 |
|
|
|
| IBM AIX utilities multiple security vulnerabilities | | Published: |  | 27.07.2007 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 7983 | | Type: |  | remote | | Level: |  | 6/10 | | Description: |  | Multiple suid root ftp client buffer overflow, dynamic library loading via -R command line argument in pioout, buffer overflow with terminal control sequences in capture. |
| Affected: |  | IBM : AIX 5.3 | | CVE: |  | CVE-2007-4004 (Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the client is setuid root on AIX, so this issue crosses privilege boundaries.) | | | | CVE-2007-4003 (pioout in IBM AIX 5.3 SP6 allows local users to execute arbitrary code by specifying a malicious library with the -R (ParseRoutine) command line argument.) | | | | CVE-2007-3333 (Stack-based buffer overflow in capture in IBM AIX 5.3 SP6 and 5.2.0 allows remote attackers to execute arbitrary code via a large number of terminal control sequences.) |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 27.07.2007 | | Source: | | | | SecurityVulns ID: | | 7985 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Multiple Encase vulnerabilities | | Published: | | 27.07.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7986 | | Type: | | local | | Level: | | 5/10 | | Description: | | Memory corruptions on processing of corrupted files and filesystems. |
| libvorbis library multiple memory corruptions | | Published: | | 27.07.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7984 | | Type: | | library | | Level: | | 6/10 |
| Affected: | | LIBVORBIS : libvorbis 1.1 | | CVE: | | CVE-2007-4029 (libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service via (1) an invalid mapping type, which triggers an out-of-bounds read in the vorbis_info_clear function in info.c, and (2) invalid blocksize values that trigger a segmentation fault in the read function in block.c.) | | | | CVE-2007-3106 (libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" in the _01inverse function in res0.c. NOTE: this issue has been RECAST so that CVE-2007-4029 handles additional vectors.) |
| PHP win32service extension protection bypass | | Published: | | 27.07.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7987 | | Type: | | local | | Level: | | 5/10 | | Description: | | Service management functions ara available from safe mode. |
|
|
|
|
|
|
|
|
