SecurityFocus

[CLA-2004:894] Conectiva Security Announcement - shadow-utils 2004-11-23
Conectiva Updates (secure conectiva com br)

Sun Java Plugin arbitrary package access vulnerability 2004-11-23
Jouko Pynnonen (jouko iki fi) (1 replies)

OVERVIEW
========

Sun Microsystem's Java Plugin connects the Java technology to web
browsers and allows the use of Java Applets. Java Plugin technology is
available for numerous platforms and supports major web browsers.

A vulnerability in Java Plugin allows an attacker to create an Applet
wh

[ more ] [ reply ]

Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-23
Ken S (ken securitylist gmail com)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
psz maths usyd edu au (Paul Szabo) (1 replies)

James,

>> Hmm... It would not descend into just-now-changed automounts (and it may
>> not be able to get back out of them), but it should be able to traverse
>> reasonably long-lived mounts.
>
> The problem is though that when you chdir() into an automount mount
> point, automount aill automatical

[ more ] [ reply ]

Re: Changes to the filesystem while find is running - comments? 2004-11-23
Martin Buchholz (Martin Buchholz Sun COM)

Broadcast memory corruption in Soldier of Fortune II 1.03 2004-11-23
Luigi Auriemma (aluigi autistici org)

#######################################################################

Luigi Auriemma

Application: Soldier of Fortune II
http://sof2.ravensoft.com
Versions: <= 1.03 gold
Platforms: Windows, Linux and MacOS
Bug: memory corruption
Exploit

[ more ] [ reply ]

RE: iDEFENSE Security Advisory 11.22.04: Sun Java Plugin Arbitrary Package Access Vulnerability 2004-11-23
Sherlock, Nathan (Nathan Sherlock aimtrimark com)

The workaround mentions the Microsoft Java Virtual Machine (MSJVM).

Note that MSJVM will reach its end of life on December 31, 2007 -
http://www.microsoft.com/mscorp/java/.

Microsoft is encouraging developers to transition away from MSJVM.

Regards,
Nathan

-----Original Message-----
From: custome

[ more ] [ reply ]

IPFront - Release 2004-11-23
Hernan Racciatti (hracciatti gmail com)

Hi people,

I'm releasing today a small tool named IPFront which enables users to
generate IPSec rules easily. It really speeds-up the process of
hardening Windows 2000/2003 in Bastion Host Environment.

Additionally, it allows to set-up IPSec exceptions, and enables a
couple of TCP/IP Stack protect

[ more ] [ reply ]

Re: Changes to the filesystem while find is running - comments? 2004-11-23
psz maths usyd edu au (Paul Szabo) (1 replies)

James,

>> PARENT=stat(".");
>> SUBDIR=stat("subdir");
>> chdir("subdir");
>> DOT=stat(".");
>> if (SUBDIR != DOT) {
>> Print warning message /*[1]*/
>> }
>> else {
>> Go on with find (recurse)
>> }
>> chdir("..");
>> DOT=stat(".");
>> if (PARENT != DOT) {
>> Pri

[ more ] [ reply ]

Re: Changes to the filesystem while find is running - comments? 2004-11-23
James Youngman (bugtraq excession spiral-arm org)

echalk vuln 2004-11-23
kevin anonymous (undergroundwars gmail com)

echalk is a service that makes advanced websites for schools. alot of them have online classes student email systems and homework checks. my school uses echalk and i found this vuln on their site. in echalk's search form it blocks out most html and javascript but if you use <script><img src=

[ more ] [ reply ]

Re: Changes to the filesystem while find is running - comments? 2004-11-22
psz maths usyd edu au (Paul Szabo)

James,

You asked on bugtraq:

> GNU find does a sanity check before and after calling chdir(). It
> stats the directory it's about to move into, and stats "." after
> chdir() succeeds. It then compares the device numbers and inode
> numbers returned by he two stat() calls. This is done in a func

[ more ] [ reply ]

[ GLSA 200411-31 ] ProZilla: Multiple vulnerabilities 2004-11-23
Thierry Carrez (koon gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200411-31
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ] [ reply ]

[ GLSA 200411-30 ] pdftohtml: Vulnerabilities in included Xpdf 2004-11-23
Thierry Carrez (koon gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200411-30
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ] [ reply ]

RE: iDEFENSE Security Advisory 11.22.04: Sun Java Plugin Arbitrary Package Access Vulnerability 2004-11-23
Randal, Phil (prandal herefordshire gov uk)

FYI, www.java.com is still dishing out 1.4.2_05

Phil

----
Phil Randal
Network Engineer
Herefordshire Council
Hereford, UK

> -----Original Message-----
> From: customer service mailbox [mailto:customerservice (at) idefense (dot) com [email concealed]]
> Sent: 22 November 2004 18:18
> To: bugtraq (at) securityfocus (dot) com [email concealed]; vulnwat

[ more ] [ reply ]

Fotolog.net cross-site scripting vulnerabilities [RLSA_05-2004] 2004-11-23
Jerome ATHIAS (jerome athias fr)

*** rfdslabs security advisory ***

Title: Fotolog.net cross-site scripting vulnerabilities [RLSA_05-2004]

Date: 17 Nov 2004

Author: Julio Cesar Fort <julio at rfdslabs com br>

Rafael Silva <rafaelsilva at rfdslabs com br>

<!> Warning: This advisory conta

[ more ] [ reply ]

Winamp - Buffer Overflow In IN_CDDA.dll 2004-11-23
Brett Moore (brett moore security-assessment com)

========================================================================

= Winamp - Buffer Overflow In IN_CDDA.dll
=
= Vendor Update:
= http://www.winamp.com/player/
=
= Affected Software:
= Winamp 5.05 (only version tested)
=
= Public disclosure on November 23, 2004
========================

[ more ] [ reply ]

MDKSA-2004:137 - Updated libxpm4 packages fix libXpm vulnerabilities 2004-11-23
Mandrake Linux Security Team (security linux-mandrake com)

MDKSA-2004:137 - Updated libxpm4 packages fix libXpm vulnerabilities 2004-11-23
Mandrake Linux Security Team (security linux-mandrake com)

Advisory 15/2004: Cyrus IMAP Server multiple remote vulnerabilities 2004-11-22
Stefan Esser (s esser e-matters de)

MDKSA-2004:138 - Updated XFree86 packages fix libXpm vulnerabilities 2004-11-23
Mandrake Linux Security Team (security linux-mandrake com)

Hardware support for XP SP2 DEP not enabled by default ? 2004-11-22
Nicolas RUFF (ruff lists edelweb fr)

Windows XP SP2 comes out with a nice security feature : Data Execution
Prevention (DEP). DEP is a mix of several techniques which all aim to
achieve some kind of anti-buffer overflow protection :

- Software : recompilation of system files with the /GS flag, etc.
- Hardware : DEP can use hardware-en

[ more ] [ reply ]

[SIG^2 G-TEC] Prevx Home v1.0 Instrusion Prevention Features Can Be Disabled by Direct Service Table Restoration 2004-11-22
chewkeong security org sg

SIG^2 Vulnerability Research Advisory

Prevx Home v1.0 Instrusion Prevention Features Can Be Disabled by Direct Service Table Restoration

by Tan Chew Keong

Release Date: 22 Nov 2004

ADVISORY URL

http://www.security.org.sg/vuln/prevxhome.html

SUMMARY

Prevx Home (https://www.prev

[ more ] [ reply ]

iDEFENSE Security Advisory 11.22.04: Sun Java Plugin Arbitrary Package Access Vulnerability 2004-11-22
customer service mailbox (customerservice idefense com)

Sun Java Plugin Arbitrary Package Access Vulnerability

iDEFENSE Security Advisory 11.22.04
www.idefense.com/application/poi/display?id=158&type=vulnerabilities
November 22, 2004

I. BACKGROUND

Java Plug-in technology, included as part of the Java 2 Runtime
Environment, Standard Edition (JRE), esta

[ more ] [ reply ]

PHPKIT SQL Injection, XSS 2004-11-22
Steve (steve01 chello at)

Author: Steve
Date: November 22, 2004
Affected Software:PHP KIT
Software Version: 1.6.03 -> 1.6.1
Software URL: http://www.phpkit.de

Attack: SQL Injection, allowing people to manipulate the query into
pulling data.
XSS

###########################################################

[ more ] [ reply ]