arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
6ba38868cc96eae79b4764eba2bcb770fa874f27d731774ec234fdf9eb9f988dTor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
4ffd11c90c3bb94ac2495150e389f3ebccae88a9b247fc3b0fd768c063fbe396NessusWC provides a simple HTTP Web interface to the Nessus Security Scanner. It connects to local or remote Nessus version 2 daemons via SSL (using OpenSSL libraries), retrieves the plugins, configures a scan for a single target host, and saves the results in HTML format. As a result, even users with limited security knowledge can scan their machines. Scan results are stored in a central place.
a96668c7005fff45df91c5bcf8af5a888e681369d2db3c4a4a8b71ce0beaf3fcSnare for Squid provides a remote distribution facility for Squid proxy server logs, and is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Squid can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
85e084194e7c2a32f392552b2b3871997c9ecf13ca413825aa483139a8f78b00Snare for Apache provides a remote distribution facility for Apache Web server logs. It is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Apache can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
9dcabe60749e90b6acdd79c63bdceb5abfb7796c105386c53b9a80c5f97095fcSID is a Shell Intrusion Detection system. The kernel part plugs into a terminal-processing subsystem and logs hashed terminal lines. The user part reads log entries (hashes), consults a list of allowed entries, and takes appropriate action upon unexpected log entries. Currently supported are Solaris and Linux.
a71ed786cf201ea855f6f9ee8f2c555aff4666d1edec7772de92df18c3f289b7Weplab is a tool to review the security of WEP encryption in wireless networks from an educational point of view. Several attacks are available, so it can measure the effectiveness and minimum requirements of each one. Currently, weplab supports several methods, and it is able to crack the WEP key from 600,000 encrypted packets.
91e4425f474d5b3213effc6d532aa3ee2fb121a1942e43c08210780a4759a72bDebian Security Advisory DSA 762-1 - Kevin Finisterre discovered two problems in the Bluetooth FTP client from affix, user space utilities for the Affix Bluetooth protocol stack.
26509455a6a6a00a0668e0b4339b3c1766b0049b8d8b2549ae6e0020497b02d9Debian Security Advisory DSA 761-1 - Eric Romang discovered several insecure temporary file creations in heartbeat, the subsystem for High-Availability Linux.
b77d0e027c7c1025f283601340fbd2dffbaf80048b1b3903f888fb76cb465cbcNetdiscover is an active and passive address reconnaissance tool that can detect or search for online hosts by actively sending arp requests. Linux version.
d316dfa96ab7ac955796a124424efdeba5f24a099cfed55dbfcf2bab109947d4Race Driver versions 1.20 and below suffer from multiple misuses of sprintf().
02f796a6660bf052f315c2aec0a95aaaaad22a70850dd0539131767f449abbe5Multiple remote vulnerabilities exist in ALT-N MDaemon's imapd that include two denial of service vulnerabilities and a buffer overflow in the CREATE statement.
2ab754d52ce2719be3de3e1a1ea227ee2399148de5e69ca93af234025bb0b40fInteresting write up regarding the faulty logic of using NTLM HTTP authentication and how it does not mix well with HTTP proxies.
90db90511248bba22320ddbf235e0b421d6f0157a947a904209428ca1f742295HP Security Bulletin - Several potential security vulnerabilities have been identified in the HP Tru64 UNIX TCP/IP including ICMP, and Initial Sequence Number generation (ISNs). These exploits could result in a remote Denial of Service (DoS) from network throughput reduction for TCP connections, the reset of TCP connections, or TCP spoofing.
01a1698e6f50bc4fca3b4bc2715a0243f19bbd00ef5697812b929253e98f823bA design flaw in MRV's In-Reach console servers versions LX-8000, 4000, and 1000 series allow users to bypass port access controls when ssh public-key authentication is enabled.
54ea415680ec399306de4f3f0ffeb5a7100bcebf650acb91c1618f0fad3e3b2bKDE Security Advisory: Kate / Kwrite create a file backup before saving a modified file. These backup files are created with default permissions, even if the original file had more strict permissions set. Depending on the system security settings, backup files might be readable by other users. All maintained versions of Kate and Kwrite as shipped with KDE 3.2.x up to including 3.4.0. KDE 3.1.x and older and KDE 3.4.1 and newer are not affected.
4d95c4fecfc491d82b51de3f8a19f89ae29adc0d27944b76e89e62661e35a65dDebian Security Advisory DSA 759-1 - A vulnerability has been discovered in phppgadmin, a set of PHP scripts to administrate PostgreSQL over the WWW, that can lead to disclose sensitive information. Successful exploitation requires that magic_quotes_gpc is disabled.
05b60eba171cd771fa884cd9ab159a07c205fee5abad17966e32f2c57eee59f6Gentoo Linux Security Advisory GLSA 200507-17 - Several vulnerabilities in Mozilla Thunderbird allow attacks ranging from execution of script code with elevated privileges to information leak. Versions less than 1.0.5 are affected.
286f0a4b16254628f9abf9191ec3a2a09cc5e3e615aabeb805e1acc6ace0e1a2Debian Security Advisory DSA 758-1 - A buffer overflow has been discovered in the telnet server from Heimdal, a free implementation of Kerberos 5, that could lead to the execution of arbitrary code.
2673133b3f69b6468f85a2b5dfa02939e76e86d3274cf4eee28111ecc4322577Shorewall Firewall versions 2.2.x and 2.4.x allow any client to bypass any rule as long as they are accepted by the MAC filter.
9ab844f7c8726b9f879f4a1eb17484f0cb02a3c64487de4af4c997a8514d38d6Secunia Security Advisory - A vulnerability has been reported in PHPFinance, which can be exploited by malicious people to bypass certain security restrictions.
fbb892fb4d60180a496362ff2f72eed9c0216989a2e074342fde7238596dced4Secunia Security Advisory - rgod has reported a vulnerability in SEO-Board, which can be exploited by malicious people to conduct cross-site scripting attacks.
e6f369864d23225e338d11571859d3c90a9585769866655b4ee32733154f38edSecunia Security Advisory - A security issue has been reported in Shorewall, which can be exploited by malicious people to bypass certain security restrictions.
70b5ed2af5d5bccc6010ee7ceb843574bc5956194f3728c508b0488c56b91b42Secunia Security Advisory - sky has discovered a vulnerability in CaLogic, which can be exploited by malicious people to compromise a vulnerable system.
c2efbb32e0d49eeb9d3fc9261be811b1ef91e8d93d99422615c9a66d23f20bebSecunia Security Advisory - Luigi Auriemma has reported two vulnerabilities in Race Driver, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
00036f445830ba397b1b0efbfb8e373aca78dd93fdcfbb6d50640f9e064810db
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed