Search:Vulnerability:22.08.2005 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Multiple MacOS X vulnerabilities
updated since 18.08.2005
Published: 22.08.2005
Source: CERT
SecurityVulns ID: 5114
Type: remote
Level: 7/10
Description: Apple Mac OS X Directory Services contains a buffer overflow, Apple Mac OS X Server servermgrd authentication vulnerable to buffer overflow, Apple Mac OS X AppKit vulnerable to buffer overflow via the handling of maliciously crafted rich text files, Apple Mac OS X AppKit vulnerable to buffer overflow via maliciously crafted Microsoft Word files, Apple Mac OS X Safari vulnerable to arbitrary command execution via URLs in PDF files, Apple Safari fails to perform security checks on links in rich text content.

Affected: APPLE : MacOS X 10.3
APPLE : Mac OS X 10.4

Original document Kevin Finisterre, [Full-disclosure] DMA[2005-0818a] - 'Apple OSX dsidentity privilege abuse' (22.08.2005)

advisories, [Full-disclosure] [ Suresec Advisories ] - Several MacOS X vulnerabilities (22.08.2005)

CERT, US-CERT Technical Cyber Security Alert TA05-229A -- Apple Mac Products are Affected by Multiple Vulnerabilities (18.08.2005)

Discuss: Read or add your comments to this news (0 comments)

LM Sensors symbolic links problem
Published: 22.08.2005
Source: SECUNIA
SecurityVulns ID: 5133
Type: local
Level: 5/10
Description: Unsafe temporary files creation.

Affected: LMSENSORS : LM Sensors 2.9

Original document SECUNIA, [SA16501] LM Sensors Insecure Temporary File Creation Vulnerability (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

elm mail agent buffer overflow
Published: 22.08.2005
Source: FULL-DISCLOSURE
SecurityVulns ID: 5128
Type: client
Level: 6/10
Description: Buffer overflow on oversized Expires: e-mail header.

Affected: ELM : elm 2.5

Original document Ulf Harnhammar, [Full-disclosure] [RETRO AUDITING] Elm remote buffer overflow in Expires header (22.08.2005)

Files: ELM < 2.5.8 Remote Exploit POC
Discuss: Read or add your comments to this news (0 comments)

Linux kernel multiple vulnerabilities
Published: 22.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5127
Type: remote
Level: 6/10
Description: Multiple DoS conditions, code execution while mounting compressed ISO file system, IPSec protection bypass by local user.

Affected: LINUX : kernel 2.6

Original document UBUNTU, [USN-169-1] Linux kernel vulnerabilities (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

Lotus Domino weak files permissions
updated since 14.08.2005
Published: 22.08.2005
Source: SECURITEAM
SecurityVulns ID: 5104
Type: local
Level: 6/10
Description: Database names.nsf with password hashes is world readable.

Affected: IBM : Lotus Domino 6.5
CVE: CVE-2007-0977 (IBM Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores HTTPPassword hashes from names.nsf in a manner accessible through Readviewentries and OpenDocument requests to the defaultview view, a different vector than CVE-2005-2428.)
CVE-2005-2696 (IBM Lotus Notes does not properly restrict access to password hashes in the Notes Address Book (NAB), which allows remote attackers to obtain sensitive information via the (1) password digest field in the Administration tab of a Lotus Notes client, (2) "PasswordDigest" and "HTTPPassword" fields in the document properties in the NAB, or (3) a direct query to the Domino LDAP server, a different vulnerability than CVE-2005-2428.)
CVE-2005-2428 (Lotus Domino R5 and R6 WebMail, with "Generate HTML for all fields" enabled, stores sensitive data from names.nsf in hidden form fields, which allows remote attackers to read the HTML source to obtain sensitive information such as (1) the password hash in the HTTPPassword field, (2) the password change date in the HTTPPasswordChangeDate field, (3) the client platform in the ClntPltfrm field, (4) the client machine name in the ClntMachine field, and (5) the client Lotus Domino release in the ClntBld field, a different vulnerability than CVE-2005-2696.)

Original document Shalom Carmel, IBM Lotus Notes multiple disclosures of password hashes (22.08.2005)

SECURITEAM, [NEWS] Default Configuration Information Disclosure in Lotus Domino (Including Password Hashes) (14.08.2005)

Files: raptor_dominohash - Lotus Domino R5/R6 HTTPPassword dump
Discuss: Read or add your comments to this news (0 comments)

ProcessExplorer system monitoring tool buffer overflow
Published: 22.08.2005
Source: BUGTRAQ
SecurityVulns ID: 5131
Type: local
Level: 5/10
Description: Buffer overflow during parsing of CompanyName and VersionInfo PE file headers of running process.

Affected: SYSINTERNALS : Process Explorer 9.23

Original document SECUNIA, [SA16525] Process Explorer "CompanyName" Buffer Overflow (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

Multiple Computer Associates software vulnerabilities
updated since 22.08.2005
Published: 23.08.2005
Source: SECUNIA
SecurityVulns ID: 5130
Type: remote
Level: 7/10
Description: CA Message Queuing service buffer overflow, DoS and privilege escalation.

Affected: CA : Unicenter Remote Control 6.0
CA : Unicenter Performance Management for OpenVMS r2.4
CA : AdviseIT 2.4
CA : Advantage Data Transport 3.0
CA : BrightStor SAN Manager 1.1
CA : BrightStor SAN Manager 11.1
CA : BrightStor Portal 11.1
CA : CleverPath OLAP 5.1
CA : CleverPath ECM 3.5
CA : CleverPath Predictive Analysis Server 2.0
CA : CleverPath Predictive Analysis Server 3.0
CA : CleverPath Aion 10.0
CA : eTrust Admin 2.01
CA : eTrust Admin 2.04
CA : eTrust Admin 2.07
CA : eTrust Admin 2.09
CA : eTrust Admin 8.0
CA : eTrust Admin 8.1
CA : Unicenter Application Performance Monitor 3.0
CA : Unicenter Application Performance Monitor 3.5
CA : Unicenter Asset Management 3.1
CA : Unicenter Asset Management 3.2
CA : Unicenter Asset Management 4.0
CA : Unicenter Data Transport Option 2.0
CA : Unicenter Enterprise Job Manager 1.0
CA : Unicenter Jasmine 3.0
CA : Unicenter Management for WebSphere MQ 3.5
CA : Unicenter Management for Microsoft Exchange 4.0
CA : Unicenter Management for Microsoft Exchange 4.1
CA : Unicenter Management for Lotus Notes/Domino 4.0
CA : Unicenter Management for Web Servers 5.0
CA : Unicenter NSM 3.0
CA : Unicenter NSM 3.1
CA : Unicenter NSM Wireless Network Management Option 3.0
CA : Unicenter Service Level Management 3.0
CA : Unicenter Service Level Management 3.5
CA : Unicenter Software Delivery 3.0
CA : Unicenter Software Delivery 3.1
CA : Unicenter Software Delivery 4.0
CA : Unicenter TNG 2.1
CA : Unicenter TNG 2.2
CA : Unicenter TNG 2.4

Original document CA, 32919 - Computer Associates Message Queuing (CAM/CAFT) multiple vulnerabilities (23.08.2005)

SECUNIA, [SA16513] CA Various Products Message Queuing Vulnerabilities (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

PCRE regular expressions library integer overflow
updated since 22.08.2005
Published: 05.09.2005
Source: SECUNIA
SecurityVulns ID: 5132
Type: library
Level: 6/10
Description: pcre_compile.c {} regexp parameter integer overflow.

Affected: APACHE : Apache 2.0
PHP : PHP 4.3
PYTHON : python 2.3
PCRE : pcre 6.1
GNUMERIC : gnumeric 1.2

Original document SECUNIA, Apache PCRE Integer Overflow Vulnerability (05.09.2005)

MANDRIVA, MDKSA-2005:154 - Updated python packages fix integer overflow vulnerability (28.08.2005)

MANDRIVA, MDKSA-2005:153 - Updated gnumeric packages fix integer overflow vulnerability (28.08.2005)

MANDRIVA, MDKSA-2005:152 - Updated php packages fix integer overflow vulnerability (28.08.2005)

document SECUNIA, [SA16502] PCRE Quantifier Values Integer Overflow Vulnerability (22.08.2005)

Discuss: Read or add your comments to this news (0 comments)

test server