===========================================================================
The Secunia Weekly Advisory Summary
2003-04-10 - 2003-04-17
This week : 48 advisories
===========================================================================
An effective security solution starts with a position of expertise.
The following 48 advisories are written by Secunia.
Customers instantly receive relevant advisories to their unique system by
E-mail and textmessage, enabling them to react efficiently.
Security Experts at Secunia constantly search for new vulnerabilities and
threats.
Vast amounts of advisories, vulnerabilities and security news is gathered
and assessed daily.
- Stay Secure
===========================================================================
============
2003-04-17
============
Debian update for OpenSSL
Less critical
http://www.secunia.com/advisories/8613/
--
"mod_access_referer" Denial of Service
Less critical
http://www.secunia.com/advisories/8612/
--
EZ Server Directory Traversal Vulnerability
Moderately critical
http://www.secunia.com/advisories/8611/
--
Conectiva update for ethereal
Less critical
http://www.secunia.com/advisories/8610/
============
2003-04-16
============
Windows Kernel Privilege Escalation Vulnerability
Less critical
http://www.secunia.com/advisories/8609/
--
Mandrake update for xfsdump
Less critical
http://www.secunia.com/advisories/8608/
--
Mandrake update for EOG
Moderately critical
http://www.secunia.com/advisories/8607/
--
eZ publish multiple vulnerabilities
Less critical
http://www.secunia.com/advisories/8606/
--
Snort TCP reassembly heap overflow
Highly critical
http://www.secunia.com/advisories/8605/
--
Progress BINPATHX Variable Privilege Escalation
Less critical
http://www.secunia.com/advisories/8604/
--
Novell BorderManager 3.7 SP2 fixes multiple issues
Moderately critical
http://www.secunia.com/advisories/8603/
--
Novell Groupwise 6 SP3 fixes multiple issues
Moderately critical
http://www.secunia.com/advisories/8602/
--
Mandrake update for GtkHTML
Less critical
http://www.secunia.com/advisories/8601/
--
Mandrake update for evolution
Moderately critical
http://www.secunia.com/advisories/8600/
--
iWeb Mini Web Server Directory Traversal Vulnerability
Moderately critical
http://www.secunia.com/advisories/8599/
============
2003-04-15
============
SGI IRIX update for BSD LPR
Moderately critical
http://www.secunia.com/advisories/8598/
--
Debian update for EPIC
Moderately critical
http://www.secunia.com/advisories/8597/
--
Gentoo update for kdegraphics
Moderately critical
http://www.secunia.com/advisories/8596/
--
Debian ps2epsi Insecure Temporary File Creation
Less critical
http://www.secunia.com/advisories/8595/
--
NetPleasure Instaboard SQL injection
Moderately critical
http://www.secunia.com/advisories/8594/
--
Debian LPRng Insecure Temporary File Creation
Not critical
http://www.secunia.com/advisories/8593/
--
Web Wiz Site News unprotected database
Moderately critical
http://www.secunia.com/advisories/8592/
--
fipsGästebuch Cross-Site Scripting
Less critical
http://www.secunia.com/advisories/8591/
--
Conectiva update for mutt
Less critical
http://www.secunia.com/advisories/8590/
============
2003-04-14
============
Red Hat update for GtkHTML
Less critical
http://www.secunia.com/advisories/8589/
--
Ximian Evolution GtkHTML Denial of Service
Less critical
http://www.secunia.com/advisories/8588/
--
FileMaker Pro/Server Information Disclosure Vulnerability
Moderately critical
http://www.secunia.com/advisories/8587/
--
SheerDNS Privilege Escalation
Less critical
http://www.secunia.com/advisories/8586/
--
GuestBook R4 Information Disclosure Vulnerability
Moderately critical
http://www.secunia.com/advisories/8585/
--
Super GuestBook Information Disclosure Vulnerability
Moderately critical
http://www.secunia.com/advisories/8584/
--
Gaim-Encryption Denial of Service
Less critical
http://www.secunia.com/advisories/8583/
--
Conectiva update for OpenSSL
Less critical
http://www.secunia.com/advisories/8582/
--
SGI IRIX update for ToolTalk
Less critical
http://www.secunia.com/advisories/8581/
--
MailMax Buffer Overflow in IMAPMax Module
Highly critical
http://www.secunia.com/advisories/8580/
--
Ocean12 Guestbook Manager Cross-Site Scripting and Information Disclosure
Moderately critical
http://www.secunia.com/advisories/8579/
--
Debian update for kdegraphics
Moderately critical
http://www.secunia.com/advisories/8578/
============
2003-04-11
============
Gentoo update for KDE 2.x
Moderately critical
http://www.secunia.com/advisories/8577/
--
Red Hat update for Stronghold
Moderately critical
http://www.secunia.com/advisories/8576/
--
HP MPE/iX update for sendmail
Moderately critical
http://www.secunia.com/advisories/8575/
--
SGI IRIX update for XFS
Less critical
http://www.secunia.com/advisories/8574/
--
Debian update for XFS
Less critical
http://www.secunia.com/advisories/8572/
--
Apple update for Mac OS X fixes 7 vulnerabilities
Extremely critical
http://www.secunia.com/advisories/8571/
--
Oracle E-Business Suite access to arbitrary files
Moderately critical
http://www.secunia.com/advisories/8570/
--
Gentoo update for KDE 3.x
Moderately critical
http://www.secunia.com/advisories/8569/
============
2003-04-10
============
Hyperion FTP Server USER Field Buffer Overflow
Highly critical
http://www.secunia.com/advisories/8568/
--
HP-UX update for CIFS/9000
Highly critical
http://www.secunia.com/advisories/8567/
--
SGI IRIX update for samba
Highly critical
http://www.secunia.com/advisories/8566/
--
PoPToP buffer overflow
Highly critical
http://www.secunia.com/advisories/8565/
===========================================================================
Secunia recommends that you verify all advisories you receive, by clicking
the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportat_private
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
===========================================================================
-
ISN is currently hosted by Attrition.org
To unsubscribe email majordomoat_private with 'unsubscribe isn'
in the BODY of the mail.
This archive was generated by hypermail 2b30 : Fri Apr 18 2003 - 07:59:50 PDT