.:[ packet storm ]:.
                           
security threats. uncensored.
security threats. uncensored.

 Section:  .. / 0705-advisories  /

Page 7 of 18
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 >> Files 150 - 175 of 441
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: ZDI-07-025.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit this vulnerability. The specific flaw exists in the SpntSvc.exe daemon, bound by default on TCP port 5168 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
Author:Eric DETOISIEN
Homepage:http://www.zerodayinitiative.com/
File Size:3099
Related CVE(s):CVE-2007-2508
Last Modified:May 8 11:25:35 2007
MD5 Checksum:56194a1cec388cf8c1ce4cf1d2660283

 ///  File Name: sa24977.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Asterisk, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24977/
File Size:3082
Last Modified:May 2 04:17:18 2007
MD5 Checksum:72dec5bd707f648d60547d1f83df5ef2

 ///  File Name: sa25073.txt
Description:
 Secunia Security Advisory - Tavis Ormandy has reported some vulnerabilities in QEMU, which can be exploited by malicious uses to bypass certain security restrictions or cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/25073/
File Size:3063
Last Modified:May 2 04:17:18 2007
MD5 Checksum:1799da50dce096b8bba9c9a25d9ed903

 ///  File Name: USN-459-2.txt
Description:
 Ubuntu Security Notice 459-2 - A flaw was discovered in the PPTP tunnel server. Remote attackers could send a specially crafted packet and disrupt established PPTP tunnels, leading to a denial of service. USN-459-1 fixed vulnerabilities in pptpd. However, a portion of the fix caused a regression in session establishment under Dapper for certain PPTP clients. This update fixes the problem.
Homepage:http://security.ubuntu.com/
File Size:3046
Last Modified:May 22 03:59:32 2007
MD5 Checksum:5a5561e11d3d5e9f5e0cb037942152a6

 ///  File Name: MDKSA-2007-096.txt
Description:
 Mandriva Linux Security Advisory - The BGP routing daemon in Quagga did not properly validate length values in NLRI attributes which could allow a remote attacker to cause a denial of service via a crafted UPDATE message that triggered an assertion error or out of bounds read.
Homepage:http://www.mandriva.com/security/
File Size:3037
Related CVE(s):CVE-2007-1995
Last Modified:May 3 09:51:36 2007
MD5 Checksum:4ed3f6ce0eec54c446d6871f79e0f1a4

 ///  File Name: sa25279.txt
Description:
 Secunia Security Advisory - Jesper Jurcenoks has discovered some vulnerabilities in SonicBB, which can be exploited by malicious people to conduct SQL injection attacks or cross-site scripting attacks.
Homepage:http://secunia.com/advisories/25279/
File Size:3036
Last Modified:May 16 03:04:41 2007
MD5 Checksum:4cb95069ee1e41994cb927b274d0f2ec

 ///  File Name: squirrel-csrf.txt
Description:
 SquirrelMail versions 1.4.8-4.fc6 and below are susceptible to a cross site request forgery vulnerability.
Author:Avinash Shenoi, Vivek Relan
File Size:3033
Last Modified:May 11 04:00:52 2007
MD5 Checksum:e1c4775289ba2824430689a83893995c

 ///  File Name: ZDI-07-024.txt
Description:
 Multiple vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of Trend Micro ServerProtect. Authentication is not required to exploit these vulnerabilities. The specific flaw exists in the EarthAgent.exe daemon, bound by default on TCP port 3628 and exposing the following DCE/RPC interface through TmRpcSrv.dll.
Author:Eric DETOISIEN
Homepage:http://www.zerodayinitiative.com/
File Size:3024
Related CVE(s):CVE-2007-2508
Last Modified:May 8 11:24:36 2007
MD5 Checksum:dd15fef7d5127f9f63901107e860298c

 ///  File Name: 05.07.07-1.txt
Description:
 iDefense Security Advisory 05.07.07 - Local exploitation of an integer signedness error in Sun Microsystem's Solaris could allow attackers to cause a kernel panic, leading to a DoS condition on the affected computer. The facl() system call is used to set access controls on a file. Due to an improper check on one of the arguments passed to this function, an attacker can cause the kernel allocate a large amount of memory which causes a kernel panic. iDefense has confirmed the existence of this vulnerability in Solaris 10 on x86 and SPARC architectures. It is suspected that earlier versions are also affected.
Homepage:http://www.idefense.com/
File Size:3010
Last Modified:May 8 11:12:47 2007
MD5 Checksum:352b4c8e0a105b097dc2fdb7ea33c60e

 ///  File Name: sa25185.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in CAPICOM (Cryptographic API Component Object Model), which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/25185/
File Size:2989
Last Modified:May 10 02:32:46 2007
MD5 Checksum:c9c8be5acd56d650ff053b4159f15824

 ///  File Name: sa25108.txt
Description:
 Secunia Security Advisory - Debian has issued an update for wordpress. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks and bypass certain security restrictions, or by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/25108/
File Size:2989
Last Modified:May 3 01:50:52 2007
MD5 Checksum:4bf4a5a3bd59f8cad7a228ffa8d028e9

 ///  File Name: sa25212.txt
Description:
 Secunia Security Advisory - Johannes Greil has reported some vulnerabilities in Nokia's Intellisync Mobile Suite, which can be exploited by malicious people to gain knowledge of sensitive information, conduct cross-site scripting attacks, manipulate certain data, or cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/25212/
File Size:2971
Last Modified:May 10 02:32:46 2007
MD5 Checksum:2ac9867408db3fe2e6327a87e582e4e0

 ///  File Name: sa25172.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in various Symantec products, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/25172/
File Size:2968
Last Modified:May 11 02:35:58 2007
MD5 Checksum:d30f6940975bd01a29cdf65cfe47331d

 ///  File Name: glsa-200705-04.txt
Description:
 Gentoo Linux Security Advisory GLSA 200705-04 - Alex Solvey discovered that the path_info variable used in file RegistryCooker.pm (mod_perl 2.x) or file PerlRun.pm (mod_perl 1.x), is not properly escaped before being processed. Versions less than 1.30 are affected.
Homepage:http://security.gentoo.org
File Size:2968
Related CVE(s):CVE-2007-1349
Last Modified:May 3 09:27:34 2007
MD5 Checksum:d909f5c5765cf831270fcc9dd517761d

 ///  File Name: OpenPKG-SA-2007.013.txt
Description:
 OpenPKG Security Advisory - As confirmed by the vendor, a Denial of Service (DoS) vulnerability exists in the PNG image format library libpng. The bug is a NULL-pointer-dereference vulnerability involving palette images with a malformed "tRNS" PNG chunk, i.e., one with a bad CRC value. This bug can, at a minimum, cause crashes in applications simply by displaying a malformed image.
Homepage:http://www.openpkg.com/security/
File Size:2966
Related CVE(s):CVE-2007-2445
Last Modified:May 21 05:50:57 2007
MD5 Checksum:cfe0c8073d23c3040e87d6f860fd4fd3

 ///  File Name: sa25193.txt
Description:
 Secunia Security Advisory - Two vulnerabilities have been reported in Apple Darwin Streaming Server, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/25193/
File Size:2961
Last Modified:May 12 04:30:02 2007
MD5 Checksum:4ed3b6c364985d242da542d83f67e7b8

 ///  File Name: ZDI-07-023.txt
Description:
 A vulnerability allows attackers to execute arbitrary code on systems with vulnerable installations of Apple's QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
Author:Dino A. Dai Zovi
Homepage:http://www.zerodayinitiative.com/
File Size:2959
Related CVE(s):CVE-2007-2175
Last Modified:May 3 09:03:57 2007
MD5 Checksum:fc419cf943610bda4a6afd95c1c34c08

 ///  File Name: deutsche-bypass.txt
Description:
 A design flaw exists in the login process of the web interface of the Speedport w700v DLS Router and Wireless LAN Access Point of Deutsche Telekom that might lead to unauthorized access.
Author:Michael Domberg
Homepage:http://www.devtarget.org/
File Size:2926
Last Modified:May 12 04:47:37 2007
MD5 Checksum:45a74e9074dcea5abfb9316e246d30da

 ///  File Name: sa25036.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Plesk, which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/25036/
File Size:2905
Last Modified:May 2 04:17:18 2007
MD5 Checksum:3e2594b088eb8e7bf07aadc30fa864da

 ///  File Name: dsa-1297-1.txt
Description:
 Debian Security Advisory 1297-1 - Bernhard R. Link discovered that the CVS browsing interface of Gforge, a collaborative development tool, performs insufficient escaping of URLs, which allows the execution of arbitrary shell commands with the privileges of the www-data user.
Homepage:http://www.debian.org/security
File Size:2904
Related CVE(s):CVE-2007-0246
Last Modified:May 30 22:45:13 2007
MD5 Checksum:a9786fd6abe2ff8d3f62148987f3dd04

 ///  File Name: OpenPKG-SA-2007.018.txt
Description:
 OpenPKG Security Advisory - A vulnerability caused by an integer signedness error was found by Victor Stinner in the font rendering library Freetype, versions up to and including 2.3.4. The vulnerability might allow remote attackers to execute arbitrary code via a specially crafted TrueType Font (TTF) file with a negative "n_points" value, which leads to an integer overflow and heap-based buffer overflow.
Homepage:http://www.openpkg.com/security/
File Size:2904
Related CVE(s):CVE-2007-2754
Last Modified:May 30 21:51:46 2007
MD5 Checksum:c3045c83e517a3031694ffaa7cac2ec4

 ///  File Name: sa25182.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for vim. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/25182/
File Size:2884
Last Modified:May 11 02:35:58 2007
MD5 Checksum:de7fe0037137ca2cfe8bf257b3c9afe5

 ///  File Name: sa24985.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Sun Cluster, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/24985/
File Size:2880
Last Modified:May 2 04:17:18 2007
MD5 Checksum:32213484a8a61743ae29829c31882fd6

 ///  File Name: sa25283.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in JRockit, which can be exploited by malicious people to bypass certain security restrictions or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/25283/
File Size:2849
Last Modified:May 16 03:04:41 2007
MD5 Checksum:c47c4cf78752f3c990fcdfb3ce0d94d6

 ///  File Name: sa25246.txt
Description:
 Secunia Security Advisory - Slackware has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious users to perform certain actions with escalated privileges and to compromise a vulnerable system, and by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/25246/
File Size:2838
Last Modified:May 16 03:04:41 2007
MD5 Checksum:2ef49af64f6a7e8f1372193d9b6b1fc6
 

 ///  Last 10 Files
  1. :· wan-sql.py.txt
  2. :· com_print_typeinfo.txt
  3. :· mochaV1.zip
  4. :· msiejavascript-dos.txt
  5. :· openstego-0.5.1.zip
  6. :· vuplayer249asx-overflow.txt
  7. :· shakacon2009-cfp.txt
  8. :· fastfaqs-sql.txt
  9. :· dsa-1698-1.txt
  10. :· MDVSA-2009-001.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1698-1.txt
  2. :· MDVSA-2009-001.txt
  3. :· USN-706-1.txt
  4. :· AST-2009-001.txt
  5. :· USN-705-1.txt
  6. :· FreeBSD-SA-09-01.lukemftpd.txt
  7. :· FreeBSD-SA-09-02.openssl.txt
  8. :· USN-704-1.txt
  9. :· CA20090107-01.txt
  10. :· dsa-1697-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· wan-sql.py.txt
  2. :· com_print_typeinfo.txt
  3. :· msiejavascript-dos.txt
  4. :· vuplayer249asx-overflow.txt
  5. :· fastfaqs-sql.txt
  6. :· vuplayerasx-overflow.txt
  7. :· mp3trackmaker-overflow.txt
  8. :· google-insecurexss.txt
  9. :· ibmxs40-dos.txt
  10. :· lsa.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· mochaV1.zip
  2. :· openstego-0.5.1.zip
  3. :· cupp.tar.bz2
  4. :· ip-array_0.05.74c.tar.gz
  5. :· mandos_1.0.3.orig.tar.gz
  6. :· lfi-rfi2.txt
  7. :· tor.uclibc.i686.20090105.iso
  8. :· RFIDIOt-0.1v.tgz
  9. :· ratproxy-1.53.tar.gz
  10. :· opennhrp-0.9.2.tar.bz2
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· shakacon2009-cfp.txt
  2. :· layerone2009-cfp.txt
  3. :· cts2009-cfp.txt
  4. :· seacureit-cfp2009.txt
  5. :· msfxdc-contest.txt
  6. :· valsmith_colin_blog_spam.pdf
  7. :· dquist_valsmith_further_down_the_vm_spiral.pdf
  8. :· valsmith_dquist_hacking_malware.pdf
  9. :· uCon2009-CFP.txt
  10. :· md5-considered-harmful.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice