ChangePassword, YP/Samba/Squid password-changing tool has a local vulnerability which allows attackers to seize control of the computer. Exploit information included.
148f5a585e39082b31297373a35c22542d1c471e484e395f72d6043026ec5921
ISIC is a suite of utilities to exercise the stability of an IP Stack and its component stacks (TCP, UDP, ICMP et. al.) It generates piles of pseudo random packets of the target protocol. The packets be given tendencies to conform to. Ie 50% of the packets generated can have IP Options. 25% of the packets can be IP fragments... But the percentages are arbitrary and most of the packet fields have a configurable tendency. The packets are then sent against the target machine to either penetrate its firewall rules or find bugs in the IP stack. ISIC also contains a utility generate raw ether frames to examine hardware implementations. Other novel uses people have found for ISIC include IDS testing, stack fingerprinting, breaking sniffers and barraging the IRC kiddie.
e198c4061798d47fd4b00f9f90cd56336145e551ca763571c2023624dfa7bc5f
phpBB 2.x with PHP here.
e1357fb7fcc9cb647430daf3a8e9edd488f1b44a890b79b618666f5c31d3e77e