the original cloud security
Showing 1 - 25 of 128 RSS Feed

Files

HexView Security Advisory 2004-06-30.2
Posted Jun 30, 2004
Authored by HexView | Site netfilter.org

Sending crafted packets to a 2.6 series kernel with netfilter rules matching TCP options (using the --tcp-option match) may result in a Denial of Service.

tags | advisory, denial of service, kernel, tcp
advisories | CVE-2004-0626
MD5 | d833a45007f5ec8ad7ba3214e112fa2b
lotus651.txt
Posted Jun 30, 2004
Authored by Andreas Klein

Lotus Domino versions 6.5.1 and newer allow for a crash of the complete server when a client attempts to open up large email messages.

tags | advisory
MD5 | cc4a12e4159fac517ccf4228825cd548
hpsbux0202-182.txt
Posted Jun 30, 2004
Site www5.itrc.hp.com

HP advisory against running Netscape on HP-UX platform.

tags | advisory
systems | hpux
MD5 | 2b41838b3518947dbd0353148012746e
Cisco Security Advisory 20040630-CCS
Posted Jun 30, 2004
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory: Cisco Collaboration Server (CCS) versions earlier than 5.0 ship with ServletExec versions that are vulnerable to attack where unauthorized users can upload any file and gain administrative privileges.

tags | advisory
systems | cisco
MD5 | ea60a4ea663b27afbfee31c283ecf86f
linux26.txt
Posted Jun 30, 2004
Authored by Adam Osuchowski

There is a remotely exploitable bug in all Linux kernel 2.6 series due to using an incorrect variable type. The vulnerability is connected to the netfilter subsystem and may cause denial of service.

tags | advisory, denial of service, kernel
systems | linux
MD5 | 36f6ea37f7e6031222443c3080477496
prestige.txt
Posted Jun 30, 2004
Authored by Sami Gasc?n

The Prestige 650HW-31 is susceptible to a denial of service attack when supplied with an overly long password string.

tags | advisory, denial of service
MD5 | cce093db1eb64518ab0a440b574d177a
GLSA200406-22.txt
Posted Jun 30, 2004
Site gentoo.org

Gentoo Linux Security Advisory GLSA 200406-22 - Pavuk contains a bug potentially allowing an attacker to run arbitrary code.

tags | advisory, arbitrary
systems | linux, gentoo
MD5 | a6478252cfee03abd1c105f70ba63da8
linux.SbusPROM.txt
Posted Jun 29, 2004
Authored by infamous41md

There exists multiple integer overflows in routines that handle copying in user supplied data for the Linux Sbus PROM driver. They allow for a local denial of service attack and possible code execution.

tags | advisory, denial of service, overflow, local, code execution
systems | linux
MD5 | 1af0442de4e8dfb62ee1aea95250a9b6
SSRT3552.txt
Posted Jun 29, 2004
Site hp.com

A potential vulnerability has been identified in the HP-UX ARPA Transport which could be exploited by a local user to create a Denial of Service. Impacted versions: HP-UX B.11.00, B.11.04, B.11.11.

tags | advisory, denial of service, local
systems | hpux
MD5 | 2722dc60aa6e99f8549197d80b437536
SSRT4758.txt
Posted Jun 29, 2004
Site hp.com

A potential vulnerability has been identified with HP-UX running ObAM 5.0 with the WebAdmin capability enabled. This vulnerability could be exploited remotely to allow unauthorized access. Impacted version: HP-UX B.11.11 running ObAM 5.0.

tags | advisory
systems | hpux
MD5 | 9ed87a78b6cbedd00fdf61b116af9b32
Secunia Security Advisory 11950
Posted Jun 29, 2004
Authored by Secunia | Site secunia.com

A vulnerability in JUNOS can be exploited by transmitting specially-crafted IPv6 packets.

tags | advisory
advisories | CVE-2004-0468
MD5 | fd4b86d888b70777512552f554032c2f
BEA Systems Security Advisory 04-64.00
Posted Jun 29, 2004
Authored by Oracle | Site dev2dev.bea.com

A security issue has been discovered in BEA WebLogic, potentially allowing unauthorised users to access affected web applications. Due to improper filtering of data, an asterisk may be used in a spot to allow for a random user to get loaded into a role. The issue affects WebLogic Server and WebLogic Express version 8.1 and 7.0.

tags | advisory, web
MD5 | fb3f7f6a2b9d9f0dc6bf0fd32c665828
httpd1.html
Posted Jun 29, 2004
Authored by Georgi Guninski | Site guninski.com

There is denial of service in Apache httpd 2.0.49. It is possible to consume arbitrary amount of memory. On 64 bit systems with more than 4GB virtual memory this may lead to heap based buffer overflow whose exploitation is unclear at the moment.

tags | advisory, denial of service, overflow, arbitrary
MD5 | b801e23971a881cdb1d8b49c6f20eaf1
confixx.txt
Posted Jun 29, 2004
Authored by Dirk Pirschel

Confixx Pro 2 and 3 are susceptible to an attack where files in /root can be accessed due to an error in the backup script.

tags | advisory, root
MD5 | aa49e0496e3367fc6148ad75af43a5ec
Openswan.txt
Posted Jun 29, 2004
Site openswan.org

Two authentication errors within a verify_x509cert() function allows for malicious people to bypass security restrictions. Affected products include: superfreeswan 1.x, openswan 1.x to 2.x, strongSwan below 2.1.3, and any version of FreeS/WAN 1.x or 2.x with the X.509 patch.

tags | advisory
advisories | CVE-2004-0590
MD5 | 11ffb49d499310404cb98c08715e7f54
Secunia Security Advisory 11944
Posted Jun 29, 2004
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Valerie Holfield has discovered a vulnerability in phpmyfamily, which can be exploited by malicious people to gain edit privileges. It is possible to be automatically logged in as user nobody when clicking to download a document and then leaving the page. This grants the person ability to add people, change information, upload and delete documents and images.

tags | advisory
MD5 | 7a48b2c53f4f7d2095df499a86c435b1
popclient30b6.txt
Posted Jun 29, 2004
Authored by Dean White, John Cartwright

An off-by-one condition exists in the POP3 handler code present in popclient 3.0b6. By crafting a malicious email a remote attacker may cause a denial of service against users of this software.

tags | advisory, remote, denial of service
MD5 | d9c05396bc794653e724547dc8bc06fa
TSSA-2004-012.txt
Posted Jun 29, 2004
Site http.tinysofa.org

A remote exploit has been discovered in the Apache 2.0.49 HTTP server which allows an attacker to cause the server to allocate increasing amounts of memory until system memory is exhausted or until process limits are reached.

tags | advisory, remote, web
MD5 | 8b9a4bac6716b2602875a36b7005774a
dhcpdDOS.txt
Posted Jun 28, 2004
Authored by Gregory Duchemin

Original research data regarding ISC DHCPD 3.0.1 rc12 and rc13 denial of service attacks.

tags | advisory, denial of service
MD5 | 71c767cbd65b9b93218deebabc584425
advisory-08.txt
Posted Jun 28, 2004
Authored by DarkBicho | Site darkbicho.tk

csFAQ is susceptible to a path disclosure vulnerability.

tags | advisory
MD5 | e819136f86ae261f1e4f5d3529d02ec7
advisory-07.txt
Posted Jun 28, 2004
Authored by DarkBicho | Site darkbicho.tk

PowerPortal version 1.x suffers from full path disclosure, cross site scripting, and arbitrary directory browsing flaws.

tags | advisory, arbitrary, xss
MD5 | ae390ffaf8d537a7f21d85cc8c896a5e
advisory-06.txt
Posted Jun 28, 2004
Authored by DarkBicho | Site darkbicho.tk

CuteNews version 1.3.1 is susceptible to a cross site scripting flaw.

tags | advisory, xss
MD5 | 28e1aa84a563d7c72d823db701b20576
lotus.inject.txt
Posted Jun 27, 2004
Authored by Jouko Pynnonen | Site klikki.fi

During the client-side Windows installation of Lotus Notes, a notes: URL handler is registered in the registry. An argument injection attack allows an intruder to pass command line arguments to notes.exe, which can lead to execution of arbitrary code.

tags | advisory, arbitrary, registry
systems | windows
MD5 | 2fd0f23c99e3a334d8b5d70d022b19b8
ZH2004-14SA.txt
Posted Jun 27, 2004
Authored by D'Amato Luigi | Site zone-h.org

The Zone-H Security Team has discovered a SQL injection flaw in Infinity WEB that allows malicious attackers to bypass the authentication mechanism without having an account.

tags | advisory, web, sql injection
MD5 | ae27d470e14094dd4efd8295947d7e86
artmedic.txt
Posted Jun 25, 2004
Authored by Adam Simuntis aka n30n

artmedic_links 5, the PHP script, is susceptible to a file and URL inclusion vulnerability.

tags | advisory, php
MD5 | 06b7a3d4edf9218f5f3326d2f089d12e
Page 1 of 6
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Phishers Getting Smarter By Making Use Of User Location
Posted Oct 20, 2017

tags | headline, malware, cybercrime, fraud, phish
OSX Malware Spread Via Compromised Software Downloads
Posted Oct 20, 2017

tags | headline, malware, apple
Canadian Spooks Release Their Own Malware Detection Tool
Posted Oct 20, 2017

tags | headline, government, malware, canada, spyware
Judge: MalwareTech Is No Longer Under Curfew, GPS Monitoring
Posted Oct 20, 2017

tags | headline, hacker, government, malware, usa, conference
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close