.:[ packet storm ]:.
                               
preserving full disclosure
preserving full disclosure

 Section:  .. / 0701-advisories  /

Page 15 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 350 - 375 of 537
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: ipswitch2007.txt
Description:
 Ipswitch WS_FTP 2007 Professional suffers from an access violation vulnerability.
Author:sapheal
File Size:1003
Last Modified:Jan 13 20:07:30 2007
MD5 Checksum:287a3ed0e588dd0aa0e24b95b2c9b39d

 ///  File Name: MDKSA-2007-013.txt
Description:
 Mandriva Linux Security Advisory - An array index error in the URI parser in neon 0.26.0 to 0.26.2 could possibly allow remote malicious servers to cause a crash via a URI with non-ASCII characters. This vulnerability may only exist on 64bit systems.
Homepage:http://www.mandriva.com/security/
File Size:2799
Related CVE(s):CVE-2007-0157
Last Modified:Jan 13 20:06:09 2007
MD5 Checksum:08a754e1e98b6355e11aa33ba8e648ad

 ///  File Name: dsa-1248-1.txt
Description:
 Debian Security Advisory 1248-1 - Roland Lezuo and Josselin Mouette discovered that the libsoup HTTP library performs insufficient sanitizing when parsing HTTP headers, which might lead to denial of service.
Homepage:http://www.debian.org/security
File Size:7312
Related CVE(s):CVE-2006-5876
Last Modified:Jan 13 20:05:32 2007
MD5 Checksum:32c1a2838b83eedbbb78902ad3106ac2

 ///  File Name: glsa-200701-08.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-08 - Christoph Deal discovered that JPEG files with a specially crafted DHT marker can be exploited to cause a heap overflow. Furthermore, an anonymous person discovered that Opera does not correctly handle objects passed to the createSVGTransformFromMatrix() function. Versions less than 9.10 are affected.
Homepage:http://security.gentoo.org
File Size:3094
Last Modified:Jan 13 20:01:56 2007
MD5 Checksum:b9390704b0a88f412d42778f70031082

 ///  File Name: glsa-200701-07.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-07 - John Heasman of NGSSoftware has discovered integer overflows in the EMR_POLYPOLYGON and EMR_POLYPOLYGON16 processing and an error within the handling of META_ESCAPE records. Versions less than 2.1.0 are affected.
Homepage:http://security.gentoo.org
File Size:3277
Last Modified:Jan 13 20:01:40 2007
MD5 Checksum:773ed98805fd2342a933048ee1b95508

 ///  File Name: glsa-200701-06.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-06 - w3m in -dump or -backend mode does not correctly handle printf() format string specifiers in the Common Name (CN) field of an X.509 SSL certificate. Versions less than 0.5.1-r4 are affected.
Homepage:http://security.gentoo.org
File Size:2581
Last Modified:Jan 13 20:01:07 2007
MD5 Checksum:a2e780abc83c689cf3dc1a79d7828c0c

 ///  File Name: glsa-200701-05.txt
Description:
 Gentoo Linux Security Advisory GLSA 200701-05 - Marcus Meissner of the SUSE security team discovered a stack overflow vulnerability in the code processing EXIF information in the kfile JPEG info plugin. Versions less than 3.5.5-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2596
Last Modified:Jan 13 20:00:53 2007
MD5 Checksum:5ba8a757a118bf3dad2108eab8225def

 ///  File Name: MDKSA-2007-012.txt
Description:
 Mandriva Linux Security Advisory - Quite a few vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
Homepage:http://www.mandriva.com/security/
File Size:8508
Related CVE(s):CVE-2006-4813, CVE-2006-4997, CVE-2006-5158, CVE-2006-5619, CVE-2006-5749, CVE-2006-5751, CVE-2006-5757, CVE-2006-6106
Last Modified:Jan 13 20:00:47 2007
MD5 Checksum:fe34171f128c377fe6cbfa40e3d90265

 ///  File Name: corsaire-chainkey.txt
Description:
 Corsaire Security Advisory - The aim of this document is to clearly define an issue that exists with the ChainKey Java Code Protection product, that will allow an attacker to circumvent the encryption protection and de-compile any protected Java application.
Author:Stephen de Vries
Homepage:http://www.corsaire.com/
File Size:8182
Related CVE(s):CVE-2007-0014
Last Modified:Jan 13 19:59:09 2007
MD5 Checksum:a947f900a295b970a1717f7650f7279b

 ///  File Name: USN-406-1.txt
Description:
 Ubuntu Security Notice 406-1 - An integer overflow was discovered in OpenOffice.org's handling of WMF files. If a user were tricked into opening a specially crafted WMF file, an attacker could execute arbitrary code with user privileges.
Homepage:http://security.ubuntu.com/
File Size:24114
Related CVE(s):CVE-2006-5870
Last Modified:Jan 13 19:48:40 2007
MD5 Checksum:b89f96f7f5345d93c6ba785d83f0efc0

