Fast httpd scanner that scans a block of IPs using a half open scan.
2defbdb4ab4e646551e3f5483833a3029ed3bac341a8d20e07d7d3da00941bc1Tool to manipulate /dev/kmem (kernel memory) to completely hide LKMs. Tested on 2.4.x.
afad67bd1962d78e3fc466bb2136fbfb5d512592976a66548ebc68a60de238b3Gentoo Linux Security Advisory GLSA 200504-30 - The phpMyAdmin installation process leaves the SQL install script with insecure permissions. Versions less than 2.6.2-r1 are affected.
2f14682c3d2c1ce53dc09035ebfa9852d3f37d2162c30a53ce2789161c0d33bdGentoo Linux Security Advisory GLSA 200504-29 - Steven Van Acker has discovered a buffer overflow vulnerability in the add_port() function in Pound. Versions less than 1.8.3 are affected.
508acf6707fea998ce6f61a2d863c2f1364881a6c998ee20d344d408a8cedea3Gentoo Linux Security Advisory GLSA 200504-28 - Buffer overflow vulnerabilities in the slc_add_reply() and env_opt_add() functions have been discovered by Gael Delalleau in the telnet client in Heimdal. Versions less than 0.6.4 are affected.
8f9785ac0de012dcf5e162da16f150a5a3fc8423a3b5bf8c8f0c7332c37b590akoobi-cms 4.2.3 is susceptible to SQL injection attacks.
6bd4dc672ea366510896c4cecd7c7df7b8b5c4e357ceb00b84a6777bf1918209iDEFENSE Labs is pleased to announce the release of dltrace, a portable dynamic library call tracer. dltrace attempts to remain portable to all x86 platforms which support the execution of ELF binaries and expose a debugging interface via procfs or the ptrace() system call. The shared library call tracing is done at a level which allows all calls to all exported symbols in loaded libraries to be traced. In addition, dltrace does not rely on specific rtld exports to retrieve library and symbol information and is capable of determining function arguments dynamically via run-time disassembly.
af2778862bb15d5835935aefe4be1df15d536564b73ac5c65d96b716ed90fce4Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
787cba086d32cc315a5b125b802f61d9a5a5a274eaa67dad5a9069d1bfe47d0cZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
03058269a8c2f1db739da5e0b11273e4c3034af25c30eaa2f7a7e4b44c959fadiDEFENSE Security Advisory 06.23.05-5 - Remote exploitation of a heap-based buffer overflow vulnerability in the RealText file format parser within various versions of RealNetworks Inc.'s RealPlayer could allow attackers to execute arbitrary code. The vulnerability specifically exists because of a string copying operating into a fixed size heap buffer using the sprintf function. iDEFENSE Labs has confirmed that RealNetworks' RealPlayer 10.5 6.0.12.1056 on Windows and RealPlayer 10 and 10.0.1.436 on Linux are vulnerable.
df026c704e3ad34d1768b14092ad473096836595c1ffcde9e7933fe03348e7d9iDEFENSE Security Advisory 06.23.05-4 - Remote exploitation of an access validation vulnerability in Veritas Backup Exec for Windows provides attackers with 'Administrator' privileges over the target system's registry.
ab285af36fc9830fbc0a7b5f5e8ac6f339f5f74fb5e182a0d7517727e7f76b6eiDEFENSE Security Advisory 06.23.05-3 - Remote exploitation of a denial of service condition in Veritas Software Corp.'s Backup Exec allows attackers to crash the vulnerable service.
0a9c433c89e531d25308929e144ba32635a04db53a759bc07bad31834203b95fiDEFENSE Security Advisory 06.23.05-2 - Exploitation of a buffer overflow vulnerability in Veritas Software Corp.'s Backup Exec allows remote attackers to execute arbitrary code. Veritas Backup Exec uses the standard NMDP protocol to communicate with the listening agents. The vulnerability specifically exists because of improper handling of request packets with an unexpected Error Status value.
34c571e007340cd8773d461ea89bbddc2583feac6bc71d7d8bc24b3d3f6939abiDEFENSE Security Advisory 06.23.05-1 - Exploitation of a buffer overflow vulnerability in Veritas Software Corp.'s Backup Exec allows remote attackers to execute arbitrary code. Veritas Backup Exec uses the standard NMDP protocol to communicate with the listening agents. The NMDP protocol allows multiple authentication types, including support for Windows user credentials. The vulnerability specifically exists because of insufficient input validation on CONNECT_CLIENT_AUTH requests.
7e933c29fc49623bd4988caa2ab27aaf3de8ced4a8dcaa75b645a887c3a92529eEye Security Advisory - eEye Digital Security has discovered a critical vulnerability in RealPlayer. The vulnerability allows a remote attacker to reliably overwrite heap memory with arbitrary data and execute arbitrary code in the context of the user who executed the player. This specific flaw exists within the vidplin.dll file used by RealPlayer. By specially crafting a malformed .avi movie file, a direct heap overwrite is triggered, and reliable code execution is then possible. This vulnerability can be trigger when a user views a webpage, or opens an .avi file via email, instant messenger, or other common file transfer programs.
847a8e37f9bd046455e0c8e37d152a9ed8be41d8c966b8aced5ac3d1b07ef988Gentoo Linux Security Advisory GLSA 200506-22 - The sudoers file is used to define the actions sudo users are permitted to perform. Charles Morris discovered that a specific layout of the sudoers file could cause the results of an internal check to be clobbered, leaving sudo vulnerable to a race condition. Versions less than 1.6.8_p9 are affected.
956caac77ca19fcbed67f3307b2e1888a5cfc98178b69387908bec83c22150f3Windows SMB client transaction response handling exploit that makes use of the flaw detailed in MS05-011.
0d73d261923b7c90d3028e70fa51daeba2ea05e4b77fb7d0913e15847c1ae886NessQuick consists of perl scripts designed to assist in managing the output from Nessus scans and creating an alternate report format. These scripts help produce a report that lists all vulnerabilities and then enumerates each host that was found to contain that vulnerability. Pulls the .nbe files into a MySQL database.
754d5fb2206faa3724831290f3e79849d98b396cb1d37880095fb6ff425b8345Secunia Security Advisory - Sun has acknowledged two vulnerabilities in Solaris, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks.
2c79d6297dee6c99845926558f29e68ede2cfcd30b3323a4cf1ac0c13b424798Secunia Security Advisory - Elzar Stuffenbach has reported two vulnerabilities in Whois.Cart, which can be exploited by malicious people to conduct cross-site scripting attacks and disclose sensitive information.
0690fac6ae1870b6e2ccaa06cf72cd35c2c9037bec00c58bf3bce5392cd00511Secunia Security Advisory - James has reported a vulnerability in Simple Machines, which can be exploited by malicious people to conduct SQL injection attacks.
cefc153dfd02f993f49fb711a45e2d7b445720fe6704bd1d15ad76eda201aa62Secunia Security Advisory - SGI has acknowledged a vulnerability in IRIX, which can be exploited by malicious people to compromise a vulnerable system.
4ea34ef44b3a59e40bf864693791767592303c7d6e0cfe32c49397af362eca71Secunia Security Advisory - Two vulnerabilities have been reported in the Linux kernel. One has an unknown impact, and the other can be exploited by malicious, local users to cause a DoS (Denial of Service).
14e0309e3c71683cd933a14d76ddb237d636e6716bc880cc1c1b79cf035c1eb3Secunia Security Advisory - Multiple vulnerabilities have been reported in VERITAS Backup Exec for Windows and NetWare, which can be exploited by malicious users to gain escalated privileges, or by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
f00b7fabe22b59cf9fc63e982275ca337adc3beeab326ebd40e9ac3e9023736eSecunia Security Advisory - A security issue has been reported in HP Version Control Repository Manager (VCRM), which may disclose the proxy server password to malicious people.
903a5b4e6d31cc21f53113953988bc3895203ad8a9cf18863b4c29e3a636359c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed