.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / 0710-advisories  /

Page 18 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 425 - 450 of 664
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: sa27187.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Kaspersky Online Scanner, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/27187/
File Size:2542
Last Modified:Oct 12 00:13:39 2007
MD5 Checksum:5a9ff88c91f78910600fa50edfb8c5ce

 ///  File Name: sa27190.txt
Description:
 Secunia Security Advisory - ShAnKaR has reported a vulnerability in TikiWiki, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27190/
File Size:2241
Last Modified:Oct 12 00:13:39 2007
MD5 Checksum:e41eb0a0d24b2fe35fe4cd036f1d7dcd

 ///  File Name: sa27192.txt
Description:
 Secunia Security Advisory - Multiple vulnerabilities have been reported in CA BrightStor ARCserve Backup, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27192/
File Size:4485
Last Modified:Oct 12 00:13:39 2007
MD5 Checksum:3961f18738529695b37f3466ebf6102c

 ///  File Name: sa27194.txt
Description:
 Secunia Security Advisory - durito has reported a vulnerability in ActiveKB NX, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/27194/
File Size:2378
Last Modified:Oct 12 00:13:39 2007
MD5 Checksum:769144b03951bf932b380e436f56b909

 ///  File Name: sa27199.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in ViArt Shop, which can be exploited by malicious people to gain knowledge of sensitive and system information.
Homepage:http://secunia.com/advisories/27199/
File Size:2393
Last Modified:Oct 12 00:13:39 2007
MD5 Checksum:4aa1fa2b8e8141e861beb3a9885142f5

 ///  File Name: CORE-2007-0928.txt
Description:
 Core Security Technologies Advisory - A vulnerability found in OpenBSD's dhcpd allows attackers on the local network to remotely cause the DHCP server to corrupt its process memory and crash; or continue functioning erratically thus denying service to all DHCP clients on the network and, if PF updates are in use, potentially affecting egress/ingress filtering as well. OpenBSD 4.0, 4.1, and 4.2 are affected.
Author:Nahuel Riva, Gerardo Richarte
Homepage:http://www.coresecurity.com/corelabs/
File Size:14380
Related CVE(s):CVE-2007-0063
Last Modified:Oct 11 00:28:53 2007
MD5 Checksum:4f54934bbd0acff7397c83a86dcce243

 ///  File Name: TPTI-07-18.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of EMC RepliStor Server. User interaction is not required to exploit this vulnerability. The specific flaw exists in the RepliStor Server Service that listens by default on TCP port 7144. The vulnerable function trusts a user-supplied size value allowing an attacker to create an undersized buffer. A later call to recv() overflows that buffer allowing for arbitrary code execution in the context of the SYSTEM user. Replistor version 6.1.3 is affected.
Author:Aaron Portnoy
Homepage:http://www.tippingpoint.com/
File Size:2110
Related CVE(s):CVE-2007-5323
Last Modified:Oct 11 00:25:58 2007
MD5 Checksum:12f108e9e28d674761caca444b1da76b

 ///  File Name: ZDI-07-057.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Firebird SQL server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the database service fbserver.exe, which binds to TCP port 3050. When processing an overly long request, a stack buffer can be overflowed through a vulnerable call to sprintf() within the function process_packet(). If properly exploited, remote control of the affected system can be attained with SYSTEM credentials.
Homepage:http://www.zerodayinitiative.com/
File Size:3203
Related CVE(s):CVE-2007-4992
Last Modified:Oct 11 00:24:54 2007
MD5 Checksum:b5735efeaeed792730317961bd7ea7bf

 ///  File Name: ZDI-07-056.txt
Description:
 Multiple vulnerabilities including a stack overflow and some denial of service issues exist in the IBM DB2 Universal Database versions 8.1 and 8.2.
Homepage:http://www.zerodayinitiative.com/
File Size:3402
Related CVE(s):CVE-2007-5324
Last Modified:Oct 11 00:24:10 2007
MD5 Checksum:7c162f9c28d01305de933fd6f76e4a7e

 ///  File Name: ZDI-07-055.txt
Description:
 A vulnerability allows remote attackers to crash systems with vulnerable installations of the Microsoft Windows operating system. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RPC runtime library rpcrt4.dll during the parsing of RPC-level authentication messages. When parsing packets with the authentication type of NTLMSSP and the authentication level of PACKET, an invalid memory dereference can occur if the verification trailer signature is initialized to 0 as opposed to the standard NTLM signature. Successful exploitation crashes the RPC service and subsequently the entire operating system.
Author:Tenable Network Security
Homepage:http://www.zerodayinitiative.com/
File Size:3384
Related CVE(s):CVE-2007-2228
Last Modified:Oct 11 00:22:06 2007
MD5 Checksum:8bc0b6bda857bf489e188ca6910a1499

 ///  File Name: dsa-1385-1.txt
Description:
 Debian Security Advisory 1385-1 Sean Larsson discovered that two code paths inside the X Font Server handle integer values insecurely, which may lead to the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:160468
Related CVE(s):CVE-2007-4568
Last Modified:Oct 11 00:14:40 2007
MD5 Checksum:8b40c5f4eb1b84db7866ac70b44eb4e8

 ///  File Name: eleytt-CAvarious.txt
Description:
 Eleytt has discovered various buffer overflow and denial of service vulnerabilities in CA Erwin, G Data Antivirus, CA eTrust, VMware, and CA eTrust ITM.
Author:Michal Bucko
Homepage:http://www.eleytt.com/
File Size:5207
Last Modified:Oct 11 00:04:37 2007
MD5 Checksum:ef00c71b2c72acfd3df7574903ac6026

 ///  File Name: 10.10.07-1.txt
Description:
 iDefense Security Advisory 10.10.07 - Remote exploitation of a format string vulnerability in Kaspersky Lab's Online Scanner virus scanner service could allow an attacker to execute arbitrary code within the security context of the targeted user. iDefense has confirmed the existence of this vulnerability within version 5.0.93.0 of Kaspersky Lab's kavwebscan.dll. Previous versions are suspected to be vulnerable.
Author:Stephen Fewer
Homepage:http://www.idefense.com/
File Size:4265
Related CVE(s):CVE-2007-3675
Last Modified:Oct 11 00:00:07 2007
MD5 Checksum:3e0b4dc5a2a3f864e788a00519e4dc3a

 ///  File Name: dsa-1379-2.txt
Description:
 Debian Security Advisory 1379-2 - An off-by-one error has been identified in the SSL_get_shared_ciphers() routine in OpenSSL, an implementation of Secure Socket Layer cryptographic libraries and utilities. This error could allow an attacker to crash an application making use of OpenSSL's libssl library, or potentially execute arbitrary code in the security context of the user running such an application. This update to DSA 1379 announces the availability of the libssl0.9.6 and libssl0.9.7 compatibility libraries for sarge (oldstable) and etch (stable), respectively.
Homepage:http://www.debian.org/security
File Size:9731
Related CVE(s):CVE-2007-5135
Last Modified:Oct 10 23:55:15 2007
MD5 Checksum:628f0f87d55a87adecd6ac70dc98e253

 ///  File Name: AST-2007-022.txt
Description:
 Asterisk Project Security Advisory - Multiple buffer overflows were discovered due to the use of sprintf in Asterisk's IMAP-specific voicemail code.
Author:Mark Michelson,Russell Bryant
Homepage:http://www.asterisk.org/security
File Size:9348
Last Modified:Oct 10 23:54:34 2007
MD5 Checksum:dbf2beb4f3b1674e28ae247e6dcc91f6

 ///  File Name: cisco-sa-20071010-wcs.txt
Description:
 Cisco Security Advisory - Customers who use the CiscoWorks Wireless LAN Solution Engine (WLSE) may use a conversion utility to convert over to a Cisco Wireless Control System (WCS). This conversion utility creates and uses administrative accounts with default credentials. Because there is no requirement to change these credentials during the conversion process, an attacker may be able to leverage the accounts that have default credentials to take full administrative control of the WCS after the conversion has been completed.
Homepage:http://www.cisco.com/
File Size:12248
Last Modified:Oct 10 23:52:19 2007
MD5 Checksum:88515006ebec8b1fa0285611c0e5dee7

 ///  File Name: IRM-CiscoLPD.txt
Description:
 IRM Security Advisory 024 - The Line Printer Daemon, which provides print server functionality in Cisco IOS, is vulnerable to a software flaw whereby the length of the hostname of the router is not checked before being copied into a fixed size memory buffer.
Homepage:http://www.irmplc.com/
File Size:3146
Last Modified:Oct 10 23:51:07 2007
MD5 Checksum:1acb6217db3199d6a424bbb89c2f2d87

 ///  File Name: sa27073.txt
Description:
 Secunia Security Advisory - Ivan Javier Sanchez has reported some vulnerabilities in MailBee WebMail, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/27073/
File Size:2500
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:57407fa7083a492b77aa30cc214c3e94

 ///  File Name: sa27104.txt
Description:
 Secunia Security Advisory - rPath has issued an update for util-linux. This fixes a vulnerability, which potentially can be exploited by malicious, local users to perform certain actions with escalated privileges.
Homepage:http://secunia.com/advisories/27104/
File Size:2105
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:e51ba435200fb59791fc0d891b1e547d

 ///  File Name: sa27132.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for elinks. This fixes a weakness, which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/27132/
File Size:2702
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:9e43c2599bfd5cce9b18f81156cc7e43

 ///  File Name: sa27136.txt
Description:
 Secunia Security Advisory - A weakness has been reported in Interstage Application Server, which can be exploited by malicious people to disclose system information.
Homepage:http://secunia.com/advisories/27136/
File Size:2663
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:34d0031dc818441549e362b895e253ac

 ///  File Name: sa27137.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Wesnoth, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/27137/
File Size:2226
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:40b34c1f720e42420a2938e6e7dc4141

 ///  File Name: sa27143.txt
Description:
 Secunia Security Advisory - Will Dormann has reported some vulnerabilities in Electronic Arts SnoopyCtrl ActiveX control, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/27143/
File Size:2291
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:c79507f61231c6836991c816889095b4

 ///  File Name: sa27144.txt
Description:
 Secunia Security Advisory - A weakness has been reported in Microsoft Expression Media, which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/27144/
File Size:2165
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:35d21463cb86d9aac73fe6cdef212ee5

 ///  File Name: sa27146.txt
Description:
 Secunia Security Advisory - Avaya has acknowledged a vulnerability in various Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/27146/
File Size:2441
Last Modified:Oct 10 22:52:18 2007
MD5 Checksum:5a9fd8f676e14472ee2ac1bfca6498ec
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice