.:[ packet storm ]:.
                               
preserving full disclosure
preserving full disclosure

 Section:  .. / 0704-advisories  /

Page 19 of 20
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 >> Files 450 - 475 of 492
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: MITKRB5-SA-2007-002.txt
Description:
 MIT krb5 Security Advisory 2007-002 - The library function krb5_klog_syslog() can write past the end of a stack buffer. The Kerberos administration daemon (kadmind) as well as the KDC, are vulnerable. Exploitation of this vulnerability is probably simple. This is a vulnerability in the the kadm5 library, which is used by the KDC and kadmind, and possibly by some third-party applications. It is not a bug in the MIT krb5 protocol libraries or in the Kerberos protocol.
Homepage:http://web.mit.edu/
File Size:4497
Related CVE(s):CVE-2007-0957
Last Modified:Apr 5 02:08:28 2007
MD5 Checksum:f37c1abafcf67029c4f7e78b4fee8494

 ///  File Name: MITKRB5-SA-2007-001.txt
Description:
 MIT krb5 Security Advisory 2007-001 - The MIT krb5 telnet daemon (telnetd) allows unauthorized login as an arbitrary user, when presented with a specially crafted username. Exploitation of this vulnerability is trivial.
Homepage:http://web.mit.edu/
File Size:5340
Related CVE(s):CVE-2007-0956
Last Modified:Apr 5 02:07:02 2007
MD5 Checksum:97b9ab99466f4830aeeaac2bae9ad4f9

 ///  File Name: 04.03.07-1.txt
Description:
 iDefense Security Advisory 04.03.07 - Remote exploitation of a design error in certain kernel GDI functions in multiple versions of Microsoft Corp.'s Windows operating system may allow an attacker to cause a denial of service condition. During testing of the MS06-001 WMF (Windows Metafile) vulnerability, a flaw was found in the handling of WMF files. This flaw can cause the kernel to perform a bug check, also known as a "blue screen" or system crash, when it tries to parse the file. The cause of this bug check is an attempt by a function in a kernel system call to read a value obtained by dereferencing an offset into a kernel structure. This value had been previously created and then reset by previous system calls, and at the point it is accessed it does not contain a valid memory reference. This results in an access violation error, which in turn triggers the bug check. This vulnerability is different from both the Microsoft MS06-001 WMF vulnerability and the MS05-053 WMF vulnerability and is not fixed by either of these patches.
Author:Greg MacManus
Homepage:http://www.idefense.com/
File Size:4758
Related CVE(s):CVE-2007-1211
Last Modified:Apr 5 00:51:14 2007
MD5 Checksum:3ac9834c0e713667c5071757fe38e31a

 ///  File Name: major_rls37.txt
Description:
 holaCMS version 1.4.10 suffers from cross site scripting issues.
Author:David "Aesthetico" Vieira-Kurz
Homepage:http://www.majorsecurity.de
File Size:1537
Last Modified:Apr 5 00:46:58 2007
MD5 Checksum:9942e68ed2bd93b80e7d1114bd88d1aa

 ///  File Name: dsa-1275-1.txt
Description:
 Debian Security Advisory 1275-1 - A cross-site scripting vulnerability in zope, a web application server, could allow an attacker to inject arbitrary HTML and/or JavaScript into the victim's web browser. This code would run within the security context of the web browser, potentially allowing the attacker to access private data such as authentication cookies, or to affect the rendering or behavior of zope web pages.
Homepage:http://www.debian.org/security
File Size:5253
Related CVE(s):CVE-2007-0240
Last Modified:Apr 5 00:41:22 2007
MD5 Checksum:2f86de82e9ea1a1f1c50c699ebcb6594

 ///  File Name: sa24770.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for freetype, libxfont, xorg, and xorg-server. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/24770/
File Size:62740
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:e82b3f5fcb3b4021e874e0e4b6faeb56

 ///  File Name: sa24762.txt
Description:
 Secunia Security Advisory - Will Dormann has reported a vulnerability in SolidWorks sldimdownload ActiveX control, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24762/
File Size:2451
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:75205c13b159b7a548fdec35120e43dd

