.:[ packet storm ]:.
                             
beyond paranoid
beyond paranoid

 Section:  .. / 0705-advisories  /

Page 18 of 18
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 >> Files 425 - 441 of 441
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: vmware-gpf.txt
Description:
 Vmware Virtualization products are affected by a design flaw which can lead to a local denial of service vulnerability within the Guest OS.
Author:Ruben Santamarta
Homepage:http://www.reversemode.com/
File Size:7920
Related CVE(s):CVE-2007-1877
Last Modified:May 8 11:06:21 2007
MD5 Checksum:8ed06141300222f276e4ddb49aa37d0f

 ///  File Name: yate-dos.txt
Description:
 Yate version 1.1.0 suffers from a denial of service vulnerability due to a null pointer reference.
Author:Yuri Gushin
File Size:3438
Related CVE(s):CVE-2007-1693
Last Modified:May 3 08:53:37 2007
MD5 Checksum:c64818eba907977787a7e7d7c7602f00

 ///  File Name: yenc32.txt
Description:
 The yEnc32 Decoder version 1.0.7.207 suffers from a long filename buffer overflow vulnerability.
Author:Tan Chew Keong
Homepage:http://vuln.sg/
File Size:478
Last Modified:May 15 07:30:35 2007
MD5 Checksum:960a8234284957926ef2b4be6c181a1c

 ///  File Name: za6.txt
Description:
 ZoneAlarm 6 insufficiently protects the \Device\vsdatant driver from manipulation by malicious applications.
Homepage:http://www.matousec.com/
File Size:1248
Last Modified:May 3 08:25:45 2007
MD5 Checksum:dd177d60cf835d5f509eb46480f37bff

 ///  File Name: ZDI-07-023.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on systems with vulnerable installations of Apple's QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
Author:Dino A. Dai Zovi
Homepage:http://www.zerodayinitiative.com/
File Size:2959
Related CVE(s):CVE-2007-2175
Last Modified:May 3 09:03:57 2007
MD5 Checksum:fc419cf943610bda4a6afd95c1c34c08

 ///  File Name: ZDI-07-024.txt
Description:
 Multiple vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaw exists in the EarthAgent.exe daemon, bound by default on TCP port 3628 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
Author:Eric DETOISIEN
Homepage:http://www.zerodayinitiative.com/
File Size:3024
Related CVE(s):CVE-2007-2508
Last Modified:May 8 11:24:36 2007
MD5 Checksum:dd15fef7d5127f9f63901107e860298c

 ///  File Name: ZDI-07-025.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit this vulnerability. The specific flaw exists in the SpntSvc.exe daemon, bound by default on TCP port 5168 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
Author:Eric DETOISIEN
Homepage:http://www.zerodayinitiative.com/
File Size:3099
Related CVE(s):CVE-2007-2508
Last Modified:May 8 11:25:35 2007
MD5 Checksum:56194a1cec388cf8c1ce4cf1d2660283

 ///  File Name: ZDI-07-026.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file.
Author:Manuel Santamarina Suarez
Homepage:http://www.zerodayinitiative.com/
File Size:2647
Related CVE(s):CVE-2007-0215
Last Modified:May 10 03:39:18 2007
MD5 Checksum:cbfb13003f84a5ef4c8519777a101fc6

 ///  File Name: ZDI-07-027.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
Homepage:http://www.zerodayinitiative.com/
File Size:2690
Related CVE(s):CVE-2007-0944
Last Modified:May 10 03:40:19 2007
MD5 Checksum:86df24dec24193dcc84c91240b57414e

 ///  File Name: ZDI-07-028.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates AntiVirus Server. User interaction is not required to exploit this vulnerability. The specific flaw exists in the authentication function of the inoweb service that listens by default on TCP port 12168. The function copies both the username and password into fixed-length stack buffers. If an attacker provides overly long values for these parameters, an exploitable buffer overflow occurs.
Homepage:http://www.zerodayinitiative.com/
File Size:2648
Related CVE(s):CVE-2007-2522
Last Modified:May 12 04:33:25 2007
MD5 Checksum:fc6c254e6a86c9bbb68cd9143fc16f7e

 ///  File Name: ZDI-07-029.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Samba. User interaction is not required to exploit this vulnerability. The specific flaw exists in the parsing of RPC requests to the LSA RPC interface. When parsing a request to LsarAddPrivilegesToAccount, heap allocation is calculated based on user input. By specifying invalid values, heap blocks can be overwritten leading to remote code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:2508
Related CVE(s):CVE-2007-2446
Last Modified:May 17 04:08:01 2007
MD5 Checksum:ce96031b28a8ba05deb2c066745918c9

 ///  File Name: ZDI-07-030.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Samba. User interaction is not required to exploit this vulnerability. The specific flaw exists in the parsing of RPC requests to the DFS RPC interface. When parsing a request to DFSEnum, heap allocation is calculated based on user input. By specifying invalid values, heap blocks can be overwritten leading to remote code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:2493
Related CVE(s):CVE-2007-2446
Last Modified:May 17 04:12:06 2007
MD5 Checksum:d549778dfbb738edf585c7b51106b601

 ///  File Name: ZDI-07-031.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Samba. User interaction is not required to exploit this vulnerability. The specific flaw exists in the parsing of RPC requests to the SPOOLSS RPC interface. When parsing a request to RFNPCNEX, heap allocation is calculated based on user input. By specifying invalid values, heap blocks can be overwritten leading to remote code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:2495
Related CVE(s):CVE-2007-2446
Last Modified:May 17 04:14:52 2007
MD5 Checksum:f8dc71e8ab1c7c4c646b490428db484b

 ///  File Name: ZDI-07-032.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Samba. User interaction is not required to exploit this vulnerability. The specific flaw exists in the parsing of RPC requests to the SRVSVC RPC interface. When parsing a request to NetSetFileSecurity, heap allocation is calculated based on user input. By specifying invalid values, heap blocks can be overwritten leading to remote code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:2493
Related CVE(s):CVE-2007-2446
Last Modified:May 17 04:15:26 2007
MD5 Checksum:f4fe06853dd941c84f9b054af34a737b

 ///  File Name: ZDI-07-033.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Samba. User interaction is not required to exploit this vulnerability. The specific flaw exists in the parsing of RPC requests to the LSA RPC interface. When parsing a request to LsarLookupSids/LsarLookupSids2, heap allocation is calculated based on user input. By specifying invalid values, heap blocks can be overwritten leading to remote code execution.
Homepage:http://www.zerodayinitiative.com/
File Size:2510
Related CVE(s):CVE-2007-2446
Last Modified:May 17 04:15:58 2007
MD5 Checksum:35687f97d20fbe66af1e1da1c5b0e9ab

 ///  File Name: zoo-loop.txt
Description:
 Various anti-virus vendors are susceptible to an infinite loop denial of service vulnerability when analyzing the ZOO archives.
Author:Jean-Sebastien Guay-Leroux
Homepage:http://www.guay-leroux.com/projects.html
File Size:11699
Last Modified:May 4 18:51:04 2007
MD5 Checksum:1c32659d6c17c0a521d6e7b6d06b528d
 

 ///  Last 10 Files
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citectodbc-fivews.txt
  5. :· citect_scada_odbc.rb.txt
  6. :· flockweb-dos.txt
  7. :· google-chrome-dos4.txt
  8. :· google-download2.txt
  9. :· PLSA-2008-41.txt
  10. :· PLSA-2008-40.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· PLSA-2008-41.txt
  2. :· PLSA-2008-40.txt
  3. :· PLSA-2008-39.txt
  4. :· PLSA-2008-38.txt
  5. :· PLSA-2008-37.txt
  6. :· MDVSA-2008-188.txt
  7. :· glsa-200809-05.txt
  8. :· PLSA-2008-36.txt
  9. :· microworld-insecure.txt
  10. :· SSRT080119.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citect_scada_odbc.rb.txt
  5. :· flockweb-dos.txt
  6. :· google-chrome-dos4.txt
  7. :· google-download2.txt
  8. :· webcmsportal-blindsql.txt
  9. :· esfaq-sql.txt
  10. :· vastal-itechcosmetics.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· clamav-0.94.tar.gz
  2. :· distack-1.1.0-dev.tar.gz
  3. :· samhain-2.4.6.tar.gz
  4. :· sqlmap-0.6.tar.gz
  5. :· psbot.py.txt
  6. :· mimedefang-2.65.tar.gz
  7. :· advchk-2.11.tar.bz2
  8. :· kisgearth-0.01f.tar.bz2
  9. :· lynis-1.2.0.tar.gz
  10. :· fwknop-1.9.7.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· citectodbc-fivews.txt
  2. :· freebsd-revcon.txt
  3. :· insecurityoverview-samsung.pdf
  4. :· xcon2008-cfp.txt
  5. :· aslr-bypass.txt
  6. :· alphanumeric-shellcode.txt
  7. :· imagebase-shellcode.txt
  8. :· mysql-injection-newbies.txt
  9. :· draft-gont-opsec-ip-security-01.txt
  10. :· draft-ietf-tsvwg-port-randomization-02.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice