.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / 0709-advisories  /

Page 7 of 20
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 >> Files 150 - 175 of 493
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: 09.17.07-1.txt
Description:
 iDefense Security Advisory 09.17.07 - Remote exploitation of multiple integer overflow vulnerabilities within OpenOffice, as included in various vendors' operating system distributions, allows attackers to execute arbitrary code. iDefense has confirmed the existence of these vulnerabilities in OpenOffice version 2.0.4. All versions prior to version 2.3 are suspected to be vulnerable.
Homepage:http://www.idefense.com/
File Size:3512
Related CVE(s):CVE-2007-2834
Last Modified:Sep 18 13:04:29 2007
MD5 Checksum:91e546861a6e34a6cb55455a8a35ff7c

 ///  File Name: dsa-1371-1.txt
Description:
 Debian Security Advisory 1371-1 - Several vulnerabilities have been discovered in phpWiki, a wiki engine written in PHP. It was discovered that phpWiki performs insufficient file name validation, which allows unrestricted file uploads. It was discovered that phpWiki performs insufficient file name validation, which allows unrestricted file uploads. If the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, phpWiki might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.
Homepage:http://www.debian.org/security
File Size:3500
Related CVE(s):CVE-2007-2024, CVE-2007-2025, CVE-2007-3193
Last Modified:Sep 11 19:02:20 2007
MD5 Checksum:d8552e8dcc821f4be186d2bedea0abbe

 ///  File Name: sa26794.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26794/
File Size:3450
Last Modified:Sep 13 19:17:05 2007
MD5 Checksum:85d586e744803ce419e24a2e4b5a0a17

 ///  File Name: ZDI-07-054.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager Express. Authentication is not required to exploit this vulnerability. The specific flaw exists in the dsmcad.exe process bound by default on TCP port 1581. During HTTP header parsing, a host parameter of sufficient length will trigger an overflow through a call to vswprintf(). The call overflows into imported function pointers which are later called. Exploitation of this issue can result in arbitrary code execution.
Author:Sebastian Apelt
Homepage:http://www.zerodayinitiative.com/
File Size:3434
Related CVE(s):CVE-2007-4880
Last Modified:Sep 25 00:10:02 2007
MD5 Checksum:d94fdf8ee105d5fcc99dc5ec05fd3ad4

 ///  File Name: sa26721.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Cisco Video IP Gateway and Services Platform, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26721/
File Size:3406
Last Modified:Sep 7 02:01:27 2007
MD5 Checksum:c39d9f4bd265daf54aa86647d0c2c6ab

 ///  File Name: dsa-1374-1.txt
Description:
 Debian Security Advisory 1374-1 - Several vulnerabilities have been discovered in jffnms, a web-based Network Management System for IP networks. These include cross site scripting and SQL injection vulnerabilities.
Homepage:http://www.debian.org/security
File Size:3388
Related CVE(s):CVE-2007-3189, CVE-2007-3190, CVE-2007-3191
Last Modified:Sep 11 19:03:53 2007
MD5 Checksum:e35fa105ea6da30bffd514a62d5ecd0f

 ///  File Name: sa26863.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for quagga. This fixes some vulnerabilities, which potentially can be exploited by malicious users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26863/
File Size:3378
Last Modified:Sep 20 04:11:10 2007
MD5 Checksum:8f5ce0e67641af0e42616d07fa25dced

 ///  File Name: buffalo_070907.txt
Description:
 The Buffalo AirStation WHR-G54S web management interface suffers from a cross site request forgery vulnerability.
Author:Henri Lindberg
Homepage:http://www.louhi.fi/
File Size:3374
Last Modified:Sep 7 20:18:32 2007
MD5 Checksum:cc772aad00a5bdd87b03854d003ed21d

 ///  File Name: sa26952.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for httpd. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26952/
File Size:3372
Last Modified:Sep 25 18:33:28 2007
MD5 Checksum:f0762b39baf6a06df44afcb6fa421138

 ///  File Name: sa26788.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Invision Power Board, which can be exploited by malicious users to conduct script insertion attacks or bypass certain access restrictions.
Homepage:http://secunia.com/advisories/26788/
File Size:3363
Last Modified:Sep 13 19:17:05 2007
MD5 Checksum:e28ea974bb418752124be6afa3faf81f

 ///  File Name: sa26726.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Sophos Anti-Virus, which can be exploited by malware to bypass the scanning functionality.
Homepage:http://secunia.com/advisories/26726/
File Size:3362
Last Modified:Sep 7 19:05:01 2007
MD5 Checksum:20740a1e369af26722d1152030ba6239

 ///  File Name: 09.20.07-1.txt
Description:
 iDefense Security Advisory 09.20.07 - Remote exploitation of an authentication bypass vulnerability in Computer Associates Inc.'s ARCServe Backup for Laptops and Desktops allows attackers to execute arbitrary code with SYSTEM privileges. This vulnerability specifically exists since the command handlers that service network requests do not check to see if the peer is authenticated. iDefense has confirmed the existence of this vulnerability in ARCServe Backup for Laptops and Desktops version R11.1 Build 900. Other versions may also be affected.
Homepage:http://www.idefense.com/
File Size:3346
Related CVE(s):CVE-2007-5006
Last Modified:Sep 24 23:26:27 2007
MD5 Checksum:ab1a997811f66137d1dcf49ab9f2f75e

 ///  File Name: sa26766.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for gd. This fixes some vulnerabilities, where some have unknown impact and others can potentially be exploited to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26766/
File Size:3325
Last Modified:Sep 10 14:58:23 2007
MD5 Checksum:4fd2d87c533694f88008d89e625c3769

 ///  File Name: sa26676.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Kerberos, which can be exploited by malicious users and malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26676/
File Size:3282
Last Modified:Sep 5 19:40:40 2007
MD5 Checksum:3101130f4641ae1ad478dacb389d83e4

 ///  File Name: sa26831.txt
Description:
 Secunia Security Advisory - Seth Fogie has reported some vulnerabilities in the AXIS 207W Network Camera, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks, or by malicious users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26831/
File Size:3278
Last Modified:Sep 18 10:57:18 2007
MD5 Checksum:e926fdfbd2ac7024bdf1d70da9f4ef19

 ///  File Name: sa26961.txt
Description:
 Secunia Security Advisory - Jason Kratzer has reported some vulnerabilities in JSPWiki, which can be exploited by malicious people to disclose system information and conduct cross-site scripting and script insertion attacks.
Homepage:http://secunia.com/advisories/26961/
File Size:3278
Last Modified:Sep 26 22:37:08 2007
MD5 Checksum:f46595bbc982e5142db61efdcf59986d

 ///  File Name: sa26850.txt
Description:
 Secunia Security Advisory - S4mi has reported some vulnerabilities in KwsPHP, which can be exploited by malicious people and malicious users to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/26850/
File Size:3203
Last Modified:Sep 24 11:00:46 2007
MD5 Checksum:48b27ab4b44646fd278141a450e489b1

 ///  File Name: TPTI-07-15.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Automated Solutions Modbus TCP Slave ActiveX Control. Authentication is not required to exploit this vulnerability. The specific flaw exists within MiniHMI.exe which binds to TCP port 502. When processing malformed Modbus requests on this port a controllable heap corruption can occur which may result in execution of arbitrary code.
Author:Ganesh Devarajan
Homepage:http://www.tippingpoint.com/
File Size:3196
Related CVE(s):CVE-2007-4827
Last Modified:Sep 20 04:13:51 2007
MD5 Checksum:0d534b93256518fcf493b72761cb45fa

 ///  File Name: sa26938.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for ntfs-3g. This fixes a weakness, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Homepage:http://secunia.com/advisories/26938/
File Size:3191
Last Modified:Sep 26 22:37:08 2007
MD5 Checksum:befe241d21090882d26d834fa0525358

 ///  File Name: sa26981.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for t1lib. This fixes a vulnerability, which can be exploited by malicious users to potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26981/
File Size:3183
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:b0d65887aa7b6565fd31fc17549f21fc

 ///  File Name: sa26749.txt
Description:
 Secunia Security Advisory - ZhenHan.Liu has discovered some vulnerabilities in Baofeng Storm, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/26749/
File Size:3174
Last Modified:Sep 10 17:30:03 2007
MD5 Checksum:71799b5083b589ef00dcc2bbbaa7acde

 ///  File Name: MDKSA-2007-175.txt
Description:
 Mandriva Linux Security Advisory - A stack-based buffer overflow in mod/server.mod/servrmsg.c in Eggdrop 1.6.18, and possibly earlier, allows user-assisted, malicious remote IRC servers to execute arbitrary code via a long private message.
Homepage:http://www.mandriva.com/security/
File Size:3170
Related CVE(s):CVE-2007-2807
Last Modified:Sep 7 03:11:24 2007
MD5 Checksum:3687e9f27fa10ac57e1f8b1947384053

 ///  File Name: sa26645.txt
Description:
 Secunia Security Advisory - Slackware has issued an update for jdk and jre. This fixes some vulnerabilities and a security issue, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26645/
File Size:3170
Last Modified:Sep 4 22:20:04 2007
MD5 Checksum:0cb2949181b2bd498dbb5f959f3f9f32

 ///  File Name: sa26856.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for gd. This fixes some vulnerabilities, which can potentially be exploited to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26856/
File Size:3169
Last Modified:Sep 20 04:11:10 2007
MD5 Checksum:dcfd5093b6eb91234ea5e990efad0586

 ///  File Name: MDKSA-2007-173.txt
Description:
 Mandriva Linux Security Advisory - Dmitry V. Levin discovered a path traversal flaw in how GNU tar extracted archives. A malicious user could create a tar archive that could write to arbitrary fiels that the user running tar has write access to.
Homepage:http://www.mandriva.com/security/
File Size:3165
Related CVE(s):CVE-2007-4131
Last Modified:Sep 5 20:45:46 2007
MD5 Checksum:b1c97696d0322c5ee0e1ee840f83df6d
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice