Marc Erickson

“Secunia Advisory: SA16869
Critical: Extremely critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software: Mozilla Firefox 1.x

“Secunia Advisory: SA14925
Critical: Less critical
Impact: Spoofing
Where: From remote
Solution Status: Unpatched
Software: KDE 3.x
Noam Rathaus has discovered a vulnerability in KMail, which can be exploited by malicious people to conduct spoofing attacks.
The vulnerability is caused due to an error where HTML code can overlay part of the user interface. This can e.g. be exploited to trick a user […]

“Secunia Advisory: SA14713
Release Date: 2005-03-29
Critical: Moderately critical
Impact: Exposure of system information, Exposure of sensitive information, Privilege escalation, DoS, System access
Where: From remote
Solution Status: Vendor Patch
OS: Linux Kernel 2.4.x, Linux Kernel 2.6.x
Multiple vulnerabilities have been reported in the Linux kernel, which can be exploited to disclose information, cause a DoS (Denial of Service), gain escalated privileges, or […]

“Secunia Advisory: SA13717
Critical: Less critical
Impact: Spoofing
Where: From remote
Solution Status: Unpatched
Software: Konqueror 3.x
Secunia Research has discovered a vulnerability in Konqueror, which can be exploited by malicious people to spoof the source displayed in the Download Dialog box.
The problem is that long sub-domains and paths aren’t displayed correctly, which therefore can be exploited to obfuscate what is […]

“Attackers could exploit security holes in the Linux kernel to cause a denial of service, corrupt memory and launch malicious code. But users can update to a newer version in which the flaws are fixed.
Danish security firm Secunia described three “moderately critical” vulnerabilities in an advisory:”
Full article: Security holes in Linux kernel

Secunia Advisory: SA14570
Ben Martel and Stephen Blackheath have reported a vulnerability in the Linux kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error within the LCP (Link Control Protocol) parsing in the “ppp_async.c” driver and can be exploited by pppd clients to […]

“Secunia Advisory: SA14548
Critical: Not critical
Impact: Privilege escalation
Where: Local system
Solution Status: Vendor Patch
OS: Linux Kernel 2.6.x
Georgi Guninski has reported a potential vulnerability in the Linux kernel, which may be exploited by malicious people to gain escalated privileges.
The vulnerability is caused due to an integer overflow in the “sys_epoll_wait()” function and can be exploited to cause a buffer […]

“Secunia Advisory: SA14460
Release Date: 2005-03-07
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
Software: X Window System 11 (X11) 6.x
Chris Gilbert has reported a vulnerability in libXpm, which potentially can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to boundary errors in “GetImagePixels()” and “PutImagePixels()”. This may be exploited to cause […]

“Secunia Advisory: SA14504
Critical: Highly critical
Impact: DoS, System access
Where: From remote
Solution Status: Unpatched
Software: libexif 0.x
Sylvain Defresne has reported a vulnerability in libexif, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise vulnerable systems.
The vulnerability is caused due to an error within the validation of EXIF tag structures and can be exploited […]

Bill Brenner of SearchSecurity.com writes: “Attackers could launch malicious code by exploiting vulnerabilities in a file transferring tool used in many Linux and Unix systems, according to two security firms.
Reston, Va.-based iDefense said the security holes exist in cURL/libcURL, a command line tool for transferring files with a URL syntax such as FTP, FTPS, HTTP, […]

Lockegnome has written about Linuxchix before - but it was a while ago. They offer online courses through mailing lists, webpages, and IRC.
For details about a specific course, click on the links below.
Many of the courses are taught on the courses mailing list….
If you go to the list options page and enter your email […]

1) problem description, brief discussion
RealPlayer is a combined audio and video player for RealMedia formatted streaming data. These formats are very common throughout the Internet.
eEye Security in October 2004 discovered a flaw in the .rm RealMovie stream handling routines which allows a remote attacker to exploit an integer overflow vulnerability using a special .rm file. […]

After much consideration, Emmett gives Novell’s acquisition of SuSE Linux his thumbs up. Here’s why.
by Emmett Dulaney
1/19/2005 — A little over a year ago, Novell decided that it wanted to change direction and become a Linux company. While this decision from what was once an Intel-networking market giant did not seem all that odd — […]

iDEFENSE Security Advisory 01.18.05
Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file.
The vulnerability specifically exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt […]

iDEFENSE Security Advisory 01.17.05
ImageMagick provides a variety of graphics image-handling libraries and capabilities. These libraries are widely used and are shipped by default on most Unix and Linux distributions. These libraries are commonly installed by default on computers where any other graphical image viewer or X Desktop environment is installed (such as Gnome or KDE)….
Remote […]

If you live in the US and don’t have it on cable or your dish, perhaps a bar with a satellite dish can pull it down for you. If you live in Detroit or Buffalo, you should be able to get it on rabbit ears. The time is local to your time zone […]

KDE Security Advisory 20041223-1
Systems affected:
KDE 3.2 up to including KDE 3.2.3.
KDE 3.3 up to including KDE 3.3.2.
Overview:
kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains
[…]

Secunia Advisory: SA13607
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
Software: LibTIFF 3.x
infamous41md has reported two vulnerabilities in LibTIFF, which can be exploited by malicious people to compromise a vulnerable system.
1) The vulnerability is caused due to an integer overflow in the “TIFFFetchStripThing()” function in “tif_dirread.c” when parsing TIFF files. This can be exploited via […]

PNM Handler Negative Read Length Heap Overflow Vulnerability
“…Remote exploitation of a buffer overflow in version 0.99.2 of xine could allow execution of arbitrary code….
xine-lib 1-rc8 was released to address this vulnerability and is
available for download at:
http://xinehq.de/index.php/releases
An xine patch for this vulnerability is available at:
http://cvs.sourceforge.net/viewcvs.py/ xine/xine-lib/src/input/pnm.c?r1=1.20&r2=1.21
An MPlayer patch for this vulnerability is available at:
http://www.mplayerhq.hu/MPlayer/patches/pnm_fix_20041215.diff“
Multiple Vendor Xine […]

Secunia Advisory: SA13661
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched
Software: SHOUTcast 1.x
Tomasz Trojanowski and Damian Put have discovered a vulnerability in SHOUTcast, which potentially can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is cause due to a format string error in the URL handling within the processing of requested filenames. This […]