leakage of the java sandbox, allowing malicious applets to gain privileges. This allows for information gathering as well as denial of service effects.
Author:Marc Schoenefeld
Homepage:http://www.illegalaccess.org/
File Size:8126
Last Modified:Nov 20 23:35:24 2004
MD5 Checksum:a67b11d7269a7f701fd1a3682d495e7b

 ///  File Name: zoneAdBlock.txt
Description:
ZoneAlarm Security Suite and ZoneAlarm Pro have been updated to address a vulnerability in their ad-blocking functions.
Homepage:http://www.zonelabs.com/security
File Size:4161
Last Modified:Nov 20 23:26:37 2004
MD5 Checksum:491b70c200644db74a75979fec666aef

 ///  File Name: appservVulns.txt
Description:
AppServ versions 2.5.x and below use a blank root password allowing for compromise.
Author:saudi linux
File Size:2866
Last Modified:Nov 20 23:20:46 2004
MD5 Checksum:9132dd67cf51cae3f712c0a9c9fe1495

 ///  File Name: 758884.txt
Description:
Unofficial addition to the NISCC DNS vulnerability advisory giving an additional list of vulnerable implementations.
Related File:758884.html
File Size:1632
Last Modified:Nov 20 23:15:46 2004
MD5 Checksum:d1daaf185fbd2a5d88c982e101bec10d

 ///  File Name: FreeBSD-SA-04:16.fetch.txt
Description:
FreeBSD Security Advisory FreeBSD-SA-04:16.fetch - The fetch utility suffers from an integer overflow condition in the processing of HTTP headers that can result in a buffer overflow.
Author:Colin Percival
Homepage:http://www.freebsd.org/security/
File Size:6448
Last Modified:Nov 20 23:13:36 2004
MD5 Checksum:71ad571056ba3fb095b9cbd680eb92a2

 ///  File Name: phpbbcashmod.txt
Description:
Vulnerabilities that allow an attacker to inject malicious PHP code exist in the phpBB2 forum using the Cash_Mod module.
Author:Jerome Athias
File Size:1581
Last Modified:Nov 20 22:58:21 2004
MD5 Checksum:0d061f49d0ad856b5b649edc26072364

 ///  File Name: glsa-200411-26.txt
Description:
Gentoo Linux Security Advisory GLSA 200411-26 - Improper file ownership allows user-owned files to be run with root privileges by init scripts. These vulnerabilities exist within GIMPS, SETI@home, and ChessBrain.
Homepage:http://security.gentoo.org/
File Size:3192
Last Modified:Nov 20 22:52:00 2004
MD5 Checksum:0212702ca6587e05a1c0a3aaa53fd0e2

 ///  File Name: 142004.txt
Description:
During an audit of the smb filesystem implementation within Linux several vulnerabilities were discovered ranging from out of bounds read accesses to kernel level buffer overflows. The 2.4 series up to 2.4.27 is affected and the 2.6 series up to 2.6.9 is affected.
Author:Stefan Esser
Homepage:http://security.e-matters.de/
File Size:6497
Related CVE(s):CAN-2004-0883, CAN-2004-0949
Last Modified:Nov 20 22:48:05 2004
MD5 Checksum:6dbd64513c8583c5c3583aa170d5180b

 ///  File Name: clickandbuild.txt
Description:
The Click and Build online eCommerce platform suffers from cross site scripting flaws.
Author:Andrew Smith
File Size:829
Last Modified:Nov 20 22:45:31 2004
MD5 Checksum:0a8d47c80a36accd70f6643000a3e78a

 ///  File Name: sa13203.txt
Description:
Secunia Security Advisory - cyber flash has discovered two vulnerabilities in Internet Explorer, which can be exploited by malicious people to bypass a security feature in Microsoft Windows XP SP2 and trick users into downloading malicious files.
Homepage:http://secunia.com/advisories/13203/
File Size:2467
Last Modified:Nov 20 22:42:12 2004
MD5 Checksum:d98a97a6c778d608e547f07cefbda3d6

 ///  File Name: msboftools.txt
Description:
Microsoft tools ipconfig.exe, forcedos.exe, and mrinfo.exe suffer from buffer overflow and format string vulnerabilities.
Author:Martin Eiszner
File Size:1919
Last Modified:Nov 20 22:40:07 2004
MD5 Checksum:919154fd2dfec8c6135a1a5529455bf7

 ///  File Name: artikel53297.txt
Description:
Flaws in SP2 security features, part II - With Service Pack 2, Microsoft introduced a couple of new security features. However, some of them suffer from implementation flaws.
Author:Juergen Schmidt
Homepage:http://www.heise.de/
File Size:2195
Last Modified:Nov 20 22:36:35 2004
MD5 Checksum:3993ab9c51af04af4297e45da508af4f

 ///  File Name: sa13206.txt
Description:
Secunia Security Advisory - A vulnerability has been reported in phpScheduleIt, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/13206/
File Size:1714
Last Modified:Nov 20 22:35:06 2004
MD5 Checksum:91bcae20afb2523136e36d9182b45a69

 ///  File Name: 2004-0058.txt
Description:
Trustix Secure Linux Security Advisory #2004-0058 - Various security fixes have been released for gd, samba, sqlgrey, and sudo.
Homepage:http://www.trustix.org/
File Size:6218
Related CVE(s):CAN-2004-0941, CAN-2004-0990, CAN-2004-0882, CAN-2004-0930
Last Modified:Nov 20 22:33:59 2004
MD5 Checksum:a6b47168cf3544c71a84850af96a4db6

 ///  File Name: dsa-593.txt
Description:
Debian Security Advisory 593-1 - A vulnerability has been reported for ImageMagick, a commonly used image manipulation library. Due to a boundary error within the EXIF parsing routine, a specially crafted graphic images could lead to the execution of arbitrary code.
Homepage:http://www.debian.org/security/
File Size:14206
Related CVE(s):CAN-2004-0981
Last Modified:Nov 20 22:22:04 2004
MD5 Checksum:e1cabf2a185f4b7e10599ba000100d8a

 ///  File Name: sns79.txt
Description:
SNS Advisory 79 - Microsoft Internet Explorer contains a vulnerability that could cause a Cookie to be overwritten under certain conditions. Tested against Microsoft Internet Explorer 6.0 Service Pack 1.
Author:Keigo Yamazaki
Homepage:http://www.lac.co.jp/business/sns/intelligence/SNSadvisory_e/79_e.html
File Size:2999
Last Modified:Nov 20 22:16:38 2004
MD5 Checksum:45b72782c7c2894e84ce1cc1f110be0e

 ///  File Name: 11.15.04.txt
Description:
iDEFENSE Security Advisory 11.15.04 - Multiple vulnerabilities have been found in Fcron 2.0.1 and 2.9.4. Local exploitation of vulnerabilities in the fcronsighup component of Fcron may allow users to view the contents of root owned files, bypass access restrictions, and remove arbitrary files or create arbitrary empty files.
Author:Karol Wiesek
Homepage:http://www.idefense.com/
File Size:7185
Related CVE(s):CAN-2004-1030, CAN-2004-1031, CAN-2004-1032, CAN-2004-1033
Last Modified:Nov 20 22:13:47 2004
MD5 Checksum:ed312db2703e2ef3d74583afd5c6360e