Bugtraq: [SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities
[SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities
Related Files:
Bugtraq Security Systems Security Advisory - Multiple vulnerabilities have been discovered in the Applied Watch Command Center IDS. Two exploits have been released to demonstrate these flaws. The first, appliedsnatch.c, allows a remote attacker to add a user to the console without having to authenticate to the system. The second, addrule.c, allows a remote attacker to add custom IDS alerts to all sensor nodes in a network, enabling a human denial-of-service attack by making good packets look bad. Related CVE Numbers: CAN-2003-0970, CAN-2003-0971. Homepage: http://www.bugtraq.org. Authored By The Bugtraq Team
KDE Security Advisory: kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains multiple integer overflow vulnerabilities that allow specially crafted pdf files, when opened, to overflow a heap allocated buffer and execute arbitrary code. Systems affected are KDE 3.2.0 up to and including KDE 3.5.0 and KOffice 1.3.0 up to and including KOffice 1.4.2. Related CVE Number: CAN-2005-3191,CAN-2005-3192,CAN-2005-3193. Homepage: http://www.kde.org/.
KDE Security Advisory: Chris Evans reported a heap based buffer overflow in the RTF importer of KWord. Opening specially crafted RTF files in KWord can cause execution of arbitrary code. Affected are all KOffice releases starting from KOffice 1.2.0 up to and including KOffice 1.4.1. Related CVE Number: CAN-2005-2971. Homepage: http://www.kde.org/.
Exponent CMS versions 0.96.6-Alpha and below are susceptible to directory traversal and cross site scripting vulnerabilities. Homepage: http://www.bugtraq.ir/. Authored By Hamid Ebadi
Complete archive of the excellent threads recently posted on the BugTraq mailing list regarding Intrusion Detection Systems. IDS theories, implementations, problems, and reviews of commercial products are among the topics covered.
Acubix PicoZip version 4.02 suffers from a directory traversal vulnerability. Homepage: http://www.bugtraq.ir/. Authored By Hamid Ebadi
T1Lib suffers from a buffer overflow vulnerability. Homepage: http://www.bugtraq.ir/. Authored By Hamid Ebadi
CgiXp.exe is a remote exploit for Webcart v8.4 (bugtraq id 3453) and several unicode vulnerabilities (bugtraq id 1806). Tested against Windows NT Server 2000 / IIS 5.0 and Linux Red Hat 7.2 / Apache 1.3.22 +webcart.cgi. Gui based, requires Visual Basic 5.0 .OCX files in your system directory (richtext ocx, msinet dll). Authored By Trippin Smurfs.
Really Simple PHP and Ajax, or RSPA, is susceptible to a remote file inclusion vulnerability. Version RSPA-2007-03-23 is susceptible. Homepage: http://www.bugtraq.ir/. Authored By Hamid Ebadi
Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in koffice. An attacker could create a malicious PDF file that would cause koffice to crash or potentially execute arbitrary code when opened. Related CVE Numbers: CVE-2007-4352,CVE-2007-5392,CVE-2007-5393. Homepage: http://www.mandriva.com/security/.