Search:Vulnerability:03.07.2008 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

SÖLDNER - Secret Wars games server DoS
Published: 03.07.2008
Source: BUGTRAQ
SecurityVulns ID: 9124
Type: remote
Level: 5/10
Description: CPU exhaustion on network packet parsing.

Affected: SOLDNER : SÖLDNER 33724

Original document Luigi Auriemma, Endless loop in Soldner 33724 (03.07.2008)

Files: Exploits Soldner <= 33724 endless loop
Discuss: Read or add your comments to this news (0 comments)

Ruby multiple security vulnerabilities
updated since 27.06.2008
Published: 03.07.2008
Source: BUGTRAQ
SecurityVulns ID: 9117
Type: library
Level: 6/10

Affected: RUBY : Ruby 1.8
RUBY : Ruby 1.9
CVE: CVE-2008-2726 (Integer overflow in the rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allows context-dependent attackers to trigger memory corruption, aka the "beg + rlen" issue. NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. The CVE description should be regarded as authoritative, although it is likely to change.)
CVE-2008-2725 (Integer overflow in the rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22 allows context-dependent attackers to trigger memory corruption via unspecified vectors, aka the "REALLOC_N" variant, a different issue than CVE-2008-2662, CVE-2008-2663, and CVE-2008-2664. NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. The CVE description should be regarded as authoritative, although it is likely to change.)
CVE-2008-2664
CVE-2008-2663
CVE-2008-2662

Original document snagg_(at)_securenetwork.it, Vuln name: Ruby rb_ary_fill() DOS (03.07.2008)

RPATH, rPSA-2008-0206-1 ruby (27.06.2008)

Discuss: Read or add your comments to this news (0 comments)

QNX phgrafx privilege escalation
Published: 03.07.2008
Source: BUGTRAQ
SecurityVulns ID: 9125
Type: local
Level: 5/10
Description: suid root utility buffer overflow on .pal files parsing.

Affected: QNX : QNX 6.3

Original document Scanit Labs, [SCANIT-2008-001] QNX phgrafx Privilege Escalation Vulnerability (03.07.2008)

Discuss: Read or add your comments to this news (0 comments)

- HP System Management Homepage crossite scripting
Published: 03.07.2008
Source: BUGTRAQ
SecurityVulns ID: 9126
Type: remote
Level: 4/10

Affected: HP : HP System Management Homepage 2.1
CVE: CVE-2008-1663

Original document HP, [security bulletin] HPSBMA02345 SSRT080039 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS) (03.07.2008)

Discuss: Read or add your comments to this news (0 comments)

VLC Media Player integer overflow
updated since 03.07.2008
Published: 09.09.2008
Source: BUGTRAQ
SecurityVulns ID: 9123
Type: client
Level: 6/10
Description: Integer overflow on WAV and TTA files parsing.

Affected: VLC : VLC Media Player 0.8
CVE: CVE-2008-3794 (Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.)
CVE-2008-3732 (Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.)
CVE-2008-2430

Original document GENTOO, [ GLSA 200809-06 ] VLC: Multiple vulnerabilities (09.09.2008)

SECUNIA, Secunia Research: VLC Media Player WAV Processing Integer Overflow (03.07.2008)

Discuss: Read or add your comments to this news (0 comments)