The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Debian Woody

Asterisk: SQL injections
An attacker can inject SQL queries via two vulnerabilities of Asterisk...
AST-2007-025, AST-2007-026, BID-26645, BID-26647, CVE-2007-6170, CVE-2007-6171, DSA-1417-1, SUSE-SR:2008:005, VIGILANCE-VUL-7381
Linux kernel: buffer overflow of isdn_net_setcfg
A local attacker can elevate his privileges via an overflow of the isdn_net_setcfg() function...
BID-27497, CERTA-2002-AVI-197, CERTA-2009-AVI-451, CVE-2007-6063, CVE-2007-6151, DSA-1436-1, DSA-1479-1, DSA-1503-1, DSA-1504-1, MDVSA-2008:008, MDVSA-2008:086, MDVSA-2008:112, RHSA-2008:0055-01, RHSA-2008:0154-01, RHSA-2008:0211-01, RHSA-2008:0787-01, RHSA-2008:0973-03, RHSA-2009:0001-01, SUSE-SA:2007:064, SUSE-SA:2008:006, SUSE-SA:2008:007, SUSE-SA:2008:017, SUSE-SA:2008:032, SUSE-SU-2011:0928-1, VIGILANCE-VUL-7380, VMSA-2008-00011, VMSA-2008-00011.1, VMSA-2008-00011.2, VMSA-2009-0014, VMSA-2009-0014.1, VMSA-2009-0014.2
ht-Dig: Cross Site Scripting
An attacker can use an Cross Site Scripting attack on ht://Dig...
BID-26610, CVE-2007-6110, DSA-1429-1, FEDORA-2007-3907, FEDORA-2007-3958, FEDORA-2007-757, RHSA-2007:1095-01, SUSE-SR:2007:025, VIGILANCE-VUL-7373
cairo: integer overflow
An attacker can create a malicious PNG image in order to create an overflow during its import in cairo...
387431, BID-26650, CERTA-2007-AVI-517, CVE-2007-5503, DSA-1542-1, FEDORA-2007-3818, MDVSA-2008:019, RHSA-2007:1078-02, SSA:2007-337-01, SUSE-SR:2008:003, VIGILANCE-VUL-7371, VMSA-2008-0014, VMSA-2008-0014.1, VMSA-2008-0014.2
PCRE: integer overflows of regular expressions
When attacker can change the regular expression used by a program, he can corrupt its memory in order for example to execute code...
BID-26462, BID-26725, BID-26727, CERTA-2007-AVI-513, CERTA-2008-AVI-103, CERTA-2008-AVI-207, CERTA-2008-AVI-239, CESA-2007-006, CVE-2005-4872, CVE-2006-7224-REJECT, CVE-2006-7225, CVE-2006-7226, CVE-2006-7227, CVE-2006-7228, DSA-1570-1, MDVSA-2008:012, RHSA-2007:1052-01, RHSA-2007:1052-02, RHSA-2007:1059-01, RHSA-2007:1063-01, RHSA-2007:1065-01, RHSA-2007:1068-01, RHSA-2007:1076-02, RHSA-2007:1077-01, RHSA-2008:0546-01, SUSE-SA:2007:062, SUSE-SA:2008:004, VIGILANCE-VUL-7332, VMSA-2008-0003, VMSA-2008-0003.1, VMSA-2008-0007, VMSA-2008-0007.1, VMSA-2008-0007.2
Firefox, Seamonkey: several vulnerabilities
Several vulnerabilities were announced in Firefox and Seamonkey, the worst one leading to code execution...
369814, 373911, 391028, 393326, 402649, 403331, BID-26385, BID-26589, BID-26593, c00771742, CERTA-2007-AVI-509, CVE-2007-5947, CVE-2007-5959, CVE-2007-5960, CVE-2007-6589, DSA-1424-1, DSA-1425-1, FEDORA-2007-3952, FEDORA-2007-3962, FEDORA-2007-4098, FEDORA-2007-4106, FEDORA-2007-756, HPSBUX02153, MDKSA-2007:246, MFSA2007-37, MFSA2007-38, MFSA2007-39, RHSA-2007:1082-01, RHSA-2007:1083-01, RHSA-2007:1084-01, SSA:2007-331-01, SSA:2007-333-01, SSRT061181, SUSE-SA:2007:066, TLSA-2007-54, VIGILANCE-VUL-7366, VU#715737
Cacti: SQL injection
An attacker can use a malicious url in order to execute SQL commands in Cacti...
CVE-2007-6035, DSA-1418-1, FEDORA-2007-3667, FEDORA-2007-3683, MDKSA-2007:231, SUSE-SR:2007:024, VIGILANCE-VUL-7360
MySQL: denial of service via CONTAINS
An authenticated attacker can use a SQL query with CONTAINS in order to stop the database...
BID-26353, CVE-2007-5925, DSA-1413-1, FEDORA-2007-4465, FEDORA-2007-4471, MDKSA-2007:243, RHSA-2007:1155-01, RHSA-2007:1157-01, SUSE-SR:2008:003, VIGILANCE-VUL-7355
PCRE: overflow of regular expressions
When attacker can change the regular expression used by a program, he can corrupt its memory in order for example to execute code...
BID-26550, CERTA-2008-AVI-239, CVE-2006-7230, DSA-1570-1, RHSA-2007:1059-01, RHSA-2007:1068-01, SUSE-SA:2007:062, SUSE-SA:2008:004, VIGILANCE-VUL-7354
Linux kernel: denial of service of wait_task_stopped
A local attacker can create a denial of service via an error of wait_task_stopped()...
BID-26477, CVE-2007-5500, DSA-1428-1, FEDORA-2007-3751, FEDORA-2007-3837, FEDORA-2007-759, MDVSA-2008:008, MDVSA-2008:044, MDVSA-2008:112, RHSA-2008:0055-01, SUSE-SA:2007:063, SUSE-SA:2008:013, SUSE-SA:2008:030, SUSE-SA:2008:032, VIGILANCE-VUL-7352
Our database contains other pages. You can request a free trial to read them.

Display information about Debian Woody: