.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / 0612-advisories  /

Page 13 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 300 - 325 of 546
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: dlink-arp.txt
Description:
 The D-LINK DWL-2000AP+ with firmware version 2.11 is prone to two remote denial of service vulnerabilities because it fails to handle arp flooding.
Author:poplix
File Size:1221
Last Modified:Dec 12 16:29:29 2006
MD5 Checksum:4d569a21008153d7ab5140e0519efb08

 ///  File Name: sa23318.txt
Description:
 Secunia Security Advisory - Mr_KaLiMaN has discovered several vulnerabilities in AnnonceScriptHP, which can be exploited by malicious people to disclose sensitive data, conduct SQL injection and conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/23318/
File Size:3408
Last Modified:Dec 12 16:19:53 2006
MD5 Checksum:c18944d3d7e92b73838329ac727a3513

 ///  File Name: sa23316.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Bluetrait, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/23316/
File Size:2439
Last Modified:Dec 12 16:19:53 2006
MD5 Checksum:cab72870ed6c063d0f568677e661b684

 ///  File Name: sa23309.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for emul-linux-x86-baselibs. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/23309/
File Size:2229
Last Modified:Dec 12 16:19:53 2006
MD5 Checksum:ee3fc64c37aec9613fff4f4290bb8783

 ///  File Name: sa23300.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for kdegraphics. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/23300/
File Size:8235
Last Modified:Dec 12 16:19:53 2006
MD5 Checksum:20641f50daf1aa316aa4f07b74ae2d57

 ///  File Name: sa23290.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for gnupg. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/23290/
File Size:3603
Last Modified:Dec 12 16:19:53 2006
MD5 Checksum:99c2b1c2f905a1b63d493c351bbd4704

 ///  File Name: sa23342.txt
Description:
 Secunia Security Advisory - ajann and double0 have discovered two vulnerabilities in PhpLeague, which can be exploited by malicious people to compromise vulnerable systems.
Homepage:http://secunia.com/advisories/23342/
File Size:2404
Last Modified:Dec 11 18:31:52 2006
MD5 Checksum:aad7e9a8e111874d0a473beb80fd31ff

 ///  File Name: sa23319.txt
Description:
 Secunia Security Advisory - Mr_KaLiMaN has discovered a vulnerability in Messageriescripthp, which can be exploited by malicious users to conduct SQL injection attacks and malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/23319/
File Size:2920
Last Modified:Dec 11 18:01:13 2006
MD5 Checksum:09553aa9376910815b1a49d9f088db02

 ///  File Name: sa23295.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in the Help Tip module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/23295/
File Size:2693
Last Modified:Dec 11 17:58:06 2006
MD5 Checksum:a22abea63b2f8fdf0dbefdfc7df27507

 ///  File Name: sa23302.txt
Description:
 Secunia Security Advisory - Aria-Security Team has reported a vulnerability in cPanel, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/23302/
File Size:2417
Last Modified:Dec 11 17:45:22 2006
MD5 Checksum:5ea11942c64b3d824af9693fca65bc32

 ///  File Name: sa22652.txt
Description:
 Secunia Security Advisory - David Ferguson has reported a vulnerability in IBM WebSphere Host On-Demand, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/22652/
File Size:2534
Last Modified:Dec 11 17:45:11 2006
MD5 Checksum:9362f465177052b8d08f2afc8413bad9

 ///  File Name: secunia-aolcddb.txt
Description:
 Secunia Research has discovered a vulnerability in AOL, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the "CDDBControlAOL.CDDBAOLControl" ActiveX control (cddbcontrol.dll) when processing "ClientId" arguments passed to the "SetClientInfo()" method. This can be exploited to cause a stack-based buffer overflow by passing an overly long string (more than 256 bytes). Successful exploitation allows execution of arbitrary code when a user visits a malicious website with Internet Explorer. In order to exploit the vulnerability, a certain registry value has to be set to "1111". This is not set by default, but can be set up automatically by first instantiating the bundled CerberusCDPlayer ActiveX control. Affected software includes America Online 7.0 revision 4114.563, AOL 8.0 revision 4129.230, and AOL 9.0 Security Edition revision 4156.910.
Author:Carsten Eiram
Homepage:http://secunia.com/
File Size:5773
Last Modified:Dec 11 17:37:38 2006
MD5 Checksum:f0bb98d80dc9504d3219b2129b854583

 ///  File Name: secunia-meimap.txt
Description:
 Secunia Research has discovered a vulnerability in MailEnable Professional Edition version 2.35, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error when processing data sent to the IMAP server. This can be exploited to cause a stack-based buffer overflow by first sending a command in the "Not Authenticated" state (e.g. "login" command) with a specially crafted parameter to make the IMAP service wait for more incoming data and then sending an overly long string (greater than 512 bytes).
Author:JJ Reyes
Homepage:http://secunia.com/
File Size:4724
Related CVE(s):CVE-2006-6423
Last Modified:Dec 11 17:36:11 2006
MD5 Checksum:034b77fd6f72cb63d950d230552e206c

 ///  File Name: dada-shared.txt
Description:
 Due to a poor regular expression in FilesMatch in DadaIMC, arbitrary files can be uploaded and executed as PHP code.
Author:Hagbard Celine
File Size:1769
Last Modified:Dec 11 17:24:10 2006
MD5 Checksum:eb64bc954fa9e25b1e44de0aa989a3b1

 ///  File Name: dsa-1233-1.txt
Description:
 Debian Security Advisory 1233-1 - Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:31351
Related CVE(s):CVE-2006-3741, CVE-2006-4538, CVE-2006-4813, CVE-2006-4997, CVE-2006-5174, CVE-2006-5619, CVE-2006-5649, CVE-2006-5751, CVE-2006-5871
Last Modified:Dec 11 17:07:08 2006
MD5 Checksum:8f988aac8d8bf579522d33ce409ea8ca

 ///  File Name: glsa-200612-03-02.txt
Description:
 Gentoo Linux Security Advisory - The Resolution proposed in the original version of this Security Advisory did not correctly address the issue for users who also have GnuPG 1.9 installed.
Homepage:http://security.gentoo.org/
File Size:1701
Last Modified:Dec 11 17:05:40 2006
MD5 Checksum:6995281a49ecfffae5af4539e961d930

 ///  File Name: glsa-200612-09.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-09 - Laurent Butti, Jerome Raznieski and Julien Tinnes reported a buffer overflow in the encode_ie() and the giwscan_cb() functions from ieee80211_wireless.c. Versions less than 0.9.2.1 are affected.
Homepage:http://security.gentoo.org
File Size:2690
Last Modified:Dec 11 17:04:18 2006
MD5 Checksum:f511caf375efd670a8493c9904d0f281

 ///  File Name: glsa-200612-08.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-08 - The SeaMonkey project is vulnerable to arbitrary JavaScript bytecode execution and arbitrary code execution. Versions less than 1.0.6 are affected.
Homepage:http://security.gentoo.org
File Size:3050
Last Modified:Dec 11 17:03:46 2006
MD5 Checksum:79bf640cedc37859e97af278488a5fc5

 ///  File Name: glsa-200612-07.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-07 - Mozilla Firefox improperly handles Script objects while they are being executed. Mozilla Firefox has also been found to be vulnerable to various possible buffer overflows. Lastly, the binary release of Mozilla Firefox is vulnerable to a low exponent RSA signature forgery issue because it is bundled with a vulnerable version of NSS. Versions less than 1.5.0.8 are affected.
Homepage:http://security.gentoo.org
File Size:3868
Last Modified:Dec 11 17:03:24 2006
MD5 Checksum:3f9acfb4aa6a0ad36a57c6f5a9429778

 ///  File Name: glsa-200612-06.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-06 - It has been identified that Mozilla Thunderbird improperly handles Script objects while they are being executed, allowing them to be modified during execution. JavaScript is disabled in Mozilla Thunderbird by default. Mozilla Thunderbird has also been found to be vulnerable to various potential buffer overflows. Lastly, the binary release of Mozilla Thunderbird is vulnerable to a low exponent RSA signature forgery issue because it is bundled with a vulnerable version of NSS. Versions less than 1.5.0.8 are affected.
Homepage:http://security.gentoo.org
File Size:4529
Last Modified:Dec 11 17:02:55 2006
MD5 Checksum:808b73549b7a666b387a1d0f5cc207bf

 ///  File Name: glsa-200612-05.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-05 - Kees Cook of Ubuntu discovered that 'KLaola::readBigBlockDepot()' in klaola.cc fills 'num_of_bbd_blocks' while reading a .ppt (PowerPoint) file without proper sanitizing, resulting in an integer overflow subsequently overwriting the heap with parts of the file being read. Versions less than 1.5.0 are affected.
Homepage:http://security.gentoo.org
File Size:2805
Last Modified:Dec 11 17:02:25 2006
MD5 Checksum:94307aea25f2bec6f3956f87723fb498

 ///  File Name: glsa-200612-04.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-04 - Luigi Auriemma has reported various boundary errors in load_it.cpp and a boundary error in the CSoundFile::ReadSample() function in sndfile.cpp. Versions less than 0.8-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2595
Last Modified:Dec 11 17:01:45 2006
MD5 Checksum:7e9c94e7aea202cabeb289fb96e8540f

 ///  File Name: glsa-200612-03.txt
Description:
 Gentoo Linux Security Advisory GLSA 200612-03 - Hugh Warrington has reported a boundary error in GnuPG, in the ask_outfile_name() function from openfile.c: the make_printable_string() function could return a string longer than expected. Additionally, Tavis Ormandy of the Gentoo Security Team reported a design error in which a function pointer can be incorrectly dereferenced. Versions less than 1.4.6 are affected.
Homepage:http://security.gentoo.org
File Size:3226
Last Modified:Dec 11 17:00:01 2006
MD5 Checksum:9435c6adca0c17d1867da56d22f28d4c

 ///  File Name: dsa-1232-1.txt
Description:
 Debian Security Advisory 1232-1 - Stephen Gran discovered that malformed base64-encoded MIME attachments can lead to denial of service through a null pointer dereference.
Homepage:http://www.debian.org/security
File Size:15316
Related CVE(s):CVE-2006-5874
Last Modified:Dec 11 16:59:17 2006
MD5 Checksum:fa048a8141cc5acb96ca7f6c7ed03a7c

 ///  File Name: dsa-1231-1.txt
Description:
 Debian Security Advisory 1231-1 - Several remote vulnerabilities have been discovered in the GNU privacy, a free PGP replacement, which may lead to the execution of arbitrary code. Werner Koch discovered that a buffer overflow in a sanitizing function may lead to execution of arbitrary code when running gnupg interactively. Tavis Ormandy discovered that parsing a carefully crafted OpenPGP packet may lead to the execution of arbitrary code, as a function pointer of an internal structure may be controlled through the decryption routines.
Homepage:http://www.debian.org/security
File Size:5438
Related CVE(s):CVE-2006-6169, CVE-2006-6235
Last Modified:Dec 11 16:58:36 2006
MD5 Checksum:c1b599ab141f00a49f626f8ccaf65998
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice