Monthly Archive: September 2007

Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth...

Unspecified vulnerability in Adobe Connect Enterprise Server 6 allows remote attackers to read certain pages that are restricted to the administrator via unknown vectors. Date published : 2007-09-11 http://www.securityfocus.com/bid/25640 http://www.adobe.com/support/security/bulletins/apsb07-14.html

Stack-based buffer overflow in agentdpv.dll 2.0.0.3425 in Microsoft Agent on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a crafted URL to the Agent (Agent.Control) ActiveX control, which triggers an overflow...

Unspecified vulnerability in the (1) Windows Services for UNIX 3.0 and 3.5, and (2) Subsystem for UNIX-based Applications in Microsoft Windows 2000, XP, Server 2003, and Vista allows local users to gain privileges via...

The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which...

The perfstat kernel extension in bos.perf.perfstat in AIX 5.3 does not verify privileges when processing a SET call, which allows local users to cause a denial of service (system hang or crash) via unspecified...

Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname alias, as...

Multiple buffer overflows in unspecified svprint (System V print) commands in bos.svprint.rte in IBM AIX 5.2 and 5.3 allow local users to gain privileges via unspecified vectors. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02717 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ02718

Buffer overflow in uucp in bos.net.uucp in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IY95852 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97215

Buffer overflow in mkpath in bos.rte.methods in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long ODM name. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IY91132 http://www-1.ibm.com/support/docview.wss?uid=isg1IY91145

Buffer overflow in fcstat in devices.common.IBM.fc.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long input parameter. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IY94739 http://www-1.ibm.com/support/docview.wss?uid=isg1IY94761

Buffer overflow in xlplm in plm.server.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IZ00997 http://www.securityfocus.com/bid/25560

Buffer overflow in ibstat in devices.common.IBM.ib.rte in IBM AIX 5.3 allows local users to gain privileges via unspecified vectors. Date published : 2007-09-10 http://www-1.ibm.com/support/docview.wss?uid=isg1IY97233 http://www.securityfocus.com/bid/25557

Buffer overflow in the swcons command in bos.rte.console in IBM AIX 5.2 and 5.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2005-3504 and CVE-2007-0978. Date published : 2007-09-10...