.:[ packet storm ]:. - http://packetstormsecurity.org/

Section: .. / 0604-advisories /

Page 29 of 30
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 >> Files 700 - 725 of 725

Currently sorted by: File Name Sort By: Last Modified, File Size

/// File Name:	USN-268-1.txt
Description:	Ubuntu Security Notice USN-268-1 - kaffeine vulnerability
Homepage:	http://security.ubuntu.com/
File Size:	4495
Last Modified:	Apr 6 18:13:14 2006
MD5 Checksum:	edc8f5a9cf4eefa6842a163b2e97880d

/// File Name:	USN-269-1.txt
Description:	Ubuntu Security Notice USN-269-1 - In some cases, xscreensaver did not properly grab the keyboard when reading the password for unlocking the screen, so that the password was typed into the currently active application window.
Homepage:	http://security.ubuntu.com/
File Size:	5064
Last Modified:	Apr 12 01:15:10 2006
MD5 Checksum:	bf4469e50e70bff6ace2b8bb0b79c704

/// File Name:	USN-270-1.txt
Description:	Ubuntu Security Notice USN-270-1 - kdegraphics, koffice, xpdf, cupsys, poppler, tetex-bin vulnerabilities.
Homepage:	http://security.ubuntu.com/
File Size:	54919
Last Modified:	Apr 17 18:44:16 2006
MD5 Checksum:	69d108f670df75868578f59443ee118b

/// File Name:	USN-271-1.txt
Description:	Ubuntu Security Notice 271-1: Multiple vulnerabilities in mozilla-firefox.
Homepage:	http://security.ubuntu.com/
File Size:	13507
Last Modified:	Apr 26 02:29:36 2006
MD5 Checksum:	6cbc0cdc92eeee5aa59929b1285bf330

/// File Name:	USN-272-1.txt
Description:	Ubuntu Security Notice 272-1: A Denial of Service vulnerability has been discovered in the SASL authentication library when using the DIGEST-MD5 plugin. By sending a specially crafted realm name, a malicious SASL server could exploit this to crash the application that uses SASL.
Homepage:	http://security.ubuntu.com/
File Size:	14464
Last Modified:	Apr 26 02:29:27 2006
MD5 Checksum:	44f3ea065872c8b716b6819f9c7333b2

/// File Name:	USN-273-1.txt
Description:	Ubuntu Security Notice 273-1: Yukihiro Matsumoto reported that Ruby's HTTP module uses blocking sockets. By sending large amounts of data to a server application that uses this module, a remote attacker could exploit this to render this application unusable and not respond any more to other clients (Denial of Service).
Homepage:	http://security.ubuntu.com/
File Size:	34550
Last Modified:	Apr 26 02:29:31 2006
MD5 Checksum:	4077b51e8ad47359de0037d0fa228a18

/// File Name:	USN-274-1.txt
Description:	Ubuntu Security Notice 274-1: A logging bypass was discovered in the MySQL query parser. A local attacker could exploit this by inserting NUL characters into query strings (even into comments), which would cause the query to be logged incompletely.
Homepage:	http://security.ubuntu.com/
File Size:	9493
Last Modified:	Apr 28 20:58:55 2006
MD5 Checksum:	fc12df206692e97ce1d4ceca1655a86c

/// File Name:	USN-275-1.txt
Description:	Ubuntu Security Notice 275-1: multiple vulnerabilities in mozilla.
Homepage:	http://security.ubuntu.com/
File Size:	26268
Last Modified:	Apr 28 20:59:19 2006
MD5 Checksum:	ac004322e7c051a3f99c46605444723d

/// File Name:	vb-MKPortal.txt
Description:	The MKPortal vBulletin plugin versions 1.1 RC1 and prior suffer from SQL injection in index.php.
Author:	nukedx
Homepage:	http://www.nukedx.com
File Size:	1467
Last Modified:	Apr 28 13:32:40 2006
MD5 Checksum:	3114d92a26bfcf27bafd49fc1d8f0942

/// File Name:	Vegadns-0.99.txt
Description:	VegaDNS 0.99 suffers from XSS and a SQL injection vulnerability in index.php and users.php
Author:	Ph03n1X
Homepage:	http://kandangjamur.net/
File Size:	1111
Last Modified:	Apr 12 15:03:58 2006
MD5 Checksum:	c052b388f159a84a25470a360aa7ab02

/// File Name:	vwar-path.txt
Description:	The recent exploit provided by aliHackers for VWar (VWar ver 1.21 Remote Code Execution Exploit ) has also another affect on the higher unptached versions of vWAR such as v1.5 and also on versions less than 1.2 . Apart from the successful code execution exploit even if the exploit fails still running the following code on the web browser shows the full path of the installed modules even if the remote php shell is not achieved.
Author:	arko.dhar
File Size:	1873
Last Modified:	Apr 28 11:54:56 2006
MD5 Checksum:	6ded1abc3a3268278edb75af6f7b6309

/// File Name:	vwar.txt
Description:	Virtual War suffers from a remote file inclusion vulnerability in the vwar_root variable.
Author:	Liz0ziM
Homepage:	http://www.biyosecurity.be
File Size:	1063
Last Modified:	Apr 11 02:25:56 2006
MD5 Checksum:	30ab862a61ebbbc88ea9b03e63590069

/// File Name:	W-AgoraXSS.txt
Description:	W-Agora version 4.20 is susceptible to cross site scripting attacks.
Author:	r0xes.ratm
File Size:	1361
Last Modified:	Apr 30 00:18:27 2006
MD5 Checksum:	537ec81ac86fd2a483ed0ffe12bc2cd0

/// File Name:	Websense.txt
Description:	It is possible to bypass any website that is in the "Uncategorized" Websense Category simply by adding a question mark at the end of the URL.
Author:	qex
File Size:	492
Last Modified:	Apr 28 14:47:30 2006
MD5 Checksum:	ff435902262fb7efa95ee4012e46e65c

/// File Name:	win-hlp.txt
Description:	There is a heap based buffer overflow in the rendering engine of .hlp files in winhlp32.exe which will allow some attacker the possibility of modifying the internal structure of the process with a means to execute arbitrary and malicious code.
Author:	c0ntex
Homepage:	http://www.open-security.org
File Size:	10304
Last Modified:	Apr 19 16:27:04 2006
MD5 Checksum:	33b60955417c926660ca43ebfc698105

/// File Name:	win-mailto.txt
Description:	Multiple browsers Windows mailto protocol Office 2003 file attachment exploit: Application protocols handling in Microsoft Windows is badly designed, i.e. when someone types mailto:someone@somewhere.com into a browser the protocol is first looked up under HKEY_CLASSES_ROOT\%protocol%\shell\open\command, if it is a protocol that is allowed under the current user context then the value is simply replaced by the contents in the address bar at %1.
Author:	inge.henriksen
Homepage:	http://ingehenriksen.blogspot.com/
File Size:	2011
Last Modified:	Apr 28 11:50:03 2006
MD5 Checksum:	de672dec01e75ba5cc8f13a7fc625088

/// File Name:	WWWThread.txt
Description:	WWWThread RC 3 suffers from multiple SQL injection vulnerabilities.
Author:	o.y.6
Homepage:	http://www.securitygurus.net
File Size:	2533
Last Modified:	Apr 28 14:08:30 2006
MD5 Checksum:	223b4f359d26f15273350ce5f491c0c4

/// File Name:	XMB-1.9.5-Final.txt
Description:	XMB Forum 1.9.5 allows users to embed malicious flash movies in their posts, which leads to XSS.
Author:	r0xes.ratm
Homepage:	http://dynxss.whiteacid.org/
File Size:	697
Last Modified:	Apr 12 02:51:05 2006
MD5 Checksum:	e2851db13f00fbae29a41771105148f4

/// File Name:	yahoo-fake.txt
Description:	yahoo.com suffers from a XSS vulnerability which can be used to refresh to a fake mail account.
Homepage:	http://WwW.SpyMasterSnake.org
File Size:	741
Last Modified:	Apr 19 15:35:10 2006
MD5 Checksum:	f74898cbcb29b17db791950fd3ef9e53

/// File Name:	yahoo-xss-2.txt
Description:	Description of a Yahoo! Mail XSS vulnerability that has been patched silently by Yahoo.
Author:	Cesar
File Size:	2304
Last Modified:	Apr 28 21:29:20 2006
MD5 Checksum:	3ef71a9ee64288891dd09692c33d1a05

/// File Name:	ZDI-06-007.txt
Description:	ZDI-06-007: Microsoft Windows Address Book (WAB) File Format Parsing Vulnerability.
Homepage:	http://www.zerodayinitiative.com/
File Size:	2621
Last Modified:	Apr 12 14:22:02 2006
MD5 Checksum:	f39d1e1ccdee6a1ac8e585d7b7ca356a

/// File Name:	ZDI-06-008.txt
Description:	ZDI-06-008: Novell GroupWise Messenger Accept-Language Buffer Overflow - This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Novell GroupWise Messenger. Authentication is not required to exploit this vulnerability.
Homepage:	http://www.zerodayinitiative.com/
File Size:	2886
Last Modified:	Apr 19 16:47:15 2006
MD5 Checksum:	d1748a847ba790d1c3889d2704435e13

/// File Name:	ZDI-06-009.txt
Description:	ZDI-06-009: Mozilla Firefox Tag Parsing Code Execution Vulnerability This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail.
Homepage:	http://www.zerodayinitiative.com/
File Size:	2778
Last Modified:	Apr 19 16:52:06 2006
MD5 Checksum:	eacd9e8a3aff05b35b22d3e001ce5d0e

/// File Name:	ZDI-06-010.txt
Description:	ZDI-06-010: Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
Homepage:	http://www.zerodayinitiative.com/
File Size:	2629
Last Modified:	Apr 19 16:47:54 2006
MD5 Checksum:	dc1372944a3453f506049efaf891e979

/// File Name:	ZDI-06-011.txt
Description:	ZDI-06-011: Mozilla Firefox Table Rebuilding Code Execution Vulnerability. This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail.
Homepage:	http://www.zerodayinitiative.com/
File Size:	2425
Last Modified:	Apr 28 21:02:49 2006
MD5 Checksum:	e7653be784ba9888857807b479e13c12

/// Last 10 Files

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Advisories

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Exploits

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Tools

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Misc

[ Last 20 | Last 50 | Last 100 ]