Sophos Anti-Virus RAR and CHM Denial of Service Vulnerabilities More about

Posted on Wednesday, November 01, 2006 @ 00:57:26 CST in Security
by Raven

SECUNIA ADVISORY ID: SA22591

VERIFY ADVISORY: http://secunia.com/advisories/22591/

CRITICAL: Moderately critical

IMPACT: DoS

WHERE: >From remote

SOFTWARE:
Sophos Anti-Virus for Windows 6.x - http://secunia.com/product/12449/
Sophos Anti-Virus 5.x - http://secunia.com/product/5390/
Sophos Anti-Virus 4.x - http://secunia.com/product/5391/
Sophos Anti-Virus Small Business Edition - http://secunia.com/product/9822/

DESCRIPTION: Some vulnerabilities have been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).

1) An unspecified error when processing RAR archives may in certain cases cause an infinite loop in the scanning engine and consume all available CPU resources.

2) An unspecified error when processing CHM files may in certain cases result in a heap-based buffer overflow.

3) An unspecified error when processing CHM files with long names may cause a memory corruption.

SOLUTION: The vulnerabilities will reportedly be fixed in December 2006.

PROVIDED AND/OR DISCOVERED BY: The vendor credits iDefense.

ORIGINAL ADVISORY: Sophos: http://www.sophos.com/support/knowledgebase/article/7609.html


 

 

Sophos Anti-Virus Petite Plugin Denial of Service Vulnerability More about

Posted on Wednesday, November 01, 2006 @ 00:53:54 CST in Security
by Raven

SECUNIA ADVISORY ID: SA22635

VERIFY ADVISORY: http://secunia.com/advisories/22635/

CRITICAL: Moderately critical

IMPACT: DoS

WHERE: >From remote

SOFTWARE:
Sophos Anti-Virus for Windows 6.x - http://secunia.com/product/12449/
Sophos Anti-Virus 5.x - http://secunia.com/product/5390/
Sophos Anti-Virus 4.x - http://secunia.com/product/5391/
Sophos Anti-Virus Small Business Edition - http://secunia.com/product/9822/

DESCRIPTION: A vulnerability has been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service). An unspecified error in the Petite plugin when processing Petite archives containing a large number of large sectors can be exploited to DoS the virus engine. Please see the vendor's advisory for a list of affected versions.

SOLUTION: Updates are available for all products, but Sophos Anti-Virus for Macintosh (available in December 2006).

PROVIDED AND/OR DISCOVERED BY: The vendor credits iDefense.

ORIGINAL ADVISORY: Sophos: http://www.sophos.com/support/knowledgebase/article/7609.html


 

 

Faq Administrator *email* File Inclusion Vulnerability More about

Posted on Wednesday, November 01, 2006 @ 00:51:17 CST in Security
by Raven

SECUNIA ADVISORY ID: SA22621

VERIFY ADVISORY: http://secunia.com/advisories/22621/

CRITICAL: Highly critical

IMPACT: System access

WHERE: >From remote

SOFTWARE: Faq Administrator 2.x - http://secunia.com/product/12451/

DESCRIPTION: v1per-haCker has discovered a vulnerability in Faq Administrator, which can be exploited by malicious people to compromise a vulnerable system. Input passed to the "email" parameter in faq_reply.php is not properly verified, before being used to include files. This can be exploited to include arbitrary files from local or external resources. The vulnerability is confirmed in version 2.1. Other versions may also be affected.

SOLUTION: Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY: v1per-haCker


 

 

DaDaNuke Releases PHP-Nuke 8.0.0.3.3 FINAL More about Read More...

Posted on Wednesday, November 01, 2006 @ 00:47:29 CST in PHP-Nuke
by Raven

forgotz writes:  
A CMS empowers individuals at all levels to express themselves and their message, whether it be community, retail or service. PHP-Nuke allows the webmaster and/or site editor options, feedback and statistics. Unlike plain "static" HTML, PHP-Nuke is dynamic and ever changing. This is possible because of database technology. Your PHP-Nuke database collects and displays information, giving you and the end-user a much gratifying experience.

Where the PHP-Nuke Patched Series leaves off, we pick up. Since version 7.7, DaDaNuke has been committed to improving PHP-Nuke. Taking a 'Less is More' approach, we have developed a distribution that is light, flexible and more stable than other traditional releases. Click 'Read More' for all the changes made.

To demo our release, click here.
To download your copy of one of the best PHP-Nuke distributions out there, click here (registration required).
 Read More...


 

 

Vail,Light,Trepid and Skree...only 5.99 More about

Posted on Wednesday, November 01, 2006 @ 00:45:02 CST in PHP-Nuke Themes
by Raven

drakken20 writes:  
Four new to PHP-Nuke themes.Nice casual designs that are only 5.99.

All my themes are 5.99 and I have many different types of designs.

You can browse all my themes at this link

Vail theme has a small flash graphic.

Preview Vail


Preview Light

Preview Trepid

Preview Skree

Also, if you would be interested in exclusvely purchasing my site, email me at drakken20@comcast.net.

Thanks for your time,
John


 

 

PHPNUKE-CLAN.NET More about

Posted on Wednesday, November 01, 2006 @ 00:43:48 CST in Community
by Raven

CrazyCrack writes:  
Hi, everyone! Just to let you know, we got our net domain name! Now to visit us you need to click PHPNUKE-CLAN.NET!

Phpnuke-Clan.com is no more!

Please tell all your friends about that!

Thank you!
PNC Staff


 



Page 265 of 659 (3950 total stories) [ << | < | 260 | 261 | 262 | 263 | 264 | 265 | 266 | 267 | 268 | 269 | 270 | > | >> ]  

News ©

Site Info

Last SeenLast Seen
  • vashd1
  • neralex
Server TrafficServer Traffic
  • Total: 515,077,576
  • Today: 117,171
Server InfoServer Info
  • May 07, 2025
  • 05:28 pm CDT
 
 

Site Navigation