[SECURITY] Fedora 8 Update: amarok-1.4.10-1.fc8

Amarok is a multimedia player with: - fresh playlist concept, very fast to use, with drag and drop - plays all formats supported by the various engines - audio effects, like reverb and compressor - compatible with the .m3u and .pls formats for playlists - nice GUI, integrates into the KDE look, b...

Security Update for the 2007 Microsoft Office System (KB951944)

A security vulnerability exists in the 2007 Microsoft Office System and the Compatibility Pack for the 2007 Office System that could allow remote code execution. This update resolves that vulnerability...

FreeBSD Security Advisory (FreeBSD-SA-05:21.openssl.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:21.openssl.asc ADV FreeBSD-SA-05:21.openssl.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008...

FreeBSD Security Advisory (FreeBSD-SA-04:09.kadmind.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:09.kadmind.asc ADV FreeBSD-SA-04:09.kadmind.asc OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008...

FreeBSD Security Advisory (FreeBSD-SA-04:13.linux.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-04:13.linux.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Security Update for 2007 Microsoft Office System (KB954038)

A security vulnerability exists in the Compatibility Pack for the 2007 Microsoft Office System that could allow arbitrary code to run when you open a maliciously modified file. This update resolves that vulnerability...

Security Update for 2007 Microsoft Office System (KB951596)

A security vulnerability exists in the Compatibility Pack for the 2007 Microsoft Office System that could allow arbitrary code to run when you open a maliciously modified file. This update resolves that vulnerability...

Microsoft Security Bulletin MS08-051 – Critical Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (949785) Microsoft Security Bulletin MS08-051 – Critical

Microsoft Security Bulletin MS08-051 – Critical Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution 949785 Published: August 12, 2008 Version: 1.0 General Information Executive Summary This security update resolves three privately reported vulnerabilities in Microsoft Office...

MS00-020:Windows 2000 Windows Station 非法访问漏洞

如果用户本地登录到一台Windows 2000机器，在某些特定条件下，可以获得对其他用户的widnows stations进程的访问权限。这个问题将允许一个低级别的用户的进程看到同一个session中另外一 个桌面的输入或输出数据，这可能包含口令等敏感信息。 - Microsoft Windows 2000 Professional - Microsoft Windows 2000 Server - Microsoft Windows 2000 Advanced Server 微软已经发布了一个相应的补丁程序，您可以在下列地址下载： -...

[SECURITY] Fedora 7 Update: kdebase4-4.0.3-9.fc7

Core runtime requirements and applications for the K Desktop Environment 4. This package does not include the KDE 4 versions of applications which are provided by KDE 3 because of file and configuration setting conflicts...

SA-2008-027 - Ubercart - Cross site scripting

When certain product features were being edited, node titles were being printed to the screen as entered by the user. If a store owner had granted product creation rights to a non-secure user, this would provide an opportunity for a malicious user to perform a cross site scripting attack when...

Fedora 7 : centerim-4.22.4-1.fc7.1 (2008-2869)

This update fixes the CVE-2008-1467 security issue by disabling the 'actions' configuration altogether. Furthermore the default web browser is no longer configurable in CenterIM. The links get open in the default web browser configured, using xdg-utils. There won't be any update for centericq. Al...

SA-2008-023 - Ubercart - Cross site scripting

During checkout in Ubercart enabled stores, customers have text fields in which to enter their address and order information. Some stores will have modules enabled that restrict what sort of values are accepted in these fields, but this is not the case for everyone. This provides an opportunity f...

Stack overflow

Stack-based buffer overflow in Image Raw in Apple Mac OS X 10.5.2, and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2, allows remote attackers to execute arbitrary code via a crafted Adobe Digital Negative DNG image...

CVE-2008-0987

Stack-based buffer overflow in Image Raw in Apple Mac OS X 10.5.2, and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2, allows remote attackers to execute arbitrary code via a crafted Adobe Digital Negative DNG image...

CVE-2008-0987

Stack-based buffer overflow in Image Raw in Apple Mac OS X 10.5.2, and Digital Camera RAW Compatibility before Update 2.0 for Aperture 2 and iPhoto 7.1.2, allows remote attackers to execute arbitrary code via a crafted Adobe Digital Negative DNG image...

Critical: Red Hat Security Advisory: krb5 security update

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.5 Extended Update Support. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients...

Microsoft Security Bulletin MS08-014 - Critical Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029)

Microsoft Security Bulletin MS08-014 - Critical Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution 949029 Published: March 11, 2008 Version: 1.0 General Information Executive Summary This security update resolves several privately reported and publicly reported vulnerabilities i...

Input validation

Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted data validation records, aka "Excel Data Validation Record Vulnerability."...

Security Update for the 2007 Microsoft Office System (KB947801)

A security vulnerability exists in the Compatibility Pack for the 2007 Office System that could allow arbitrary code to run when you open a maliciously modified file. This update resolves that vulnerability...