AOH :: ISNQ3674.HTM

Secunia Weekly Summary - Issue: 2007-8




Secunia Weekly Summary - Issue: 2007-8
Secunia Weekly Summary - Issue: 2007-8



=======================================================================
                  The Secunia Weekly Advisory Summary                  
                        2007-02-15 - 2007-02-22                        

                       This week: 62 advisories                        

=======================================================================Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4.......................................Vulnerabilities Summary Listing
5.......................................Vulnerabilities Content Listing

=======================================================================1) Word From Secunia:

Secunia blog entry about the "availability" of the latest Apple
QuickTime security update.

The update is ready, yet users are still only able to download the
vulnerable version from Apple.com - without any indication or guidance
about why or how to secure it:
http://secunia.com/blog/7/ 

Exploitation appears to be straight forward and the QuickTime player
is installed on more than 50% of all computers!

Use the Secunia Software Inspector for verification and real guidance
on how to secure your QuickTime player:
http://secunia.com/software_Inspector/ 

 --

Should you be interesting in a career within Secunia, the current job
openings are available right now:

Security Sales Engineer:
http://corporate.secunia.com/about_secunia/54/ 

German Key Account Manager:
http://corporate.secunia.com/about_secunia/55/ 

International Account Manager - Enterprise Sales:
http://corporate.secunia.com/about_secunia/52/ 

International Sales Manager - IT Security Partner:
http://corporate.secunia.com/about_secunia/51/ 

Danish: Disassembling og Reversing
http://secunia.com/Disassembling_og_Reversing/ 

=======================================================================2) This Week in Brief:

Several vulnerabilities in various Trend Micro products were disclosed
this week, bringing the advisory count for Trend Micro to six this
year, and five so far for February alone.

The first advisory discussed two vulnerabilities caused by boundary
errors within the OfficeScan Corp Edition Web-Deployment SetupINI
ActiveX control (OfficeScanSetupINI.dll) on an OfficeScan client. This
could be exploited by passing overly long properties, for example when
a user visits a malicious web site.

Successful exploitation allows execution of arbitrary code, but
requires that the OfficeScan client was installed using web
deployment.

The vulnerabilities reportedly affect the following products:
* OfficeScan versions 7.3, 7.0, 6.5, and 5.58.
* Client Server Messaging Security versions 3.5, 3.0, and 2.0.

As of this writing, fixes only for Officescan versions 7.0 and 7.3,
and Client Server Messaging Security version 3.0 have been released.

For more information, refer to:
http://secunia.com/advisories/24193/ 

 --

Four vulnerabilities were discovered in Trend Micro ServerProtect,
which could potentially allow a malicious person to compromise a
system on the local network.

All four vulnerabilities are boundary errors in various functions in
two library files, and could be exploited to cause stack-based buffer
overflows via specially crafted RPC requests.

Successful exploitation of the vulnerabilities allows execution of
arbitrary code with SYSTEM privileges.

The vulnerabilities are reported in the following versions:
* ServerProtect for Windows 5.58
* ServerProtect for EMC 5.58
* ServerProtect for Network Appliance Filer 5.61
* ServerProtect for Network Appliance Filer 5.62
A patch has been released for ServerProtect for Windows 5.58 in
English.

For more information, refer to:
http://secunia.com/advisories/24243/ 

 --

A vulnerability in Trend Micro ServerProtect for Linux was also
disclosed, this time regarding a design error in the management web
interface. The error could be exploited to bypass user authentication
by requesting any page while supplying a "splx_2376_info" cookie with
an arbitrary value.

Successful exploitation, allows, for example, editing and disabling
anti-virus features on the server.

The vulnerability is reported in versions 1.3 and 2.5. Patches are
available for this vulnerability.

For more information, refer to:
http://secunia.com/advisories/24264/ 

 --

VIRUS ALERTS:

During the past week Secunia collected 140 virus descriptions from the
Antivirus vendors. However, none were deemed MEDIUM risk or higher
according to the Secunia assessment scale.

=======================================================================3) This Weeks Top Ten Most Read Advisories:

1.  [SA24122] Microsoft Word Unspecified Memory Corruption 
              Vulnerability
2.  [SA24156] Internet Explorer Multiple Vulnerabilities
3.  [SA24175] Mozilla Firefox "locations.hostname" DOM Property
              Handling Vulnerability
4.  [SA24198] Mac OS X Security Update Fixes Multiple Vulnerabilities
5.  [SA24008] Microsoft Office Two Code Execution Vulnerabilities
6.  [SA24153] Mozilla Firefox "_blank" Phishing Weakness
7.  [SA24193] Trend Micro OfficeScan Client ActiveX Control Buffer
              Overflows
8.  [SA24160] Cisco PIX and ASA Privilege Escalation and Denial of
              Service
9.  [SA24197] SpamAssassin Long URI Denial of Service
10. [SA24187] ClamAV MIME Header Handling and CAB File Processing
              Vulnerabilities

=======================================================================4) Vulnerabilities Summary Listing

Windows:
[SA24216] News Rover NZB File Processing Buffer Overflow
[SA24199] EasyMail Objects IMAP4 Component "Connect" Buffer Overflow
[SA24193] Trend Micro OfficeScan Client ActiveX Control Buffer
Overflows
[SA24261] NewsBin Pro NBI Configuration File Processing Buffer
Overflow
[SA24237] News File Grabber NZB File Processing Code Execution
[SA24209] Turuncu Portal "id" SQL Injection Vulnerability
[SA24208] Online Web Building "art_id" SQL Injection Vulnerability
[SA24243] Trend Micro ServerProtect Buffer Overflow Vulnerabilities
[SA24258] Cisco Secure Services Client Multiple Vulnerabilities

UNIX/Linux:
[SA24219] Ultimate Fun Book "gbpfad" File Inclusion Vulnerability
[SA24218] Red Hat update for koffice
[SA24202] Gentoo update for sun-jdk and sun-jre-bin
[SA24198] Mac OS X Security Update Fixes Multiple Vulnerabilities
[SA24189] Gentoo update for emul-linux-x86-java
[SA24182] VS-Gstebuch "gb_pfad" File Inclusion Vulnerability
[SA24271] Ubuntu update for ekiga and gnomemeeting
[SA24250] Red Hat update for spamassassin
[SA24248] Red Hat update for php
[SA24241] Fedora update for php
[SA24229] Mandriva update for ekiga
[SA24228] Fedora update for ekiga
[SA24224] PHP-Nuke HTTP "referer" SQL Injection Vulnerability
[SA24217] Ubuntu update for php
[SA24200] Fedora update for spamassassin
[SA24197] SpamAssassin Long URI Denial of Service
[SA24196] Ubuntu update for imagemagick
[SA24195] Red Hat update for php
[SA24194] Ekiga Format String Vulnerability
[SA24192] Mandriva update for clamav
[SA24186] Red Hat update for ImageMagick
[SA24185] Red Hat update for gnomemeeting
[SA24184] Gentoo update for fail2ban
[SA24264] Trend Micro ServerProtect for Linux Web Interface
Authentication Bypass
[SA24244] Ubuntu update for moinmoin
[SA24206] Avaya Products Kernel Multiple Vulnerabilities
[SA24204] SUSE update for poppler
[SA24203] Gentoo update for bind
[SA24188] Red Hat update for samba
[SA24247] Avaya CMS xfs / X Render and DBE Extensions Vulnerabilities
[SA24215] Linux Kernel NFSACL "ACCESS" Denial of Service
[SA24231] Nortel Net Direct Client for Linux Privilege Escalation
[SA24226] Mandriva update for gnucash
[SA24225] GnuCash Insecure Temporary Files
[SA24213] IBM DB2 DB2DIAG.LOG Insecure File Creation
[SA24210] Avaya Products XFree86 "DBE" and "Render" Extensions
Vulnerabilities
[SA24259] Mandriva update for kernel

Other:
[SA24240] Nortel Threat Protection System DCE/RPC Preprocessor Buffer
Overflow
[SA24239] Nortel Threat Protection System DCE/RPC Preprocessor Buffer
Overflow
[SA24235] Sourcefire Intrusion Sensor DCE/RPC Preprocessor Buffer
Overflow
[SA24262] Cisco Unified IP Conference Station / IP Phone Default
Accounts

Cross Platform:
[SA24230] phpMyFAQ Unspecified File Upload Vulnerability
[SA24220] VS-News-System "newsordner" File Inclusion Vulnerabilities
[SA24214] Htaccess Passwort Generator "ht_pfad" File Inclusion
Vulnerability
[SA24212] Interspire SendStudio "ROOTDIR" File Inclusion
Vulnerabilities
[SA24190] Snort DCE/RPC Preprocessor Buffer Overflow
[SA24260] deV!L'z Clanportal Local File Disclosure Vulnerability
[SA24242] phpTrafficA "file" and "lang" Local File Inclusion
[SA24191] webSPELL "showonly" SQL Injection Vulnerability
[SA24187] ClamAV MIME Header Handling and CAB File Processing
Vulnerabilities
[SA24222] MyCalendar Multiple Cross-Site Scripting Vulnerabilities
[SA24211] MediaWiki AJAX UTF-7 Cross-Site Scripting
[SA24181] libevent DNS Response Denial of Service

=======================================================================5) Vulnerabilities Content Listing

Windows:--

[SA24216] News Rover NZB File Processing Buffer Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-20

Marsu Pilami has discovered a vulnerability in News Rover, which can be
exploited by malicious people to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24216/ 

 --

[SA24199] EasyMail Objects IMAP4 Component "Connect" Buffer Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-16

Paul Graig has reported a vulnerability in EasyMail Objects, which can
be exploited by malicious people to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24199/ 

 --

[SA24193] Trend Micro OfficeScan Client ActiveX Control Buffer
Overflows

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-16

Some vulnerabilities have been discovered in Trend Micro OfficeScan,
which can be exploited by malicious people to compromise a user's
system.

Full Advisory:
http://secunia.com/advisories/24193/ 

 --

[SA24261] NewsBin Pro NBI Configuration File Processing Buffer
Overflow

Critical:    Moderately critical
Where:       From remote
Impact:      System access
Released:    2007-02-22

Marsu Pilami has discovered a vulnerability in NewsBin Pro, which can
be exploited by malicious people to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24261/ 

 --

[SA24237] News File Grabber NZB File Processing Code Execution

Critical:    Moderately critical
Where:       From remote
Impact:      System access
Released:    2007-02-20

Marsu Pilami has discovered a vulnerability in News File Grabber, which
potentially can be exploited by malicious people to compromise a user's
system.

Full Advisory:
http://secunia.com/advisories/24237/ 

 --

[SA24209] Turuncu Portal "id" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data
Released:    2007-02-19

chernobiLe has discovered a vulnerability in Turuncu Portal, which can
be exploited by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/24209/ 

 --

[SA24208] Online Web Building "art_id" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data, Exposure of sensitive information
Released:    2007-02-21

xoron has reported a vulnerability in Online Web Building, which can be
exploited by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/24208/ 

 --

[SA24243] Trend Micro ServerProtect Buffer Overflow Vulnerabilities

Critical:    Moderately critical
Where:       From local network
Impact:      System access
Released:    2007-02-21

TippingPoint Security Research Team has reported some vulnerabilities
in Trend Micro ServerProtect, which can be exploited by malicious
people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24243/ 

 --

[SA24258] Cisco Secure Services Client Multiple Vulnerabilities

Critical:    Less critical
Where:       Local system
Impact:      Exposure of sensitive information, Privilege escalation
Released:    2007-02-22

Some vulnerabilities have been reported in Cisco Secure Services
Client, which can be exploited by malicious, local users to gain
knowledge of sensitive information or gain escalated privileges.

Full Advisory:
http://secunia.com/advisories/24258/ 


UNIX/Linux:--

[SA24219] Ultimate Fun Book "gbpfad" File Inclusion Vulnerability

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-21

kezzap66345 has discovered a vulnerability in Ultimate Fun Book, which
can be exploited by malicious people to compromise a vulnerable
system.

Full Advisory:
http://secunia.com/advisories/24219/ 

 --

[SA24218] Red Hat update for koffice

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-21

Red Hat has issued an update for koffice. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise a
user's system.

Full Advisory:
http://secunia.com/advisories/24218/ 

 --

[SA24202] Gentoo update for sun-jdk and sun-jre-bin

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-19

Gentoo has issued an update for sun-jdk and sun-jre-bin. This fixes a
vulnerability, which can be exploited by malicious people to compromise
a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24202/ 

 --

[SA24198] Mac OS X Security Update Fixes Multiple Vulnerabilities

Critical:    Highly critical
Where:       From remote
Impact:      Privilege escalation, DoS, System access
Released:    2007-02-16

Apple has issued a security update for Mac OS X, which fixes multiple
vulnerabilities.

Full Advisory:
http://secunia.com/advisories/24198/ 

 --

[SA24189] Gentoo update for emul-linux-x86-java

Critical:    Highly critical
Where:       From remote
Impact:      Security Bypass, Privilege escalation, System access
Released:    2007-02-19

Gentoo has issued an update for emul-linux-x86-java. This fixes some
vulnerabilities, which can be exploited by malicious people to bypass
certain security restrictions or compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24189/ 

 --

[SA24182] VS-Gstebuch "gb_pfad" File Inclusion Vulnerability

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-19

ajann has discovered a vulnerability in VS-Gstebuch, which can be
exploited by malicious people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24182/ 

 --

[SA24271] Ubuntu update for ekiga and gnomemeeting

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-22

Ubuntu has issued an update for ekiga and gnomemeeting. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24271/ 

 --

[SA24250] Red Hat update for spamassassin

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-22

Red Hat has issued an update for spamassassin. This fixes a
vulnerability, which can be exploited by malicious people to cause a
DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24250/ 

 --

[SA24248] Red Hat update for php

Critical:    Moderately critical
Where:       From remote
Impact:      Security Bypass, Exposure of sensitive information, DoS,
System access
Released:    2007-02-21

Red Hat has issued an update for php. This fixes some vulnerabilities
and a weakness, which can be exploited by malicious people to disclose
potentially sensitive information, bypass certain security
restrictions, cause a DoS (Denial of Service) and potentially
compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24248/ 

 --

[SA24241] Fedora update for php

Critical:    Moderately critical
Where:       From remote
Impact:      Security Bypass, Exposure of sensitive information, DoS,
System access
Released:    2007-02-22

Fedora has issued an update for php. This fixes some vulnerabilities,
which can be exploited by malicious people to disclose potentially
sensitive information, bypass certain security restrictions, cause a
DoS (Denial of Service) and potentially compromise a vulnerable
system.

Full Advisory:
http://secunia.com/advisories/24241/ 

 --

[SA24229] Mandriva update for ekiga

Critical:    Moderately critical
Where:       From remote
Impact:      System access, DoS
Released:    2007-02-22

Mandriva has issued an update for ekiga. This fixes a vulnerability,
which potentially can be exploited by malicious people to compromise a
vulnerable system.

Full Advisory:
http://secunia.com/advisories/24229/ 

 --

[SA24228] Fedora update for ekiga

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-22

Fedora has issued an update for ekiga. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise a
user's system.

Full Advisory:
http://secunia.com/advisories/24228/ 

 --

[SA24224] PHP-Nuke HTTP "referer" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data
Released:    2007-02-21

Maciej "krasza" Kukla has discovered a vulnerability in PHP-Nuke, which
can be exploited by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/24224/ 

 --

[SA24217] Ubuntu update for php

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of sensitive information, DoS, System access
Released:    2007-02-22

Ubuntu has issued an update for php. This fixes some vulnerabilities
and a weakness, which can be exploited by malicious people to disclose
potentially sensitive information, cause a DoS (Denial of Service) and
potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24217/ 

 --

[SA24200] Fedora update for spamassassin

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-16

Fedora has issued an update for spamassassin. This fixes a
vulnerability, which can be exploited by malicious people to cause a
DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24200/ 

 --

[SA24197] SpamAssassin Long URI Denial of Service

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-16

A vulnerability has been reported in SpamAssassin, which can be
exploited by malicious people to cause a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24197/ 

 --

[SA24196] Ubuntu update for imagemagick

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-16

Ubuntu has issued an update for imagemagick. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24196/ 

 --

[SA24195] Red Hat update for php

Critical:    Moderately critical
Where:       From remote
Impact:      Security Bypass, Exposure of sensitive information, DoS,
System access
Released:    2007-02-20

Red Hat has issued an update for php. This fixes some vulnerabilities
and a weakness, which can be exploited by malicious people to disclose
potentially sensitive information, bypass certain security
restrictions, cause a DoS (Denial of Service) and potentially
compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24195/ 

 --

[SA24194] Ekiga Format String Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-19

A vulnerability has been reported in Ekiga, which potentially can be
exploited by malicious people to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24194/ 

 --

[SA24192] Mandriva update for clamav

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-20

Mandriva has issued an update for clamav. This fixes some
vulnerabilities, which can be exploited by malicious people to cause a
DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24192/ 

 --

[SA24186] Red Hat update for ImageMagick

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-16

Red Hat has issued an update for ImageMagick. This fixes some
vulnerabilities, which can be exploited by malicious people to cause a
DoS (Denial of Service) and potentially compromise a vulnerable
system.

Full Advisory:
http://secunia.com/advisories/24186/ 

 --

[SA24185] Red Hat update for gnomemeeting

Critical:    Moderately critical
Where:       From remote
Impact:      DoS, System access
Released:    2007-02-20

Red Hat has issued an update for gnomemeeting. This fixes a
vulnerability, which potentially can be exploited by malicious people
to compromise a user's system.

Full Advisory:
http://secunia.com/advisories/24185/ 

 --

[SA24184] Gentoo update for fail2ban

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-16

Gentoo has issued an update for fail2ban. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/24184/ 

 --

[SA24264] Trend Micro ServerProtect for Linux Web Interface
Authentication Bypass

Critical:    Moderately critical
Where:       From local network
Impact:      Security Bypass
Released:    2007-02-22

A vulnerability has been reported in Trend Micro ServerProtect for
Linux, which can be exploited by malicious people to bypass certain
security restrictions.

Full Advisory:
http://secunia.com/advisories/24264/ 

 --

[SA24244] Ubuntu update for moinmoin

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2007-02-21

Ubuntu has issued an update for moinmoin. This fixes some
vulnerabilities, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/24244/ 

 --

[SA24206] Avaya Products Kernel Multiple Vulnerabilities

Critical:    Less critical
Where:       From remote
Impact:      Exposure of sensitive information, Privilege escalation,
DoS
Released:    2007-02-19

Avaya has acknowledged some vulnerabilities in various Avaya products,
which can be exploited by malicious, local users to disclose
potentially sensitive information, gain escalated privileges, or cause
a DoS (Denial of Service), and by malicious people to cause a DoS.

Full Advisory:
http://secunia.com/advisories/24206/ 

 --

[SA24204] SUSE update for poppler

Critical:    Less critical
Where:       From remote
Impact:      DoS
Released:    2007-02-20

SUSE has issued an update for poppler. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/24204/ 

 --

[SA24203] Gentoo update for bind

Critical:    Less critical
Where:       From remote
Impact:      DoS
Released:    2007-02-19

Gentoo has issued an update for bind. This fixes some vulnerabilities,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/24203/ 

 --

[SA24188] Red Hat update for samba

Critical:    Less critical
Where:       From remote
Impact:      DoS
Released:    2007-02-16

Red Hat has issued an update for samba. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

Full Advisory:
http://secunia.com/advisories/24188/ 

 --

[SA24247] Avaya CMS xfs / X Render and DBE Extensions Vulnerabilities

Critical:    Less critical
Where:       From local network
Impact:      Privilege escalation, System access
Released:    2007-02-22

Avaya has acknowledged some vulnerabilities in Avaya CMS (Call
Management System), which can be exploited by malicious, local users to
gain escalated privileges or by malicious users to compromise a
vulnerable system.

Full Advisory:
http://secunia.com/advisories/24247/ 

 --

[SA24215] Linux Kernel NFSACL "ACCESS" Denial of Service

Critical:    Less critical
Where:       From local network
Impact:      DoS
Released:    2007-02-20

A vulnerability has been reported in the Linux Kernel, which can be
exploited by malicious people to cause a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24215/ 

 --

[SA24231] Nortel Net Direct Client for Linux Privilege Escalation

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2007-02-21

Jon Hart has reported a vulnerability in Net Direct Client for Linux,
which can be exploited by malicious, local users to gain escalated
privileges.

Full Advisory:
http://secunia.com/advisories/24231/ 

 --

[SA24226] Mandriva update for gnucash

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2007-02-22

Mandriva has issued an update for gnucash. This fixes a vulnerability,
which can be exploited by malicious, local users to perform certain
actions with escalated privileges.

Full Advisory:
http://secunia.com/advisories/24226/ 

 --

[SA24225] GnuCash Insecure Temporary Files

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2007-02-19

A vulnerability has been reported in GnuCash, which can be exploited by
malicious, local users to perform certain actions with escalated
privileges.

Full Advisory:
http://secunia.com/advisories/24225/ 

 --

[SA24213] IBM DB2 DB2DIAG.LOG Insecure File Creation

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2007-02-19

A vulnerability has been reported in IBM DB2, which can be exploited by
malicious, local users to perform certain actions with escalated
privileges.

Full Advisory:
http://secunia.com/advisories/24213/ 

 --

[SA24210] Avaya Products XFree86 "DBE" and "Render" Extensions
Vulnerabilities

Critical:    Less critical
Where:       Local system
Impact:      Privilege escalation
Released:    2007-02-21

Avaya has acknowledged some vulnerabilities in various Avaya products,
which can be exploited by malicious, local users to gain escalated
privileges.

Full Advisory:
http://secunia.com/advisories/24210/ 

 --

[SA24259] Mandriva update for kernel

Critical:    Not critical
Where:       Local system
Impact:      DoS
Released:    2007-02-22

Mandriva has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24259/ 


Other:--

[SA24240] Nortel Threat Protection System DCE/RPC Preprocessor Buffer
Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-21

A vulnerability has been reported in Nortel Threat Protection System
products, which can be exploited by malicious people to compromise a
vulnerable system.

Full Advisory:
http://secunia.com/advisories/24240/ 

 --

[SA24239] Nortel Threat Protection System DCE/RPC Preprocessor Buffer
Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-21

A vulnerability has been reported in Nortel Threat Protection System
products, which can be exploited by malicious people to compromise a
vulnerable system.

Full Advisory:
http://secunia.com/advisories/24239/ 

 --

[SA24235] Sourcefire Intrusion Sensor DCE/RPC Preprocessor Buffer
Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-20

Neel Mehta has reported a vulnerability in Sourcefire Intrusion Sensor,
which can be exploited by malicious people to compromise a vulnerable
system.

Full Advisory:
http://secunia.com/advisories/24235/ 

 --

[SA24262] Cisco Unified IP Conference Station / IP Phone Default
Accounts

Critical:    Moderately critical
Where:       From local network
Impact:      Security Bypass
Released:    2007-02-22

Some security issues have been reported in Cisco Unified IP Conference
Station and IP Phones, which can be exploited by malicious people to
access a vulnerable device.

Full Advisory:
http://secunia.com/advisories/24262/ 


Cross Platform:--

[SA24230] phpMyFAQ Unspecified File Upload Vulnerability

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-19

A vulnerability has been reported in phpMyFAQ, which can be exploited
by malicious people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24230/ 

 --

[SA24220] VS-News-System "newsordner" File Inclusion Vulnerabilities

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-19

Some vulnerabilities have been reported in VS-News-System, which can be
exploited by malicious people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24220/ 

 --

[SA24214] Htaccess Passwort Generator "ht_pfad" File Inclusion
Vulnerability

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-19

kezzap66345 has discovered a vulnerability in Htaccess Passwort
Generator, which can be exploited by malicious people to compromise a
vulnerable system.

Full Advisory:
http://secunia.com/advisories/24214/ 

 --

[SA24212] Interspire SendStudio "ROOTDIR" File Inclusion
Vulnerabilities

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-21

M.Hasran Addahroni has reported two vulnerabilities in Interspire
SendStudio, which can be exploited by malicious people to compromise
vulnerable systems.

Full Advisory:
http://secunia.com/advisories/24212/ 

 --

[SA24190] Snort DCE/RPC Preprocessor Buffer Overflow

Critical:    Highly critical
Where:       From remote
Impact:      System access
Released:    2007-02-20

Neel Mehta has reported a vulnerability in Snort, which can be
exploited by malicious people to compromise a vulnerable system.

Full Advisory:
http://secunia.com/advisories/24190/ 

 --

[SA24260] deV!L'z Clanportal Local File Disclosure Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of sensitive information
Released:    2007-02-22

A vulnerability has been reported in deV!L'z Clanportal, which can be
exploited by malicious people to disclose potentially sensitive
information.

Full Advisory:
http://secunia.com/advisories/24260/ 

 --

[SA24242] phpTrafficA "file" and "lang" Local File Inclusion

Critical:    Moderately critical
Where:       From remote
Impact:      Exposure of sensitive information
Released:    2007-02-22

Hamid Ebadi has discovered some vulnerabilities in phpTrafficA, which
can be exploited by malicious people to disclose potentially sensitive
information.

Full Advisory:
http://secunia.com/advisories/24242/ 

 --

[SA24191] webSPELL "showonly" SQL Injection Vulnerability

Critical:    Moderately critical
Where:       From remote
Impact:      Manipulation of data, Exposure of sensitive information
Released:    2007-02-19

DNX has discovered a vulnerability in webSPELL, which can be exploited
by malicious people to conduct SQL injection attacks.

Full Advisory:
http://secunia.com/advisories/24191/ 

 --

[SA24187] ClamAV MIME Header Handling and CAB File Processing
Vulnerabilities

Critical:    Moderately critical
Where:       From remote
Impact:      DoS
Released:    2007-02-16

Two vulnerabilities have been reported in ClamAV, which can be
exploited by malicious people to cause a DoS (Denial of Service).

Full Advisory:
http://secunia.com/advisories/24187/ 

 --

[SA24222] MyCalendar Multiple Cross-Site Scripting Vulnerabilities

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2007-02-21

sn0oPy has reported some vulnerabilities in AbleDesign MyCalendar,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Full Advisory:
http://secunia.com/advisories/24222/ 

 --

[SA24211] MediaWiki AJAX UTF-7 Cross-Site Scripting

Critical:    Less critical
Where:       From remote
Impact:      Cross Site Scripting
Released:    2007-02-21

Moshe BA has reported a vulnerability in MediaWiki, which can be
exploited by malicious people to conduct cross-site scripting attacks.

Full Advisory:
http://secunia.com/advisories/24211/ 

 --

[SA24181] libevent DNS Response Denial of Service

Critical:    Less critical
Where:       From remote
Impact:      DoS
Released:    2007-02-19

Jon Oberheide has reported a vulnerability in libevent, which can be
exploited by malicious people to cause a DoS (Denial of Service) of
applications using the library.

Full Advisory:
http://secunia.com/advisories/24181/ 



=======================================================================
Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/ 

Subscribe:
http://secunia.com/secunia_weekly_summary/ 

Contact details:
Web	: http://secunia.com/ 
E-mail	: support@secunia.com 
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45


______________________________________
Subscribe to the InfoSec News RSS Feed
http://www.infosecnews.org/isn.rss 

Site design & layout copyright © 1986-2014 CodeGods