.:[ packet storm ]:.
                               
the vulnerability safehouse
the vulnerability safehouse

 Section:  .. / 0607-advisories  /

Page 3 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 50 - 75 of 526
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: MDKSA-2006-122.txt
Description:
 Mandriva Linux Security Advisory MDKSA-2006-122 - Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function. One instance in gd_io_dp.c does not appear to be corrected in the embedded copy of GD used in php to build the php-gd package.
Homepage:http://www.mandriva.com/security/advisories
File Size:11874
Last Modified:Jul 13 19:58:35 2006
MD5 Checksum:44950784740d7cb85cc36550b8f02114

 ///  File Name: dsa-1105-1.txt
Description:
 Debian Security Advisory 1105-1 - Federico L. Bossi Bonin discovered a buffer overflow in the HTTP Plugin in xine-lib, the xine video/media player library, that could allow a remote attacker to cause a denial of service.
Homepage:http://www.debian.org/security
File Size:11439
Related CVE(s):CVE-2006-2802
Last Modified:Jul 9 08:30:36 2006
MD5 Checksum:62b2ab8347abf79b44050e61e860a55d

 ///  File Name: cisco-sa-20060712-cucm.txt
Description:
 Cisco Security Advisory - Cisco Unified CallManager (CUCM) 5.0 has Command Line Interface (CLI) and Session Initiation Protocol (SIP) related vulnerabilities. There are potential privilege escalation vulnerabilities in the CLI which may allow an authenticated administrator to access the base operating system with root privileges. There is also a buffer overflow vulnerability in the processing of hostnames contained in a SIP request which may result in arbitrary code execution or cause a denial of service. These vulnerabilities only affect Cisco Unified CallManager 5.0.
Homepage:http://www.cisco.com/
File Size:11345
Last Modified:Jul 13 18:35:54 2006
MD5 Checksum:8754493d856ce98802d07cfa9b3fadb4

 ///  File Name: cisco-sa-20060712-ips.txt
Description:
 Cisco Security Advisory - Cisco Intrusion Prevention System (IPS) software version 5.1 is vulnerable to a denial of service condition caused by a malformed packet, which may result in an IPS device becoming inaccessible remotely or via the console and fail to process packets. A power reset is required to recover the IPS device. There are no workarounds for this vulnerability. Cisco Intrusion Prevention System 42xx appliances running IPS software versions 5.1(1), 5.1(1a), 5.1(1b), 5.1(1c), 5.1(1d), 5.1(1e) or 5.1(p1) are affected.
Homepage:http://www.cisco.com/
File Size:11242
Last Modified:Jul 13 18:39:58 2006
MD5 Checksum:a9474c89afcb88f698fff55bcc8fc6b0

 ///  File Name: USN-322-1.txt
Description:
 Ubuntu Security Notice 322-1 - A Denial of Service vulnerability has been reported in the replaceChild() method in KDE's DOM handler. A malicious remote web page could exploit this to cause Konqueror to crash.
Homepage:http://security.ubuntu.com/
File Size:10957
Related CVE(s):CVE-2006-3472
Last Modified:Jul 26 03:55:02 2006
MD5 Checksum:cbcb5f9dd3a571e2864e118d695c594d

 ///  File Name: dsa-1123-1.txt
Description:
 Debian Security Advisory 1123-1 - Luigi Auriemma discovered that DUMB, a tracker music library, performs insufficient sanitising of values parsed from IT music files, which might lead to a buffer overflow and execution of arbitrary code if manipulated files are read.
Homepage:http://www.debian.org/security
File Size:10638
Related CVE(s):CVE-2006-3668
Last Modified:Jul 26 03:58:18 2006
MD5 Checksum:9c4e3f208c8bfa1ae909c1864681427c

 ///  File Name: sa20942.txt
Description:
 Secunia Security Advisory - Debian has issued an update for xine-lib. This fixes a weakness, which can be exploited by malicious people to crash certain applications on a user's system.
Homepage:http://secunia.com/advisories/20942/
File Size:10620
Last Modified:Jul 8 05:35:52 2006
MD5 Checksum:cc4f2ede3efb04ef85aaeb14bfaab0bc

 ///  File Name: dsa-1126-1.txt
Description:
 Debian Security Advisory 1126-1 - A problem has been discovered in the IAX2 channel driver of Asterisk, an Open Source Private Branch Exchange and telephony toolkit, which may allow a remote to cause a crash of the Asterisk server.
Homepage:http://www.debian.org/security
File Size:10231
Related CVE(s):CVE-2006-2898
Last Modified:Jul 27 23:20:46 2006
MD5 Checksum:6c717c066efa96be031027b621f9de7b

 ///  File Name: sa21184.txt
Description:
 Secunia Security Advisory - Debian has issued an update for libdumb. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/21184/
File Size:9865
Last Modified:Jul 26 01:33:34 2006
MD5 Checksum:8b1813e94a2702020d5337f4c44cebad

 ///  File Name: sa21222.txt
Description:
 Secunia Security Advisory - Debian has issued an update for asterisk. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/21222/
File Size:9626
Last Modified:Jul 27 21:04:26 2006
MD5 Checksum:5e0bcb92087303d0e124689b0cb677fa

 ///  File Name: USN-327-1.txt
Description:
 Ubuntu Security Notice USN-327-1 - A multitude of javascript related vulnerabilities have been patched in Firefox.
Homepage:http://security.ubuntu.com/
File Size:9453
Related CVE(s):CVE-2006-3113, CVE-2006-3677, CVE-2006-3801, CVE-2006-3802, CVE-2006-3803, CVE-2006-3805, CVE-2006-3806, CVE-2006-3807, CVE-2006-3808, CVE-2006-3809, CVE-2006-3810, CVE-2006-3811, CVE-2006-3812
Last Modified:Jul 27 23:34:15 2006
MD5 Checksum:7e801bfa79b1c6235c2c40b735e4b950

 ///  File Name: sa21176.txt
Description:
 Secunia Security Advisory - Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and HTTP response smuggling attacks, and potentially compromise a user's system.
Homepage:http://secunia.com/advisories/21176/
File Size:9362
Last Modified:Jul 26 01:33:34 2006
MD5 Checksum:a6c1d4faef30c04b69c8c58c4341cb5f

 ///  File Name: dsa-1115-1.txt
Description:
 Debian Security Advisory 1115-1 - Evgeny Legerov discovered that gnupg, the GNU privacy guard, a free PGP replacement contains an integer overflow that can cause a segmentation fault and possibly overwrite memory via a large user ID strings.
Homepage:http://www.debian.org/security
File Size:8799
Related CVE(s):CVE-2006-3082
Last Modified:Jul 24 00:54:46 2006
MD5 Checksum:361a5b0d627dcc358b662ca68a8deb7f

 ///  File Name: sa21023.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for libmms and xine-lib. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
Homepage:http://secunia.com/advisories/21023/
File Size:8701
Last Modified:Jul 13 13:58:07 2006
MD5 Checksum:c4a30bf6d3771d3d8f000a57a23f8f0b

 ///  File Name: phpbb3.xsql.txt
Description:
 phpbb 3.x sql injection exploit. Works regardless of php.ini settings but you need a global moderator account with "simple moderator" role.
Author:rgod
Homepage:http://retrogod.altervista.org
File Size:8697
Last Modified:Jul 13 20:16:26 2006
MD5 Checksum:f33993491d41b41faf641349d19593f5

 ///  File Name: NOVELL-SA-2006-001.txt
Description:
 Novell Security Announcement - A security vulnerability exists in the GroupWise Windows Client API that can allow random programmatic access to non-authorized email within the same authenticated post office. Affected Products: Novell GroupWise 5.x, Novell GroupWise 6.0, Novell GroupWise 6.5, Novell GroupWise 7, Novell GroupWise 32-bit Client.
Homepage:http://www.novell.com/
File Size:8532
Related CVE(s):CVE-2006-3268
Last Modified:Jul 2 04:05:02 2006
MD5 Checksum:529fa76eb5ef7601e3dfb33158f6c910

 ///  File Name: USN-315-1.txt
Description:
 Ubuntu Security Notice 315-1 - Matthias Hopf discovered several buffer overflows in libmms. By tricking a user into opening a specially crafted remote multimedia stream with an application using libmms, a remote attacker could exploit this to execute arbitrary code with the user's privileges. The Xine library contains an embedded copy of libmms, and thus needs the same security update.
Homepage:http://security.ubuntu.com/
File Size:8400
Last Modified:Jul 13 18:32:46 2006
MD5 Checksum:ea8e5f02d4c5cee972a184059b43c3fd

 ///  File Name: TA06-192A.txt
Description:
 Technical Cyber Security Alert TA06-192A - Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, IIS, and Office. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.
Homepage:http://www.us-cert.gov/
File Size:8372
Related CVE(s):CVE-2006-0026, CVE-2006-1314, CVE-2006-2372, CVE-2006-3059, CVE-2006-1316, CVE-2006-1540, CVE-2006-2389, CVE-2006-0033, CVE-2006-0007
Last Modified:Jul 12 05:29:58 2006
MD5 Checksum:f08886b6a1e7df8cb305253314b27751

 ///  File Name: MDKSA-2006-116.txt
Description:
 Mandriva Linux Security Advisory MDKSA-2006-116 - A ridiculous number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.
Homepage:http://www.mandriva.com/security/advisories
File Size:8263
Related CVE(s):CVE-2005-3359, CVE-2005-3784, CVE-2005-3858, CVE-2005-4618, CVE-2006-0096, CVE-2006-0555, CVE-2006-1242, CVE-2006-1525, CVE-2006-1528, CVE-2006-1855, CVE-2006-1856, CVE-2006-2071, CVE-2006-2271, CVE-2006-2272, CVE-2006-2444
Last Modified:Jul 9 07:26:05 2006
MD5 Checksum:12b37eb97cf938d9167829010d2fbdb8

 ///  File Name: sa21137.txt
Description:
 Secunia Security Advisory - Debian has issued an update for gnupg2. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/21137/
File Size:8199
Last Modified:Jul 23 14:30:55 2006
MD5 Checksum:41f347e190a7a3e9d612559637a7fb3e

 ///  File Name: SSRT061201.txt
Description:
 HP Security Bulletin - Oracle(R) has issued a Critical Patch Update which contains solutions for a number of potential security vulnerabilities. These vulnerabilities may be exploited locally or remotely to compromise the confidentiality, availability or integrity of Oracle for OpenView (OfO).
Author:HP
Homepage:http://www.hp.com
File Size:8082
Last Modified:Jul 24 00:34:19 2006
MD5 Checksum:ae5d50e42dc703f6210c72c32d054222

 ///  File Name: MDKSA-2006-123.txt
Description:
 Mandriva Linux Security Advisory MDKSA-2006-123: A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel
Homepage:http://www.mandriva.com/security/advisories
File Size:8022
Last Modified:Jul 13 19:57:46 2006
MD5 Checksum:20c94108755abde478578942dc6596f3

 ///  File Name: adplugbof.txt
Description:
 AdPlug versions 2.0 and below and suffer from multiple heap and buffer overflows. Also affected are CVS versions 04 and below.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:adplugbof.c
File Size:7836
Last Modified:Jul 9 08:06:09 2006
MD5 Checksum:0f1925d6ce66efbef40d573bac333157

 ///  File Name: msExcel-again.txt
Description:
 A remote code execution vulnerability exists in Excel using a FNGROUPCOUNT value. An attacker could exploit the vulnerability by constructing a specially crafted Excel file that could allow remote code execution. Affected products include Microsoft Office 2000 SP3, XP SP3, 2003 SP1/SP2, Microsoft Works Suites, Microsoft Office X for Mac, Microsoft Office 2004 for Mac.
Author:OXYin
Homepage:http://www.nevisnetworks.com/
File Size:7721
Related CVE(s):CVE-2006-1308, CVE-2006-0031
Last Modified:Jul 12 05:40:19 2006
MD5 Checksum:cb95ae0e9fc3f4a4a62acdbb9edfe29b

 ///  File Name: dsa-1107-1.txt
Description:
 Debian Security Advisory 1107-1 - Evgeny Legerov discovered that gnupg, the GNU privacy guard, a free PGP replacement contains an integer overflow that can cause a segmentation fault and possibly overwrite memory via a large user ID strings.
Homepage:http://www.debian.org/security
File Size:7518
Related CVE(s):CVE-2006-3082
Last Modified:Jul 12 04:49:45 2006
MD5 Checksum:34fee931bf41d912c5985a559e6d489c
 

 ///  Last 10 Files
  1. :· ZDI-08-076.txt
  2. :· ZDI-08-075.txt
  3. :· toursmanager-blindsql.txt
  4. :· phprsgal-sql.txt
  5. :· MDVSA-2008-233.txt
  6. :· java2-malware.pdf
  7. :· natterchat-sql.txt
  8. :· php526-bypass.txt
  9. :· phpfusion7001-sql.txt
  10. :· social-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· ZDI-08-076.txt
  2. :· ZDI-08-075.txt
  3. :· MDVSA-2008-233.txt
  4. :· SSRT080059.txt
  5. :· MDVSA-2008-220-1.txt
  6. :· MDVSA-2008-232.txt
  7. :· USN-674-1.txt
  8. :· dsa-1667-1.txt
  9. :· PR08-09.txt
  10. :· secunia-streamripper.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· toursmanager-blindsql.txt
  2. :· phprsgal-sql.txt
  3. :· natterchat-sql.txt
  4. :· php526-bypass.txt
  5. :· phpfusion7001-sql.txt
  6. :· social-sql.txt
  7. :· vbulletin-xssxsrf.txt
  8. :· askpert-sql.txt
  9. :· backlinkspider-sql.txt
  10. :· exodus-injection.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pysumpas-0.2.0.tar.gz
  2. :· framework-3.2.tar.gz
  3. :· tor.uclibc.i686.20081115.iso
  4. :· RFIDIOt-Windows-0.1u.zip
  5. :· RFIDIOt-0.1u.tgz
  6. :· dps-v1.5.tar.gz
  7. :· smbrelay3.zip
  8. :· mptrey.tar.gz
  9. :· dotnetsploitsrc-1.0.zip
  10. :· MultiInjectorV0.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice