The Serious engine for games like Alpha Black Zero and Nitro family fails to limit the amount of new players joining a game, allowing for a denial of service. Only one UDP packet is needed to create a fake player.
1d4d9d5101c652cd463fe24cc999f3991959494588e7a826a52df28c2c1a1133Winfingerprint is a Win32 Host/Network Enumeration Scanner. Winfingerprint is capable of performing SMB, TCP, UDP, ICMP, RPC, and SNMP scans. Using SMB, winfingerprint can enumerate OS, users, groups, SIDs, password policies, services, service packs and hotfixes, NetBIOS shares, transports, sessions, disks, security event log, and time of day in either an NT Domain or Active Directory environment. Winfingerprint-cli is a command line version of winfingerprint and it is currently bundled with each release.
4a336625213434a3182194ac1088dca70eba26241a153ed9271999150ac3e023Gentoo Linux Security Advisory GLSA 200411-36 - phpMyAdmin is vulnerable to cross-site scripting attacks. Versions below 2.6.0_p3 are susceptible.
3fa6d61a17f65aef0fc13b15a5d049b51f701964bdf1c96d63fcab8787e1ecfbSimple remote exploit for the SQL injection vulnerability discovered in PHPNews.
c5de8860494ec9c6c1f6fd843c7a558b1fee55f076ab1a36f0363084f66befb4Security research discussing a new vulnerability discovered in WINS that allows for remote unauthenticated system access.
b36dcc29c389916dbba601c7e517f5d4ec18f3aa881ccfebf4de339e949d0c61phpBB versions below 2.0.11 suffer from addition SQL injection and directory traversal flaws.
4d879cc6423df932290b6e1b7d9182c499c15eaf7502b726946c2a1b29356b16PnTresMailer code browser version 6.03 is susceptible to path disclosure and directory traversal attacks.
0a17793363214eba0be0a9ddbc2c21299703b7751b93939842febb4de75a715cSecunia Security Advisory - A vulnerability has been reported in YaBB, which can be exploited by malicious people to conduct script insertion attacks.
ab95c3c55be85ae0e8ca498fadff512c57499794b2dde161177e9c8b7ee07580glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
ae65c85f078fcd55f2924cc22ad11b6a1e9db36f0075977f6ca03135e9512385Secunia Security Advisory - cyber flash has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to trick users into downloading malicious files.
0831a126d00d18c5cdb07ba991a9671f8c66b5f06aed588fbc06b83745c69c47Bilbo is a wrapper for nmap which makes it easier to scan lots of machines or networks.
f67baad0edc920a5ef76782a9c7d16549c2afe4cfab5e20080c6cc291b13b74fphpCMS versions 1.2.1 and below suffer from information disclosure and cross site scripting flaws.
806a8881ffffbf74b2f09ca1f0f6f7b6e5099e5dc00aaa4a7873b39c8bc03b51Mandrake Linux Security Update Advisory - The GNU a2ps utility fails to properly sanitize filenames, which can be abused by a malicious user to execute arbitrary commands with the privileges of the user running the vulnerable application.
afffec118e3c478b43f8bd4c296edd84d155a798b59d0a49364f43ef44813126MailEnable Professional Edition version 1.52 and MailEnable Enterprise Edition version 1.01 both suffer from a remote buffer overflow in their IMAP service. Full exploit included.
32c6ae1f1b84066439bf30e3587f50ec5f207c7c74e794bbd4f1278e559265abExploit that makes use of the PHP memory limit vulnerability discovered in July of 2004.
2c97cd1c958eda9cb6b3a5a97720fabb55603f0d0d23e1c106b84fb552ebbcfaEZshopper is susceptible to a directory traversal attack. Exploitation included.
cbdb0c2b9acdabdbc38e91ad21b569d3defbbf86aa3ad3d5253a0b43f04f7d69Debian Security Advisory 598-1 - Max Vozeler noticed that yardradius, the YARD radius authentication and accounting server, contained a stack overflow similar to the one from radiusd which is referenced as CVE-2001-0534. This could lead to the execution of arbitrary code as root.
9ecd3ad0354574b4685ff09a4dd7f47ca78960f6c3f1cf553472b4478e3b85fbSecunia Security Advisory - Cengiz Aykanat has reported a security issue in eTrust Antivirus, which can be exploited by malicious people to bypass certain security features.
e95ff9f50362359b5420a6cb73b82a1def018e97149d245d91d96bc18c046f35MIMEDefang is a flexible MIME email scanner designed to protect Windows clients from viruses. Includes the ability to do many other kinds of mail processing, such as replacing parts of messages with URLs. It can alter or delete various parts of a MIME message according to a very flexible configuration file. It can also bounce messages with unacceptable attachments. MIMEDefang works with Sendmail 8.11/8.12's new "Milter" API, which makes it more flexible and efficient than procmail-based approaches.
9ff52d51fbc6ad8805f38be6d2a1a480cc1dd576b920302f003e355f51d7fa96GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.
4d04cccf5955cba89c60775f76ef7bea4a91323b7a8ae92aba2af9e541092edbMotiontrack is a set of tools that detects motion between two images. It is able to successfully distinguish random flicker from real object movement by applying a set of filters to the images, and can optionally ignore given colors and/or image regions. The roadmap provides for being able to identify objects by pattern detection and AI routines. Currently, this tool is able to turn line-art images into ASCII-art text as a demo feature.
57bd0e19f4e2a1bbb8c0e5b5143592d26f0d9fdd31f62ab6968c71a3f9e7d859This program listens for sound. If it detects any, it starts recording automatically and also automatically stops when things become silent again.
98ad30a0ccb9efab33e61d565dd53b6922e3395876c772d0a65d5485bd65e57eIpfreeze is a program that listens to the netlink device. It takes the source address from every incoming packet and adds it to a Netfilter "blacklist" chain. The address is removed from this chain after a user-definable period of time. This allows you to create rules that detect and halt certain odd behaviors, such as ports scans, syn floods, or connection attempts on forbidden ports. The attacker's IP address is blacklisted using the QUEUE target. There is also a whitelist where you can declare hosts that you never want to be blacklisted.
f7206f5b31442c0ea8a3e5a224b5daff709cf39a09762e25c8d5f222137dff07The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
758b8186c67b0ff6cd3a876eac73982bc7f565f8dc006085cef3cd6c693ad264Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
232304444140a229233a2a2f5ffa8372f4a9ca1473863c40183b8ccaded97bf6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed