.:[ packet storm ]:.
                             
beyond paranoid
beyond paranoid

 Section:  .. / 0801-advisories  /

Page 6 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 125 - 150 of 655
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: flash-xss.txt
Description:
 Critical vulnerabilities exist in a large number of widely used web authoring tools that automatically generate Shockwave Flash (SWF) files, such as Adobe Dreamweaver, Adobe Acrobat Connect (formerly Macromedia Breeze), InfoSoft FusionCharts, and Techsmith Camtasia. The flaws render websites that host these generated SWF files vulnerable to cross site scripting.
Author:Rich Cannings
File Size:5605
Last Modified:Jan 2 14:42:51 2008
MD5 Checksum:c2bcc38e7e78e0a5c5cb194a32db4fa0

 ///  File Name: sa28585.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for hsqldb. This fixes a vulnerability, which has unknown impacts.
Homepage:http://secunia.com/advisories/28585/
File Size:5562
Last Modified:Jan 25 18:58:49 2008
MD5 Checksum:4ef462f7b27f41fa591dc8805384eec1

 ///  File Name: MDVSA-2008-019.txt
Description:
 Mandriva Linux Security Advisory - Peter Valchev discovered that Cairo did not correctly decode PNG image data. By tricking a user or automated system into processing a specially crafted PNG with Cairo, a remote attacker could execute arbitrary code with the privileges of the user opening the file.
Homepage:http://www.mandriva.com/security/
File Size:5474
Related CVE(s):CVE-2007-5503
Last Modified:Jan 22 10:13:03 2008
MD5 Checksum:db81aa6bb531e1ab168e885f000ec566

 ///  File Name: MDVSA-2008-005.txt
Description:
 Mandriva Linux Security Advisory - An infinite recursion flaw was found in the way that libexif parses Exif image tags. A carefully crafted Exif image file opened by an application linked against libexif could cause the application to crash. An integer overflow flaw was also found in how libexif parses Exif image tags. A carefully crafted Exif image file opened by an application linked against libexif could cause the application to crash or execute arbitrary code with the privileges of the user executing the application.
Homepage:http://www.mandriva.com/security/
File Size:5429
Related CVE(s):CVE-2007-6351, CVE-2007-6352
Last Modified:Jan 10 03:58:29 2008
MD5 Checksum:568437399ebadc129149c3644322a1d7

 ///  File Name: captcha-digest.txt
Description:
 This is a digest of vulnerabilities in multiple CAPTCHA systems. All vulnerabilities were reported by MustLive (websecurity.com.ua) during "The Month of Bugs in CAPTCHA".
Homepage:http://securityvulns.com/
File Size:5404
Last Modified:Jan 3 18:10:06 2008
MD5 Checksum:fa91a54b96e2127e77e0e4dbd02ab727

 ///  File Name: MDVSA-2008-002.txt
Description:
 Mandriva Linux Security Advisory - The cache update reply processing functionality in Squid 2.x before 2.6.STABLE17, and Squid 3.0, allows remote attackers to cause a denial of service (crash) via unknown vectors related to HTTP headers.
Homepage:http://www.mandriva.com/security/
File Size:5329
Related CVE(s):CVE-2007-6239
Last Modified:Jan 4 20:33:31 2008
MD5 Checksum:32f40189c0be33a748292a2b1966f929

 ///  File Name: dsa-1475-1.txt
Description:
 Debian Security Advisory 1475-1 - Jose Ramon Palanco discovered th a cross site scripting vulnerability in GForge, a collaborative development tool, allows remote attackers to inject arbitrary web script or HTML in the context of a logged in user's session.
Homepage:http://www.debian.org/security
File Size:5321
Related CVE(s):CVE-2007-0176
Last Modified:Jan 27 22:02:52 2008
MD5 Checksum:5154f4b406cba7657846a829fa882a0f

 ///  File Name: dsa-1464-1.txt
Description:
 Debian Security Advisory 1464-1 - Oriol Carreras discovered that syslog-ng, a next generation logging daemon can be tricked into dereferencing a NULL pointer through malformed timestamps, which can lead to denial of service and the disguise of an subsequent attack, which would otherwise be logged.
Homepage:http://www.debian.org/security
File Size:5160
Related CVE(s):CVE-2007-6437
Last Modified:Jan 16 00:53:14 2008
MD5 Checksum:d677d82ca889737546048691665795cc

 ///  File Name: crypt-insecure.txt
Description:
 LSrunasE version 1.0 and Supercrypt version 1.0 suffer from a vulnerability where an insecure use of RC4 is applied.
Author:Daniel Roethlisberger
Homepage:http://www.csnc.ch/
File Size:5090
Related CVE(s):CVE-2007-6340
Last Modified:Jan 29 22:17:47 2008
MD5 Checksum:5e9a0757e26f6544f87968f7217c4a39

 ///  File Name: MDVSA-2008-007.txt
Description:
 Mandriva Linux Security Advisory - MadWifi prior to 0.9.3.3 allowed remote attackers to cause a denial of service (panic) via a beacon frame with a large length value in the extended supported rates (xrates) element, which would trigger an assertion error.
Homepage:http://www.mandriva.com/security/
File Size:5012
Related CVE(s):CVE-2007-5448
Last Modified:Jan 11 13:31:46 2008
MD5 Checksum:b458d098d5fd5053c1a84c9262e963ed

 ///  File Name: sa28376.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/28376/
File Size:4999
Last Modified:Jan 11 12:37:52 2008
MD5 Checksum:f10c4e0b9563c3e8a2616e49b18d678c

 ///  File Name: glsa-200801-09.txt
Description:
 Gentoo Linux Security Advisory GLSA 200801-09 - Multiple vulnerabilities have been discovered in the X.Org X server and Xfont library, allowing for a local privilege escalation and arbitrary code execution. Versions less than 1.3.0.0-r4 are affected.
Homepage:http://security.gentoo.org
File Size:4966
Related CVE(s):CVE-2007-5760, CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006
Last Modified:Jan 21 20:38:38 2008
MD5 Checksum:469bf13fc59eb490ddbae0d177ac6388

 ///  File Name: AID-122207.txt
Description:
 Aruba Networks Security Advisory - A user authentication vulnerability was discovered during standard bug reporting procedures in the Aruba Mobility Controller. This vulnerability affects customers using versions at or below 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS using LDAP authentication for management and VPN (PAP-L2TP) users.
Homepage:http://www.arubanetworks.com/
File Size:4959
Last Modified:Jan 5 18:58:39 2008
MD5 Checksum:c55a0c5be2b25664bc1fdad2974b316e

 ///  File Name: glsa-200801-07-02.txt
Description:
 Gentoo Linux Security Advisory GLSA 200801-07:02 - Multiple vulnerabilities have been identified, the worst of which allow arbitrary code execution on a user's system via a malicious Flash file. Versions less than 9.0.115.0 are affected.
Homepage:http://security.gentoo.org/
File Size:4904
Related CVE(s):CVE-2007-4324, CVE-2007-4768, CVE-2007-5275, CVE-2007-6242, CVE-2007-6243, CVE-2007-6244, CVE-2007-6245, CVE-2007-6246
Last Modified:Jan 21 20:27:03 2008
MD5 Checksum:360bf169aaa581ac0e1627f7ffea032c

 ///  File Name: MDVSA-2008-017.txt
Description:
 Mandriva Linux Security Advisory - MySQL 5.0.x did not update the DEFINER value of a view when the view is altered, which allows remote authenticated users to gain privileges via a sequence of statements including a CREATE SQL SECURITY DEFINER VIEW statement and an ALTER VIEW statement. The federated engine in MySQL 5.0.x, when performing a certain SHOW TABLE STATUS query, did not properly handle a response with a small number of columns, which could allow a remote MySQL server to cause a denial of service (federated handler crash and daemon crash) via a response that lacks the minimum required number of columns.
Homepage:http://www.mandriva.com/security/
File Size:4903
Related CVE(s):CVE-2007-6303, CVE-2007-6304
Last Modified:Jan 21 20:24:53 2008
MD5 Checksum:5460eb92252d60ca72b592bbd519f179

 ///  File Name: sa28541.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for e2fsprogs. This fixes a some vulnerabilities, which potentially can be exploited by malicious people to compromise an application using the library.
Homepage:http://secunia.com/advisories/28541/
File Size:4881
Last Modified:Jan 22 10:11:41 2008
MD5 Checksum:c270f8e7e8727aff14ea682eaf2c4ab1

 ///  File Name: php525-curlbypass.txt
Description:
 PHP versions 5.2.5 and 5.2.4 suffer from a cURL related safe_mode bypass vulnerability.
Author:Maksymilian Arciemowicz
Homepage:http://securityreason.com/
File Size:4864
Related CVE(s):CVE-2007-4850
Last Modified:Jan 23 23:00:37 2008
MD5 Checksum:9f0eaac366a2442411000be5a1a87977

 ///  File Name: MDVSA-2008-011.txt
Description:
 Mandriva Linux Security Advisory - rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options.
Homepage:http://www.mandriva.com/security/
File Size:4845
Related CVE(s):CVE-2007-6199, CVE-2007-6200
Last Modified:Jan 11 20:48:55 2008
MD5 Checksum:6f2cfd48534e199dce8883b43461836d

 ///  File Name: sa28598.txt
Description:
 Secunia Security Advisory - Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/28598/
File Size:4839
Last Modified:Jan 29 13:01:03 2008
MD5 Checksum:c0d71a45b87e01175c6bd8b69da08ecb

 ///  File Name: sa28609.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in IBM AIX, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain files, or gain escalated privileges.
Homepage:http://secunia.com/advisories/28609/
File Size:4798
Last Modified:Jan 25 02:43:48 2008
MD5 Checksum:f130717db67ade62fc5aa10e5140ce04

 ///  File Name: dsa-1443-1.txt
Description:
 Debian Security Advisory 1443-1 - It was discovered that several buffer overflows in tcpreen, a tool for monitoring a TCP connection may lead to denial of service.
Homepage:http://www.debian.org/security
File Size:4794
Related CVE(s):CVE-2007-6562
Last Modified:Jan 3 18:18:01 2008
MD5 Checksum:33e26018b52eb44936b573395fdbc433

 ///  File Name: sa28470.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/28470/
File Size:4768
Last Modified:Jan 14 21:34:40 2008
MD5 Checksum:4e582d8cb94c7a6869c0c2a4f2a0b5fd

 ///  File Name: sa28532.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in X.org X11, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
Homepage:http://secunia.com/advisories/28532/
File Size:4744
Last Modified:Jan 21 19:58:06 2008
MD5 Checksum:d81ecfb4b20bbc0f1ab07198145758e4

 ///  File Name: yasslick.txt
Description:
 yaSSL versions 1.75 and below suffer from invalid memory access and buffer overflow vulnerabilities.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:yasslick.zip
File Size:4738
Last Modified:Jan 4 20:22:28 2008
MD5 Checksum:ca567cce4d6d28609d58393922207d08

 ///  File Name: MDVSA-2008-025.txt
Description:
 Mandriva Linux Security Advisory - Multiple vulnerabilities including file verification, memory corruption, information disclosure, integer overflows, and an input validation flaw were discovered in x11-server-xgl.
Homepage:http://www.mandriva.com/security/
File Size:4732
Related CVE(s):CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2007-5760
Last Modified:Jan 25 03:36:24 2008
MD5 Checksum:022b4504518714040f6047945c753e42
 

 ///  Last 10 Files
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citectodbc-fivews.txt
  5. :· citect_scada_odbc.rb.txt
  6. :· flockweb-dos.txt
  7. :· google-chrome-dos4.txt
  8. :· google-download2.txt
  9. :· PLSA-2008-41.txt
  10. :· PLSA-2008-40.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· PLSA-2008-41.txt
  2. :· PLSA-2008-40.txt
  3. :· PLSA-2008-39.txt
  4. :· PLSA-2008-38.txt
  5. :· PLSA-2008-37.txt
  6. :· MDVSA-2008-188.txt
  7. :· glsa-200809-05.txt
  8. :· PLSA-2008-36.txt
  9. :· microworld-insecure.txt
  10. :· SSRT080119.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citect_scada_odbc.rb.txt
  5. :· flockweb-dos.txt
  6. :· google-chrome-dos4.txt
  7. :· google-download2.txt
  8. :· webcmsportal-blindsql.txt
  9. :· esfaq-sql.txt
  10. :· vastal-itechcosmetics.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· clamav-0.94.tar.gz
  2. :· distack-1.1.0-dev.tar.gz
  3. :· samhain-2.4.6.tar.gz
  4. :· sqlmap-0.6.tar.gz
  5. :· psbot.py.txt
  6. :· mimedefang-2.65.tar.gz
  7. :· advchk-2.11.tar.bz2
  8. :· kisgearth-0.01f.tar.bz2
  9. :· lynis-1.2.0.tar.gz
  10. :· fwknop-1.9.7.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· citectodbc-fivews.txt
  2. :· freebsd-revcon.txt
  3. :· insecurityoverview-samsung.pdf
  4. :· xcon2008-cfp.txt
  5. :· aslr-bypass.txt
  6. :· alphanumeric-shellcode.txt
  7. :· imagebase-shellcode.txt
  8. :· mysql-injection-newbies.txt
  9. :· draft-gont-opsec-ip-security-01.txt
  10. :· draft-ietf-tsvwg-port-randomization-02.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice