SuSE Security Announcement SuSE-SA:2001:01 - The runtime-linker as used in the SuSE distributions ignores the content of the critical environment variables, allowing local users to link against user-specified libraries and obtain the privilege level of a setuid binary. To eliminate these problems, we provide update packages that completely disregard the LD_* variables upon runtime-linking of a binary that has an effective uid different from the caller's userid.
c959686d9a258fb810d00f98affd0b148445bc3d843faa9b12731301bca404d7Debian Security Advisory DSA-022-1 - Exmh v2.2 and below used /tmp for storing temporary files. No checks were made to ensure that nobody placed a symlink with the same name in /tmp in the meantime and thus was vulnerable to a symlink attack.
aea54c62b3f77b38eb1f92542228e6465d99c6c6e6dd638298b2675ebadd3162Debian Security Advisory DSA-020-1 - A vulnerability has been found in PHP4 v4.0.4 and below which crashes PHP and sends the source to the client instead of executing it.
bb0ed2ba4c284395b52730828736431794ec9352c0784596acc41bf18e23fae5Debian Security Advisory DSA-019-1 - A tempfile bug has been found in Squid v2.3stable4 when it sends out email messages about updates.
528ff25b24bdc6993113820494616eb155ace0b5d0d31fabcb99e2b9e745a833Red Hat Security Advisory RHSA-2001:005-03 - New micq packages are available which fix a buffer overflow vulnerability in micq v0.4.6.
91fa11d7bbaf73cf8be4bec6a8afdbcaa2e61cf6c55d10f0320ef90720ab2c5ciSSL is a library offering a minimal cryptographical API that uses the ciphers RSA and AES to establish SSL-alike, secure encrypted communications between two peers communicating through a network socket, including session key generation and public key exchange.
c7b076983ae443493c28658e3f700e1ee7cb1fe373f4da1f97a31184309e9977Stacheldraht v1.666 + antigl + yps distributed denial of service tool.
3968f24900971c19c5ef5de6a214e0dcd9b32eff57d3a4771c9bd01d8246d735SecureStack 1.0 s capable of protecting Windows NT/2000 systems from buffer overflow attacks.
544598b8597a183f6f5f68b0e409bc76c4532fbdc5d78d9440ebea6ae18d775aFreeBSD Security Advisory FreeBSD-SA-01:09 - Crontab contains a vulnerability which allows local users to read any file on the system which conforms to a valid cron syntax. This allows other users crontab files to be read, in addition to any file which has every line commented out.
fd92735a188ed65d858f555a094b40c039f37116c9cb3dd904afe640d0b04a59Microsoft Security Bulletin MS01-002 - A serious vulnerability in Microsoft Powerpoint allows remote code execution when a user is enticed into visiting a malicious website, viewing a specially crafted email message, or opening a malformed PowerPoint 2000 file. A parsing routine executed when PowerPoint 2000 opens files contains a buffer overflow vulnerability which allows attackers to crash or cause arbitrary code to run on the user's machine. Microsoft FAQ on this issue available here.
01c54da2fbcf20212d99f8f315627f0b72ecbe4d335a180d1785676c2723b7d8TCT is a collection of tools which are geared towards gathering and analyzing forensic data UNIX system after a break-in. TCT features the grave-robber tool which captures information, the ils and mactime tools that display access patterns of files dead or alive, the unrm and lazarus tools that recover deleted files, and the keyfind tool that recovers cryptographic keys from a running process or from files. TCT is tested on Linux, BSD, Solaris, and SunOS. For more information see the handouts from Dan Farmer and Wietse Venema's computer forensics analysis class.
e4438d2f382400b4536a7defbae70fd2a6c1e333051c013b1c5bebb0630a46cdPwdump3 combines the functionality of pwdump by Jeremy Allison and pwdump2 by Todd Sabin. It is capable of extracting the password hashes from a remote Windows NT 4.0 or 2000 box whether or not syskey has been installed. This is accomplished by injecting a process onto the remote system, extracting the hashes, then copying the hashes back to the local system. This is a useful tool for checking password strength.
e131651d88bd0a5dde39f2b83e0a0f5ad713930148b2a5effc6cb2288f53b5afTcpbroker does TCP port forwarding with a twist - it connects two incoming sockets together. Tcpbroker allows you to telnet out from behind a firewall to another system also behind a firewall via a proxy host running the broker. All you need to do is remote command the far system to make the outgoing connection to the broker. Tcpbroker includes a secure authentication mechanism via Tiny SRP. A version without authentication is also included.
bb01a2350398d36711df365103717a05d1a97a3d9f35d80b971b6c6da5308b3d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed