seeing is believing
Showing 1 - 25 of 665 RSS Feed

Files

Core Security Technologies Advisory 2006.0327
Posted Jun 11, 2006
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies - Corelabs Advisory CORE-2006-0327: IAXclient is an open source library that implements the IAX2 VoIP protocol used by the Asterisk IP PBX and several VoIP software phones. Two vulnerabilities have been found in the library that may grant attackers remote execution of arbitrary code on systems using software packages that rely on it to implement the IAX2 protocol support.

tags | advisory, remote, arbitrary, vulnerability, protocol
MD5 | b509af5b58e8d1eea0fc3bcc0d0619e9
zdaebof.txt
Posted Apr 1, 2006
Authored by Luigi Auriemma | Site aluigi.altervista.org

Zdaemon version 1.08.01 and below suffer from buffer overflow and invalid memory access flaws.

tags | advisory, overflow
MD5 | 1485693ad51feb8656f9336108dd288e
windowsHelp.txt
Posted Apr 1, 2006
Authored by c0ntex | Site open-security.org

There is a heap based buffer overflow in the rendering engine of .hlp files in winhlp32.exe which will allow some attacker the possibility of modifying the internal structure of the process with a means to execute arbitrary and malicious code.

tags | advisory, overflow, arbitrary
MD5 | 6e1e64447f6b86d638f37dff20bc45c6
monalbum087.txt
Posted Apr 1, 2006
Authored by undefined1_

Mon Album version 0.8.7 is susceptible to SQL injection attacks.

tags | advisory, sql injection
MD5 | a274df1c56798cefb25cf464e20e0c6f
SSRT5953.txt
Posted Apr 1, 2006
Authored by HP | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running /sbin/passwd which could be locally exploited to create a Denial of Service (DoS).

tags | advisory, denial of service
systems | hpux
MD5 | 35379522f364702cbe7c0509dc32b776
sambaExpose.txt
Posted Apr 1, 2006
Site samba.org

Samba versions 3.0.21 through 3.0.21c expose passwords in clear text in debug logs.

tags | advisory
advisories | CVE-2006-1059
MD5 | f830eaf6589684546aa8b248df1e837f
Mandriva Linux Security Advisory 2006.061
Posted Apr 1, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Scrubber.py, in Mailman 2.1.5 and earlier, when using email 2.5 (part of Python), is susceptible to a DoS (mailman service stops delivering for the list in question) if it encounters a badly formed mime multipart message with only one part and that part has two blank lines between the first boundary and the end boundary.

tags | advisory, python
systems | linux, mandriva
advisories | CVE-2006-0052
MD5 | b2b71d2742270acf212d1a21aa1139e7
xfocus-SD-060329.txt
Posted Apr 1, 2006
Site xfocus.org

The XFOCUS team has discovered multiple integer overflows in MPlayer version 1.0.20060329 and below.

tags | advisory, overflow
MD5 | 9bf48c54ef9dbcaee08042b8ae309df6
Debian Linux Security Advisory 1021-1
Posted Apr 1, 2006
Authored by Debian | Site debian.org

Debian Security Advisory DSA 1021-1 - Max Vozeler from the Debian Audit Project discovered that pstopnm, a converter from Postscript to the PBM, PGM and PNM formats, launches Ghostscript in an insecure manner, which might lead to the execution of arbitrary shell commands, when converting specially crafted Postscript files.

tags | advisory, arbitrary, shell
systems | linux, debian
advisories | CVE-2005-2471
MD5 | 1c459b8d6e7ffc433c0876f5220f365e
secunia-Blazix.txt
Posted Apr 1, 2006
Authored by Tan Chew Keong | Site secunia.com

Secunia Research has discovered a vulnerability in Blazix, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to a validation error of the filename extension supplied by the user in the URL. This can be exploited to retrieve the source code of JSP files from the server via specially crafted requests containing dot, space, and slash characters. Version 1.2.5 is affected.

tags | advisory
MD5 | a4da4d1a4bd64dab085d6482a4cb46c8
Zero Day Initiative Advisory 06-06
Posted Apr 1, 2006
Authored by Tipping Point, Sebastian Apelt | Site zerodayinitiative.com

ZDI-06-006: A buffer overflow exists in the Symantec VERITAS NetBackup Database Manager. Version 6.0 is affected.

tags | advisory, overflow
MD5 | f38b6ec7ed39de2fa80303766c99d7d4
Zero Day Initiative Advisory 06-05
Posted Apr 1, 2006
Authored by Tipping Point, Sebastian Apelt | Site zerodayinitiative.com

ZDI-06-005: A buffer overflow exists in the Symantec VERITAS Volume Manager. Version 6.0 is affected.

tags | advisory, overflow
MD5 | 82677173acd7a9b47769aa41a5d4f878
TSRT-06-01.txt
Posted Apr 1, 2006
Site tippingpoint.com

The vnetd from Symantec VERITAS NetBackup is susceptible to a buffer overflow vulnerability.

tags | advisory, overflow
advisories | CVE-2006-0991
MD5 | 2a77251ac979dadb0facee4abc1638c5
movilnetCaptcha.txt
Posted Apr 1, 2006
Authored by Ruben Recabarren, Leandro Leoncini

Movilnet's Web SMS Captcha implementation is weak and it is possible to recognize its patterns 100% of the time.

tags | advisory, web
MD5 | f89768546edd75f89b610b4b2f473852
PHPADSNEW-SA-2006-001.txt
Posted Apr 1, 2006
Authored by Matteo Beccati | Site phpadsnew.com

phpAdsNew and phpPgAds versions 2.0.7 and below suffer from multiple html injection and cross site scripting flaws.

tags | advisory, xss
MD5 | 5998f02c4c8ce7823491642ca8e3ebcf
akocomment.txt
Posted Apr 1, 2006
Authored by Stefan Keller

AkoComment version 2.0, a well known add-on for Mambo and Joomla CMS systems, is susceptible to SQL injection attacks.

tags | advisory, sql injection
MD5 | e1545d2c546f631073a5f8e6bfcc9146
rainXSS.txt
Posted Apr 1, 2006
Authored by Dimitry Snezhkov

Raindance Web Conference Pro suffers from a cross site scripting flaw in its browser compatibility checking code.

tags | advisory, web, xss
MD5 | 40866fdcfb084451b20a74d640eb374a
secunia-Quick.txt
Posted Apr 1, 2006
Authored by Tan Chew Keong | Site secunia.com

Secunia Research has discovered a vulnerability in Quick 'n Easy/Baby Web Server, which can be exploited by malicious people to disclose potentially sensitive information.

tags | advisory, web
MD5 | ff9165b14007ab2756a61b6b6c10f101
HP Security Bulletin 2006-11.34
Posted Apr 1, 2006
Authored by Hewlett Packard, HP | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified in HP-UX running swagentd. The vulnerability could be exploited remotely by an unauthenticated user to cause swagentd to abort resulting in a Denial of Service (DoS).

tags | advisory, denial of service
systems | hpux
MD5 | 7a8cc266033a6bd5d956de301ed79fdf
xpFireConvince.txt
Posted Apr 1, 2006
Authored by Eduardo Braun Prado

By naming a file without a name, the Windows XP firewall may inadvertently trick a user into allowing a malicious application to run.

tags | advisory
systems | windows, xp
MD5 | b9b91a76ab66e00166b5897ec186d1e7
passwordsafe30.txt
Posted Apr 1, 2006
Site elcomsoft.com

PasswordSafe 3.0 has a weak random number generator.

tags | advisory
MD5 | f9268d272cd48746fde2b144d543db6f
Hardened-PHP Project Security Advisory 2006-03.115
Posted Apr 1, 2006
Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net

KisMAC versions below 73p and development versions below 113 suffer from a stack overflow when handling specially crafted 802.11 management frames.

tags | advisory, overflow
MD5 | c01d0c22dc2e91f32789f4e6f9ba3078
Gentoo Linux Security Advisory 200603-25
Posted Mar 31, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200603-25 - OpenOffice.org includes libcurl code. This libcurl code is vulnerable to a heap overflow when it tries to parse a URL that exceeds a 256-byte limit (GLSA 200512-09). Versions less than 2.0.2 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | 573f93788cb694c6a36b5edd4b259a0b
Gentoo Linux Security Advisory 200603-24
Posted Mar 31, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200603-24 - RealPlayer is vulnerable to a buffer overflow when processing malicious SWF files. Versions less than 10.0.7 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | a6595d35a4c73107871f838366832bf2
Gentoo Linux Security Advisory 200603-23
Posted Mar 31, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200603-23 - NetHack, Slash'EM and Falcon's Eye have been found to be incompatible with the system used for managing games on Gentoo Linux. As a result, they cannot be played securely on systems with multiple users. Versions less than or equal to 3.4.3-r1 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 0b9cce49043361f430c188ab5c66fd0d
Page 1 of 27
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Domino's Pizza Delivers User Details To Spammers
Posted Oct 18, 2017

tags | headline, privacy, email, spam, fraud
Adobe Patches Zero-Day Used To Plant Gov't Spying Software
Posted Oct 17, 2017

tags | headline, hacker, government, usa, flaw, cyberwar, adobe, zero day, nsa
UK TV Drama About North Korea Hit By Hackers
Posted Oct 17, 2017

tags | headline, hacker, government, britain, cyberwar, korea
Russia Tweaks Telegram With Tiny Fine For Decryption Denial
Posted Oct 17, 2017

tags | headline, government, privacy, russia, cryptography
Never Mind The WPA2 Drama... Details Emerge Of TPM Key Fail
Posted Oct 17, 2017

tags | headline, wireless, flaw, cryptography
Millions Of High Security Crypto Keys Crippled By Newly Discovered Flaw
Posted Oct 16, 2017

tags | headline, flaw, cryptography
Pizza Hut Latest To Be Hit In Card Data Breach
Posted Oct 16, 2017

tags | headline, hacker, privacy, bank, cybercrime, data loss, fraud
Artificial Intelligence - Hype, Hope, And Fear
Posted Oct 16, 2017

tags | headline, botnet, cyberwar
KRACK Attacks: Breaking WPA2 By Forcing Nonce Reuse
Posted Oct 16, 2017

tags | headline, privacy, phone, wireless, flaw, cryptography
Even Pokemon Go Was Used By Russia To Meddle In The Election
Posted Oct 13, 2017

tags | headline, government, usa, russia, cyberwar
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close