.:[ packet storm ]:.
                             
four continents, one idea
four continents, one idea

 Section:  .. / 0804-advisories  /

Page 11 of 25
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 >> Files 250 - 275 of 608
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: sa29935.txt
Description:
 Secunia Security Advisory - Rook Security has reported some vulnerabilities in TorrentFlux, which can be exploited by malicious people to conduct cross-site request forgery attacks and by malicious people or users to potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29935/
File Size:2943
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:b5aed9886f7fb791388034c4e9768676

 ///  File Name: sa29979.txt
Description:
 Secunia Security Advisory - AmnPardaz Security Research Team have reported some vulnerabilities in MegaBBS, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/29979/
File Size:2940
Last Modified:Apr 28 18:12:57 2008
MD5 Checksum:7dc6a9db3e216d6bc31dd0244a561bf3

 ///  File Name: sa29801.txt
Description:
 Secunia Security Advisory - Two vulnerabilities have been reported in phpBB, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/29801/
File Size:2936
Last Modified:Apr 15 19:22:47 2008
MD5 Checksum:0a4b44486f6bc18d6df1e23ba74cffc5

 ///  File Name: ZDI-08-017.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the quicktime.qts library responsible for parsing Kodak encoded images. A lack of proper error checking can result in a heap based buffer overflow leading to arbitrary code execution under the context of the currently logged in user. Version 7.4.1 is affected.
Author:Ruben Santamarta
Homepage:http://www.zerodayinitiative.com/
File Size:2935
Related CVE(s):CVE-2008-1020
Last Modified:Apr 4 19:49:41 2008
MD5 Checksum:71f08357b01b38db42fb821eaa3dce66

 ///  File Name: sa29824.txt
Description:
 Secunia Security Advisory - Thomas Pollet has discovered a vulnerability and a security issue in EncapsGallery, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29824/
File Size:2933
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:12bd4defdf5aeacee95c6ca68477d252

 ///  File Name: sa29930.txt
Description:
 Secunia Security Advisory - The:Paradox has discovered a vulnerability in PHP-Fusion, which can be exploited by malicious users to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/29930/
File Size:2916
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:9f3c39d13a02b8dfe46968a4446c58ee

 ///  File Name: dsa-1553-1.txt
Description:
 Debian Security Advisory 1553-1 - It has been discovered that ikiwiki, a Wiki implementation, does not guard password and content changes against cross-site request forgery (CSRF) attacks.
Homepage:http://www.debian.org/security
File Size:2907
Related CVE(s):CVE-2008-0165
Last Modified:Apr 21 16:29:58 2008
MD5 Checksum:40145921dada82148fce1f0b2786e383

 ///  File Name: sa29827.txt
Description:
 Secunia Security Advisory - AmnPardaz Security Research Team have reported a vulnerability in Carbon Communities, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Homepage:http://secunia.com/advisories/29827/
File Size:2906
Last Modified:Apr 17 13:00:31 2008
MD5 Checksum:d74ec2eb3bb150bb75768f1f22c1f3ff

 ///  File Name: MDVSA-2008-087.txt
Description:
 Mandriva Linux Security Advisory - A format string vulnerability in the grant helper, in PolicyKit 0.7 and earlier, allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in a password.
Homepage:http://www.mandriva.com/security/
File Size:2904
Related CVE(s):CVE-2008-1658
Last Modified:Apr 17 12:55:58 2008
MD5 Checksum:018352abb4873073e6efe935b5d5ed7a

 ///  File Name: sa29642.txt
Description:
 Secunia Security Advisory - Red Hat has acknowledged a security issue in the lspp-eal4-config-ibm and capp-lspp-eal4-config-hp packages, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/29642/
File Size:2903
Last Modified:Apr 3 00:45:58 2008
MD5 Checksum:a3e34e5c98543289bc38022d138029d4

 ///  File Name: ZDI-08-014.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the quickTime.qts while parsing corrupted .pict files. The module contains a vulnerable memory copy loop which searches for a terminator value. When this value is changed or omitted, a heap corruption occurs allowing the execution of arbitrary code. Version 7.4.1 is affected.
Author:bugfree
Homepage:http://www.zerodayinitiative.com/
File Size:2901
Related CVE(s):CVE-2008-1019
Last Modified:Apr 4 19:46:25 2008
MD5 Checksum:a58d7e9471769f1cf1501b1e61d2c73c

 ///  File Name: sa29783.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/29783/
File Size:2897
Last Modified:Apr 15 21:46:04 2008
MD5 Checksum:d67f4dafc1a43a1822996d77c30b05f0

 ///  File Name: sa29670.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in various Cisco products, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29670/
File Size:2893
Last Modified:Apr 4 18:56:42 2008
MD5 Checksum:0d850cc8def2a46d6afde8d374e04eda

 ///  File Name: sa29728.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or to manipulate certain data.
Homepage:http://secunia.com/advisories/29728/
File Size:2889
Last Modified:Apr 15 13:23:16 2008
MD5 Checksum:967b4d25bd442e87b5a061d68d027128

 ///  File Name: sa29771.txt
Description:
 Secunia Security Advisory - A security issue has been reported in Symantec Altiris Deployment Solution, which can be exploited by malicious, local users to disclose sensitive information and potentially gain escalated privileges.
Homepage:http://secunia.com/advisories/29771/
File Size:2888
Last Modified:Apr 15 21:46:04 2008
MD5 Checksum:03bb507f1a76674506c0c524c9fb653e

 ///  File Name: glsa-200804-14.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-14 - Michal Zalewski reported two vulnerabilities, memory corruption when adding news feed sources from a website (CVE-2008-1761) as well as when processing HTML CANVAS elements to use scaled images (CVE-2008-1762). Additionally, an unspecified weakness related to keyboard handling of password inputs has been reported (CVE-2008-1764). Versions less than 9.27 are affected.
Homepage:http://security.gentoo.org
File Size:2884
Related CVE(s):CVE-2008-1761, CVE-2008-1762, CVE-2008-1764
Last Modified:Apr 14 19:01:08 2008
MD5 Checksum:cdff51a23bd1d6da8785cf4224586c64

 ///  File Name: sa29725.txt
Description:
 Secunia Security Advisory - t0pP8uZz has reported two vulnerabilities in iScripts SocialWare, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/29725/
File Size:2878
Last Modified:Apr 10 16:17:17 2008
MD5 Checksum:1ce4f15db08c2d23286efbd727f49e22

 ///  File Name: dsa-1554-1.txt
Description:
 Debian Security Advisory 1554-1 - Roundup, an issue tracking system, fails to properly escape HTML input, allowing an attacker to inject client-side code (typically JavaScript) into a document that may be viewed in the victim's browser.
Homepage:http://www.debian.org/security
File Size:2870
Related CVE(s):CVE-2008-1474
Last Modified:Apr 22 21:38:46 2008
MD5 Checksum:6b2b7779f8f672b281cfeb13dd219e04

 ///  File Name: sa29739.txt
Description:
 Secunia Security Advisory - The:Paradox has discovered some vulnerabilities in ExBB Italia, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29739/
File Size:2870
Last Modified:Apr 10 10:08:38 2008
MD5 Checksum:4b3d4be5d45451a0bcf30a55e9d60aea

 ///  File Name: sa29785.txt
Description:
 Secunia Security Advisory - VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service), disclose sensitive information, or potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29785/
File Size:2869
Last Modified:Apr 16 18:08:48 2008
MD5 Checksum:44845a6a5d3aa394f71082ee9f9066e6

 ///  File Name: sa29873.txt
Description:
 Secunia Security Advisory - FreeBSD has issued an update for OpenSSH. This fixes a vulnerability, which can be exploited by malicious, local users to disclose sensitive information.
Homepage:http://secunia.com/advisories/29873/
File Size:2868
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:06e17abf5a7f86323460d82ad5462845

 ///  File Name: glsa-200804-17.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-17 - oCERT reported that the Speex library does not properly validate the mode value it derives from Speex streams, allowing for array indexing vulnerabilities inside multiple player applications. Within Gentoo, xine-lib, VLC, gst-plugins-speex from the GStreamer Good Plug-ins, vorbis-tools, libfishsound, Sweep, SDL_sound, and speexdec were found to be vulnerable. Versions less than 1.2_beta3_p2 are affected.
Homepage:http://security.gentoo.org
File Size:2862
Related CVE(s):CVE-2008-1686
Last Modified:Apr 17 12:59:49 2008
MD5 Checksum:ee288931bf1cd9a812264b858cb2b855

 ///  File Name: sa29668.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in rsync, which can potentially be exploited by malicious users to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/29668/
File Size:2860
Last Modified:Apr 15 21:46:04 2008
MD5 Checksum:be4d67de31b0aefc1e02ba675670be2b

 ///  File Name: sa29932.txt
Description:
 Secunia Security Advisory - Debian has issued an update for ikiwiki. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Homepage:http://secunia.com/advisories/29932/
File Size:2860
Last Modified:Apr 28 10:37:56 2008
MD5 Checksum:637bcdaa2ef52832ada6fd1a1def95b3

 ///  File Name: glsa-200804-15.txt
Description:
 Gentoo Linux Security Advisory GLSA 200804-15 - Tavis Ormandy of the Google Security Team discovered that libpng does not handle zero-length unknown chunks in PNG files correctly, which might lead to memory corruption in applications that call png_set_read_user_chunk_fn() or png_set_keep_unknown_chunks(). Versions less than 1.2.26-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2859
Related CVE(s):CVE-2008-1382
Last Modified:Apr 15 13:23:42 2008
MD5 Checksum:e635114ddc8d6feceebe6b7970ef6481
 

 ///  Last 10 Files
  1. :· linktrader-sql.txt
  2. :· rportal-rfilfi.txt
  3. :· cracker-v2.0-1.3.zip
  4. :· zfz20BETA.tar.gz
  5. :· bmforum-sql.txt
  6. :· discforums-sql.txt
  7. :· nonamecms-sql.txt
  8. :· mysqlquick-lfi.txt
  9. :· celoxis-xss.txt
  10. :· ecrater-xss.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· phpmyid-inject.txt
  2. :· USN-648-1.txt
  3. :· activesync-tcpip.txt
  4. :· MDVSA-2008-208.txt
  5. :· MDVSA-2008-207.txt
  6. :· SSRT071467.txt
  7. :· oCERT-2008-013.txt
  8. :· AKLINK-SA-2008-007.txt
  9. :· filealyzer-overflow.txt
  10. :· MDVSA-2008-206.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· linktrader-sql.txt
  2. :· rportal-rfilfi.txt
  3. :· bmforum-sql.txt
  4. :· discforums-sql.txt
  5. :· nonamecms-sql.txt
  6. :· mysqlquick-lfi.txt
  7. :· celoxis-xss.txt
  8. :· ecrater-xss.txt
  9. :· webshell431-xssxsrf.txt
  10. :· printlog-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· cracker-v2.0-1.3.zip
  2. :· zfz20BETA.tar.gz
  3. :· fwknop-1.9.8.tar.gz
  4. :· msnshadow-0.3_beta.tar.bz2
  5. :· geoipgen0.2b.tgz
  6. :· thc-rfidiot.zip
  7. :· sp3.rar
  8. :· openstego-0.5.0.tgz
  9. :· Vuurmuur-0.6.tar.gz
  10. :· ctunnel-0.2.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· linux-setresuid.txt
  2. :· nufw-2.2.17.tar.gz
  3. :· slackfire-0.65.d-noarch-1.tgz
  4. :· ENG_in_a_nutshell.pdf
  5. :· strongswan-4.2.7.tar.gz
  6. :· linux-iopl.txt
  7. :· ShmooConCFP-2009.txt
  8. :· openssl-0.9.8i.tar.gz
  9. :· mongolian-xss.txt
  10. :· mysql-truncate.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice