Mandriva Linux Security Advisory - Many vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The 2.6.17 kernel and earlier, when running on IA64 and SPARC platforms would allow a local user to cause a DoS (crash) via a malformed ELF file. The mincore function in the Linux kernel did not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock. An unspecified vulnerability in the listxattr system call, when a "bad inode" is present, could allow a local user to cause a DoS (data corruption) and possibly gain privileges via unknown vectors. The zlib_inflate function allows local users to cause a crash via a malformed filesystem that uses zlib compression that triggers memory corruption. The ext3fs_dirhash function could allow local users to cause a DoS (crash) via an ext3 stream with malformed data structures. When SELinux hooks are enabled, the kernel could allow a local user to cause a DoS (crash) via a malformed file stream that triggers a NULL pointer derefernece. The key serial number collision avoidance code in the key_alloc_serial function in kernels 2.6.9 up to 2.6.20 allows local users to cause a crash via vectors thatr trigger a null dereference. The Linux kernel version 2.6.13 to 2.6.20.1 allowed a remote attacker to cause a DoS (oops) via a crafted NFSACL2 ACCESS request that triggered a free of an incorrect pointer. A local user could read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump; a variant of CVE-2004-1073.
7c7b3b5bbbacea086cb15820a0722f0763fd7ad9e6731f41b9a2f1adff516926HC NewsSystem version 1.0-4 suffers from a blind SQL injection vulnerability in index.php.
09190ac39d3a3732d07fecc5010664ff5ae75fc8179e0a7a23548af86131c572SEC-CONSULT Security Advisory 20070309-0 - Starting with version 5, MySQL provides access to the database metadata. When using functions that operate on strings in combination with subselects on information_schema tables and additional sorting of the results with the ORDER BY clause, a null-pointer dereferencation takes place causing a segmentation fault. This allows an attacker to crash the MySQL database. Versions below 5.0.37 are affected.
d00c6845f154920b81fdf6e0a349fb00b0670947308e18f0a2d4970997894dbbPHP Nuke version 8.0, and possibly lower versions, are susceptible to a POST cross site scripting vulnerability.
240246141b63832150858dd16b81a45662e47408b15b013ca75d852b41f72486WordPress version 2.1.2 suffers from a SQL injection vulnerability.
7358ffb97fc5f0c2f7f4c0b2e6101fa3bbea2ea60c81d40efa7ea678f2ff3f47A remote file inclusion vulnerability exists in Script copyright (c) James Coyle.
c18b6e385d5b5afe65237ab1d133804b2a67fd63169c8527401404fc63050b08Coppermine Photo Gallery suffers from some remote file inclusion vulnerabilities.
7eb5d1da33c2dbedd23eaf0c9a6a8bdc02a07ecf7399e89e3792449873e5fd14deviantART suffers from a cross site scripting vulnerability.
87cf4fab7359f892c9a837f591177d51c225fe5b916af28391b8d454035c1f19COMPASS SECURITY ADVISORY - The Linux drivers for the Omnikey CardMan 4040 smartcard reader contains a buffer overflow vulnerability. Local attackers with direct or indirect write permissions to a cmx device file can execute arbitrary code with kernel privileges or may cause a denial of service condition. Proof of concept exploit included.
813c362a94b9a921113b9dc26f6c31af71d84e3bd91b020fb6b76413ca9974f7There is a cross site scripting vulnerability in www.serviziinformazionesicurezza.gov.it.
5fdab1bff90f72739fdb29417364ad2e8ab4edc389fd8bbed6e522f012d971cfMandriva Linux Security Advisory - GnuPG prior to 1.4.7 and GPGME prior to 1.1.4, when run from the command line, did not visually distinguish signed and unsigned portions of OpenPGP messages with multiple components. This could allow a remote attacker to forge the contents of an email message without detection.
b5f3387c0e15f3e5caa78f0a24fad853f5e06d5408aa866da22a14bd113d045aMandriva Linux Security Advisory - A format string flaw was discovered in how ekiga processes certain messages, which could permit a remote attacker that can connect to ekiga to potentially execute arbitrary code with the privileges of the user running ekiga. This is similar to the previous CVE-2007-1006, but the original evaluation/patches were incomplete.
74059760ca396ac9aaacb0f5ccd2643fd0c6b428319aa2208dfe6b636aa57456Ubuntu Security Notice 434-1 - It was discovered that Ekiga had format string vulnerabilities beyond those fixed in USN-426-1. If a user was running Ekiga and listening for incoming calls, a remote attacker could send a crafted call request, and execute arbitrary code with the user's privileges.
4bb663bcca02745bd937d2b0350fc4948fe9be30a4b471dbc9b3fe104805a094Ubuntu Security Notice 433-1 - Moritz Jodeit discovered that the DMO loader of Xine did not correctly validate the size of an allocated buffer. By tricking a user into opening a specially crafted media file, an attacker could execute arbitrary code with the user's privileges.
94f4d397d208d53e89af0300446cf0ab3a4370d5739cf83df5aa0c4764e562f9WEBO versions 1.0 and below suffer from a remote file inclusion vulnerability.
2cd8906187d907f9d47be5dcd979d9906b03592be3485c9ad077b75f68e97d3aSecunia Security Advisory - Some vulnerabilities have been reported in xine-lib, which can potentially be exploited by malicious people to compromise a user's system.
a0c3ab78f56a09f74a730c20a3af97fc2d98853d709693190ec4481744cd4515Secunia Security Advisory - Mandriva has issued an update for mplayer. This fixes a vulnerability, which can potentially be exploited by malicious people compromise a vulnerable system.
beec021639cd2c32b60febe0de42e8fa501bcb7af005e02fe0499300ae4a3826Secunia Security Advisory - Mandriva has issued an update for xine-lib. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
baef642872c3188d483865fbb6c4744d165fba474b35d57f4b0be8738eff63d5Secunia Security Advisory - Some vulnerabilities have been reported in PHPEcho CMS, which can be exploited by malicious users to conduct SQL injection attacks.
4df6f931ea021d1c39f469f7b56230d2b8aac9de422c80a9a3fa7a57329c1537Secunia Security Advisory - HP has issued an update for JRE / JDK. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
7fe39caafa3515eb4b4e2571bb7f06eea5b632acb8226d28202500e87b4fa2fbSecunia Security Advisory - Marsu Pilami has discovered a vulnerability in NewsReactor, which can be exploited by malicious people to compromise a user's system.
a5456e0618a77476d4b1ec5dd012dfb1c76ba1207679887f3be187370cd24023Secunia Security Advisory - Marsu Pilami has discovered a vulnerability in NewsBin Pro, which can be exploited by malicious people to compromise a user's system.
5a9e420706e102a626525ab587eee9763f6d0b4876ff0b47b3623d6180260ad1Secunia Security Advisory - Some vulnerabilities have been reported in PennMUSH, which can be exploited by malicious users to cause a DoS (Denial of Service).
e732b7d37d28747bfdcb75f9ed94b119eefb7b495b124230ee1281c8a8f1e0f5Secunia Security Advisory - Some vulnerabilities have been reported in MPlayer, which can potentially be exploited by malicious people to compromise a vulnerable system.
a45b5d2059a17c123dc732ef08e5ff11d9eeb445c421085eb46fbf0393bd4492Secunia Security Advisory - Ubuntu has issued an update for ktorrent. This fixes some vulnerabilities, which can be exploited by malicious people to overwrite arbitrary files on a user's system or to potentially compromise a user's system.
6f8ea15aa13887ac2c654a0b07d1a5540dfcd071940151cf7db408f061b65aba
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed