 |
|
|
|
| Linux multiple security vulnerabilities | | Published: |  | 21.12.2007 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 8485 | | Type: |  | local | | Level: |  | 7/10 | | Description: |  | DoS with minix filesystem, integer overflow in hrtimer subsystem, buffer overflow on ISDN IOCTL handling, invalid coredump files handling. |
| Affected: |  | LINUX : kernel 2.6 | | CVE: |  | CVE-2007-6417 (The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances, which might allow local users to read sensitive kernel data or cause a denial of service (crash).) | | | | CVE-2007-6206 (The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.) | | | | CVE-2007-6063 (Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdn_ioctl function.) | | | | CVE-2007-5966 (Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE: some of these details are obtained from third party information.) | | | | CVE-2006-6058 (The minix filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function. NOTE: this issue might be due to an integer overflow or signedness error.) |
| IBM Domino Web Access Upload Control ActiveX buffer overflow | | Published: | | 21.12.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8488 | | Type: | | client | | Level: | | 5/10 | | Description: | | Buffer overflow in InstallBrowserHelperDll with General_ServerName property. |
| HP-UX rpc.yppasswdd DoS | | Published: | | 21.12.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8483 | | Type: | | remote | | Level: | | 5/10 |
| Appian Enterprise Business Process Management Suite DoS | | Published: | | 21.12.2007 | | Source: | | SECURITEAM | | SecurityVulns ID: | | 8486 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Application hang on malformed TCP/5400 packet. |
| MySQL SHOW TABLE STATUS DoS | | Published: | | 21.12.2007 | | Source: | | CVE | | SecurityVulns ID: | | 8487 | | Type: | | client | | Level: | | 5/10 |
| Affected: | | ORACLE : MySQL 5.0 | | | | ORACLE : MySQL 5.1 | | | | MYSQL : MySQL 6.0 | | CVE: | | CVE-2007-6304 (The federated engine in MySQL 5.0.x before 5.0.52, 5.1.x before 5.1.23, and 6.0.x before 6.0.4, when performing a certain SHOW TABLE STATUS query, does not properly handle a response with a small number of columns, which allows remote MySQL servers to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.) |
| HP Tru64 File-on-File Mounting File System DoS | | Published: | | 21.12.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8484 | | Type: | | local | | Level: | | 5/10 |
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 21.12.2007 | | Published: | | 24.12.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 8482 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
WordPress <= 2.0.9: crossite scripting. |
| Original document |  | malibu.r_(at)_hotmail.com, Logaholic Web Analytics Software (24.12.2007) |
| | | admin_(at)_bugreport.ir, Jupiter Cms Multiple Vulnerabilities (24.12.2007) |
| | | Janek Vind, [waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5 (24.12.2007) |
| | | ISecAuditors Security Advisories, [ISecAuditors Security Advisories] Tikiwiki CMS is vulnerable to path traversal attack (24.12.2007) |
| | | mesut_(at)_h-labs.org, Tikiwiki 1.9.8.3 tiki-special_chars.php XSS Vulnerability (24.12.2007) |
| | | beenudel1986_(at)_gmail.com, My Blog Rfi (24.12.2007) |
| | | Hackers Center Security Group, [HSC] Dokeos Multiple Cross-Site Scripting Vulnerabilities (24.12.2007) |
| | | MustLive, Cross-Site Scripting vulnerabilities in WordPress (24.12.2007) |
| | | root_(at)_hanicker.it, Moodle SQL Injection (21.12.2007) |
| | | nbbn_(at)_gmx.net, Woltlab Burning Board 1.0.2 SQL-Injection Vulnerability (21.12.2007) |
| | | Jose Luis Góngora Fernández, PHP iCalendar <= 2.24 - Cross-Site Scripting Vulnerability (21.12.2007) |
| | | lolo lolo, SiteScape Forum TCL injection (21.12.2007) |
| | | The-0utl4w-noreply_(at)_aria-security.net, [Aria-Security.net] ABI Version 3.7.9.17 Remote SQL Injection (21.12.2007) |
| | | ahcrew_(at)_gmail.com, iSupport v1.8 Local file include vulnerability (21.12.2007) |
|
|
|
|
|
|
|
|
