Section: .. / 0807-advisories /
| /// File Name: |
SECOBJADV-2008-02.txt |
Description:
|
Security Objectives Advisory - The Cygwin installation and update process can be subverted to a lack of checksum verification. Cygwin setup.exe version 2.573.2.2 is affected.
| | Author: | Derek Callaway | | Homepage: | http://www.security-objectives.com/ | | File Size: | 4453 | | Last Modified: | Jul 25 20:55:18 2008 |
| MD5 Checksum: | 0d95149f3d415d7bc0ba049956304dd5 |
|
| /// File Name: |
secunia-bluecoathan.txt |
Description:
|
Secunia Research has discovered two vulnerabilities in K9 Web Protection, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused by boundary errors in the filter service (k9filter.exe) when handling HTTP version information in responses from a centralized server (sp.cwfservice.net). These can be exploited to cause stack-based buffer overflows via a specially crafted response containing overly long HTTP version information. Successful exploitation allows execution of arbitrary code, but requires that requests to the centralized server can be redirected to a malicious service or otherwise intercepted. Affected is Blue Coat K9 Web Protection 3.2.44 with Filter version 3.2.32.
| | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 5901 | | Related CVE(s): | CVE-2007-2952 | | Last Modified: | Jul 31 11:29:06 2008 |
| MD5 Checksum: | 46c811ed43792298725e10b1adfc39e9 |
|
| /// File Name: |
secunia-bluecoatref.txt |
Description:
|
Secunia Research has discovered a vulnerability in K9 Web Protection, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error in the filter service (k9filter.exe) during processing of "Referer" headers when the web-based K9 Web Protection Administration interface is accessed. This can be exploited to cause a stack-based buffer overflow via an overly long "Referer:" header. Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious web site. Affected is Blue Coat K9 Web Protection 3.2.44 with Filter version 3.2.32.
| | Author: | Carsten Eiram | | Homepage: | http://secunia.com/ | | File Size: | 5680 | | Related CVE(s): | CVE-2007-2952 | | Last Modified: | Jul 31 11:27:32 2008 |
| MD5 Checksum: | 1c488d0a1b9e5cec52d5d2d53283b420 |
|
| /// File Name: |
secunia-realnetworks.txt |
Description:
|
Secunia Research has discovered a vulnerability in RealPlayer, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a design error within the handling of frames in Shockwave Flash (SWF) files and can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code. Affected is RealNetworks RealPlayer version 10.5 Build 6.0.12.1483.
| | Author: | Dyon Balding | | Homepage: | http://secunia.com/ | | File Size: | 4353 | | Related CVE(s): | CVE-2007-5400 | | Last Modified: | Jul 25 14:24:02 2008 |
| MD5 Checksum: | e44f432fc16d17e09063fe9acb1b39c4 |
|
| /// File Name: |
secunia-vlcplayer.txt |
Description:
|
Secunia Research has discovered a vulnerability in VLC Media Player versions 0.8.6h on Windows, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an integer overflow error within the "Open()" function in modules/demux/wav.c. This can be exploited to cause a heap-based buffer overflow via a specially crafted WAV file having an overly large "fmt" chunk.
| | Author: | Alin Rad Pop | | Homepage: | http://secunia.com/ | | File Size: | 4309 | | Related CVE(s): | CVE-2008-2430 | | Last Modified: | Jul 9 20:14:35 2008 |
| MD5 Checksum: | 71d5de075a5a745c2440fca0ffc140a9 |
|
| /// File Name: |
SSRT071466.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified in HP-UX running System Administration Manager (SAM). This vulnerability may allow unintended remote access.
| | Homepage: | http://www.hp.com/ | | File Size: | 7214 | | Related CVE(s): | CVE-2008-1662 | | Last Modified: | Jul 31 11:31:30 2008 |
| MD5 Checksum: | f8f39053a48f84ae814f3dd9a7433f6e |
|
| /// File Name: |
SSRT080033.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to execute arbitrary code or to create a Denial of Service (DoS).
| | Homepage: | http://www.hp.com/ | | File Size: | 9805 | | Related CVE(s): | CVE-2008-1697 | | Last Modified: | Jul 10 02:11:41 2008 |
| MD5 Checksum: | 47826c3eb94d19180445d32c7c9064ad |
|
| /// File Name: |
SSRT080039.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP System Management Homepage (SMH) for Linux and Windows. This vulnerability could by exploited remotely to allow cross site scripting (XSS).
| | Homepage: | http://www.hp.com/ | | File Size: | 6152 | | Related CVE(s): | CVE-2008-1663 | | Last Modified: | Jul 1 12:34:56 2008 |
| MD5 Checksum: | eb33bd08e909cb2c55021114df246deb |
|
| /// File Name: |
SSRT080043.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to gain unauthorized access to data.
| | Homepage: | http://www.hp.com/ | | File Size: | 6511 | | Related CVE(s): | CVE-2008-0068 | | Last Modified: | Jul 10 02:12:35 2008 |
| MD5 Checksum: | 2ec058ec41940ed48dcd61827c675e85 |
|
| /// File Name: |
SSRT080058-2.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.
