Warning: fopen(/home/rachdian/public_html/2008/old/cache/rss20.xml) [function.fopen]: failed to open stream: No such file or directory in /home/rachdian/public_html/2008/old/includes/feedcreator.class.php on line 685

Error creating feed file, please check write permissions.
Saturday, September 04 2010
Home
Photos Gallery
Guest Book
Links
Hot Info
Index
Latest Info
Jobs Info
IT/IS - Security
Education
Photo Stories (Photoblog)
Travelling Stories
About Me & Site
For Geek Family Only
About Me...
Diary
Contact Me
The Page Rank
Home arrow Index arrow IT/IS Security & Vulnerability arrow Vulnerabilities affecting Firefox, ClamAV and the Apache HTTP Server
Vulnerabilities affecting Firefox, ClamAV and the Apache HTTP Server Print
User Rating: / 0
PoorBest 
Written by snort.org   
Wednesday, 26 September 2007
VRT Certified Rules Update 2007-09-25

The Sourcefire VRT is aware of vulnerabilities affecting Firefox, ClamAV and the Apache HTTP Server.

Details:
Firefox QuickTime Argument Injection (CVE-2007-5045):
A remote attacker may be able to execute commands via a QuickTime Media Link (QTL) file on systems using Firefox prior to version 2.0.7.

A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 12593.
ClamAV Command Execution (CVE-2007-4560):
The clamav-milter used in ClamAV prior to version 0.91.2 when run in black hole mode, may allow a remote attacker to execute commands via shell meta-characters.

A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 12592.

Apache HTTP Server Denial of Service (CVE-2007-1863):
The Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, is vulnerable to a Denial of Service (DoS) condition via a request using certain Cache-Control headers.

A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 12591.

Advisory:
A detailed advisory as well as a complete list of modified and deleted rules is available at:

 http://www.snort.org/vrt/advisories/vrt-rules-2007-09-25.html

Download Rules:
These rules will be available to subscribers only until Thursday, October 25, 2007. Subscribers can download the rules at:

 http://www.snort.org/pub-bin/downloads.cgi

Comments

Write Comment
Name:Guest
Title:
BBCode:Web AddressEmail AddressBold TextItalic TextUnderlined TextQuoteCodeOpen ListList ItemClose List
Comment:



This image contains a scrambled text, it is using a combination of colors, font size, background, angle in order to disallow computer to automate reading. You will have to reproduce it to post on my homepage Enter what you see: *
tips: hit Reload page before writing a text if you have difficulty reading characters in image

Last Updated ( Wednesday, 26 September 2007 )
[ Back ]


© Copyright 2005, Adhi Rachdian.
URL: http://adhi.rachdian.com, http://rachdian.com, http://adhi.pacific.net.id, http://rachdian.pacific.net.id or http://blog.rachdian.com