Exploit the possiblities
Showing 1 - 25 of 670 RSS Feed

Files

Mandriva Linux Security Advisory 2006.219
Posted Dec 1, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-219-1 - GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPE_NAMES record with a symbolic link, which is not properly handled by the extract_archive function in extract.c and extract_mangle function in mangle.c, a variant of CVE-2002-1216.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2006-6097, CVE-2002-1216
MD5 | fc6c7979ea68386eb384cec8b81642e2
macosx-preauth.txt
Posted Dec 1, 2006
Authored by Mu Security Research | Site labs.musecurity.com

The network kernel extension com.apple.nke.pppoe that works concurrently with the pppd has a critical vulnerability that may lead to arbitrary code execution with system privileges. Affected product and versions include Mac OS X version 10.3.9, Mac OS X Server version 10.3.9, Mac OS X version 10.4.8, and Mac OS X Server version 10.4.8.

tags | advisory, arbitrary, kernel, code execution
systems | apple, osx
MD5 | f44848b5ca7af2a87549157a6f34a57f
proftpdmodtls.txt
Posted Dec 1, 2006
Authored by Evgeny Legerov

A remote buffer overflow vulnerability has been found in mod_tls module of ProFTPD server. The vulnerability could allow a remote un-authenticated attacker to gain root privileges. All versions including 1.3.0a are affected.

tags | advisory, remote, overflow, root
MD5 | ecfc1ef50d87351b49f60628686006c2
Ubuntu Security Notice 387-1
Posted Dec 1, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 387-1 - Dovecot was discovered to have an error when handling its index cache files. This error could be exploited by authenticated POP and IMAP users to cause a crash of the Dovecot server, or possibly to execute arbitrary code. Only servers using the non-default option "mmap_disable=yes" were vulnerable.

tags | advisory, arbitrary, imap
systems | linux, ubuntu
advisories | CVE-2006-5973
MD5 | 62f8dcbd3a3d4b3b0fdcc6f655dedd55
Ubuntu Security Notice 385-1
Posted Dec 1, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 385-1 - Teemu Salmela discovered that tar still handled the deprecated GNUTYPE_NAMES record type. This record type could be used to create symlinks that would be followed while unpacking a tar archive. If a user or an automated system were tricked into unpacking a specially crafted tar file, arbitrary files could be overwritten with user privileges.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2006-6097
MD5 | bfde5d7997b7b6a4f79a2a7a7b8c7e9b
gpgtaketwo.txt
Posted Dec 1, 2006
Authored by Werner Koch

While fixing a bug reported by Hugh Warrington, a buffer overflow has been identified in all released GnuPG versions. The current versions 1.4.5 and 2.0.0 are affected. A small patch is provided.

tags | advisory, overflow
MD5 | b61c2ceb35b9de65ad9a82a807753b38
remlab.txt
Posted Dec 1, 2006
Authored by Jesper Jurcenoks | Site netvigilance.com

REMLAB is susceptible to an input validation vulnerability.

tags | advisory
advisories | CVE-2006-5896
MD5 | d1caaadca7f4a3a46c0b7d7564716f81
Secunia Security Advisory 23143
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in KOffice, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | ced1c7a9dbd2688579e2134497177980
Secunia Security Advisory 23066
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Safari, which can be exploited by malicious people to conduct phishing attacks.

tags | advisory
MD5 | 9a6a07c0796b10f62619f11b3fe640c1
Secunia Security Advisory 23073
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Eugene Teo has reported a vulnerability in the Linux Kernel, which potentially can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, kernel, local
systems | linux
MD5 | 91cc05ff3a651b1a5690ab3749b5a53e
Secunia Security Advisory 23080
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in MailEnable, which can be exploited by malicious users to cause a DoS (Denial of service) or to compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
MD5 | ef6a76c3b154cdd628ae42954ec2f93b
Secunia Security Advisory 23110
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has isssued an update for gnupg. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.

tags | advisory
systems | linux, ubuntu
MD5 | f18f83bc70fa94b10c6b8b81f7238dd2
Secunia Security Advisory 23112
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for texinfo. This fixes some vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to potentially compromise a vulnerable system.

tags | advisory, local, vulnerability
systems | linux, debian
MD5 | 6282dd1efe445dbd2330f53e68ec7e38
Secunia Security Advisory 23124
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability with unknown impact has been reported in freePBX.

tags | advisory
MD5 | cb0edb61602af3d8a5317487bbd72461
Secunia Security Advisory 23126
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fukumori has reported a vulnerability in Blogn, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 66ea266b041c0521c4ca380de80f595b
Secunia Security Advisory 23138
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some bugs have been discovered in Adobe Reader and Adobe Acrobat, which may cause an included ActiveX control to crash.

tags | advisory, activex
MD5 | 2261c6a5a44a87edf76e4d48b242dc3a
Secunia Security Advisory 23145
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Kronolith, which can be exploited by malicious users to disclose sensitive information.

tags | advisory
MD5 | 9aafefdb640c585655162dd596a92c9e
Secunia Security Advisory 23147
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Aria-Security Team have reported a vulnerability in fipsShop, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 25e4dd9a1513ff7fef4c057911fe8cd6
Secunia Security Advisory 23148
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - tarkus has discovered some vulnerabilities in b2evolution, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 9e85da46ef542a622e46071cf7933cac
Secunia Security Advisory 23149
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Chama Cargo, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | f0c20a63f8d86fae6b74c4117735c946
Secunia Security Advisory 23154
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for mono. This fixes a vulnerability, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

tags | advisory, local
systems | linux, gentoo
MD5 | d14780d739db6789079b1d542608ccf4
Secunia Security Advisory 23156
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for lha. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
MD5 | f4cc81553d5a1839ad1485428e5bdad8
Secunia Security Advisory 23162
Posted Nov 30, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for koffice. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
systems | linux, ubuntu
MD5 | fe11a4dd9ae2be72d6a31fabb8159ffd
Mayhemic Labs Security Advisory 2006.4
Posted Nov 29, 2006
Authored by Mayhemic Labs Security, Mayhemic Labs | Site mayhemiclabs.com

Mayhemic Labs Public Advisory MHL-2006-004 - MBoard does not check the Post ID for malicious data when replying, allowing an attacker to create blank files on the system wherever the web server has write access. Versions 1.22 and below are affected.

tags | advisory, web
MD5 | 3e0d5f7e7a78b8175c6157c4ba767472
Debian Linux Security Advisory 1219-1
Posted Nov 29, 2006
Authored by Debian | Site debian.org

Debian Security Advisory 1219-1 - The GNU texinfo package has been found susceptible to insecure file handling and buffer overflow flaws.

tags | advisory, overflow
systems | linux, debian
advisories | CVE-2005-3011, CVE-2006-4810
MD5 | 4801675a34029726bda216edaa28938c
Page 1 of 27
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Germany Urges Parents To Destroy Snooping Smartwatches
Posted Nov 20, 2017

tags | headline, privacy, germany
Drone Maker Makes Hacking Accusations
Posted Nov 20, 2017

tags | headline, hacker, flaw
DNS Resolver 9.9.9.9 Will Check Requests Against IBM Threat Database
Posted Nov 20, 2017

tags | headline, malware, dns
F5 DROWNing, Not Waving, In Crypto Fail
Posted Nov 20, 2017

tags | headline, flaw, cryptography
Cap'n Crunch Booted From Conferences Due To Sexual Misconduct Claims
Posted Nov 18, 2017

tags | headline, hacker, phone, conference
3 More Android Malware Families Invade Google Play Store
Posted Nov 18, 2017

tags | headline, malware, phone, google
Shamed TLS/SSL Cert Authority StartCom To Shut Up Shop
Posted Nov 18, 2017

tags | headline, privacy, data loss, flaw, cryptography
Massive US Military Social Media Spying Archive Left Wide Open In AWS S3 Buckets
Posted Nov 18, 2017

tags | headline, government, privacy, usa, amazon, data loss, flaw, spyware, social
NYPD Cops Need A Warrant To Snoop On Your Phone
Posted Nov 17, 2017

tags | headline, government, privacy, usa, phone
Oracle Scrambles To Fix Security Flaws In Tuxedo
Posted Nov 17, 2017

tags | headline, database, flaw, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close