USN-416-1: Linux kernel vulnerabilities

Mark Dowd discovered that the netfilter iptables module did not correcly handle fragmented IPv6 packets. By sending specially crafted packets, a remote attacker could exploit this to bypass firewall rules. This has has already been fixed for Ubuntu 6.10 in USN-395-1; this is the corresponding fix...

Trend Micro扫描引擎UPX压缩PE文件缓冲区溢出漏洞

Trend Micro病毒扫描引擎为桌面、服务器和网关提供杀毒功能。 Trend Micro的病毒扫描引擎在扫描特制的畸形UPX压缩可执行程序时没有正确验证输入，远程攻击者可能利用此漏洞在服务器上执行任意指令。 如果用户扫描了畸形文件的话，就可能触发缓冲区溢出，导致执行任意指令。在Windows下扫描引擎在内核环境中运行；在Linux下扫描引擎运行为超级用户权限的守护程序。因此，成功利用这个漏洞的攻击者可以获得对受影响系统的完全控制。 Trend Micro Scan Engine 8.300 Trend Micro Scan Engine 8.000...

CVE-2006-6960

The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives, which allows remote attackers to bypass the malware detection via files with 1 RAR, 2 GZ, 3 TAR, 4 CAB, or 5 ACE compression...

CVE-2006-6960

The CVE concerns WebRoot Spy Sweeper (Compression Sweep) prior to version 4.5.9 failing to handle non-ZIP archives. Specifically, the feature does not process archives in RAR, GZ, TAR, CAB, or ACE formats, which can allow remote attackers to bypass malware detection. Affected component: Compressi...

Qbik WinGate压缩名称指针拒绝服务漏洞

Qbik WinGate是一款Internet网关和通讯服务器。 Qbik WinGate在处理畸形的DNS报文时存在漏洞，远程攻击者可能利用此漏洞导致DNS无法响应正常请求。 如果DNS请求包含有引用其自身的压缩名称指针的话，则向Qbik WinGate服务器发送了这样请求就会导致死循环，耗尽所有CPU资源。 Qbik WinGate = 6.1.4 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.wingate.com/download.php x00\x00 - Transaction ID \x00\x00 - Flags \x00\x0...

iDefense Security Advisory 11.26.06: Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability

Qbik WinGate Compressed Name Pointer Denial of Service Vulnerability iDefense Security Advisory 11.26.06 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 26, 2006 I. BACKGROUND Qbik WinGate is an Internet gateway and communications server. It includes functionality related to efficientl...

CVE-2006-5823

CVE-2006-5823 is a Linux kernel issue affecting the cramfs file system in 2.6.x where malformed compressed data can trigger memory corruption, leading to a local-denial crash. Connected advisories (RHSA-2007:0436, RHSA-2007:0014, and corresponding openvas entries) enumerate the cramfs memory corr...

Clever use of WinRAR will be confidential camouflage was imperceptible-vulnerability warning-the black bar safety net

WinRAR is everyone commonly used compression/decompression program, in addition to this we also often put WinRAR as encryption software to use, in the compressed file when the Set password can protect the data of the object. But specifically for WinRAR password hack software very much, although...

Compression Plus ZOO文档处理栈溢出漏洞

Compression Plus库用于压缩/解压各种流行的文档格式。 Compression Plus库的代码在处理ZOO文档时存在漏洞，成功利用这个漏洞的攻击者可能以当前执行用户权限执行任意指令。 Compression Plus库中ReadFile函数的nNumberOfBytesToRead参数是由用户提供的，但没有执行任何长度检查。对ReadFile最多可传送7FFFh的值，但指定39Ch字节就可以覆盖栈中的函数返回指针，如下： .text:1040A71B movsx eax, word ptr ebp+ZooHeader+24h .text:1040A71F push eax...

gzip security update

CentOS Errata and Security Advisory CESA-2006:0667-01 Updated gzip packages that fix several security issues are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gzip package contains the GNU gzip...

gzip security update

CentOS Errata and Security Advisory CESA-2006:0667 Updated gzip packages that fix several security issues are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gzip package contains the GNU gzip dat...

RHEL 4 : ncompress (RHSA-2006:0663)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2006:0663 advisory. The ncompress package contains file compression and decompression utilities, which are compatible with the original UNIX compress utility .Z file...

Low: Red Hat Security Advisory: ncompress security update

Updated ncompress packages that address a security issue and fix bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The ncompress package contains file compression and decompression utilities, which are compatible with the...

CVE-2006-4554

Stack-based buffer overflow in the ReadFile function in the ZOO-processing exports in the BeCubed Compression Plus before 5.0.1.28, as used in products including 1 Tumbleweed EMF, 2 VCOM/Ontrack PowerDesk Pro, 3 Canyon Drag and Zip, 4 Canyon Power File, and 5 Canyon Power File Gold, allow...

PT-2006-5347 · Canyon +3 · Canyon Power File Gold +5

Name of the Vulnerable Software and Affected Versions: BeCubed Compression Plus versions prior to 5.0.1.28 Tumbleweed EMF versions prior to 5.0.1.28 VCOM/Ontrack PowerDesk Pro versions prior to 5.0.1.28 Canyon Drag and Zip versions prior to 5.0.1.28 Canyon Power File versions prior to 5.0.1.28...

Compression Plus CP5DLL32.DLL ZOO Archive Header Processing Overflow RCE

The version of the Compression Plus toolkit installed on the remote Windows host contains a DLL file that is affected by a stack-based overflow condition when processing specially crafted ZOO files. A remote attacker can exploit this issue, via an inconsistent size parameter in a ZOO file header,...

CVE-2006-4554

CVE-2006-4554 is a stack-based buffer overflow in BeCubed Compression Plus (ZOO-processing exports ReadFile) that allows arbitrary code execution via an inconsistent size parameter in a ZOO file header. Affected products include BeCubed Compression Plus prior to 5.0.1.28, and related suites such ...

KLA10125 ACE vulnerability in Compression Plus

A buffer overflow was found in the Compression Plus library. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZOO file. Original advisories BeCubed changelog Related products Compression-Plus CVE lis...

Compression Plus library buffer overflow

Buffer overflow on Zoo archives parsing...

NSFOCUS SA2006-08 : Microsoft IE6 urlmon.dll Long URL Buffer Overflow Vulnerability

NSFOCUS Security Advisory SA2006-08 Microsoft IE6 urlmon.dll Long URL Buffer Overflow Vulnerability Release Date: 2006-08-25 CVE ID: CVE-2006-3869 http://www.nsfocus.com/english/homepage/research/0608.htm Affected systems & software =================== Internet Explorer 6 SP1 with MS06-042 -...