Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
IMPACT: Exposure of system information, Exposure of sensitive information, System access
WHERE: >From remote
SOFTWARE: Horoscope 2.x (module for Xoops) - http://secunia.com/product/14526/
DESCRIPTION: BeyazKurt has discovered a vulnerability in the Horoscope module for Xoops, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Posted by Raven on Wednesday, June 13, 2007 @ 18:43:35 EDT (942 reads) (Read More... | 1456 bytes more | Score: 0)
DESCRIPTION: A vulnerability has been reported in OpenOffice, which can potentially be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the parsing of RTF files and can be exploited to cause a heap based buffer overflow via a specially crafted RTF file. Successful exploitation may allow execution of arbitrary code.
SOLUTION: Do not open untrusted RTF files.
PROVIDED AND/OR DISCOVERED BY: Reported in a Debian advisory crediting John Heasman.
ORIGINAL ADVISORY: http://www.us.debian.org/security/2007/dsa-1307
Posted by Raven on Wednesday, June 13, 2007 @ 18:39:54 EDT (524 reads) ( | Score: 0)
Microsofts IIS servers are more vulnerable to host malware than Apache servers
A recent survey by Google's Anti-Malware Team seems to confirm what many of us have believed in the past: Microsoft's IIS (Internet Information Services) servers are more vulnerable to host malware than Apache servers. The statistics come from the recently launched Google Online Security Blog whereby Google's researchers looked at 70,000 domains that were either distributing malware or hosting attack code.
Google however does make it clear in its blog that just because IIS is serving malware doesn't mean that it has been compromised; it might be possible that most 'warez' related Web sites uses IIS. This study has caused many heated discussions amongst security advocates and bloggers who claim that this might be an emerging type of gamesmanship from Google to promote Apache over another product made by its rival.
Posted by Raven on Tuesday, June 12, 2007 @ 17:43:14 EDT (760 reads) ( | Score: 0)
Microsoft Windows Win32 API Code Execution Vulnerability
OPERATING SYSTEM:
Microsoft Windows 2000 Professional - http://secunia.com/product/1/
Microsoft Windows XP Home Edition - http://secunia.com/product/16/
Microsoft Windows XP Professional - http://secunia.com/product/22/
Microsoft Windows Server 2003 Datacenter Edition - http://secunia.com/product/1175/
Microsoft Windows Server 2003 Enterprise Edition - http://secunia.com/product/1174/
Microsoft Windows Server 2003 Standard Edition - http://secunia.com/product/1173/
Microsoft Windows Server 2003 Web Edition - http://secunia.com/product/1176/
Microsoft Windows Storage Server 2003 - http://secunia.com/product/12399/
DESCRIPTION: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to compromise a user's system.
Posted by Raven on Tuesday, June 12, 2007 @ 17:28:23 EDT (823 reads) (Read More... | 2811 bytes more | Score: 0)
Microsoft Outlook Express and Windows Mail Multiple Vulnerabilities
IMPACT: Security Bypass, Exposure of sensitive information, System access
WHERE: >From remote
OPERATING SYSTEM:
Microsoft Windows XP Professional - http://secunia.com/product/22/
Microsoft Windows XP Home Edition - http://secunia.com/product/16/
Microsoft Windows Vista - http://secunia.com/product/13223/
Microsoft Windows Storage Server 2003 - http://secunia.com/product/12399/
Microsoft Windows Server 2003 Web Edition - http://secunia.com/product/1176/
Microsoft Windows Server 2003 Standard Edition - http://secunia.com/product/1173/
Microsoft Windows Server 2003 Enterprise Edition - http://secunia.com/product/1174/
Microsoft Windows Server 2003 Datacenter Edition - http://secunia.com/product/1175/
SOFTWARE: Microsoft Outlook Express 6 - http://secunia.com/product/102/
DESCRIPTION: Some vulnerabilities have been reported in Microsoft Outlook Express and Windows Mail, which can be exploited by malicious people to disclose sensitive information and compromise a user's system.
Posted by Raven on Tuesday, June 12, 2007 @ 17:24:11 EDT (805 reads) (Read More... | 3576 bytes more | Score: 0)
Windows Secure Channel Digital Signature Parsing Vulnerability
OPERATING SYSTEM:
Microsoft Windows 2000 Advanced Server - http://secunia.com/product/21/
Microsoft Windows 2000 Datacenter Server - http://secunia.com/product/1177/
Microsoft Windows 2000 Professional - http://secunia.com/product/1/
Microsoft Windows 2000 Server - http://secunia.com/product/20/
Microsoft Windows XP Home Edition - http://secunia.com/product/16/
Microsoft Windows XP Professional - http://secunia.com/product/22/
Microsoft Windows Server 2003 Datacenter Edition - http://secunia.com/product/1175/
Microsoft Windows Server 2003 Enterprise Edition - http://secunia.com/product/1174/
Microsoft Windows Server 2003 Standard Edition - http://secunia.com/product/1173/
Microsoft Windows Server 2003 Web Edition - http://secunia.com/product/1176/
Microsoft Windows Storage Server 2003 - http://secunia.com/product/12399/
DESCRIPTION: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Posted by Raven on Tuesday, June 12, 2007 @ 17:18:43 EDT (785 reads) (Read More... | 3209 bytes more | Score: 0)
Microsoft Visio Two Code Execution Vulnerabilities
SOFTWARE:
Microsoft Office 2003 Student and Teacher Edition - http://secunia.com/product/2278/
Microsoft Office 2003 Standard Edition - http://secunia.com/product/2275/
Microsoft Office 2003 Small Business Edition - http://secunia.com/product/2277/
Microsoft Office 2003 Professional Edition - http://secunia.com/product/2276/
Microsoft Visio 2003 - http://secunia.com/product/1092/
Microsoft Visio 2002 - http://secunia.com/product/1091/
DESCRIPTION: Two vulnerabilities have been reported in Microsoft Visio, which can be exploited by malicious people to compromise a user's system.
Posted by Raven on Tuesday, June 12, 2007 @ 17:13:18 EDT (739 reads) (Read More... | 2105 bytes more | Score: 0)
IMPACT: Cross Site Scripting, Spoofing, System access
WHERE: >From remote
SOFTWARE:
Microsoft Internet Explorer 5.01 - http://secunia.com/product/9/
Microsoft Internet Explorer 6.x - http://secunia.com/product/11/
Microsoft Internet Explorer 7.x - http://secunia.com/product/12366/
DESCRIPTION: Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to conduct phishing attacks or compromise a user's system.
Posted by Raven on Tuesday, June 12, 2007 @ 16:57:31 EDT (671 reads) (Read More... | 4903 bytes more | Score: 0)
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
