Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 06:12:05 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1931784073&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0712-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1931784073.1338185525.1338185525.1338185525.1%3B%2B__utmz%3D32867617.1338185525.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/62197/glsa-200712-25.txt http://packetstormsecurity.org/files/62197/glsa-200712-25.txt http://packetstormsecurity.org/files/62197/Gentoo-Linux-Security-Advisory-200712-25.html Mon, 31 Dec 2007 21:41:49 GMT Gentoo Linux Security Advisory GLSA 200712-25 - The HSQLDB engine, as used in Openoffice.org, does not properly enforce restrictions to SQL statements. Versions less than 2.3.1 are affected. http://packetstormsecurity.org/files/62196/glsa-200712-24.txt http://packetstormsecurity.org/files/62196/glsa-200712-24.txt http://packetstormsecurity.org/files/62196/Gentoo-Linux-Security-Advisory-200712-24.html Mon, 31 Dec 2007 21:41:32 GMT Gentoo Linux Security Advisory GLSA 200712-24 - The Cairo versions used by the AMD64 x86 emulation GTK+ libraries were vulnerable to integer overflow vulnerabilities (GLSA 200712-04). Versions less than 20071214 are affected. http://packetstormsecurity.org/files/62195/glsa-200712-23.txt http://packetstormsecurity.org/files/62195/glsa-200712-23.txt http://packetstormsecurity.org/files/62195/Gentoo-Linux-Security-Advisory-200712-23.html Mon, 31 Dec 2007 21:40:52 GMT Gentoo Linux Security Advisory GLSA 200712-23 - Multiple buffer overflows and infinite loops were discovered in multiple dissector and parser components, including those for MP3 and NCP (CVE-2007-6111), PPP (CVE-2007-6112), DNP (CVE-2007-6113), SSL and iSeries (OS/400) Communication traces (CVE-2007-6114), ANSI MAP (CVE-2007-6115), Firebird/Interbase (CVE-2007-6116), HTTP (CVE-2007-6117), MEGACO (CVE-2007-6118), DCP ETSI (CVE-2007-6119), Bluetooth SDP (CVE-2007-6120), RPC Portmap (CVE-2007-6121), SMB (CVE-2007-6438), IPv6 amd USB (CVE-2007-6439), WiMAX (CVE-2007-6441), RPL (CVE-2007-6450), CIP (CVE-2007-6451). The vulnerabilities were discovered by Stefan Esser, Beyond Security, Fabiodds, Peter Leeming, Steve and ainsley. Versions less than 0.99.7 are affected. http://packetstormsecurity.org/files/62194/glsa-200712-22.txt http://packetstormsecurity.org/files/62194/glsa-200712-22.txt http://packetstormsecurity.org/files/62194/Gentoo-Linux-Security-Advisory-200712-22.html Mon, 31 Dec 2007 21:40:36 GMT Gentoo Linux Security Advisory GLSA 200712-22 - David Bloom reported two vulnerabilities where plug-ins (CVE-2007-6520) and Rich text editing (CVE-2007-6522) could be used to allow cross domain scripting. Alexander Klink (Cynops GmbH) discovered an issue with TLS certificates (CVE-2007-6521). Gynvael Coldwind reported that bitmaps might reveal random data from memory (CVE-2007-6524). Versions less than 9.25 are affected. http://packetstormsecurity.org/files/62185/tk53-clamav.txt http://packetstormsecurity.org/files/62185/tk53-clamav.txt http://packetstormsecurity.org/files/62185/tk53-clamav.txt.html Mon, 31 Dec 2007 21:26:46 GMT TK53 Advisory 2 - Multiple vulnerabilities exist in ClamAV version 0.92 including a race condition and bypass flaws. http://packetstormsecurity.org/files/62183/nmapfinger-whoops.txt http://packetstormsecurity.org/files/62183/nmapfinger-whoops.txt http://packetstormsecurity.org/files/62183/nmapfinger-whoops.txt.html Mon, 31 Dec 2007 21:22:21 GMT Fingerprints in Astaro Security Gateway version 7.1 could allow a remote attacker to create malicious payloads. http://packetstormsecurity.org/files/62174/glsa-200712-21.txt http://packetstormsecurity.org/files/62174/glsa-200712-21.txt http://packetstormsecurity.org/files/62174/Gentoo-Linux-Security-Advisory-200712-21.html Sat, 29 Dec 2007 20:43:18 GMT Gentoo Linux Security Advisory GLSA 200712-21 - Jesse Ruderman and Petko D. Petkov reported that the jar protocol handler in Mozilla Firefox and Seamonkey does not properly check MIME types (CVE-2007-5947). Gregory Fleischer reported that the window.location property can be used to generate a fake HTTP Referer (CVE-2007-5960). Multiple memory errors have also been reported (CVE-2007-5959). Versions less than 2.0.0.11 are affected. http://packetstormsecurity.org/files/62173/glsa-200712-20.txt http://packetstormsecurity.org/files/62173/glsa-200712-20.txt http://packetstormsecurity.org/files/62173/Gentoo-Linux-Security-Advisory-200712-20.html Sat, 29 Dec 2007 20:43:01 GMT Gentoo Linux Security Advisory GLSA 200712-20 - iDefense reported an integer overflow vulnerability in the cli_scanpe() function when parsing Portable Executable (PE) files packed in the MEW format, that could be exploited to cause a heap-based buffer overflow (CVE-2007-6335). Toeroek Edwin reported an off-by-one error when decompressing MS-ZIP compressed CAB files (CVE-2007-6336). An unspecified vulnerability related to the bzip2 decompression algorithm has also been discovered (CVE-2007-6337). Versions less than 0.91.2-r1 are affected. http://packetstormsecurity.org/files/62172/glsa-200712-19.txt http://packetstormsecurity.org/files/62172/glsa-200712-19.txt http://packetstormsecurity.org/files/62172/Gentoo-Linux-Security-Advisory-200712-19.html Sat, 29 Dec 2007 20:42:37 GMT Gentoo Linux Security Advisory GLSA 200712-19 - Oriol Carreras reported a NULL pointer dereference in the log_msg_parse() function when processing timestamps without a terminating whitespace character. Versions less than 2.0.6 are affected. http://packetstormsecurity.org/files/62171/glsa-200712-18.txt http://packetstormsecurity.org/files/62171/glsa-200712-18.txt http://packetstormsecurity.org/files/62171/Gentoo-Linux-Security-Advisory-200712-18.html Sat, 29 Dec 2007 20:42:01 GMT Gentoo Linux Security Advisory GLSA 200712-18 - nnp discovered multiple vulnerabilities in the XML-RPC handler in the file webserver.c. The ws_addarg() function contains a format string vulnerability, as it does not properly sanitize username and password data from the Authorization: Basic HTTP header line (CVE-2007-5825). The ws_decodepassword() and ws_getheaders() functions do not correctly handle empty Authorization header lines, or header lines without a ':' character, leading to NULL pointer dereferences (CVE-2007-5824). Versions less than 0.2.4.1 are affected. http://packetstormsecurity.org/files/62170/glsa-200712-17.txt http://packetstormsecurity.org/files/62170/glsa-200712-17.txt http://packetstormsecurity.org/files/62170/Gentoo-Linux-Security-Advisory-200712-17.html Sat, 29 Dec 2007 20:41:24 GMT Gentoo Linux Security Advisory GLSA 200712-17 - Meder Kydyraliev (Google Security) discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop() and other functions (CVE-2007-6354). He also discovered integer overflow vulnerabilities in the parsetag() and other functions (CVE-2007-6355) and an infinite recursion in the readifds() function caused by recursive IFD references (CVE-2007-6356). Versions less than 1.01 are affected. http://packetstormsecurity.org/files/62169/glsa-200712-16.txt http://packetstormsecurity.org/files/62169/glsa-200712-16.txt http://packetstormsecurity.org/files/62169/Gentoo-Linux-Security-Advisory-200712-16.html Sat, 29 Dec 2007 20:40:56 GMT Gentoo Linux Security Advisory GLSA 200712-16 - Meder Kydyraliev (Google Security) discovered an integer overflow vulnerability in the JpegThumbnail::setDataArea() method leading to a heap-based buffer overflow. Versions less than 0.13-r1 are affected. http://packetstormsecurity.org/files/62168/glsa-200712-15.txt http://packetstormsecurity.org/files/62168/glsa-200712-15.txt http://packetstormsecurity.org/files/62168/Gentoo-Linux-Security-Advisory-200712-15.html Sat, 29 Dec 2007 20:40:37 GMT Gentoo Linux Security Advisory GLSA 200712-15 - Meder Kydyraliev (Google Security) discovered an integer overflow vulnerability in the exif_data_load_data_thumbnail() function leading to a memory corruption (CVE-2007-6352) and an infinite recursion in the exif_loader_write() function (CVE-2007-6351). Versions less than 0.6.16-r1 are affected. http://packetstormsecurity.org/files/62167/dsa-1442-1.txt http://packetstormsecurity.org/files/62167/dsa-1442-1.txt http://packetstormsecurity.org/files/62167/Debian-Linux-Security-Advisory-1442-1.html Sat, 29 Dec 2007 20:40:29 GMT Debian Security Advisory 1442-1 - Rubert Buchholz discovered that libsndfile, a library for reading / writing audio files performs insufficient boundary checks when processing FLAC files, which might lead to the execution of arbitrary code. http://packetstormsecurity.org/files/62162/coolplayer-overflow.txt http://packetstormsecurity.org/files/62162/coolplayer-overflow.txt http://packetstormsecurity.org/files/62162/coolplayer-overflow.txt.html Sat, 29 Dec 2007 01:22:15 GMT CoolPlayer versions 217 and below suffer from a buffer overflow vulnerability in CPLI_Readtag_OGG. http://packetstormsecurity.org/files/62161/dsa-1441-1.txt http://packetstormsecurity.org/files/62161/dsa-1441-1.txt http://packetstormsecurity.org/files/62161/Debian-Linux-Security-Advisory-1441-1.html Sat, 29 Dec 2007 01:20:32 GMT Debian Security Advisory 1441-1 - Luigi Auriemma discovered that PeerCast, a P2P audio and video streaming server, is vulnerable to a heap overflow in the HTTP server code, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SOURCE request. http://packetstormsecurity.org/files/62160/dsa-1440-1.txt http://packetstormsecurity.org/files/62160/dsa-1440-1.txt http://packetstormsecurity.org/files/62160/Debian-Linux-Security-Advisory-1440-1.html Sat, 29 Dec 2007 01:19:51 GMT Debian Security Advisory 1440-1 - It was discovered that a buffer overflow in the filename processing of the inotify-tools, a command-line interface to inotify, may lead to the execution of arbitrary code. This only affects the internal library and none of the frontend tools shipped in Debian. http://packetstormsecurity.org/files/62159/dsa-1439-1.txt http://packetstormsecurity.org/files/62159/dsa-1439-1.txt http://packetstormsecurity.org/files/62159/Debian-Linux-Security-Advisory-1439-1.html Sat, 29 Dec 2007 01:19:15 GMT Debian Security Advisory 1439-1 - Henning Pingel discovered that TYPO3, a web content management framework, performs insufficient input sanitising, making it vulnerable to SQL injection by logged-in backend users. http://packetstormsecurity.org/files/62158/dsa-1438-1.txt http://packetstormsecurity.org/files/62158/dsa-1438-1.txt http://packetstormsecurity.org/files/62158/Debian-Linux-Security-Advisory-1438-1.html Sat, 29 Dec 2007 01:18:33 GMT Debian Security Advisory 1438-1 - Several vulnerabilities have been discovered in GNU Tar. A directory traversal vulnerability enables attackers using specially crafted archives to extract contents outside the directory tree created by tar. A stack-based buffer overflow in the file name checking code may lead to arbitrary code execution when processing maliciously crafted archives. http://packetstormsecurity.org/files/62157/hp-snmp.txt http://packetstormsecurity.org/files/62157/hp-snmp.txt http://packetstormsecurity.org/files/62157/hp-snmp.txt.html Sat, 29 Dec 2007 01:17:27 GMT The HP Photosmart C6280 network printer ships with unchangeable insecure default settings. http://packetstormsecurity.org/files/62152/dsa-1405-3.txt http://packetstormsecurity.org/files/62152/dsa-1405-3.txt http://packetstormsecurity.org/files/62152/Debian-Linux-Security-Advisory-1405-3.html Sat, 29 Dec 2007 01:10:01 GMT Debian Security Advisory 1405-3 - The Plone developers discovered that their hotfix, released as DSA 1405, introduced two regressions. This update corrects these flaws. It was discovered that Plone, a web content management system, allows remote attackers to execute arbitrary code via specially crafted web browser cookies. http://packetstormsecurity.org/files/62151/joomla-csrf.txt http://packetstormsecurity.org/files/62151/joomla-csrf.txt http://packetstormsecurity.org/files/62151/joomla-csrf.txt.html Sat, 29 Dec 2007 01:08:24 GMT Multiple cross site request forgery vulnerabilities may exist in all versions of Joomla!. http://packetstormsecurity.org/files/62148/libnemesibof.txt http://packetstormsecurity.org/files/62148/libnemesibof.txt http://packetstormsecurity.org/files/62148/libnemesibof.txt.html Sat, 29 Dec 2007 01:04:06 GMT libnemesi versions 0.6.4-rc1 and below suffer from multiple buffer overflow vulnerabilities. http://packetstormsecurity.org/files/62145/fengulo.txt http://packetstormsecurity.org/files/62145/fengulo.txt http://packetstormsecurity.org/files/62145/fengulo.txt.html Sat, 29 Dec 2007 00:58:39 GMT Feng versions 0.1.15 and below suffer from buffer overflow and denial of service vulnerabilities. http://packetstormsecurity.org/files/62142/xmpbof.txt http://packetstormsecurity.org/files/62142/xmpbof.txt http://packetstormsecurity.org/files/62142/xmpbof.txt.html Sat, 29 Dec 2007 00:52:18 GMT Extended Module Player (XMP) versions 2.5.1 and below suffer from multiple buffer overflow vulnerabilities.