 ///  File Name: MDKSA-2007-011.txt
Description:
 Mandriva Linux Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.9.
Homepage:http://www.mandriva.com/security/
File Size:27990
Related CVE(s):CVE-2006-6497, CVE-2006-6500, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6505
Last Modified:Jan 13 19:46:52 2007
MD5 Checksum:9830564fff7dde388ea88c4f1b52ce21

 ///  File Name: wp206-disclose.txt
Description:
 WordPress versions 2.1Alpha and 2.0.6 and below suffer from information disclosure flaws.
Author:Xy7
File Size:1138
Last Modified:Jan 13 19:46:03 2007
MD5 Checksum:cc236f8888abfb5c3e73eee74af3c454

 ///  File Name: CAID-multi.txt
Description:
 CA BrightStor ARCserve Backup contains multiple overflow conditions that can allow a remote attacker to execute arbitrary code with local SYSTEM privileges on Windows. The BrightStor ARCserve Backup Tape Engine service, Mediasvr service, and ASCORE.dll file are affected.
Author:Ken Williams
Homepage:http://www3.ca.com/
File Size:4984
Related CVE(s):CVE-2006-5171, CVE-2006-5172, CVE-2007-0168, CVE-2007-0169, CVE-2006-6076, CVE-2006-6917
Last Modified:Jan 13 19:44:37 2007
MD5 Checksum:d42abd52ad2963c70a26b34377196f37

 ///  File Name: LS-20061002.pdf
Description:
 LSsec has discovered a vulnerability in Computer Associates BrightStor ARCserve Backup version 11.5, which could be exploited by an anonymous attacker in order to execute arbitrary code with SYSTEM privileges on an affected system.
Homepage:http://www.lssec.com/
File Size:10892
Last Modified:Jan 13 19:42:59 2007
MD5 Checksum:2a88fd2c9cc44efd2cf38e86bd71bb0f

 ///  File Name: MDKSA-2007-010.txt
Description:
 Mandriva Linux Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.9.
Homepage:http://www.mandriva.com/security/
File Size:36032
Related CVE(s):CVE-2006-6497, CVE-2006-6500, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504
Last Modified:Jan 13 19:31:26 2007
MD5 Checksum:2ca9185f1fd5adcd9c231b13b2a4420a

 ///  File Name: pre2007-00018659.txt
Description:
 Digital Armaments Pre-Advisory - A vulnerability exists in expand_stack() of the grsecurity patch. This vulnerability is only locally exploitable.
Homepage:http://www.digitalarmaments.com/
File Size:1822
Last Modified:Jan 13 19:30:12 2007
MD5 Checksum:4d2bd1c0a9ca0e501dd9a20690d3ce25

 ///  File Name: USN-405-1.txt
Description:
 Ubuntu Security Notice 405-1 - It was discovered that fetchmail did not correctly require TLS negotiation in certain situations. This would result in a user's unencrypted password being sent across the network.
Homepage:http://security.ubuntu.com/
File Size:6008
Related CVE(s):CVE-2006-5867
Last Modified:Jan 13 19:20:15 2007
MD5 Checksum:b039672e263aba36609eb3f55e19073d

 ///  File Name: SSRT051035.txt
Description:
 HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could be exploited remotely by an unauthorized user to execute arbitrary code with the permissions of the NNM server.
Homepage:http://www.hp.com
File Size:8806
Last Modified:Jan 13 19:17:45 2007
MD5 Checksum:ca129eb7ebc519763716216fdaa717dd

 ///  File Name: SSRT061174.txt
Description:
 HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could be exploited remotely by an unauthorized user to gain read access to files with the permissions of the NNM server.
Homepage:http://www.hp.com
File Size:8764
Last Modified:Jan 13 19:17:06 2007
MD5 Checksum:fb3bd40d6459644be8382ac5de991065

 ///  File Name: ZDI-07-004.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup. User interaction is not required to exploit this vulnerability. The specific flaw exists in the Tape Engine RPC service which listens by default on TCP port 6503. Affected include BrightStor ARCserve Backup r11.5, BrightStor ARCserve Backup r11.1, BrightStor ARCserve Backup r11, BrightStor Enterprise Backup r10.5, and BrightStor ARCserve Backup v9.01.
Homepage:http://www.zerodayinitiative.com/
File Size:2837
Related CVE(s):CVE-2007-0169
Last Modified:Jan 13 19:16:26 2007
MD5 Checksum:751ec3a215916654c25086a3af2b1ae1

 ///  File Name: ZDI-07-003.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup. User interaction is not required to exploit this vulnerability. The specific flaws exists in the Message Engine RPC service which listens by default on TCP ports 6503 and 6504. Affected include BrightStor ARCserve Backup r11.5, BrightStor ARCserve Backup r11.1, BrightStor ARCserve Backup r11, BrightStor Enterprise Backup r10.5, and BrightStor ARCserve Backup v9.01.
Homepage:http://www.zerodayinitiative.com/
File Size:2921
Related CVE(s):CVE-2007-0169
Last Modified:Jan 13 19:15:41 2007
MD5 Checksum:97132b2d3b4e89621dff17ca66794441

 ///  File Name: ZDI-07-002.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup. User interaction is not required to exploit this vulnerability. The specific flaw exists in the handling of RPC requests to the Tape Engine service which listens by default on TCP port 6502. Affected include BrightStor ARCserve Backup r11.5, BrightStor ARCserve Backup r11.1, BrightStor ARCserve Backup r11, BrightStor Enterprise Backup r10.5, and BrightStor ARCserve Backup v9.01.
Homepage:http://www.zerodayinitiative.com/
File Size:2837
Related CVE(s):CVE-2007-0168
Last Modified:Jan 13 19:14:27 2007
MD5 Checksum:14a1278e12723d0ac985d47f748fbc77

 ///  File Name: FreeBSD-SA-07.01.jail.txt
Description:
 FreeBSD Security Advisory - jail(2) is susceptible to a symlink related vulnerability due to a lack of sanity checking.
Author:Dirk Engling
Homepage:http://security.freebsd.org/
File Size:7617
Related CVE(s):CVE-2007-0166
Last Modified:Jan 13 19:12:57 2007
MD5 Checksum:d1a9cb5012bfa85ad24e4f4cd4c8bb87

 ///  File Name: CX-2007-01.txt
Description:
 Calyptix Security Advisory - Snort 2.6.1.2 is vulnerable to an integer underflow that allows a remote attacker to cause Snort to read beyond a specified length of memory, potentially corrupting logfiles.
Author:Chris Rohlf
File Size:4541
Last Modified:Jan 13 19:11:29 2007
MD5 Checksum:eb0738f597308dc82b34c3f4a28321c9

 ///  File Name: CT09-01-2007.txt
Description:
 Microsoft Outlook is a popular personal communication manager that provides end users with a unified place to manage e-mail, calendar and contact information. As part of its standard offering, Outlook also includes an Advanced Search facility (Finder.exe) enabling end-users to query any aspect of their repository information. Unfortunately, it transpires that Outlook/Finder is susceptible to a remote Buffer overflow vulnerability, when processing the contents of a specially crafted Office Saved Search (.oss) file.
Author:Stuart Pearson
Homepage:http://www.computerterrorism.com/
File Size:3364
Related CVE(s):CVE-2007-0034
Last Modified:Jan 13 19:10:08 2007
MD5 Checksum:ae714bb4c24e9aea624b67a515703c5f
 

 ///  Last 10 Files
  1. :· BrowserRider.20081124.tar.bz2
  2. :· pieweb-rfi.txt
  3. :· FreeBSD-SA-08.11.arc4random.txt
  4. :· USN-677-1.txt
  5. :· dsa-1671-1.txt
  6. :· dsa-1670-1.txt
  7. :· quicksilverforums-rce.txt
  8. :· webstudio-sql.txt
  9. :· siemens-dos.txt
  10. :· nitrotech-rfisql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-08.11.arc4random.txt
  2. :· USN-677-1.txt
  3. :· dsa-1671-1.txt
  4. :· dsa-1670-1.txt
  5. :· USN-676-1.txt
  6. :· USN-675-2.txt
  7. :· USN-675-1.txt
  8. :· USN-674-2.txt
  9. :· SVRT-05-08.txt
  10. :· 2008-01-flash.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pieweb-rfi.txt
  2. :· quicksilverforums-rce.txt
  3. :· webstudio-sql.txt
  4. :· siemens-dos.txt
  5. :· nitrotech-rfisql.txt
  6. :· bandwebsite-sqlxss.txt
  7. :· ftpzik-xsslfi.txt
  8. :· tvp-crash.txt
  9. :· googlechrome-obfuscate.tgz
  10. :· w3camayaid-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· BrowserRider.20081124.tar.bz2
  2. :· mp3nema-v0_2.tar.gz
  3. :· squid-nufw-helper-1.1.3.tar.gz
  4. :· xplico-0.1_deft4.tgz
  5. :· ksplice-0.9.4-src.tar.gz
  6. :· fwknop-1.9.9.tar.gz
  7. :· pysumpas-0.2.0.tar.gz
  8. :· framework-3.2.tar.gz
  9. :· tor.uclibc.i686.20081115.iso
  10. :· RFIDIOt-Windows-0.1u.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· tcpip_lib51.zip
  2. :· linuxrsa-shellcode.txt
  3. :· linuxcb-shellcode.txt
  4. :· 25bytes-execve.txt
  5. :· execve-shellcode.txt
  6. :· java2-malware.pdf
  7. :· return-to-libc-linux.txt
  8. :· stack-overflow-linux.txt
  9. :· smallest_setuid_execve_sc.c
  10. :· sudoers-shellcode.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice