Section: .. / 0601-advisories /
| /// File Name: |
nmrc-14Jan2006.txt |
Description:
|
This advisory documents an anomaly involving Microsoft's Wireless Network Connection. If a laptop connects to an ad-hoc network it can later start beaconing the ad-hoc network's SSID as its own ad-hoc network without the laptop owner's knowledge. This can allow an attacker to attach to the laptop as a prelude to further attack.
| | Author: | Simple Nomad | | Homepage: | http://www.nmrc.org | | File Size: | 9985 | | Last Modified: | Jan 15 18:24:42 2006 |
| MD5 Checksum: | f839868422e9ffeb14223e1c4f5afe8e |
|
| /// File Name: |
Oracle-PLSQL.txt |
Description:
|
There's a critical flaw in the Oracle PLSQL Gateway, a component of iAS, OAS and the Oracle HTTP Server, that allows attackers to bypass the PLSQLExclusion list and gain access to "excluded" packages and procedures. This can be exploited by an attacker to gain full DBA control of the backend database server through the web server.
| | Author: | David Litchfield | | File Size: | 1510 | | Last Modified: | Jan 27 08:36:07 2006 |
| MD5 Checksum: | c98b2982b727c9652f43201b8c1b456e |
|
| /// File Name: |
oracle_reports_overwrite_any_file.t..> |
Description:
|
By specifing a special value for the parameter desname Oracle Reports can overwrite any file on the application server. On Windows systems an attacker can overwrite any files (e.g. boot.ini) on the application server. On UNIX system an attacker can overwrite all files (e.g. opmn.xml) which belongs to the Oracle Application Server user. This attack can be done with a simple URL.
| | Author: | Alexander Kornbrust | | Homepage: | http://www.red-database-security.com/ | | File Size: | 3806 | | Last Modified: | Jan 25 07:53:47 2006 |
| MD5 Checksum: | e6f5d67be6d37ba4b608e5f3e0a7af35 |
|
| /// File Name: |
oracle_tde_wallet_password.txt |
Description:
|
The event 10053 is storing the masterkey of Oracle Transparent Data Encryption unencrypted in a trace-file. A skilled attacker or non-security DBA could set this special event to get the plaintext masterkey for the TDE encryption.
| | Author: | Alexander Kornbrust | | Homepage: | http://www.red-database-security.com/ | | File Size: | 1982 | | Last Modified: | Jan 25 08:05:23 2006 |
| MD5 Checksum: | fe402342205b5fc2b23f6f163f7030b9 |
|
| /// File Name: |
PHPFusebox4.0.6.txt |
Description:
|
PHP Fusebox 4.0.6 suffers from an HTML injection vulnerability. POC included.
| | Author: | Ph03n1X | | File Size: | 882 | | Last Modified: | Jan 22 23:04:11 2006 |
| MD5 Checksum: | 30cfeb71119bd38542eedca6211d9f28 |
|
| /// File Name: |
phpPayPal.txt |
Description:
|
The PHP Toolkit for PayPal version 0.50 is susceptible to payment system bypass and sensitive information disclosure.
| | Author: | .cens | | File Size: | 1638 | | Last Modified: | Jan 15 16:48:02 2006 |
| MD5 Checksum: | de0020c7c7c76270e512a91b1a551045 |
|
| /// File Name: |
PowerPortal-XSS.txt |
Description:
|
PowerPortal suffers from multiple XSS problems. POC included.
| | Author: | Night_Warrior | | File Size: | 512 | | Last Modified: | Jan 22 23:30:07 2006 |
| MD5 Checksum: | 75af29d99cb3434170dce31f9ea69244 |
|
| /// File Name: |
rh-servers.txt |
Description:
|
Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in Red Hat Directory Server and Red Hat Certificate Server. It is possible that under certain circumstances these flaws could permit an unauthenticated attacker to remotely compromise the Directory or Certificate server, in other circumstances this flaw could facilitate local privilege escalation to root.
| | Author: | NGSSoftware Insight Security Research | | Homepage: | http://www.ngssoftware.com | | File Size: | 2701 | | Last Modified: | Jan 26 10:25:21 2006 |
| MD5 Checksum: | 29d4e8fe239421f630edef10147905a8 |
|
| /// File Name: |
RHSA-2006-0157.txt |
Description:
|
Red Hat Security Advisory - A cross-site scripting flaw was found in the way Struts displays error pages. It may be possible for an attacker to construct a specially crafted URL which could fool a victim into believing they are viewing a trusted site.
| | Author: | Red Hat | | Homepage: | https://rhn.redhat.com/errata/RHSA-2006-0157.html | | File Size: | 7686 | | Related CVE(s): | CVE-2005-3745 | | Last Modified: | Jan 15 16:37:40 2006 |
| MD5 Checksum: | ace79271a106a4671cdd6b230f99152d |
|
| /// File Name: |
RockLiffe-wconsole.txt |
Description:
|
RockLiffe MailSite wconsole.dll Denial of Service/Script Injection Vulnerability
| | Author: | OS2A BTO | | File Size: | 2544 | | Last Modified: | Jan 26 10:08:27 2006 |
| MD5 Checksum: | 2b7108096bd59ca020a0f100a2e18d0f |
|
| /// File Name: |
rt-sa-2005-16.txt |
Description:
|
The implementations of securelevels on NetBSD and Linux contain an integer overflow, allowing the protection of system time to be completely circumvented.
| | Homepage: | http://www.redteam-pentesting.de/ | | File Size: | 3929 | | Related CVE(s): | CVE-2005-4352 | | Last Modified: | Jan 10 05:51:10 2006 |
| MD5 Checksum: | 849401f20aafd7ad6d40b6543eec82e3 |
|
| /// File Name: |
SA-0001.txt |
Description:
|
PTnet IRCD v1.5 and 1.6 contain a heap overflow which can crash the IRC server.
| | Author: | Blackfile | | File Size: | 2670 | | Last Modified: | Jan 1 15:49:58 2006 |
| MD5 Checksum: | d70dbc1a21ceb97668ef445c3706e324 |
|
| /// File Name: |
sa15866.txt |
Description:
|
Secunia Security Advisory - Javier Fernandez-Sanguino Pena has reported a vulnerability in Antiword, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
| | Homepage: | http://secunia.com/advisories/15866/ | | File Size: | 2006 | | Last Modified: | Jan 19 03:04:53 2006 |
| MD5 Checksum: | feb1cc0608246562a2bcf565d136fdf9 |
|
| /// File Name: |
sa15907.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered a vulnerability in Thunderbird, which can be exploited by malicious people to trick users into executing arbitrary programs.
| | Homepage: | http://secunia.com/advisories/15907/ | | File Size: | 2400 | | Last Modified: | Jan 19 03:04:53 2006 |
| MD5 Checksum: | fd7b8133d27d1d0292a4beb88d580b2f |
|
| /// File Name: |
sa16889.txt |
Description:
|
Secunia Security Advisory - Aliaksandr Hartsuyeu has discovered some vulnerabilities in aoblogger, which can be exploited by malicious people to bypass certain security restrictions, and conduct script insertion and SQL injection attacks.
| | Homepage: | http://secunia.com/advisories/16889/ | | File Size: | 2600 | | Last Modified: | Jan 19 03:04:53 2006 |
| MD5 Checksum: | 87c4359b91bb8879d582c97556bffbae |
|
| /// File Name: |
sa17418.txt |
Description:
|
Secunia Security Advisory - Secunia Research has discovered two security issues in ADOdb, which can be exploited by malicious people to disclose system information, execute arbitrary SQL code, and potentially compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/17418/ | | File Size: | 2697 | | Last Modified: | Jan 10 04:51:06 2006 |
| MD5 Checksum: | e059cc6fd802c8e0f83e15031be89f83 |
|
| /// File Name: |
sa18141.txt |
Description:
|
Secunia Security Advisory - ovt has reported a vulnerability in Cisco Secure ACS (Access Control Server), which potentially can be exploited by malicious people to bypass certain security restrictions.
| | Homepage: | http://secunia.com/advisories/18141/ | | File Size: | 2763 | | Last Modified: | Jan 4 05:21:16 2006 |
| MD5 Checksum: | f676e5fde0ac0a99add5510bee275f91 |
|
| /// File Name: |
sa18147.txt |
Description:
|
Secunia Security Advisory - Debian has issued an update for koffice. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.
| | Homepage: | http://secunia.com/advisories/18147/ | | File Size: | 22733 | | Last Modified: | Jan 14 06:07:24 2006 |
| MD5 Checksum: | 884f0b2fb726fe20cafc2136777fb693 |
|
| /// File Name: |
sa18163.txt |
Description:
|
Secunia Security Advisory - Xez has discovered a vulnerability in AppServ, which can be exploited by malicious people to compromise a vulnerable system.
| | Homepage: | http://secunia.com/advisories/18163/ | | File Size: | 1718 | | Last Modified: | Jan 6 18:58:29 2006 |
| MD5 Checksum: | 299a8f4e93916b1a44872c8c5381795d |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