 ///  File Name: sa24757.txt
Description:
 Secunia Security Advisory - rPath has issued updates for krb5 packages. These fix some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service) or compromise a vulnerable system and by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24757/
File Size:2289
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:1cdc5df5dfb0189e4bdcdcf744acaa31

 ///  File Name: sa24756.txt
Description:
 Secunia Security Advisory - rPath has issued an update for freetype, xorg-x11, xorg-x11-fonts, xorg-x11-tools, and xorg-x11-xfs. This fixes some vulnerabilities, which potentially can be exploited by malicious, local users to disclose potentially sensitive information, cause a DoS (Denial of Service), and gain escalated privileges.
Homepage:http://secunia.com/advisories/24756/
File Size:2530
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:c64b25408ffe1780fc6acb5695fb8549

 ///  File Name: sa24750.txt
Description:
 Secunia Security Advisory - Red Hat has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24750/
File Size:2783
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:459492726846eac2a9ac901471c3b398

 ///  File Name: sa24745.txt
Description:
 Secunia Security Advisory - Red Hat has issued an update for xorg-x11. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges.
Homepage:http://secunia.com/advisories/24745/
File Size:2165
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:f374ffe8213703edf47f885e72623d55

 ///  File Name: sa24744.txt
Description:
 Secunia Security Advisory - Red Hat has issued an update for MySQL. This fixes a vulnerability, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24744/
File Size:2054
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:1505c34de080abb9cc0c6cec8fc23bee

 ///  File Name: sa24742.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Yahoo! Messenger, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24742/
File Size:2706
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:aa319a23f2e3654019274cfe54f7f5d9

 ///  File Name: sa24741.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in X.Org X11, which potentially can be exploited by malicious, local users to disclose sensitive information, cause a DoS (Denial of Service), and gain escalated privileges.
Homepage:http://secunia.com/advisories/24741/
File Size:3749
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:fdf8f6cea318ca3377482829ec51ad07

 ///  File Name: sa24740.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Kerberos, which can be exploited by malicious users to cause a DoS or compromise a vulnerable system and by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24740/
File Size:3838
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:e5eaee55fc6a06faa5ecc2f660ee435e

 ///  File Name: sa24736.txt
Description:
 Secunia Security Advisory - Debian has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24736/
File Size:40915
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:915e4db5bc661f2add11f54c636fa8c5

 ///  File Name: sa24735.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for mit-krb5. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24735/
File Size:2023
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:e8094946b4bb88dde5ff1a00af07c06b

 ///  File Name: sa24733.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in TinyMUX, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24733/
File Size:2179
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:e50b9453f12c17e34567a03c553fb509

 ///  File Name: sa24726.txt
Description:
 Secunia Security Advisory - Slackware has issued an update for qt. This fixes a vulnerability, which potentially can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/24726/
File Size:2164
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:bcba563883d056833789152188b6d61c

 ///  File Name: sa24711.txt
Description:
 Secunia Security Advisory - Multiple vulnerabilities have been reported in Netscape, which can be exploited by malicious people to conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially to compromise a user's system.
Homepage:http://secunia.com/advisories/24711/
File Size:2753
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:1c41cc8c0791d914e939fe501d9a91de

 ///  File Name: sa24656.txt
Description:
 Secunia Security Advisory - David Vieira-Kurz has discovered a vulnerability in holaCMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/24656/
File Size:2228
Last Modified:Apr 5 00:36:24 2007
MD5 Checksum:5af98ab60f3eae27c966e082a4eb9316

 ///  File Name: sa24700.txt
Description:
 Secunia Security Advisory - rgod has reported a vulnerability in Winmail, which potentially can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24700/
File Size:2234
Last Modified:Apr 5 00:36:02 2007
MD5 Checksum:27dfcefe35518e30bbcb2ca792e6d26b

 ///  File Name: sa24738.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Metamod-P, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/24738/
File Size:2231
Last Modified:Apr 5 00:33:11 2007
MD5 Checksum:455066d368d925dacfcaddd825c88bd0

 ///  File Name: glsa-200704-01.txt
Description:
 Gentoo Linux Security Advisory GLSA 200704-01 - The Madynes research team at INRIA has discovered that Asterisk contains a null pointer dereferencing error in the SIP channel when handling INVITE messages. Furthermore qwerty1979 discovered that Asterisk 1.2.x fails to properly handle SIP responses with return code 0. Versions less than 1.2.14-r2 are affected.
Homepage:http://security.gentoo.org
File Size:2921
Related CVE(s):CVE-2007-1561, CVE-2007-1594
Last Modified:Apr 3 02:58:57 2007
MD5 Checksum:9fdb1a849013c572f7bfb09a2f565536

 ///  File Name: 03.31.07-2.txt
Description:
 iDefense Security Advisory 03.31.07 - Remote exploitation of a multiple vulnerabilities within IBM Corp.'s Tivoli Provisioning Manager for OS Deployment allows attackers to crash the service or potentially execute arbitrary code with SYSTEM privileges. These vulnerabilities specifically exist in the handling of multi part/form-data HTTP POST requests. Malformed requests can cause invalid memory accesses leading to denial of service, or in some cases heap corruption. iDefense has confirmed the existence of these vulnerabilities within version 5.1.0.116 of Tivoli Provisioning Manager for OS Deployment. Older versions are suspected to be vulnerable as well.
Homepage:http://www.idefense.com/
File Size:3447
Last Modified:Apr 3 02:54:32 2007
MD5 Checksum:e832c816eea404fdaf3f90ee8f532d3a
 

 ///  Last 10 Files
  1. :· BrowserRider.20081124.tar.bz2
  2. :· pieweb-rfi.txt
  3. :· FreeBSD-SA-08.11.arc4random.txt
  4. :· USN-677-1.txt
  5. :· dsa-1671-1.txt
  6. :· dsa-1670-1.txt
  7. :· quicksilverforums-rce.txt
  8. :· webstudio-sql.txt
  9. :· siemens-dos.txt
  10. :· nitrotech-rfisql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-08.11.arc4random.txt
  2. :· USN-677-1.txt
  3. :· dsa-1671-1.txt
  4. :· dsa-1670-1.txt
  5. :· USN-676-1.txt
  6. :· USN-675-2.txt
  7. :· USN-675-1.txt
  8. :· USN-674-2.txt
  9. :· SVRT-05-08.txt
  10. :· 2008-01-flash.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pieweb-rfi.txt
  2. :· quicksilverforums-rce.txt
  3. :· webstudio-sql.txt
  4. :· siemens-dos.txt
  5. :· nitrotech-rfisql.txt
  6. :· bandwebsite-sqlxss.txt
  7. :· ftpzik-xsslfi.txt
  8. :· tvp-crash.txt
  9. :· googlechrome-obfuscate.tgz
  10. :· w3camayaid-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· BrowserRider.20081124.tar.bz2
  2. :· mp3nema-v0_2.tar.gz
  3. :· squid-nufw-helper-1.1.3.tar.gz
  4. :· xplico-0.1_deft4.tgz
  5. :· ksplice-0.9.4-src.tar.gz
  6. :· fwknop-1.9.9.tar.gz
  7. :· pysumpas-0.2.0.tar.gz
  8. :· framework-3.2.tar.gz
  9. :· tor.uclibc.i686.20081115.iso
  10. :· RFIDIOt-Windows-0.1u.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· tcpip_lib51.zip
  2. :· linuxrsa-shellcode.txt
  3. :· linuxcb-shellcode.txt
  4. :· 25bytes-execve.txt
  5. :· execve-shellcode.txt
  6. :· java2-malware.pdf
  7. :· return-to-libc-linux.txt
  8. :· stack-overflow-linux.txt
  9. :· smallest_setuid_execve_sc.c
  10. :· sudoers-shellcode.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice