.:[ packet storm ]:.
                               
the internet's gray area
the internet's gray area

 Section:  .. / 0807-advisories  /

Page 1 of 25
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 >> Files 1 - 25 of 604
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: glsa-200807-15.txt
Description:
 Gentoo Linux Security Advisory GLSA 200807-15 - Pavel Polischouk reported a boundary error in the PartsBatch class when processing .nzb files. Versions less than 0.132-r3 are affected.
Homepage:http://security.gentoo.org
File Size:2656
Related CVE(s):CVE-2008-2363
Last Modified:Jul 31 18:54:33 2008
MD5 Checksum:873315349fd5e7b65178514757c0bc7e

 ///  File Name: glsa-200807-14.txt
Description:
 Gentoo Linux Security Advisory GLSA 200807-14 - A stack-based buffer overflow has been reported in the audit_log_user_command() function in the file lib/audit_logging.c when processing overly long arguments. Versions less than 1.7.3 are affected.
Homepage:http://security.gentoo.org
File Size:2939
Related CVE(s):CVE-2008-1628
Last Modified:Jul 31 18:54:04 2008
MD5 Checksum:6b691efd9f16eef42bb7a1ab17aaefac

 ///  File Name: glsa-200807-13.txt
Description:
 Gentoo Linux Security Advisory GLSA 200807-13 - Remi Denis-Courmont reported that VLC loads plugins from the current working directory in an unsafe manner. Versions less than 0.8.6i are affected.
Homepage:http://security.gentoo.org/
File Size:2885
Related CVE(s):CVE-2008-2147, CVE-2008-2430
Last Modified:Jul 31 18:53:55 2008
MD5 Checksum:3fbe056b952279bdbc3ed4fda2bf850a

 ///  File Name: sa30856.txt
Description:
 Secunia Security Advisory - Travis C Johnson has discovered a security issue in Acronis True Image Echo Server, which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/30856/
File Size:2323
Last Modified:Jul 31 18:52:54 2008
MD5 Checksum:7bb69847f19758d1dd23d779155216a9

 ///  File Name: sa31297.txt
Description:
 Secunia Security Advisory - R3d.W0rm has discovered a vulnerability in nzFotolog, which can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/31297/
File Size:2379
Last Modified:Jul 31 18:52:54 2008
MD5 Checksum:8a9b6ed97eeced1f5a7a46a95257d1b6

 ///  File Name: sa31304.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in various Panasonic network cameras, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/31304/
File Size:2678
Last Modified:Jul 31 18:52:54 2008
MD5 Checksum:6dc3d2d43559cf78e04f5f49603f22a3

 ///  File Name: sa31307.txt
Description:
 Secunia Security Advisory - Debian has issued an update for newsx. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/31307/
File Size:4567
Last Modified:Jul 31 18:52:54 2008
MD5 Checksum:1cc599b7cb76e9125b7cd1a097abbaf6

 ///  File Name: sa31308.txt
Description:
 Secunia Security Advisory - rPath has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/31308/
File Size:2044
Last Modified:Jul 31 18:52:54 2008
MD5 Checksum:c4425e65cd3e2fc1f05614ab9c11ff3f

 ///  File Name: 07.30.08-1.txt
Description:
 iDefense Security Advisory 07.30.08 - Local exploitation of an untrusted path vulnerability in the "dbmsrv" program, as distributed with SAP AG's MaxDB, allow attackers to elevate privileges to that of the "sdb" user. When a local user runs the "dbmcli" program, the MaxDB executes a "dbmsrv" process on the user's behalf. The "dbmsrv" process, which is responsible for executing user commands, runs as the user "sdb" with group "sdba". This vulnerability exists due to improper sanitization of the "PATH" environment variable. By prefixing the "PATH" environment variable with a path under the attacker control, one is able to execute arbitrary code iDefense has confirmed the existence of this vulnerability in SAP MaxDB version 7.6.03.15 on Linux. Other versions may also be vulnerable. with "sdb:sdba" privileges.
Homepage:http://www.idefense.com/
File Size:3377
Related CVE(s):CVE-2008-1810
Last Modified:Jul 31 18:25:13 2008
MD5 Checksum:d187db4d824398f4405de6519303b02f

 ///  File Name: dsa-1624-1.txt
Description:
 Debian Security Advisory 1624-1 - Chris Evans discovered that a buffer overflow in the RC4 functions of libexslt may lead to the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:11623
Related CVE(s):CVE-2008-2935
Last Modified:Jul 31 18:23:26 2008
MD5 Checksum:f7e4269ba78b527d3e435c79ffc498bb

 ///  File Name: sa31247.txt
Description:
 Secunia Security Advisory - dun has reported two vulnerabilities in Möbius for Mimsy XG, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/31247/
File Size:2215
Last Modified:Jul 31 18:23:16 2008
MD5 Checksum:6c95f3f663ecdc3771fce785ab82d0ce

 ///  File Name: dsa-1623-1.txt
Description:
 Debian Security Advisory 1623-1 - Dan Kaminsky discovered that properties inherent to the DNS protocol lead to practical DNS cache poisoning attacks. Among other things, successful attacks can lead to misdirected web traffic and email rerouting.
Homepage:http://www.debian.org/security
File Size:5056
Related CVE(s):CVE-2008-1447
Last Modified:Jul 31 18:22:45 2008
MD5 Checksum:6c21c0b2905b253f6123daa1f6688d8d

 ///  File Name: assurent-caarcserve.txt
Description:
 There exists a buffer overflow vulnerability in the way CA ARCserve Backup for Laptops and Desktops handles incoming messages. The vulnerability is due to an integer underflow in the LGServer service. Affected includes CA ARCserve Backup for Laptops and Desktops version r11.0 through r11.5, CA Desktop Management Suite version 11.1 through 11.2, and CA Protection Suites versions r2, 3.0, and 3.1.
Homepage:http://www.assurent.com/
File Size:2977
Related CVE(s):CVE-2008-3175
Last Modified:Jul 31 18:22:36 2008
MD5 Checksum:f4eb71f630c2db5a88849787cf146e08

 ///  File Name: sa25813.txt
Description:
 Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in K9 Web Protection, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/25813/
File Size:2996
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:bad5f89d52cbab7adc37fd1680d43dbf

 ///  File Name: sa31235.txt
Description:
 Secunia Security Advisory - Stack has discovered a vulnerability in PHP Hosting Directory, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/31235/
File Size:2182
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:5cf18390fafcfbc76692ce8cbd55f1dc

 ///  File Name: sa31252.txt
Description:
 Secunia Security Advisory - Mr.SQL has reported a vulnerability in fizzMedia, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/31252/
File Size:2151
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:1286d07f4ecc7ff9dc6ddcf01a9494f9

 ///  File Name: sa31259.txt
Description:
 Secunia Security Advisory - A vulnerability with an unknown impact has been reported in ImpressCMS.
Homepage:http://secunia.com/advisories/31259/
File Size:2094
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:9fa2143af0e4891dea4e8f1fb28718df

 ///  File Name: sa31285.txt
Description:
 Secunia Security Advisory - Bboyhacks has reported some vulnerabilities in Axesstel AXW-D800, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/31285/
File Size:2309
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:294e6cbf9f44ff1c02c5f7327f276dbf

 ///  File Name: sa31299.txt
Description:
 Secunia Security Advisory - Ghost Hacker has discovered two vulnerabilities in HIOX Browser Statistics, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/31299/
File Size:2398
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:d110d1c7ce61353a5e59537ca032a23a

 ///  File Name: sa31300.txt
Description:
 Secunia Security Advisory - Ghost Hacker has discovered a vulnerability in HIOX Random Ad, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
Homepage:http://secunia.com/advisories/31300/
File Size:2346
Last Modified:Jul 31 18:10:43 2008
MD5 Checksum:9fb26c1f080a529685f0251b98e7dffb

 ///  File Name: sa31283.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in phpFreeChat, which can be exploited by malicious users to conduct hijacking attacks.
Homepage:http://secunia.com/advisories/31283/
File Size:2115
Last Modified:Jul 31 11:31:43 2008
MD5 Checksum:d0ded7dbc675953938321c9136e2aa16

 ///  File Name: SSRT071466.txt
Description:
 HP Security Bulletin - A potential security vulnerability has been identified in HP-UX running System Administration Manager (SAM). This vulnerability may allow unintended remote access.
Homepage:http://www.hp.com/
File Size:7214
Related CVE(s):CVE-2008-1662
Last Modified:Jul 31 11:31:30 2008
MD5 Checksum:f8f39053a48f84ae814f3dd9a7433f6e

 ///  File Name: libexslt-overflow.txt
Description:
 The libexslt library bundled with libxslt is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is present in the rc4 encryption/decryption functions. Versions 1.1.8 and above and 1.1.24 and below are affected.
Author:Chris Evans
File Size:1814
Related CVE(s):CVE-2008-2935
Last Modified:Jul 31 11:30:53 2008
MD5 Checksum:ea8f4cce63201c78ac95cd6868a0d632

 ///  File Name: secunia-bluecoathan.txt
Description:
 Secunia Research has discovered two vulnerabilities in K9 Web Protection, which can be exploited by malicious people to compromise a user's system. The vulnerabilities are caused by boundary errors in the filter service (k9filter.exe) when handling HTTP version information in responses from a centralized server (sp.cwfservice.net). These can be exploited to cause stack-based buffer overflows via a specially crafted response containing overly long HTTP version information. Successful exploitation allows execution of arbitrary code, but requires that requests to the centralized server can be redirected to a malicious service or otherwise intercepted. Affected is Blue Coat K9 Web Protection 3.2.44 with Filter version 3.2.32.
Author:Carsten Eiram
Homepage:http://secunia.com/
File Size:5901
Related CVE(s):CVE-2007-2952
Last Modified:Jul 31 11:29:06 2008
MD5 Checksum:46c811ed43792298725e10b1adfc39e9

 ///  File Name: secunia-bluecoatref.txt
Description:
 Secunia Research has discovered a vulnerability in K9 Web Protection, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error in the filter service (k9filter.exe) during processing of "Referer" headers when the web-based K9 Web Protection Administration interface is accessed. This can be exploited to cause a stack-based buffer overflow via an overly long "Referer:" header. Successful exploitation allows execution of arbitrary code when a user e.g. visits a malicious web site. Affected is Blue Coat K9 Web Protection 3.2.44 with Filter version 3.2.32.
Author:Carsten Eiram
Homepage:http://secunia.com/
File Size:5680
Related CVE(s):CVE-2007-2952
Last Modified:Jul 31 11:27:32 2008
MD5 Checksum:1c488d0a1b9e5cec52d5d2d53283b420
 

 ///  Last 10 Files
  1. :· return-to-libc-linux.txt
  2. :· stack-overflow-linux.txt
  3. :· backlinkspider-sql.txt
  4. :· exodus-injection.txt
  5. :· smallest_setuid_execve_sc.c
  6. :· wportfolio-upload.txt
  7. :· boastmachine-sql.txt
  8. :· SSRT080059.txt
  9. :· punportal-lfi.txt
  10. :· prejobboard-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· SSRT080059.txt
  2. :· MDVSA-2008-220-1.txt
  3. :· MDVSA-2008-232.txt
  4. :· USN-674-1.txt
  5. :· dsa-1667-1.txt
  6. :· PR08-09.txt
  7. :· secunia-streamripper.txt
  8. :· tonline-multi.txt
  9. :· MDVSA-2008-231.txt
  10. :· USN-673-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· backlinkspider-sql.txt
  2. :· exodus-injection.txt
  3. :· wportfolio-upload.txt
  4. :· boastmachine-sql.txt
  5. :· punportal-lfi.txt
  6. :· prejobboard-sql.txt
  7. :· revsense-sql.txt
  8. :· maurycms-upload.txt
  9. :· linksautomation-sql.txt
  10. :· linksxs-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pysumpas-0.2.0.tar.gz
  2. :· framework-3.2.tar.gz
  3. :· tor.uclibc.i686.20081115.iso
  4. :· RFIDIOt-Windows-0.1u.zip
  5. :· RFIDIOt-0.1u.tgz
  6. :· dps-v1.5.tar.gz
  7. :· smbrelay3.zip
  8. :· mptrey.tar.gz
  9. :· dotnetsploitsrc-1.0.zip
  10. :· MultiInjectorV0.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· return-to-libc-linux.txt
  2. :· stack-overflow-linux.txt
  3. :· smallest_setuid_execve_sc.c
  4. :· sudoers-shellcode.txt
  5. :· strongswan-4.2.9.tar.gz
  6. :· hodetector-shellcode.txt
  7. :· rtm-essential5.pdf
  8. :· unixasm-1.3.0.tar.gz
  9. :· bnd-networks.pdf
  10. :· smallnonulls-exec.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice