Proof of concept exploit that causes a denial of service condition in RSniff.
27dd90162b626e64cea457d09acb5e09e8e34397206f3274120e96764781b96fRSniff, the packet sniffer for Linux, is susceptible to a denial of service attack.
63e855d919cd019e79d1bb3e8434abfd0ecbdb2f5a5c18f5366896725207f863Gentoo Linux Security Advisory GLSA 200404-12 - Scorched 3D (build 36.2 and before) does not properly check the text entered in the Chat box (T key). Using format string characters, you can generate a heap overflow. This and several other unchecked buffers have been corrected in the build 37 release.
7cc0f27c7cfcf31aba5925849d764bba47c7530c06c0e539c47af1455f98b1a1Gentoo Linux Security Advisory GLSA 200404-11 - Multiple vulnerabilities have been found in the implementation of protocol H.323 contained in pwlib. Most of the vulnerabilities are in the parsing of ASN.1 elements which would allow an attacker to use a maliciously crafted ASN.1 element to cause unpredictable behavior in pwlib. Versions affected are 1.5.2-r2 and below.
658918b474c937ad91678732957c057690adb54ec7abe93ce910c34aef5c29d9Crackalaka version 1.0.8 is susceptible to a denial of service attack when it attempts to manage an unallocated sector of memory.
9dde802d0a2e809557045796e6a9e20512b83f9e5adb65b97c9b9917b77689abMonit versions 4.1 and below remote denial of service exploit. Tested on Mandrake 9.1.
fd0e0cb327f08cd59490c5fa7b8eb5cdf849d936a4d69a4b1ac7526e864adcddCERT Advisory TA04-099A - A cross-domain scripting vulnerability in Microsoft Internet Explorer (IE) could allow an attacker to execute arbitrary code with the privileges of the user running IE. The attacker could also read and manipulate data on web sites in other domains or zones.
45b5d0160e0525654903fd7af4653ab79ae3fdd6b7c8b72ed954e36b0b24febaRemote exploit that makes use of overflows in versions 0.4.4 and below of LCDproc's daemon.
88025a702af48e6df6a33abdefbf654f1a43d47098fb37126af799e9e62b42d0Priv8 Security Research Advisory #2004-002 - Versions 0.4.1 and below of LCDproc are vulnerable to multiple bugs that allow for arbitrary code execution.
82092cf612491eeb7dec6e405e05b133230a3034908b558a3d4ebed584972c09Priv8 Security Research Advisory #2004-001 - All versions of LCDproc are vulnerable to a remotely exploitable buffer overflow that allows attackers to execute arbitrary code. The problem appears in function parse_all_client_messages() of parse.c file where a loop does not check if MAXARGUMENTS were reached, causing the program to crash when lots of arguments are passed to the function.
e6a3e47f9d3eb96f5fee396fb74b7e9a707654dae6aef17892ce43f2ff5ebf5cPHRACK 62 - CALL FOR PAPERS: The deadline is July 1st, 2004. Please submit your work as soon as possible. Hard cover copies will be made and released at Ruxcon in Australia this year.
4773daf98c38ae3068e3d054d9e7d43d17b8378fc00c71b058d7f29e4bc46db9InAccess Networks Security Advisory - A heap overflow vulnerability exists in Oracle 9iAS / 10g Application Server Web Cache that allows for arbitrary code execution.
4e378c70e2ef00bc393079279435003c09bf5895c7e3812c496bd01f0d2d04f9tcpick is a textmode sniffer that can track TCP streams and saves the data captured in files or displays them in the terminal. It is useful for picking files in a passive way. It can store all connections in different files, or it can display all the stream on the terminal with colors.
db19142fd2ca6218ead04fb3144b1640e2ad5a1c784a4e790c8816a37a79ac2e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed