Exploit the possiblities
Showing 1 - 25 of 526 RSS Feed

Files

yimvuln.txt
Posted Aug 3, 2006
Authored by ivan ivan

Yahoo Instant Messenger suffers from a remote flaw that allows a browser to be launched.

tags | advisory, remote
MD5 | bb7dcaa22e748dcd023e979008b26541
Secunia Security Advisory 21239
Posted Jul 28, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Dokeos, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | b97163df628645cc97c6edd5cabe2d67
Secunia Security Advisory 21251
Posted Jul 28, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Sun Java System Application Server (SJSAS) and Sun Java System Web Server (SJSWS), which can be exploited by malicious people to gain knowledge of sensitive information.

tags | advisory, java, web
MD5 | 0abdeb437b4928c2ef7f8ee09a7c6248
Ubuntu Security Notice 328-1
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-328-1 - Mark Dowd discovered an off-by-one buffer overflow in the mod_rewrite module's ldap scheme handling for Apache 2.

tags | advisory, overflow
systems | linux, ubuntu
advisories | CVE-2006-3747
MD5 | f7dfeb500655513bde2fc845015f145e
Ubuntu Security Notice 327-1
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-327-1 - A multitude of javascript related vulnerabilities have been patched in Firefox.

tags | advisory, javascript, vulnerability
systems | linux, ubuntu
advisories | CVE-2006-3113, CVE-2006-3677, CVE-2006-3801, CVE-2006-3802, CVE-2006-3803, CVE-2006-3805, CVE-2006-3806, CVE-2006-3807, CVE-2006-3808, CVE-2006-3809, CVE-2006-3810, CVE-2006-3811, CVE-2006-3812
MD5 | 7e801bfa79b1c6235c2c40b735e4b950
Technical Cyber Security Alert 2006-208A
Posted Jul 28, 2006
Authored by US-CERT | Site cert.org

Technical Cyber Security Alert TA06-208A - The Mozilla web browser and derived products contain several vulnerabilities, the most serious of which could allow a remote attacker to execute arbitrary code on an affected system.

tags | advisory, remote, web, arbitrary, vulnerability
advisories | CVE-2006-3801, CVE-2006-3677, CVE-2006-3113, CVE-2006-3803, CVE-2006-3805, CVE-2006-3804, CVE-2006-3806, CVE-2006-3807, CVE-2006-3811
MD5 | b30e4f3549d6d2a510102aa7c8f8efb2
Ubuntu Security Notice 326-1
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-326-1 - Yan Rong Ge discovered that heartbeat did not set proper permissions for an allocated shared memory segment. A local attacker could exploit this to render the heartbeat service unavailable causing a denial of service condition.

tags | advisory, denial of service, local
systems | linux, ubuntu
advisories | CVE-2006-3815
MD5 | 68dcb259ec00bff26a001ecda3a338ed
Ubuntu Security Notice 325-1
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-325-1 - ruby1.8 suffer from flaws where the alias function, certain directory operations, and regular expressions did not correctly implement safe levels. Depending on the application these flaws might allow attackers to bypass safe level restrictions and perform unintended operations.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2006-3694
MD5 | f871c9ce413ce45050cfc2aaf09a69b6
secunia-XPCOM.txt
Posted Jul 28, 2006
Authored by Carsten Eiram | Site secunia.com

Secunia Research has discovered a vulnerability in Mozilla Firefox, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an memory corruption error within the handling of simultaneously happening XPCOM events resulting in the use of a deleted timer object. Successful exploitation allows execution of arbitrary code. Versions below 1.5.0.5 are susceptible.

tags | advisory, arbitrary
advisories | CVE-2006-3113
MD5 | bde6b1169cfc76eb2977349723567c93
winlpd.txt
Posted Jul 28, 2006
Authored by Pablo Isola

A stack-based buffer overflow has been discovered in Winlpd version 1.26.

tags | advisory, overflow
MD5 | dd3e1670b3b744d9d3d2d284237d2c30
Debian Linux Security Advisory 1126-1
Posted Jul 28, 2006
Authored by Debian | Site debian.org

Debian Security Advisory 1126-1 - A problem has been discovered in the IAX2 channel driver of Asterisk, an Open Source Private Branch Exchange and telephony toolkit, which may allow a remote to cause a crash of the Asterisk server.

tags | advisory, remote
systems | linux, debian
advisories | CVE-2006-2898
MD5 | 6c717c066efa96be031027b621f9de7b
NSFOCUS Security Advisory 2006.7
Posted Jul 28, 2006
Authored by NSFOCUS, Chen Qing | Site nsfocus.com

The NSFocus Security Team discovered a remote denial of service vulnerability in ISS RealSecure/BlackICE product lines' detection of the MailSlot Heap Overflow as discussed in MS06-035.

tags | advisory, remote, denial of service, overflow
advisories | CVE-2006-3840
MD5 | c4b7da5cb6a1bb73e20f9661c46d3c5a
yahooXSSflaw.txt
Posted Jul 28, 2006
Authored by Simo64 | Site morx.org

Yahoo! Mail suffers from a cross site scripting flaw.

tags | advisory, xss
MD5 | dc64250751f4fd8c40902709bc16c28d
Zero Day Initiative Advisory 06-025
Posted Jul 28, 2006
Authored by Tipping Point | Site zerodayinitiative.com

A vulnerability exists in Firefox versions 1.5.0 through 1.5.0.3 and SeaMonkey versions 1.0 through 1.0.2 that allows attackers to execute arbitrary code on vulnerable installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.

tags | advisory, arbitrary
advisories | CVE-2006-3677
MD5 | 4ef2a57d308d40c3d49d5f2bfe80cef5
Debian Linux Security Advisory 1125-1
Posted Jul 28, 2006
Authored by Debian | Site debian.org

Debian Security Advisory 1125-1 - Several remote vulnerabilities have been discovered in the Drupal web site platform, which may lead to the execution of arbitrary web scripts.

tags | advisory, remote, web, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2006-2742, CVE-2006-2743, CVE-2006-2831, CVE-2006-2832, CVE-2006-2833
MD5 | abbd15d2f338ba9d3547b2c5f1775893
Debian Linux Security Advisory 1111-2
Posted Jul 28, 2006
Authored by Debian | Site debian.org

Debian Security Advisory 1111-2 - It was discovered that a race condition in the process filesystem can lead to privilege escalation for the Linux 2.6 kernel series. The initial advisory lacked builds for the IBM S/390, Motorola 680x0 and HP Precision architectures, which are now provided. Also, the kernels for the FAI installer have been updated.

tags | advisory, kernel
systems | linux, debian
advisories | CVE-2006-3625
MD5 | 0527c5c202899e957c006982219ad651
SUSE-SA-2006-042.txt
Posted Jul 28, 2006
Site suse.com

SUSE Security Announcement SUSE-SA:2006:042 - A slew of kernel related vulnerabilities has been fixed in SUSE Linux for the 2.6 series.

tags | advisory, kernel, vulnerability
systems | linux, suse
advisories | CVE-2006-0744, CVE-2006-1528, CVE-2006-1855, CVE-2006-1857, CVE-2006-1858, CVE-2006-1859, CVE-2006-1860, CVE-2006-2444, CVE-2006-2445, CVE-2006-2448, CVE-2006-2450, CVE-2006-2451, CVE-2006-2934, CVE-2006-2935, CVE-2006-3085, CVE-2006-3626
MD5 | 1f9995f27ac47ea16eaf51417e6e827a
ciscoVPN.txt
Posted Jul 28, 2006
Authored by Roy Hills | Site nta-monitor.com

NTA Monitor discovered a denial of service vulnerability in the Cisco VPN 3000 series concentrator products while performing a VPN security test for a customer in July 2005. The vulnerability affects Phase-1 of the IKE protocol. Both Main Mode and Aggressive Mode over both UDP and TCP transports are affected. The vulnerability allows an attacker to exhaust the IKE resources on a VPN concentrator by sending a high rate of IKE requests, which will prevent valid clients from connected or re-keying. The attack does not require a high bandwidth, so one attacker could potentially target many concentrators. This mechanism behind this vulnerability is similar to the well-known TCP SYN flood vulnerability.

tags | advisory, denial of service, udp, tcp, protocol
systems | cisco
MD5 | 10be1a5fa890c9694fb8a199a8cab198
secunia-AutoVue.txt
Posted Jul 28, 2006
Authored by Tan Chew Keong | Site secunia.com

Secunia Research has discovered a vulnerability in AutoVue SolidModel Professional Desktop Edition, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the handling of ARJ, RAR, and ZIP archives. This can be exploited to cause a stack-based buffer overflow when a malicious archive containing a file with an overly long filename is opened. Successful exploitation allows execution of arbitrary code. AutoVue SolidModel Professional Desktop Edition version 19.1 Build 5993 is affected. Other versions may also be affected.

tags | advisory, overflow, arbitrary
advisories | CVE-2006-3350
MD5 | c224b91fd18fa7800c8b62df0d7b94fb
Ubuntu Security Notice 320-2
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 320-2 - USN-320-2 fixed several vulnerabilities in PHP. James Manning discovered that the Ubuntu 5.04 update introduced a regression, the function tempnam() caused a crash of the PHP interpreter in some circumstances. The updated packages fix this.

tags | advisory, php, vulnerability
systems | linux, ubuntu
MD5 | 67dc1b3f40e0b17696b72ffae751c7ff
Ubuntu Security Notice 323-1
Posted Jul 28, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 323-1 - A massive security update for multiple vulnerabilities in Mozilla has been released.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2006-2775, CVE-2006-2776, CVE-2006-2777, CVE-2006-2778, CVE-2006-2779, CVE-2006-2780, CVE-2006-2781, CVE-2006-2782, CVE-2006-2783, CVE-2006-2784, CVE-2006-2785, CVE-2006-2786, CVE-2006-2787
MD5 | fa69ec6a59a30bab3fb4a9ab6577f858
OpenPKG Security Advisory 2006.14
Posted Jul 28, 2006
Authored by OpenPKG Foundation | Site openpkg.org

OpenPKG Security Advisory OpenPKG-SA-2006.014 - Brian Caswell from Sourcefire discovered vulnerabilities in OSSP Shiela, a CVS repository access control and logging extension. The vulnerabilities allow arbitrary code execution during CVS file commits if a filename is specially crafted to contain shell commands.

tags | advisory, arbitrary, shell, vulnerability, code execution
advisories | CVE-2006-3633
MD5 | 25cbe3e8022a1332e867c9f8e53009f7
powerArchiver.txt
Posted Jul 28, 2006
Authored by Tan Chew Keong | Site vuln.sg

An arbitrary code execution vulnerability exists in PowerArchiver version 9.62.03.

tags | advisory, arbitrary, code execution
MD5 | 267edc4b189851724a63a443b2b84195
Secunia Security Advisory 19873
Posted Jul 28, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a user's system.

tags | advisory, vulnerability, xss
MD5 | 6d5b79cf995296d71f29bf6267d5a18f
Secunia Security Advisory 21162
Posted Jul 28, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported Heartbeat, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
MD5 | 707369d02d1b120ee082ee4ef1565d55
Page 1 of 22
Back12345Next

Top Authors In Last 30 Days

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close