iSEC Partners Security Advisory - 2008-002-lenovornr
https://www.isecpartners.com
Lenovo Rescue and Recovery Local Kernel Overflow
Vendor: Lenovo
Vendor URL: http://www.lenovo.com
Versions affected: 4.20
Systems Affected: Windows XP, Windows Vista
CA BrightStor ARCServe BackUp Message Engine Remote Command Injection
Vulnerability
by cocoruder(frankruder_at_hotmail.com)
http://ruder.cdut.net
Summary:
CA BrightStor ARCServe BackUp is an overall data backup solution.
The RPC interface of CA BrightStor ARCServe BackUp does not handle
Uninformed is pleased to announce the release of its 10th volume which is
composed of 4 articles:
Engineering in Reverse
- Can you find me now? Unlocking the Verizon Wireless xv6800 (HTC Titan)
GPS
Author: Skywing
- Using dual-mappings to evade automated unpackers
Author: skape
Title:
--
* Marvell Driver Malformed Association Request Vulnerability
Summary:
* The wireless drivers in some Wi-Fi access points (such as the
MARVELL-based Linksys WAP4400N) do not correctly parse some malformed
802.11 frames.
Assigned CVE:
-
* CVE-2008-4441
Details:
I have found a serious privilege escalation in the Oracle DB that raises a
lower privileged user with CREATE ANY DIRECTORY to that of SYSDBA by directly
overwriting the hidden binary password file with a known binary password file
via UTL_DIR. Full discussion of how to defend and respond to
No patch has been released yet. MS is still working on the fix.
**
Author : By nétRoot ~
Contact: [EMAIL PROTECTED]
Greetz : BugBusters ~
Thanx : Dumenci ~ Sabneq ~ LaqNes ~ Neco ~ MecTruy ~ qopeLi ...
Note : No War..!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
NewLife Blogger = v3.0 / Insecure Cookie Handling SQL Injection
Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
$ Program: NewLife Blogger
$ Version: = 3.0
$ File
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1650-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
October 12, 2008
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1646-2 [EMAIL PROTECTED]
http://www.debian.org/security/ Devin Carraway
October 11, 2008
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2008:210-1
http://www.mandriva.com/security/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1651-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
October 12, 2008
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
___
Mandriva Linux Security Advisory MDVSA-2008:211
http://www.mandriva.com/security/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-1652-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Moritz Muehlenhoff
October 12, 2008
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA-1653-1[EMAIL PROTECTED]
http://www.debian.org/security/ dann frazier
Oct 13, 2008
15 matches
Mail list logo