Multiple Intel Centrino / PROSet / Apple Airport wireless drivers security vulnerabilities updated since 10.08.2006
Published:		22.09.2006
Source:		INTEL
SecurityVulns ID:		6475
Type:		remote
Level:		9/10
Description:		Multiple vulnerabilities, including local privilege escalation anre remote code execution.

Affected:		APPLE : MacOS X 10.3
		APPLE : Mac OS X 10.4
		INTEL : Intel PRO/Wireless 2200BG
		INTEL : Intel PRO/Wireless 2915ABG
		INTEL : Intel PRO/Wireless 2100
		INTEL : Intel PRO/Wireless 3945ABG
CVE:		CVE-2007-0686 (The Intel 2200BG 802.11 Wireless Mini-PCI driver 9.0.3.9 (w29n51.sys) allows remote attackers to cause a denial of service (system crash) via crafted disassociation packets, which triggers memory corruption of "internal kernel structures," a different vulnerability than CVE-2006-6651. NOTE: this issue might overlap CVE-2006-3992.)
		CVE-2006-3992 (Unspecified vulnerability in the Centrino (1) w22n50.sys, (2) w22n51.sys, (3) w29n50.sys, and (4) w29n51.sys Microsoft Windows drivers for Intel 2200BG and 2915ABG PRO/Wireless Network Connection before 10.5 with driver 9.0.4.16 allows remote attackers to execute arbitrary code via certain frames that trigger memory corruption.)

Original document		APPLE, About the security content of AirPort Update 2006-001 and Security Update 2006-005 (22.09.2006)
		INTEL, Intel® Centrino Wireless Driver Malformed Frame Privilege Escalation (10.08.2006)
		INTEL, Intel® PROSet/Wireless Software Local Information Disclosure (10.08.2006)
		INTEL, Intel® Centrino Wireless Driver Malformed Frame Remote Code Execution (10.08.2006)

Files:		Exploits Intel 2200BG 802.11 disassociation packet Kernel Memory Corruption
Discuss:		Read or add your comments to this news (0 comments)

Multiple Apple QuickTime security vulnerabilities updated since 13.09.2006
Published:		22.09.2006
Source:		BUGTRAQ
SecurityVulns ID:		6607
Type:		client
Level:		6/10
Description:		Integer overflow on H.264 protocol parsing, heap buffer overflow on parsing FLIC files.

Affected:

APPLE : QuickTime 7.1

Original document		SECUNIA, [SA22048] Apple QuickTime Plug-In Local Resource Linking Weakness (22.09.2006)
		Reversemode, [Reversemode Advisory] Apple Quicktime FLIC File Heap Overflow (18.09.2006)
		Avert, Multiple Vulnerabilities in Apple QuickTime (13.09.2006)
		CERT, US-CERT Technical Cyber Security Alert TA06-256A -- Apple QuickTime Vulnerabilities (13.09.2006)
		Piotr Bania, Apple QuickTime Player H.264 Codec Remote Integer Overflow (13.09.2006)
		Sowhat ., Apple QuickTime H.264 Integer Overflow Vulnerability (13.09.2006)
		IDEFENSE, iDefense Security Advisory 09.12.06: Apple QuickTime FLIC File Heap Overflow Vulnerability (13.09.2006)

Discuss:

Read or add your comments to this news (0 comments)

Multiple Windows kernel security vulnerabilities updated since 09.08.2006
Published:		22.09.2006
Source:		MICROSOFT
SecurityVulns ID:		6469
Type:		client
Level:		8/10
Description:		Buffer overflow vulnerability allows privilege escalation, WinLogon user profile DLL privilege escalation, unhandled exception code execution vulnerability.

Affected:		MICROSOFT : Windows 2000 Server
		MICROSOFT : Windows 2000 Professional
		MICROSOFT : Windows XP
		MICROSOFT : Windows 2003 Server

Original document		MICROSOFT, Microsoft Security Bulletin MS06-051 Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422) (09.08.2006)
		MICROSOFT, Microsoft Security Bulletin MS06-049 Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958) (09.08.2006)

Files:		MS06-049 Windows ZwQuerySystemInformation Local Privilege Escalation Vulnerability Exploit
		Microsoft Security Bulletin MS06-051 Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)
		Microsoft Security Bulletin MS06-049 Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
Discuss:		Read or add your comments to this news (0 comments)

Half-Life / Counter Strike nosteam game servers DoS
Published:		22.09.2006
Source:		GREY
SecurityVulns ID:		6643
Type:		remote
Level:		5/10
Description:		Windows dedicated server crashes on HLTV client connect if client versions is <= 27 and LKTV support is enabled (sv_proxies ="1")/

Affected:

VALVE : hlds 1.1

Original document

Grey, Half-Life/cstrike server remote DoS (22.09.2006)

Discuss:

Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		22.09.2006
Source:
SecurityVulns ID:		6645
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		PROGSYS : ProgSys 0.151
		PHPQUESTIONNAIRE : phpQuestionnaire 3.12
		SOLIDSTATE : SolidState 0.4
		SUN : Sun Secure Global Desktop 4.3

Original document		Kacper, SolidState <= 0.4 Multiple Include Vulnerabilities (22.09.2006)
		HACKERS PAL, Wili-CMS Multiple Input Validation Vulnerabilities (22.09.2006)
		Solpot, phpQuestionnaire 3.12 (GLOBALS[phpQRootDir]) Remote File Inclusion (22.09.2006)
		Marc Ruef, [scip_Advisory 2555] Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities (22.09.2006)
		HACKERS PAL, Wili-CMS Multiple Input Validation Vulnerabilities (22.09.2006)
		HACKERS PAL, Grayscale BandSite CMS Multiple Input Validation Vulnerabilities (22.09.2006)

Files:		ProgSys <= 0.151 Remote File Include Exploit
Discuss:		Read or add your comments to this news (0 comments)

Multiple CA eTrust Security Command Center / eTrust Audit security vulnerabilities updated since 22.09.2006
Published:		23.09.2006
Source:		BUGTRAQ
SecurityVulns ID:		6644
Type:		remote
Level:		5/10
Description:		Path disclosure, directory traversal, replay attacks.

Affected:		CA : eTrust Audit 1.5
		CA : eTrust Security Command Center 1.0

Original document		Patrick Webster, RE: Computer Associates eTrust Security Command Center Multiple Vulnerabilities (23.09.2006)
		CA, [CAID 34616, 34617, 34618]: CA eSCC and eTrust Audit vulnerabilities (22.09.2006)

Discuss:

Read or add your comments to this news (0 comments)