.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / 0710-advisories  /

Page 10 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 225 - 250 of 664
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: glsa-200710-27.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-27 - regenrecht reported multiple infinite loops in functions ReadDCMImage() and ReadXCFImage(), multiple integer overflows when handling certain types of images, and an off-by-one error in the ReadBlobString() function. Versions less than 6.3.5.10 are affected.
Homepage:http://security.gentoo.org/
File Size:3160
Related CVE(s):CVE-2007-4985, CVE-2007-4986, CVE-2007-4987, CVE-2007-4988
Last Modified:Oct 25 00:21:20 2007
MD5 Checksum:99ed56bd4c8fd98a08f6009975938357

 ///  File Name: sa27067.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in HP System Management Homepage (SMH), which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/27067/
File Size:3153
Last Modified:Oct 10 00:59:53 2007
MD5 Checksum:fff4d3aff7337dab8606a1a15468319f

 ///  File Name: IRM-CiscoLPD.txt
Description:
 IRM Security Advisory 024 - The Line Printer Daemon, which provides print server functionality in Cisco IOS, is vulnerable to a software flaw whereby the length of the hostname of the router is not checked before being copied into a fixed size memory buffer.
Homepage:http://www.irmplc.com/
File Size:3146
Last Modified:Oct 10 23:51:07 2007
MD5 Checksum:1acb6217db3199d6a424bbb89c2f2d87

 ///  File Name: sa27367.txt
Description:
 Secunia Security Advisory - Multiple vulnerabilities have been discovered in Symantec Mail Security for SMTP, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27367/
File Size:3143
Last Modified:Oct 26 17:34:44 2007
MD5 Checksum:a50a89552e1ef3127bffd26d3ab7f2b8

 ///  File Name: sa27096.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for kdebase. This fixes a security issue and some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to conduct spoofing attacks.
Homepage:http://secunia.com/advisories/27096/
File Size:3142
Last Modified:Oct 10 00:59:53 2007
MD5 Checksum:16a2753381b17ef5fb626af7d3caa3fd

 ///  File Name: ZDI-07-064.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell software which utilize the Novell Client Trust. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Novell Client Trust application, clntrust.exe, which listens by default on UDP port 3024 on Novell client machines. During a validation request, the Client Trust process copies a user-supplied Novell tree name until a wide-character backslash or a NULL is encountered. If neither is found within the data, the process will copy excess data which later overflows a static buffer during a call to wsprintfA. BorderManager version 3.8 is affected.
Author:uvinc
Homepage:http://www.zerodayinitiative.com/
File Size:3126
Related CVE(s):CVE-2007-5767
Last Modified:Oct 31 20:19:23 2007
MD5 Checksum:b12384a86483796d2e8e69ed87d769bb

 ///  File Name: sa27000.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in PowerArchiver, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/27000/
File Size:3123
Last Modified:Oct 5 21:33:17 2007
MD5 Checksum:0cb3201b76483358bda7bb376a9836f3

 ///  File Name: sa27040.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in the X.Org X11 X Font Server (XFS), which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/27040/
File Size:3120
Last Modified:Oct 3 19:13:39 2007
MD5 Checksum:925842320878aa5e8d3b1679c626ea3c

 ///  File Name: MDKSA-2007-199.txt
Description:
 Mandriva Linux Security Advisory - A number of vulnerabilities and security-related issues have been fixed in phpMyAdmin versions since the 2.9.1.1 release. This update provides version 2.11.1.2 which is the latest stable release of phpMyAdmin.
Homepage:http://www.mandriva.com/security/
File Size:3108
Related CVE(s):CVE-2007-0095, CVE-2007-0203, CVE-2007-0204, CVE-2007-1325, CVE-2007-1395, CVE-2007-2245, CVE-2007-4306, CVE-2007-5386
Last Modified:Oct 18 18:34:43 2007
MD5 Checksum:63068dbd378f93dd27eb133bc954fb9e

 ///  File Name: NISR17102007B.txt
Description:
 NGSSoftware Insight Security Research Advisory - The Workspace Manager in Oracle 10g release 1 and 2 and Oracle 9i is vulnerable to SQL injection. The Workspace Manager, owned by SYS, contains a package called LT. This package is owned and defined by the SYS user and can be executed by PUBLIC. LT contains a procedure called FINDRICSET which calls the FINDRICSET package in the LTRIC package. This is vulnerable to SQL injection and can be abused by an attacker to gain SYS privileges.
Author:David Litchfield
Homepage:http://www.ngssoftware.com/
File Size:3107
Last Modified:Oct 18 18:16:27 2007
MD5 Checksum:69edd82fa8cac473f288d4f330ee5ac6

 ///  File Name: sa27037.txt
Description:
 Secunia Security Advisory - HP has issued an update for Apache. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, cause a DoS (Denial of Service), or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27037/
File Size:3106
Last Modified:Oct 8 20:25:28 2007
MD5 Checksum:417a5ace6ec2838ab171ea0c46816d80

 ///  File Name: 10.30.07-5.txt
Description:
 iDefense Security Advisory 10.30.07 - Local exploitation of a stack buffer overflow vulnerability in IBM Corp.'s AIX operating system may allow an attacker to execute arbitrary code with root privileges. The vulnerability exists within the parsing of the '-V' command line option. The argument to this option is copied into a fixed size stack buffer using the sprintf() function without properly validating the length. This leads to an exploitable stack buffer overflow. iDefense has confirmed the existence of this vulnerability in AIX version 5.2 and 5.3. Previous versions may also be affected.
Author:Sean Larsson
Homepage:http://www.idefense.com/
File Size:3093
Related CVE(s):CVE-2007-4513
Last Modified:Oct 30 20:29:14 2007
MD5 Checksum:6b7ef8143a1978882368835cc0236a7f

 ///  File Name: glsa-200710-12.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-12 - Hamid Ebadi discovered a boundary error in the intT1_EnvGetCompletePath() function which can lead to a buffer overflow when processing an overly long filename. Versions less than 5.0.2-r1 are affected.
Homepage:http://security.gentoo.org
File Size:3089
Related CVE(s):CVE-2007-4033
Last Modified:Oct 12 21:34:55 2007
MD5 Checksum:64b754a15d2a7d3ea0cfb25ea824f54c

 ///  File Name: sa27078.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for openssl. This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27078/
File Size:3083
Last Modified:Oct 5 21:33:17 2007
MD5 Checksum:fabe2838c9d16c9dfad4aa25861afaf8

 ///  File Name: 10.30.07-4.txt
Description:
 iDefense Security Advisory 10.30.07 - Local exploitation of a stack buffer overflow vulnerability in IBM Corp.'s AIX operating system may allow an attacker to execute arbitrary code with root privileges. The vulnerability exists within the parsing of the '-p' command line option. The argument to this option is copied into a fixed size stack buffer using the sprintf() function without properly validating the length. This leads to an exploitable stack buffer overflow. iDefense has confirmed the existence of this vulnerability in AIX version 5.2 and 5.3. Previous versions may also be affected.
Author:Sean Larsson
Homepage:http://www.idefense.com/
File Size:3076
Related CVE(s):CVE-2007-4513
Last Modified:Oct 30 20:28:14 2007
MD5 Checksum:f2ea5507b88b98c70d8372163d1fd68c

 ///  File Name: sa27170.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for libvorbis. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.
Homepage:http://secunia.com/advisories/27170/
File Size:3070
Last Modified:Oct 12 20:30:02 2007
MD5 Checksum:78a6dbb1346185c2693422d968a02683

 ///  File Name: glsa-200710-29.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-29 - Ulf Harnhammar from Secunia Research discovered a format string error in the inc_put_error() function in file src/inc.c. Versions less than 2.4.5 are affected.
Homepage:http://security.gentoo.org
File Size:3068
Related CVE(s):CVE-2007-2958
Last Modified:Oct 26 11:07:37 2007
MD5 Checksum:a96192db45a4eaca277d2b1ddd5a34fc

 ///  File Name: CAID-35754.txt
Description:
 CA Host-Based Intrusion Prevention System (CA HIPS) contains a vulnerability in the Server installation that can allow a remote attacker to take unauthorized administrative action. The vulnerability occurs due to raw request data being displayed in the log when viewed by a browser. The client installation is not vulnerable.
Author:Ken Williams
Homepage:http://www3.ca.com/
File Size:3063
Related CVE(s):CVE-2007-5472
Last Modified:Oct 22 18:50:26 2007
MD5 Checksum:26296d663e5bc8ed3f4ebea3490cefc7

 ///  File Name: NISR17102007E.txt
Description:
 NGSSoftware Insight Security Research Advisory - The Oracle XML DB ftp service contains problems with auditing logins.
Author:David Litchfield
Homepage:http://www.ngssoftware.com/
File Size:3062
Last Modified:Oct 18 18:21:43 2007
MD5 Checksum:03a2b4d2ce1e0e61066c4236c2f3932c

 ///  File Name: sa27285.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Macrovision SafeDisc, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/27285/
File Size:3058
Last Modified:Oct 23 19:22:54 2007
MD5 Checksum:37a9798f95ac1bd0255a79daff02a6cd

 ///  File Name: sa27058.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Borland InterBase, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27058/
File Size:3053
Last Modified:Oct 5 21:33:17 2007
MD5 Checksum:1fc505a433f60a9cda1b6618bcb7ffa8

 ///  File Name: sa27018.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for libsndfile. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise an application using the library.
Homepage:http://secunia.com/advisories/27018/
File Size:3051
Last Modified:Oct 2 20:05:02 2007
MD5 Checksum:8ce796255357adbbc59ed10831aa68cb

 ///  File Name: sa27304.txt
Description:
 Secunia Security Advisory - Multiple vulnerabilities have been reported in Verity Keyview SDK, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/27304/
File Size:3044
Last Modified:Oct 23 22:14:49 2007
MD5 Checksum:f2be14cca23ce223d8b097035c9c17f6

 ///  File Name: glsa-200710-13.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-13 - LT discovered that the match parameter in albums.php is not properly sanitized before being processed. The Apache development team also reported an error when handling user sessions. Versions less than 3.3.3.5 are affected.
Homepage:http://security.gentoo.org
File Size:3036
Related CVE(s):CVE-2007-4437, CVE-2007-4438
Last Modified:Oct 15 19:08:18 2007
MD5 Checksum:4b55a73740a637f6c1539265dfdd484c

 ///  File Name: glsa-200710-01.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-01 - A stack based buffer overflow has been discovered in the svcauth_gss_validate() function in file lib/rpc/svc_auth_gss.c when processing an overly long string in a RPC message. Versions less than 0.16 are affected.
Homepage:http://security.gentoo.org
File Size:3022
Related CVE(s):CVE-2007-3999
Last Modified:Oct 5 02:08:26 2007
MD5 Checksum:d265c9e196081c49e034c1b7570cbd8e
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice