Exploit the possiblities
Showing 1 - 25 of 531 RSS Feed

Files

Gentoo Linux Security Advisory 200703-28
Posted Apr 2, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-28 - CUPS does not properly handle partially-negotiated SSL connections. Upon receiving a partially-negotiated SSL connection, CUPS no longer accepts further incoming connections, as the initial connection never times out. Versions less than 1.2.9 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-0720
MD5 | 920c2983777a8f7036265decde3d43a8
Gentoo Linux Security Advisory 200703-27
Posted Apr 2, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-27 - Squid incorrectly handles TRACE requests that contain a Max-Forwards header field with value 0 in the clientProcessRequest() function. Versions less than 2.6.12 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-1560
MD5 | 040a5cb09700e4437e32bb0daf91150b
TSRT-07-03.txt
Posted Apr 2, 2007
Authored by Cody Pierce | Site tippingpoint.com

A vulnerability allows attackers to execute arbitrary code on vulnerable installations of America Online with Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. Affected software is America Online 9.0 Security Edition.

tags | advisory, arbitrary
advisories | CVE-2006-5820
MD5 | feed154481807e4597344131ae4096a8
Gentoo Linux Security Advisory 200703-26
Posted Apr 2, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-26 - Jean-S

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-1536
MD5 | 64096e81725c67cc104d16cbc9963279
Technical Cyber Security Alert 2007-89A
Posted Apr 2, 2007
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA07-089A - A stack buffer overflow exists in the code that Microsoft Windows uses to processes animated cursor files. Specifically, Microsoft Windows fails to properly validate the size of an animated cursor file header supplied in animated cursor files. Animated cursor files can be included with HTML files. For instance, a web site can use an animated cursor file to specify the icon that the mouse pointer should use when hovering over a hyperlink. Because of this, malicious web pages and HTML email messages can be used to exploit this vulnerability. In addition, animated cursor files are automatically parsed by Windows Explorer when the containing folder is opened or the file is used as a cursor. Because of this, opening a folder that contains a specially crafted animated cursor file will also trigger this vulnerability. Note that Windows Explorer will process animated cursor files with several different file extensions, such as .ani, .cur, or .ico. Furthermore, Windows will automatically render animated cursor files referenced by HTML documents regardless of the animated cursor file extension. This vulnerability is actively being exploited.

tags | advisory, web, overflow
systems | windows
MD5 | 83545faadfb01d5347176a9c86e57d39
VMware Security Advisory 2007-0002
Posted Apr 2, 2007
Authored by VMware | Site vmware.com

VMware Security Advisory - The VMware ESX server has new patches released that address a slew of security issues.

tags | advisory
advisories | CVE-2006-3739, CVE-2006-3740, CVE-2006-6097, CVE-2006-4334, CVE-2006-4338, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337
MD5 | ece4cd66c4136b49aed17606b9c02ca4
shk-004.txt
Posted Apr 2, 2007
Authored by M. Shirk

Computer Associates (CA) Brightstor Backup suffers from a remote code execution vulnerability in Mediasvr.exe.

tags | advisory, remote, code execution
MD5 | 80804597ada65b6b15b178e9a5717a62
Mandriva Linux Security Advisory 2007.073
Posted Apr 2, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Stack-based buffer overflow in the StarCalc parser in OpenOffice.org (OOo) Office Suite allows user-assisted remote attackers to execute arbitrary code via a crafted document. OpenOffice.org (OOo) Office Suite allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a prepared link in a crafted document.

tags | advisory, remote, overflow, arbitrary, shell
systems | linux, mandriva
advisories | CVE-2007-0238, CVE-2007-0239
MD5 | cc4084a02836a4fc46679d725b688a54
Gentoo Linux Security Advisory 200703-25
Posted Apr 2, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-25 - Mu Security has discovered that Ekiga fails to implement formatted printing correctly. Versions less than 2.0.7 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-1006
MD5 | 1a13357f18a2b83fc477cd9fed9c8807
Mandriva Linux Security Advisory 2007.072
Posted Apr 2, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in a FTP PASV command.

tags | advisory, remote, protocol
systems | linux, mandriva
advisories | CVE-2007-1564
MD5 | e80664e938b846e1b7aa9f3fb3ee6d61
Mandriva Linux Security Advisory 2007.071
Posted Apr 2, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Integer overflow in X MultiMedia System (xmms) 1.2.10, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which triggers memory corruption. Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack- based buffer overflow.

tags | advisory, remote, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2007-0653, CVE-2007-0654
MD5 | 342b18e956fca5df199d1e16e3964f76
iDEFENSE Security Advisory 2007-03-29.1
Posted Apr 2, 2007
Authored by iDefense Labs, Andrew Christensen | Site idefense.com

iDefense Security Advisory 03.29.07 - Remote exploitation of a input validation vulnerability in IBM Corp.'s Lotus Sametime allows attackers to execute arbitrary code in the context of the user viewing a malicious web page. The problem specifically exists in the STJNILoader.ocx component of IBM Corp.'s Lotus Sametime product. This ActiveX control is safe for scripting and exports a LoadLibrary function that does not properly sanitize input. iDefense has confirmed that this vulnerability is present in IBM Corp.'s Lotus Sametime STJNILoader.ocx version 3.1.0.26.

tags | advisory, remote, web, arbitrary, activex
MD5 | d2a6b72234e867756deaf189de4faed8
aol-dos.txt
Posted Apr 2, 2007
Authored by Justin Seitz

AOL has recently been made aware of a denial of service condition that exists in early versions of the AOL 9.0 client software.

tags | advisory, denial of service
MD5 | 0711cb74c450ea2d89b5fb1cc01a6f05
Ubuntu Security Notice 447-1
Posted Apr 2, 2007
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 447-1 - It was discovered that Konqueror did not correctly handle iframes from JavaScript. If a user were tricked into visiting a malicious website, Konqueror could crash, resulting in a denial of service. A flaw was discovered in how Konqueror handled PASV FTP responses. If a user were tricked into visiting a malicious FTP server, a remote attacker could perform a port-scan of machines within the user's network, leading to private information disclosure.

tags | advisory, remote, denial of service, javascript, info disclosure
systems | linux, ubuntu
advisories | CVE-2007-1308, CVE-2007-1564
MD5 | 24a78c76fde9f65c539db7fd0c570fe4
Secunia Security Advisory 24636
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to overwrite arbitrary files, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, arbitrary, local, vulnerability
MD5 | 85ac16428b8e8749a28b80765ee0a9c1
Secunia Security Advisory 24657
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Javier Olascoaga has reported some vulnerabilities in IronMail, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | ea48aacec7b3028c3da8b7869936ce29
Secunia Security Advisory 24658
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in various Linksys products, which can be exploited to disclose certain sensitive information.

tags | advisory
MD5 | 0f70d81a00ae1a4cb2bd8c12dafa295f
Secunia Security Advisory 24659
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.

tags | advisory
systems | windows
MD5 | ca86bb6100303495137e184776288264
Secunia Security Advisory 24661
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - rPath has issued an update for inkscape. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 0670c6f31a1ccc4495aab93679a95805
Secunia Security Advisory 24664
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Jonathan So has discovered a vulnerability in Corel WordPerfect Office X3, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 435e87d6fd96e6b9fb51eae8517736e0
Secunia Security Advisory 24666
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Elliot Kendall has reported a weakness in DataDomain OS, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
MD5 | 3f8c145abf8b4d3dc4b512b6f3c1371a
Secunia Security Advisory 24667
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weakness has been reported in Windows Vista, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | windows, vista
MD5 | db636e5a958775755a35fb72c99ef205
Secunia Security Advisory 24669
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Overlay Weaver, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 4d9105392433810a8825a1bc6f3857f5
Secunia Security Advisory 24674
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in CruiseWorks, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
MD5 | ed4946247f9a8b49e8f92b0b5011c991
Secunia Security Advisory 24676
Posted Apr 2, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for openoffice.org. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | bbd26eef56797db593ece587af4a8c03
Page 1 of 22
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
PlexCoin Scam Founder Sentenced To Jail And Fined $10k
Posted Dec 10, 2017

tags | headline, cybercrime, fraud, scam, cryptography
Google Lifts Lid On FBI Data Requests: Now You Can Read Actual Letters Online
Posted Dec 9, 2017

tags | headline, government, privacy, usa, google, fbi
Android Flaw Lets Attack Code Slip Into Signed Apps
Posted Dec 9, 2017

tags | headline, malware, phone, flaw, google
Millions Stolen In NiceHash Bitcoin Heist
Posted Dec 9, 2017

tags | headline, hacker, cybercrime, fraud, cryptography
Apple HomeKit Flaw Left Smart Gadgets Vulnerable
Posted Dec 9, 2017

tags | headline, flaw, apple
Intel Management Engine Pwned By Buffer Overflow
Posted Dec 7, 2017

tags | headline, hacker, flaw, conference, intel
Google Steps Up Browser Rivalry With Site Isolation Security
Posted Dec 7, 2017

tags | headline, google, chrome
Ajit Pai Falsely Claims Killing Net Neutrality Helps The Sick
Posted Dec 7, 2017

tags | headline, government, usa, fraud
Bitcoin Breaks Through The $15,000 Mark
Posted Dec 7, 2017

tags | headline, cryptography
CryptoKitties Craze Slows Down Transactions On Ethereum
Posted Dec 6, 2017

tags | headline, denial of service, cryptography
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close