exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 10 of 10 RSS Feed

Files Date: 2006-11-19

Mandriva Linux Security Advisory 2006.214
Posted Nov 19, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-214 - A stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the DocumentMedia header.

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2006-5864
SHA-256 | 06e80cb29efde91a8d7185f5306406d55dac86ef801844102583064f2eb57e71
mosreport-rfi.txt
Posted Nov 19, 2006
Authored by Crackers_Child

MosReporter Joomla Component remote file inclusion exploit.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 6a4a5a99662ced46af8cee2a4723e2ceea9cdf3e7cd48fa2d8f069610fea3de8
Ubuntu Security Notice 383-1
Posted Nov 19, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 383-1 - Tavis Ormandy discovered that libpng did not correctly calculate the size of sPLT structures when reading an image. By tricking a user or an automated system into processing a specially crafted PNG file, an attacker could exploit this weakness to crash the application using the library.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2006-5793
SHA-256 | c22c47ca069358f914d82ef90b21ef9ae20f1b9e0b1c8dfd5d89eb56911e7478
OpenPKG-SA-2006-036.txt
Posted Nov 19, 2006
Site openpkg.org

OpenPKG Security Advisory OpenPKG-SA-2006.036 - As confirmed by the vendor, a Denial of Service (DoS) vulnerability exists in the PNG image format library libpng, versions 1.0.6 through 1.2.12 and 1.0.20. The bug is in the decoder for the sPLT ("suggested palette") chunk and can lead to crashes and, accordingly, a DoS, when an application using libpng for PNG processing displays a specially crafted PNG image.

tags | advisory, denial of service
advisories | CVE-2006-5793
SHA-256 | 07ff912f411260cf3c683d58e776be099366e83f76133ec9493ca3063f3204be
OpenPKG-SA-2006-035.txt
Posted Nov 19, 2006
Site openpkg.org

OpenPKG Security Advisory OpenPKG-SA-2006.035 - As undisclosed by an exploit (vd_proftpd.pm) and a related vendor bugfix, a Denial of Service (DoS) vulnerability exists in the FTP server ProFTPD, up to and including version 1.3.0. The flaw is due to both a potential bus error and a definitive buffer overflow in the code which determines the FTP command buffer size limit. The vulnerability can be exploited only if the "CommandBufferSize" directive is explicitly used in the server configuration -- which is not the case in OpenPKG's default configuration of ProFTPD.

tags | advisory, denial of service, overflow
advisories | CVE-2006-5815
SHA-256 | 9ed99273cbfc967a730fd8f826eceea026990c33c2599e4d71b7ba9c01a9b0fd
cpanel10-xss2.txt
Posted Nov 19, 2006
Site aria-security.net

CPanel version 10 is susceptible to cross site scripting attacks via the network tools.

tags | exploit, xss
SHA-256 | fa43ca06f7df9952c50a9ea2ef817024c15817bb203bc4e75378b39cb0589407
Computer Academic Underground Advisory 2006.1
Posted Nov 19, 2006
Authored by I)ruid, Computer Academic Underground, int3l | Site caughq.org

Myspace.com's navigation menu can be replaced with a malicious menu via CSS code in the attacker's profile.

tags | advisory
SHA-256 | a3b9d50ae789cce4e96929980808df6b3eace71418a5cdfe6a186d22f8dae2b8
CA-kmxstart-exploit.zip
Posted Nov 19, 2006
Authored by Ruben Santamarta | Site reversemode.com

Local privilege escalation exploit for the kmxstart.sys Computer Associates "Host Intrusion Prevention System" engine driver version 6.5.4.10.

tags | exploit, local
SHA-256 | 57ff05933d26f1638a98a4a6b218930859f8eeb4d7d658107b258f0ac117cf50
CA-kmxfw-exploit.zip
Posted Nov 19, 2006
Authored by Ruben Santamarta | Site reversemode.com

Local privilege escalation exploit for the kmxfw.sys Computer Associates "Host Intrusion Prevention System" engine driver version 6.5.4.31.

tags | exploit, local
SHA-256 | dcf3649d586540d0bc82df887451bb3335ecbb7b2a38d347c8ebe6057c64e1ec
CA-local.txt
Posted Nov 19, 2006
Authored by Ruben Santamarta | Site reversemode.com

The Computer Associates "Host Intrusion Prevention System" engine drivers are prone to multiple local privilege escalation vulnerabilities. Unprivileged users can take advantage of these flaws in order to execute arbitrary code with kernel privileges.

tags | advisory, arbitrary, kernel, local, vulnerability
SHA-256 | 88676a9217a7cd3f24ed9e5986432dc1d76aa939fcc6e29be5b6454e6ef74c46
Page 1 of 1
Back1Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close