===========================================================================
The Secunia Weekly Advisory Summary
2003-09-26 - 2003-10-03
This week : 75 advisories
===========================================================================
Verify that your browser isn't vulnerable
to the Object Data vulnerability.
http://www.secunia.com/MS03-032/
Secunia - Stay Secure
===========================================================================
============
2003-10-03
============
OpenLinux update for OpenSSH
SA9922 - Highly critical
http://www.secunia.com/advisories/9922/
============
2003-10-02
============
DCP-Portal SQL Injection
SA9920 - Moderately critical
http://www.secunia.com/advisories/9920/
--
MPWeb PRO Directory Traversal Vulnerability
SA9919 - Moderately critical
http://www.secunia.com/advisories/9919/
--
SmoothWall OpenSSL Vulnerabilities
SA9918 - Highly critical
http://www.secunia.com/advisories/9918/
--
MPNews PRO Directory Traversal Vulnerability
SA9917 - Moderately critical
http://www.secunia.com/advisories/9917/
--
StoneGate and StoneBeat OpenSSL Vulnerabilities
SA9916 - Highly critical
http://www.secunia.com/advisories/9916/
--
Blue Coat OpenSSL Vulnerabilities
SA9915 - Moderately critical
http://www.secunia.com/advisories/9915/
--
GameSpy IRC Command Buffer Overflow
SA9914 - Moderately critical
http://www.secunia.com/advisories/9914/
--
Atrise Everyfind Cross-Site Scripting Vulnerability
SA9913 - Less critical
http://www.secunia.com/advisories/9913/
--
DB2 LOAD and INVOKE Command Buffer Overflow Vulnerabilities
SA9912 - Less critical
http://www.secunia.com/advisories/9912/
--
SuSE update for lsh
SA9911 - Highly critical
http://www.secunia.com/advisories/9911/
--
Gentoo update for OpenSSL
SA9910 - Highly critical
http://www.secunia.com/advisories/9910/
--
SuSE update for OpenSSL
SA9909 - Highly critical
http://www.secunia.com/advisories/9909/
--
SSH Sentinel and Secure Shell BER/DER Decoding Vulnerability
SA9904 - Moderately critical
http://www.secunia.com/advisories/9904/
--
HP-UX Socket Programs Denial of Service Vulnerability
SA9902 - Not critical
http://www.secunia.com/advisories/9902/
--
Novell Netware Broker Information Disclosure Vulnerability
SA9896 - Not critical
http://www.secunia.com/advisories/9896/
============
2003-10-01
============
OpenPKG update for OpenSSL
SA9908 - Highly critical
http://www.secunia.com/advisories/9908/
--
SuSE update for MySQL
SA9907 - Not critical
http://www.secunia.com/advisories/9907/
--
mIRC Hostname Buffer Overflow Vulnerability
SA9906 - Moderately critical
http://www.secunia.com/advisories/9906/
--
Mah-Jong Unspecified Vulnerabilities
SA9905 - Highly critical
http://www.secunia.com/advisories/9905/
--
Immunix update for OpenSSL
SA9903 - Moderately critical
http://www.secunia.com/advisories/9903/
--
IBM AIX "getipnodebyname()" Denial of Service Vulnerability
SA9901 - Moderately critical
http://www.secunia.com/advisories/9901/
--
EnGarde update for OpenSSL
SA9900 - Moderately critical
http://www.secunia.com/advisories/9900/
--
Gentoo update for TeaPOP
SA9899 - Moderately critical
http://www.secunia.com/advisories/9899/
--
Gentoo update for mpg123
SA9898 - Moderately critical
http://www.secunia.com/advisories/9898/
--
Conectiva update for OpenSSL
SA9897 - Highly critical
http://www.secunia.com/advisories/9897/
--
SGI IRIX updates for OpenSSH and OpenSSL
SA9895 - Highly critical
http://www.secunia.com/advisories/9895/
--
Mandrake update for mplayer
SA9894 - Moderately critical
http://www.secunia.com/advisories/9894/
--
Mandrake update for OpenSSL
SA9893 - Highly critical
http://www.secunia.com/advisories/9893/
--
Slackware update for OpenSSL
SA9892 - Highly critical
http://www.secunia.com/advisories/9892/
--
Cisco OpenSSL Vulnerabilities
SA9891 - Moderately critical
http://www.secunia.com/advisories/9891/
--
Barricade Turbo Broadband Router SMC2404WBR Denial of Service
SA9890 - Moderately critical
http://www.secunia.com/advisories/9890/
--
GuppY / miniPortail Cross Site Scripting
SA9889 - Less critical
http://www.secunia.com/advisories/9889/
--
Debian update for OpenSSL
SA9888 - Moderately critical
http://www.secunia.com/advisories/9888/
--
Red Hat update for OpenSSL
SA9887 - Highly critical
http://www.secunia.com/advisories/9887/
--
OpenSSL Multiple Vulnerabilities in Client Certificate Handling
SA9886 - Highly critical
http://www.secunia.com/advisories/9886/
--
Gentoo update for mplayer
SA9880 - Moderately critical
http://www.secunia.com/advisories/9880/
============
2003-09-30
============
Debian update for webfs
SA9885 - Moderately critical
http://www.secunia.com/advisories/9885/
--
602Pro LANSuite 2002 Multiple Vulnerabilities
SA9884 - Highly critical
http://www.secunia.com/advisories/9884/
--
Invision Power Board Insecure File Permissions
SA9883 - Not critical
http://www.secunia.com/advisories/9883/
--
602Pro LANSuite 2003 Multiple Vulnerabilities
SA9882 - Moderately critical
http://www.secunia.com/advisories/9882/
--
Gentoo update for proftpd
SA9881 - Highly critical
http://www.secunia.com/advisories/9881/
--
webfs Directory Traversal and Pathname Buffer Overflow
SA9879 - Moderately critical
http://www.secunia.com/advisories/9879/
--
Conectiva update for proftpd
SA9878 - Highly critical
http://www.secunia.com/advisories/9878/
--
OpenLinux update for kdelibs
SA9877 - Moderately critical
http://www.secunia.com/advisories/9877/
--
OpenLinux update for wu-ftpd
SA9876 - Highly critical
http://www.secunia.com/advisories/9876/
--
SGI IRIX update for sendmail
SA9875 - Highly critical
http://www.secunia.com/advisories/9875/
--
Geeklog Cross Site Scripting Vulnerabilities
SA9874 - Less critical
http://www.secunia.com/advisories/9874/
--
winShadow Denial of Service Vulnerability
SA9873 - Less critical
http://www.secunia.com/advisories/9873/
--
A-Cart "signin.asp" Cross-Site Scripting Vulnerability
SA9871 - Less critical
http://www.secunia.com/advisories/9871/
--
Open UNIX/UnixWare Frame Padding Vulnerability
SA9869 - Less critical
http://www.secunia.com/advisories/9869/
--
ArGoSoft FTP Server XCWD Buffer Overflow Vulnerability
SA9864 - Moderately critical
http://www.secunia.com/advisories/9864/
============
2003-09-29
============
Mandrake update for Apache
SA9872 - Less critical
http://www.secunia.com/advisories/9872/
--
Apache 2 CGI Denial of Service Vulnerability
SA9870 - Not critical
http://www.secunia.com/advisories/9870/
--
Open UNIX/UnixWare update for OpenSSH
SA9868 - Highly critical
http://www.secunia.com/advisories/9868/
--
Open UNIX/UnixWare update for Sendmail
SA9867 - Extremely critical
http://www.secunia.com/advisories/9867/
--
Mandrake update for ProFTPD
SA9866 - Highly critical
http://www.secunia.com/advisories/9866/
--
Trustix update for ProFTPD
SA9865 - Highly critical
http://www.secunia.com/advisories/9865/
--
Smoothwall update for OpenSSH
SA9863 - Highly critical
http://www.secunia.com/advisories/9863/
--
Debian update for freesweep
SA9862 - Not critical
http://www.secunia.com/advisories/9862/
--
SGI IRIX DCE Denial of Service Vulnerability
SA9861 - Less critical
http://www.secunia.com/advisories/9861/
--
Sun Linux update for pam_smb
SA9859 - Moderately critical
http://www.secunia.com/advisories/9859/
--
Sun Linux update for OpenLDAP
SA9858 - Highly critical
http://www.secunia.com/advisories/9858/
--
Sun Cobalt update for IMAP Clients
SA9857 - Less critical
http://www.secunia.com/advisories/9857/
--
Sun Cobalt update for BIND
SA9856 - Highly critical
http://www.secunia.com/advisories/9856/
============
2003-09-26
============
Cfengine Remotely Exploitable Buffer Overflow
SA9855 - Moderately critical
http://www.secunia.com/advisories/9855/
--
sbox Path Disclosure Vulnerability
SA9854 - Not critical
http://www.secunia.com/advisories/9854/
--
MPlayer ASX Streaming Buffer Overflow Vulnerability
SA9853 - Moderately critical
http://www.secunia.com/advisories/9853/
--
Savant Web Server Infinite Loop Denial of Service
SA9852 - Moderately critical
http://www.secunia.com/advisories/9852/
--
OpenPKG update for ProFTPD
SA9851 - Highly critical
http://www.secunia.com/advisories/9851/
--
wzdftpd Login Denial of Service Vulnerability
SA9850 - Moderately critical
http://www.secunia.com/advisories/9850/
--
Tcl Web Server Directory Traversal and Cross Site Scripting
SA9849 - Less critical
http://www.secunia.com/advisories/9849/
--
Debian Marbles Privilege Escalation Vulnerability
SA9848 - Not critical
http://www.secunia.com/advisories/9848/
--
BRS WebWeaver IP Logging Bypass
SA9847 - Not critical
http://www.secunia.com/advisories/9847/
============
2003-09-25
============
Gauntlet Firewall Oracle-Proxy Denial of Service
SA9846 - Less critical
http://www.secunia.com/advisories/9846/
===========================================================================
Secunia recommends that you verify all advisories you receive, by clicking
the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : support@private
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
===========================================================================
-
ISN is currently hosted by Attrition.org
To unsubscribe email majordomo@private with 'unsubscribe isn'
in the BODY of the mail.
This archive was generated by hypermail 2b30 : Mon Oct 06 2003 - 02:14:32 PDT