Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

EUVD-2007-0645

Malware in sbrugna...

EUVD-2007-3739

Malware in sbrugna...

EUVD-2007-0642

Malware in sbrugna...

EUVD-2007-3741

Malware in sbrugna...

EUVD-2007-0643

Malware in sbrugna...

Mandrake Linux Security Advisory : ghostscript (MDKSA-2007:208)

A function in the JasPer JPEG-2000 library before 1.900 could allow a remote user-assisted attack to cause a crash and possibly corrupt the heap via malformed image files. Newer versions of ghostscript contain an embedded copy of libjasper and as such is vulnerable to this issue. Updated packages...

Mandriva Update for jasper MDKSA-2007:129 (jasper)

Check for the Version of jasper OpenVAS Vulnerability Test Mandriva Update for jasper MDKSA-2007:129 jasper Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Update for ghostscript MDKSA-2007:208 (ghostscript)

Check for the Version of ghostscript OpenVAS Vulnerability Test Mandriva Update for ghostscript MDKSA-2007:208 ghostscript Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Code injection

Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine msjet40.dll. NOTE: this is probably a different issue than CVE-2007-6026...

CVE-2008-1200

Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine msjet40.dll. NOTE: this is probably a different issue than CVE-2007-6026...

CVE-2008-1200

Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine msjet40.dll. NOTE: this is probably a different issue than CVE-2007-6026...

CVE-2008-1200

Technical details for CVE-2008-1200 are not publicly provided in the supplied connected documents. The records describe an unspecified Microsoft Access vulnerability with crafted MDB files but do not reveal affected versions, root cause, impact, or remediation.

Crlf injection

CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows remote user-assisted web sites to corrupt the user's password store via newlines that are not properly handled when the user saves a password...

CVE-2008-0417

CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows remote user-assisted web sites to corrupt the user's password store via newlines that are not properly handled when the user saves a password...

CVE-2008-0417

CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows remote user-assisted web sites to corrupt the user's password store via newlines that are not properly handled when the user saves a password...

Buffer overflow

Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...

CVE-2008-0554

Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...

CVE-2008-0629

Buffer overflow in streamcddb.c in MPlayer 1.0rc2 and SVN before r25824 allows remote user-assisted attackers to execute arbitrary code via a CDDB database entry containing a long album title...

Code injection

Mail in Apple iPhone 1.1.1 allows remote user-assisted attackers to force the iPhone user to make calls to arbitrary telephone numbers via a "tel:" link, which does not prompt the user before dialing the number...