Exploit the possiblities
Showing 1 - 25 of 465 RSS Feed

Files

Mandriva Linux Security Advisory 2007.051
Posted Mar 6, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Security Advisory - An algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, allows remote attackers to cause a denial of service (CPU consumption and detection outage) via crafted network traffic, aka a backtracking attack.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2006-6931
MD5 | 53d7d5dd9bc1a6b957702dff664a6cfc
ledger-multi.txt
Posted Mar 6, 2007
Authored by Chris Travers

Another security issue has been found in LedgerSMB versions 1.1.5 and below and all versions of SQL-Ledger which allows an attacker to engage in directory transversal, retrieval of sensitive information, user account fabrication, or even arbitrary code execution.

tags | advisory, arbitrary, code execution
MD5 | 3ecf46beda31a0753fb83f0cdfdc107b
Technical Cyber Security Alert 2007-59A
Posted Mar 6, 2007
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA07-059A - A worm is exploiting a vulnerability in the telnet daemon (in.telnetd) on unpatched Sun Solaris systems. The vulnerability allows the worm (or any attacker) to log in via telnet (23/tcp) with elevated privileges.

tags | advisory, worm, tcp
systems | solaris
advisories | CVE-2007-0882
MD5 | 3c73f4b71f6456ca1c51dfdb2699536c
Mandriva Linux Security Advisory 2007.050
Posted Mar 6, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.10.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2006-6077, CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0777, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981, CVE-2007-0995, CVE-2007-0996, CVE-2007-1092
MD5 | 15b10f6ffa7af181925ec1386a74cb9c
CA Security Advisory 35112
Posted Mar 6, 2007
Authored by Ken Williams, Computer Associates | Site www3.ca.com

CA eTrust Intrusion Detection contains a vulnerability that can allow a remote attacker to cause a denial of service condition. Affected Products include eTrust Intrusion Detection 3.0 SP1, eTrust Intrusion Detection 3.0, and eTrust Intrusion Detection 2.0 SP1.

tags | advisory, remote, denial of service
advisories | CVE-2007-1005
MD5 | 12add59dad847ba49e68e54ca2879c5b
Ubuntu Security Notice 428-1
Posted Mar 6, 2007
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 428-1 - Firefox has been patched to fix a slew of miscellaneous vulnerabilities including cross site scripting and SSL flaws.

tags | advisory, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2006-6077, CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0776, CVE-2007-0777, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981, CVE-2007-0995, CVE-2007-0996, CVE-2007-1092
MD5 | 3300c941a12a3ac1f996e8b22c1dc121
Cisco Security Advisory 20070228-mpls
Posted Mar 6, 2007
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Catalyst 6500 series systems that are running certain versions of Cisco Internetwork Operating System (IOS) are vulnerable to an attack from a Multi Protocol Label Switching (MPLS) packet. Only the systems that are running in Hybrid Mode (Catalyst OS (CatOS) software on the Supervisor Engine and IOS Software on the Multilayer Switch Feature Card (MSFC)) or running with Cisco IOS Software Modularity are affected.

tags | advisory, protocol
systems | cisco
MD5 | f4f1ef6216f388ba59e83f34ad1a654a
xbox-pwn.txt
Posted Mar 6, 2007
Authored by Anonymous Hacker

A vulnerability has been discovered in the Xbox 360 hypervisor that allows privilege escalation into hypervisor mode. Together with a method to inject data into non-privileged memory areas, this vulnerability allows an attacker with physical access to an Xbox 360 to run arbitrary code such as alternative operating systems with full privileges and full hardware access.

tags | advisory, arbitrary
MD5 | 04d35c943641f1ddf43aadb85b76cf24
Gentoo Linux Security Advisory 200702-12
Posted Feb 28, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200702-12 - When certain CHM files that contain tables and objects stored in pages are parsed by CHMlib, an unsanitized value is passed to the alloca() function resulting in a shift of the stack pointer to arbitrary memory locations. Versions less than 0.39 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2007-0619
MD5 | 4bc3efc12110f8aaabe1ae8edafe0e9f
Gentoo Linux Security Advisory 200702-11
Posted Feb 28, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200702-11 - When checking for matching asm rules in the asmrp.c code, the results are stored in a fixed-size array without boundary checks which may allow a buffer overflow. Versions less than 1.0_rc1-r2 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2006-6172
MD5 | 197d8c9db70029d6ae36018aa3aea123
sehato-msvulns.txt
Posted Feb 28, 2007
Authored by SehaTo

Multiple vulnerabilities have surfaced in multiple Windows applications. Follow the links in your Russian is decent.

tags | advisory, vulnerability
systems | windows
MD5 | da452c44ad9c1a1f2607d1ab4d76c382
Gentoo Linux Security Advisory 200702-10
Posted Feb 28, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200702-10 - Five vulnerabilities were found: a buffer overflow in recv_add_unit(); a problem with improperly trusting user-supplied string information in decode_stringmap(); several issues with array manipulation via various commands during play; an SQL injection in server_protocol.cpp; and finally, a second buffer overflow in recv_map_data(). Versions less than 0.7.1062 are affected.

tags | advisory, overflow, vulnerability, sql injection
systems | linux, gentoo
advisories | CVE-2006-3788, CVE-2006-3789, CVE-2006-3790, CVE-2006-3791, CVE-2006-3792
MD5 | 99ddea7ead4b117736587c51b15ba5ce
Gentoo Linux Security Advisory 200702-9
Posted Feb 28, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200702-09 - Nexuiz fails to correctly validate input within client commands. There is also a failure to correctly handle connection attempts from remote hosts. Versions less than 2.2.1 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2006-6609, CVE-2006-6610
MD5 | 11797420f26fd61954d872d5bccdfa78
pwg141-xss.txt
Posted Feb 28, 2007
Authored by Simon Bonnard

PHPWebGallery version 1.4.1 suffers from multiple cross site scripting flaws.

tags | advisory, xss
MD5 | a55343f4a4fdbf73b3fb8c0d1d3e425f
Mandriva Linux Security Advisory 2007.049
Posted Feb 28, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Security Advisory - A bug in the way that SpamAssassin processes HTML emails containing URIs was discovered in versions 3.1.x. A carefully crafted mail message could make SpamAssassin consume significant amounts of CPU resources that could delay or prevent the delivery of mail if a number of these messages were sent at once. SpamAssassin has been upgraded to version 3.1.8 to correct this problem, and other upstream bugs. In addition, an invalid path setting in local.cf for the auto_whitelist_path has been fixed for Mandriva 2007.0.

tags | advisory, local
systems | linux, mandriva
advisories | CVE-2007-0451
MD5 | f4d8a1a4346dd02fafbba6c3cd88b3f7
mtcms.txt
Posted Feb 28, 2007
Authored by laurent gaffie

MTCMS version 2.2 suffers from upload and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | bb98b497f1080db42973e68d02402849
Secunia Security Advisory 24171
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Rich Mogull has reported a security issue in Parallels Desktop for Mac, which can be exploited by malicious software to bypass certain security restrictions.

tags | advisory
MD5 | 62caa4531f6d78521850bb65adb2d12f
Secunia Security Advisory 24221
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - DarkFig has discovered a vulnerability in NukeSentinel, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | b165b110454560996ea52991a70b681e
Secunia Security Advisory 24238
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of sensitive information, and potentially compromise a user's system.

tags | advisory, spoof, vulnerability, xss
MD5 | a2f265def4699c943bddccf673e77f45
Secunia Security Advisory 24252
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla Thunderbird, which potentially can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 15074d33d42b2a47fe8c4a6edcf08034
Secunia Security Advisory 24253
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Network Security Services (NSS), which potentially can be exploited by malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
MD5 | 8c8e620614900d072e4e0f83c9445ca3
Secunia Security Advisory 24254
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - R00T[ATI] has reported a vulnerability in Audins Audiens, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | d6afd7390aefee0e4f04481e23bd8a60
Secunia Security Advisory 24256
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for spamassassin. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, mandriva
MD5 | 371d7e5cc5c449d03b8b8193d9847ece
Secunia Security Advisory 24265
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - rPath has issued an update for spamassassin. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | aa66c9bf9862dea7a5ab42219301e6ba
Secunia Security Advisory 24266
Posted Feb 27, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in Putmail, which can be exploited by malicious people to gain knowledge of sensitive information.

tags | advisory
MD5 | 9abea824a2e5ca961256339e9a245b2a
Page 1 of 19
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Language Bugs Infest Downstream Software
Posted Dec 11, 2017

tags | headline, flaw
German Spy Agency Warns Of Chinese LinkedIn Espionage
Posted Dec 11, 2017

tags | headline, government, china, cyberwar, germany, spyware, social
Dynamics 365 Sandbox Leaked TLS Certificates
Posted Dec 11, 2017

tags | headline, privacy, microsoft, data loss, flaw, cryptography
Keylogger Uncovered On Hundreds Of HP PCs
Posted Dec 11, 2017

tags | headline, flaw, spyware, backdoor
PlexCoin Scam Founder Sentenced To Jail And Fined $10k
Posted Dec 10, 2017

tags | headline, cybercrime, fraud, scam, cryptography
Google Lifts Lid On FBI Data Requests: Now You Can Read Actual Letters Online
Posted Dec 9, 2017

tags | headline, government, privacy, usa, google, fbi
Android Flaw Lets Attack Code Slip Into Signed Apps
Posted Dec 9, 2017

tags | headline, malware, phone, flaw, google
Millions Stolen In NiceHash Bitcoin Heist
Posted Dec 9, 2017

tags | headline, hacker, cybercrime, fraud, cryptography
Apple HomeKit Flaw Left Smart Gadgets Vulnerable
Posted Dec 9, 2017

tags | headline, flaw, apple
Intel Management Engine Pwned By Buffer Overflow
Posted Dec 7, 2017

tags | headline, hacker, flaw, conference, intel
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close