|
|
Written by Marcelo Almeida (Vympel)
|
|
Friday, 13 April 2007 |
|
Jon Oberheide has reported two vulnerabilities in CoSign, which can be
exploited by malicious users to hijack other user sessions and by
malicious people to bypass certain security restrictions.
Certain input passed via POST requests are not properly sanitised
before being used by the daemon. These can be exploited to insert
certain commands via carriage return sequences in the cookie or data of
a POST request.
Successful exploitation e.g. allows a non-authenticated user to bypass
the authentication mechanism and an authenticated user to assume the
identity of other users...
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Marcelo Almeida (Vympel)
|
|
Friday, 13 April 2007 |
|
A security issue has been reported in FreeRADIUS, which can be exploited by malicious people to cause a DoS (Denial of Service).
The security issue is caused due to a memory leak (ca. 300bytes) within
the handling of certain malformed diameter format values inside an
EAP-TTLS tunnel. This can be exploited to exhaust all available memory
by sending a large number of malformed authentication requests to a
vulnerable server.
The security issue is reported in versions prior to 1.1.6.
Solution:
Update to version 1.1.6.
Provided and/or discovered by:
The vendor credits the Coverity Project.
Original Advisory:
http://www.freeradius.org/security.html
Original Article:
http://secunia.com/advisories/24849/
Write Comment (0 Comments) |
|
Written by Marcelo Almeida (Vympel)
|
|
Friday, 13 April 2007 |
Update available for privilege escalation issue in Bridge 1.0.3 installer package
Release date: April 10, 2007
Vulnerability identifier: APSB07-09
CVE number: CVE-2007-1279
Platform: Macintosh
Affected software versions: Bridge 1.0.3 update
Summary
There
is a problem with the previous installer for Bridge update 1.0.3. A
potential vulnerability occurs when the administrator attempts to
install the patch. While the patch is being installed a local
non-administrative user may be able to gain administrative privileges...
Write Comment (2 Comments) |
|
Read more...
|
|
Written by Marcelo Almeida (Vympel)
|
|
Friday, 13 April 2007 |
A vulnerability has been reported in Openads, which can be exploited by
malicious people to conduct HTTP header injection attacks.
Input passed to unspecified parameters in adclick.php is not properly
sanitised before being used in the HTTP response. This can be exploited
to inject arbitrary HTML and script code, which is executed in a user's
browser session in context of an affected site.
The vulnerability is reported in versions prior to 2.0.11-pr1...
Write Comment (0 Comments) |
|
Read more...
|
|
Written by Marcelo Almeida (Vympel)
|
|
Wednesday, 04 April 2007 |
Microsoft Security Bulletin MS07-017
Vulnerabilities in GDI Could Allow Remote Code Execution (925902)
Published: April 3, 2007
Version: 1.0
Summary
Who Should Read this Document: Customers who use Microsoft Windows
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Critical
Recommendation: Customers should apply the update immediately
Security Update Replacement: This bulletin replaces aprior security update. See the Frequently Asked Questions (FAQ) section of this bulletin for details...
Write Comment (1 Comments) |
|
Read more...
|
|
|
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
|
| Results 106 - 120 of 9522 |
ITsec Advisories 
