 |
|
|
|
| Microsoft Works / Microsoft Office multiple security vulnerabilities | | Published: |  | 13.02.2008 | | Source: |  | MICROSOFT | | SecurityVulns ID: |  | 8674 | | Type: |  | client | | Level: |  | 6/10 | | Description: |  | Multiple buffer overflows and integer overflows on .wps files parsing. |
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 13.02.2008 | | Published: | | 13.02.2008 | | Source: | | | | SecurityVulns ID: | | 8677 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Brooksnet Remote Print Manager buffer overflow | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8681 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Buffer overflow on oversized filename. |
| Fortinet Forticlient privilege escalation | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8687 | | Type: | | local | | Level: | | 5/10 |
| Microsoft Office memory corruption | | Published: | | 13.02.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 8676 | | Type: | | client | | Level: | | 6/10 | | Description: | | Memory corruption on malformed embedded objects. |
| HP Mercury SiteScope multiple security vulnerabilities | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8679 | | Type: | | remote | | Level: | | 5/10 |
| Apple Mac OS X multiple security vulnerabilities | | Published: | | 13.02.2008 | | Source: | | APPLE | | SecurityVulns ID: | | 8684 | | Type: | | remote | | Level: | | 7/10 | | Description: | | Service Location Protocol buffer overflow, Safari code execution, Time Machine code execution, Mail file:// URI code execution, Parental Control information leakage, Terminal URI code execution,Open Directory weak authentication, NFS client and server DoS. |
| CVE: |  | CVE-2008-0042 | | | | CVE-2008-0041 | | | | CVE-2008-0040 | | | | CVE-2008-0039 | | | | CVE-2008-0038 | | | | CVE-2008-0035 (Unspecified vulnerability in Foundation, as used in Apple iPhone 1.0 through 1.1.2, iPod touch 1.1 through 1.1.2, and Mac OS X 10.5 through 10.5.1, allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted URL that triggers memory corruption in Safari.) | | | | CVE-2007-0355 (Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.8 and earlier allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field.) |
| Microsoft Publisher multiple security vulnerabilities | | Published: | | 13.02.2008 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 8675 | | Type: | | client | | Level: | | 6/10 | | Description: | | Uninitialized memory reference and DoS conditions on .pub files processing. |
| Novell Netware Client buffer overflow | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8680 | | Type: | | remote | | Level: | | 5/10 | | Description: | | NWSPOOL.DLL EnumPrinters buffer overflow. |
| CVE: | | CVE-2008-0639 (Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE: this issue exists because of an incomplete fix for CVE-2007-6701.) |
| Gnumeric buffer overflow | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8683 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow on .XLS files parsing. |
| Affected: |  | GNUMERIC : gnumeric 1.8 | | CVE: | | CVE-2008-0668 (The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow. NOTE: some of these details are obtained from third party information.) |
Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.02.2008 | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8673 | | Type: | | remote | | Level: | | 8/10 | | Description: | | Multiple memory corruptions. |
| ClamAV antivirus integer overflow | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8678 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Integer overflow on PE files parsing. |
| Intermate WinIPDS multiple security vulnerabilities | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8682 | | Type: | | remote | | Level: | | 5/10 | | Description: | | DoS, directory traversal. |
| Apple QuickTime ActiveX buffer overflow | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8685 | | Type: | | client | | Level: | | 7/10 | | Description: | | Multiple buffer overflows in different methods and properties. |
| Adobe Flash Media Server multiple security vulnerabilities | | Published: | | 13.02.2008 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8686 | | Type: | | remote | | Level: | | 6/10 | | Description: | | Integer overflows and memory corruptions on parsing TCP/1935 and TCP/19350 RTMP messages. |
|
|
|
|
|
|
|
|