| | Homepage: | http://www.hp.com/ | | File Size: | 7533 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 21 15:44:10 2008 |
| MD5 Checksum: | 9d73d9bba705842147d23e9b517a640d |
|
| /// File Name: |
SSRT080058.txt |
Description:
|
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.
| | Homepage: | http://www.hp.com/ | | File Size: | 6949 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 17 15:16:48 2008 |
| MD5 Checksum: | 81ca5324ef291a1e31b9850373d3dca6 |
|
| /// File Name: |
SSRT080066.txt |
Description:
|
HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Internet Services running Probe Builder. The vulnerability could be exploited remotely to create a Denial of Service (DoS). A successful exploit could cause the system running HP OpenView Internet Services to crash.
| | Homepage: | http://www.hp.com/ | | File Size: | 5947 | | Related CVE(s): | CVE-2008-1667 | | Last Modified: | Jul 28 20:58:11 2008 |
| MD5 Checksum: | a2931892a77d72cf04a9ebc80a7c38c1 |
|
| /// File Name: |
SSRT080097-2.txt |
Description:
|
HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access.
| | Homepage: | http://www.hp.com/ | | File Size: | 6233 | | Related CVE(s): | CVE-2008-1665 | | Last Modified: | Jul 17 15:28:56 2008 |
| MD5 Checksum: | 16bcd9b00ec4628549a66a8a61cc3f8c |
|
| /// File Name: |
SSRT080097.txt |
Description:
|
HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access.
| | Homepage: | http://www.hp.com/ | | File Size: | 6092 | | Related CVE(s): | CVE-2008-1665 | | Last Modified: | Jul 16 15:43:55 2008 |
| MD5 Checksum: | a11f1f733768ff70d0e990e3269f40d2 |
|
| /// File Name: |
SUSE-SA-2008-033.txt |
Description:
|
SUSE Security Announcement - SUSE has released updates that address the recent cache poisoning vulnerability regarding bind.
| | Homepage: | http://www.suse.com | | File Size: | 16492 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 11 18:04:56 2008 |
| MD5 Checksum: | 4eee8765a56b57a922fbf0148e92e177 |
|
| /// File Name: |
TA08-189A.txt |
Description:
|
Technical Cyber Security Alert TA08-189A - Microsoft has released Security Advisory (955179) to describe attacks on a vulnerability in the Microsoft Office Snapshot Viewer ActiveX control. Because no fix is currently available for this vulnerability, please see the Security Advisory and US-CERT Vulnerability Note VU#837785 for workarounds.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3342 | | Last Modified: | Jul 10 01:56:11 2008 |
| MD5 Checksum: | c46336f81d5b3c7717995864c6618fdf |
|
| /// File Name: |
TA08-190A.txt |
Description:
|
Technical Cyber Security Alert TA08-190A - Microsoft has released updates to address vulnerabilities that affect Microsoft Windows, Windows Server, Microsoft SQL Server, and Microsoft Outlook Web Access as part of the Microsoft Security Bulletin Summary for July 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 3542 | | Last Modified: | Jul 10 03:06:51 2008 |
| MD5 Checksum: | 95faf0d502f2d691be13dd41e0cfd3ab |
|
| /// File Name: |
TA08-190B.txt |
Description:
|
Technical Cyber Security Alert TA08-190B - DNS cache poisoning (sometimes referred to as cache pollution) is an attack technique that allows an attacker to introduce forged DNS information into the cache of a caching nameserver. The general concept has been known for some time, and a number of inherent deficiencies in the DNS protocol and defects in common DNS implementations that facilitate DNS cache poisoning have previously been identified and described in public literature. Examples of these vulnerabilities can be found in Vulnerability Note VU#800113. Recent research into these and other related vulnerabilities has produced extremely effective exploitation methods to achieve cache poisoning. Tools and techniques have been developed that can reliably poison a domain of the attacker's choosing on most current implementations. As a result, the consensus of DNS software implementers is to implement source port randomization in their resolvers as a mitigation.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 7440 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 10 03:07:50 2008 |
| MD5 Checksum: | 280e54bdd87e40bf8146839d400f8dc5 |
|
| /// File Name: |
TA08-193A.txt |
Description:
|
Technical Cyber Security Alert TA08-193A - Sun has released alerts to address multiple vulnerabilities affecting the Sun Java Runtime Environment. The most severe of these vulnerabilities could allow a remote attacker to execute arbitrary code.
| | Homepage: | http://www.us-cert.gov/ | | File Size: | 5459 | | Last Modified: | Jul 11 18:11:47 2008 |
| MD5 Checksum: | 9dcbc610d17f4041bd5a391dfaed7908 |
|
| /// File Name: |
trendmicro-activex.txt |
Description:
|
OfficeScan versions 7.3 build 1343 Patch 4 and below from Trend Micro suffer from an ActiveX related buffer overflow vulnerability.
| | Author: | Elazar Broad | | File Size: | 2778 | | Last Modified: | Jul 29 11:48:17 2008 |
| MD5 Checksum: | ab8f9d007a31acfffc8b3a3cb901bd90 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
