.:[ packet storm ]:.
                           
honesty is the best policy
honesty is the best policy

 Section:  .. / advisories / debian  /

Page 5 of 5
<< 1 2 3 4 5 >> Files 100 - 107 of 107
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: debian.lpr.txt
Description:
 The version of lpr that was distributed with Debian GNU/Linux 2.1 and the updated version released in 2.1r4 have a two security problems - Local users can obtain root access and remote users can access the print server. Debian security homepage here.
File Size:3321
Last Modified:Jan 10 20:16:33 2000
MD5 Checksum:4598f33acb97daed298ecb9e2d609df5

 ///  File Name: debian.htdig.txt
Description:
 The version of htdig that was shipped in Debian GNU/Linux 2.1 has a problem with calling external programs to handle non-HTML documents: it calls the external program with the document as a parameter, but does not check for shell escapes. This can be exploited by creating files with filenames that include shell escapes to run arbitraty commands on the machine that runs htdig. Debian security homepage here.
File Size:3126
Last Modified:Dec 9 22:54:53 1999
MD5 Checksum:a8fd02d13b305694bfbadced3f58307d

 ///  File Name: debian.sendmail.txt
Description:
 The version of sendmail and sendmail-wide that was distributed with Debian GNU/Linux 2.1 has a slight problem in the code to regenerate the aliases database. Sendmail allowed any user to run sendmail with the -bi option to (re)initialize the aliases database. The user could then interrupt sendmail and leave the system with a broken aliases database. This has been fixed in version 8.9.3-3slink1 by only allowing root and trusted users to regenerate the aliases database. Debian security homepage here.
File Size:8204
Last Modified:Dec 7 18:15:17 1999
MD5 Checksum:d724290163864d34d014fa8e4be217fc

 ///  File Name: debian.dump.txt
Description:
 The version of dump that was distributed with Debian GNU/Linux 2.1 suffers from a problem with restoring symbolic links. The new version uses lchown instead of chown, fixing a possible security problem when restoring symlinks (a malicious user could use this to deliberately corrupt the ownership of important system files). Debian security website here.
File Size:2943
Last Modified:Dec 2 23:04:38 1999
MD5 Checksum:4edf808c4cd9c533f103be8ae03b2899

 ///  File Name: debian.bind.txt
Description:
 The version bind that was distributed in Debian GNU/Linux 2.1 has a vulnerability in the processing of NXT records that can be used by an attacked in a Debian of Service attack or exploited to gain root access to the server. This has been fixed in version 8.2.5p5-0slink1, and we recommend that you upgrade your bind package immediately. Debian security homepage here.
File Size:3677
Last Modified:Nov 17 21:21:08 1999
MD5 Checksum:c54927e4c04dc6d6857c80bbf06fbc95

 ///  File Name: debian.nfs-server.txt
Description:
 Debian Security Advisory: New version of nfs-server fixes remote exploit. Debian security homepage here.
File Size:3034
Last Modified:Nov 11 21:26:23 1999
MD5 Checksum:49b2e2eefb687de5bc34a50f4aebd09d

 ///  File Name: debian.lpr-old.txt
Description:
 The version of lpr that was distributed with Debian GNU/Linux 2.1 suffers from a couple of problems. There was a race in lpr that could be exploited by users to print files they can not normally read, and lpd did not check permissions of queue-files. As a result by using the -s flag it could be tricked into printing files a user can otherwise not read. This has been fixed in version 0.46-1-0slink1. We recommend you upgrade your lpr package immediately. Debian security homepage here.
File Size:3001
Last Modified:Nov 3 23:06:56 1999
MD5 Checksum:09c3264dfd9b00e60efe0be857e15228
 

 ///  Last 10 Files
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· quotebook-disclose.txt
  8. :· cts2009-cfp.txt
  9. :· cisco-sa-20090107-gss.txt
  10. :· secadv_20090107.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· cisco-sa-20090107-gss.txt
  8. :· secadv_20090107.txt
  9. :· oCERT-2008-016.txt
  10. :· msienull-dos.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· quotebook-disclose.txt
  2. :· SN-2008-04.txt
  3. :· winamp-overflow.txt
  4. :· phpfusionecart-sql.txt
  5. :· audacity162-crash.txt
  6. :· perceptionliteserve-overflow.txt
  7. :· phpfusionmembers-sql.txt
  8. :· vuplayer249-overflow.txt
  9. :· joomla-traversal.txt
  10. :· cainabel4925-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ip-array_0.05.74c.tar.gz
  2. :· mandos_1.0.3.orig.tar.gz
  3. :· lfi-rfi2.txt
  4. :· tor.uclibc.i686.20090105.iso
  5. :· RFIDIOt-0.1v.tgz
  6. :· ratproxy-1.53.tar.gz
  7. :· opennhrp-0.9.2.tar.bz2
  8. :· rkhunter-1.3.4.tar.gz
  9. :· zerowine-0.0.1.tar.gz
  10. :· inguma-0.1.1.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· cts2009-cfp.txt
  2. :· seacureit-cfp2009.txt
  3. :· msfxdc-contest.txt
  4. :· valsmith_colin_blog_spam.pdf
  5. :· dquist_valsmith_further_down_the_vm_spiral.pdf
  6. :· valsmith_dquist_hacking_malware.pdf
  7. :· uCon2009-CFP.txt
  8. :· md5-considered-harmful.pdf
  9. :· clickjack-xss.txt
  10. :· w3af-userguide.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice