[Full-Disclosure] MDKSA-2004:129 - Updated ez-ipupdate packages fix format string vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandrakelinux Security Update Advisory Package name: ez-ipupdate Advisory ID: MDKSA-2004:129 Date: November 10th, 2004 Affected versions: 10.0, 10.1, 9.2, Corporate Server 2.1, Multi Network Firewall 8.2 Problem Description: Ulf Harnhammar discovered ...

[SECURITY] [DSA 591-1] New libgd2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 591-1 [email protected] http://www.debian.org/security/ Martin Schulze November 9th, 2004 http://www.debian.org/security/faq -...

Fedora Core 2 : cyrus-sasl-2.1.18-2.2 (2004-332)

At application startup, libsasl and libsasl2 attempt to build a list of all SASL plug-ins which are available on the system. To do so, the libraries search for and attempt to load every shared library found within the plug-in directory. This location can be set with the SASLPATH environment...

[Full-Disclosure] [SECURITY] [DSA 558-1] New libapache-mod-dav packages fix potential denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 558-1 [email protected] http://www.debian.org/security/ Martin Schulze October 6th, 2004 http://www.debian.org/security/faq -...

Debian DSA-111-1 : ucd-snmp - remote exploit

The Secure Programming Group of the Oulu University did a study on SNMP implementations and uncovered multiple problems which can cause problems ranging from Denial of Service attacks to remote exploits. New UCD-SNMP packages have been prepared to fix these problems as well as a few others. The...

Sun Solaris X Display Manager does not properly handle invalid XDMCP requests

Overview There is a vulnerability in the way Sun Solaris handles invalid X Display Manager Control Protocol XDMCP requests. Exploitation of this vulnerability could allow an attacker to cause the X Display Manager XDM to crash. Description The X Display Manager xdm1 is responsible for managing...

Medal of Honor Multiple Remote Overflows

The remote host was running the Medal of Honor game server. The version installed on the remote host is vulnerable to a remote attack that allows for arbitrary code execution. Note that Nessus has disabled this service in testing for this flaw. C Tenable Network Security, Inc. include"compat.inc"...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 3 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversio...

Moderate: Red Hat Security Advisory: samba security update

Updated samba packages that fix a buffer overflow issue are now available. Samba provides file and printer sharing services to SMB/CIFS clients. The Samba team discovered a buffer overflow in the code used to support the 'mangling method = hash' smb.conf option. The Common Vulnerabilities and...

Microsoft Windows fails to properly process showHelp URLs

Overview A vulnerability in the showHelp Method may allow a remote attacker to execute arbitrary code. Description A cross domain vulnerability exists in the showHelp method that may permit a remote attacker to execute local commands on the system with the privileges of the current user...

RHEL 3 : quagga (RHSA-2003:315)

Updated Quagga packages that close a locally-exploitable denial of service vulnerability are now available. Quagga is an open source implementation of TCP/IP routing software. Herbert Xu reported that Quagga can accept spoofed messages sent on the kernel netlink interface by other users on the...

RHEL 2.1 : openssl (RHSA-2003:063)

Updated OpenSSL packages are available that fix a potential timing-based attack. Updated 12 March 2003 Added packages for Red Hat Enterprise Linux ES and Red Hat Enterprise Linux WS OpenSSL is a commercial-grade, full-featured, open source toolkit which implements the Secure Sockets Layer SSL v2/...

RHEL 2.1 : unzip (RHSA-2003:200)

Updated unzip packages resolving a vulnerability allowing arbitrary files to be overwritten are now available. Updated 15 August 2003 Ben Laurie found that the original patch to fix this issue missed a case where the path component included a quoted slash. These updated packages contain a new pat...

Critical: Red Hat Security Advisory: cvs security update

An updated cvs package that fixes several server vulnerabilities, which could be exploited by a malicious client, is now available. CVS is a version control system frequently used to manage source code repositories. While investigating a previously fixed vulnerability, Derek Price discovered a fl...

[security bulletin] SSRT4721 rev.0 HP-UX dtlogin unauthorized privileged access, DoS

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBUX01038 REVISION: 0 SSRT4721 rev.0 HP-UX dtlogin unauthorized privileged access, Denial of Service DoS ----------------------------------------------------------------- NOTICE: There are no restrictions for distribution of thi...

Photopost PHP Pro photo Parameter SQL Injection

The version of Photopost PHP Pro installed on the remote host fails to sanitize user-supplied input to the 'photo' parameter of the 'showphoto.php' script before using it in a database query. An unauthenticated attacker may be able to exploit this issue to uncover sensitive information, modify...

Local root exploit in SuSE Linux 7.3Pro

Affected: SuSE Linux 7.3Pro Not affected: SuSE Linux 8.2Pro, non-SuSE distributions Possibly affected: other SuSE distributions Vulnerable package: javarunt Impact: Local user can gain root privileges Exploit type: Symlink attack Release...

(RHSA-2003:293) openssl security update

OpenSSL is a commercial-grade, full-featured, and open source toolkit that implements Secure Sockets Layer SSL v2/v3 and Transport Layer Security TLS v1 protocols as well as a full-strength general purpose cryptography library. NISCC testing of implementations of the SSL protocol uncovered two bu...

[SECURITY] [DSA-389-1] New ipmasq packages fix insecure packet filtering rules

-------------------------------------------------------------------------- Debian Security Advisory DSA 389-1 [email protected] http://www.debian.org/security/ Matt Zimmerman September 20th, 2003 http://www.debian.org/security/faq -...

Critical: Red Hat Security Advisory: sendmail security update

Updated Sendmail packages that fix a potentially-exploitable vulnerability are now available. Sendmail is a widely used Mail Transport Agent MTA and is included in all Red Hat Enterprise Linux distributions. There is a bug in the prescan function of Sendmail versions prior to and including 8.12.9...