Month of Apple Bugs - crashdump follows symlinks within the /Library/Logs/CrashReporter/ directory, allowing admin-group users to execute arbitrary code and overwrite files with elevated privileges. In couple with a specially crafted Mach-O binary, this can be used to write a malicious crontab entry, which will run with root privileges. This ruby code demonstrates this vulnerability.
a2f484f050a3539545bc04527aebfb7718411d5e564498448fa7024d15700ebeMonth of Apple Bugs - Flip4Mac fails to properly handle WMV files with a crafted ASF_File_Properties_Object size field, leading to an exploitable memory corruption condition, which can be abused remotely for arbitrary code execution. This tgz holds a malicious .wmv file that demonstrates this vulnerability.
5b0f7f222237672bd530a2f1c52368b0a593f5907f49c47913ca01b2f7900a50zzuf is a transparent application input fuzzer. It works by intercepting file operations and changing random bits in the program's input. zzuf's behavior is deterministic, making it easy to reproduce bugs.
af33c3e95ab78780cc665425a8501f20125bfaafaa42c3a591b2d0d864512fd7strongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
0592405ee0823ab30ba95d77a05c4c3abf75a7700369c7081cf3027f88779728Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery.
7647220d9c735a9b47abfad651bc8d1729cce27857d94c6cbefbe73b4a289997Small whitepaper discussing Nessus and the functions related to writing NASL scripts along with some debugging tips.
5dcce405cebc18a2ae6613adf1d60c2234575ab10fafd44022e7bd6710af2778Heap overflow exploit for msgeng.exe in Computer Associates BrightStor ARCserve Backup.
a973115577880be9cb7f40039a629b7c8037ece864581b839544fb8c6ac71cb9Gentoo Linux Security Advisory GLSA 200701-25 - Multiple memory corruption vulnerabilities have been found in the ProcDbeGetVisualInfo() and the ProcDbeSwapBuffers() of the DBE extension, and ProcRenderAddGlyphs() in the Render extension. Versions less than 1.1.1-r4 are affected.
3fadaad7ec9d1fb7eac7fa1a9be6db52dde726e16a943a5cfc90ae29ac43e978Debian Security Advisory 1253-1 - Several security related problems have been discovered in Mozilla and derived products such as Mozilla Firefox. Several vulnerabilities in the layout engine allow remote attackers to cause a denial of service and possibly permit them to execute arbitrary code. Several vulnerabilities in the JavaScript engine allow remote attackers to cause a denial of service and possibly permit them to execute arbitrary code. A bug in the js_dtoa function allows remote attackers to cause a denial of service. "shutdown" discovered a vulnerability that allows remote attackers to gain privileges and install malicious code via the watch JavaScript function. Steven Michaud discovered a programming bug that allows remote attackers to cause a denial of service. "moz_bug_r_a4" reported that the src attribute of an IMG element could be used to inject JavaScript code.
903b8d0b1637e035832fd2e1b4594cbb4040713c207066157a72c19363a420f3Local Calendar System version 1.1 suffers from a remote file inclusion flaw.
c50edb7132dd5b2668271546d7f7ae83b5d0845c3dac08229c7671e138c9c4cdDebian Security Advisory 1252-1 - Kevin Finisterre discovered several format string problems in vlc, a multimedia player and streamer, that could lead to the execution of arbitrary code.
b0db124c8561325792c13a5af9c131d5054868d9821503f2946b24f92ead5191AdMentor suffers from a SQL injection vulnerability that allows for login bypass.
963c580bc9e516ab4a0a77b6412697f0b757200ddd54f6e66e93392c639e7af7Stompy is a free tool to perform a fairly detailed black-box assessment of WWW session identifier generation algorithms. Session IDs are commonly used to track authenticated users, and as such, whenever they're predictable or simply vulnerable to brute-force attacks, we do have a problem.
dcd57db394e72ee795957f83e0d04d93a1be556851e9863fb99cda714b1c58deUbuntu Security Notice 398-4 - USN-398-2 fixed vulnerabilities in Firefox 1.5. However, when auto-filling saved-password login forms without a username field, Firefox would crash. This update fixes the problem.
bea97abaa047b10151e1f611823e730cf0576315c5c5e840a4936905b535ad69Mandriva Linux Security Advisory - The soup_headers_parse function in soup-headers.c for libsoup HTTP library before 2.2.99 allows remote attackers to cause a denial of service (crash) via malformed HTTP headers, probably involving missing fields or values.
67370c064597b1b36cf3c0e4cc4bc41027683a938bcdd961a84d300d60b2634fMandriva Linux Security Advisory - A buffer overflow in ulogd has unknown impact and attack vectors related to "improper string length calculations."
ada960307f23b009ff85244012256d5506d0276e81581f30903bfa32ab0483f1WS_FTP 2007 Professional SCP suffers from a format string vulnerability.
ee01d0989779387003991fcc0ec58ae997a3034028c96274f7e9aaf6154bd25cSecunia Security Advisory - Cold z3ro has reported a vulnerability in MyPHPCommander, which can be exploited by malicious people to compromise vulnerable systems.
7200986aeaec0e192eb5ba6e810b86b5d278f7f600d2bc8b5fac3e0374bb3a69Secunia Security Advisory - Blake Matheny has reported a vulnerability in Wordpress, which can potentially be exploited by malicious people to disclose sensitive information.
6a7ea51d81aed7f636f11c0d4f4c609173caa3dc8aaa8f13b846ae14dde65720Secunia Security Advisory - Kees Cook has reported a vulnerability in GD Graphics Library, which can be exploited by malicious people to cause a DoS (Denial of Service).
48a45370c910d73ae1bc5cdf47edadbb43abceeb0cd278d643ea120e43fea722Secunia Security Advisory - Mandriva has issued an update for xine-ui. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
525b2ab63c5df9f96dea99d82491f17c9bea644acdfaff5beab7efab4b4936fcSecunia Security Advisory - Kees Cook has reported some vulnerabilities in smb4K, which can be exploited by malicious, local users to kill arbitrary processes, disclose potentially sensitive information, and gain escalated privileges.
1b03d55b6b59d937ac12d587e87307fef9152309165aea6f8e42b6196e259c9dSecunia Security Advisory - Sun has acknowledged some vulnerabilities in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise applications using the library.
5a559193006452eb1bf58ac3e8a905b80a6e04bb42f7eb28c659fda5f3fc366cSecunia Security Advisory - Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
58410ba05e6e780b6c384075241da1a97bd98656e7d5438c168b95acb09fdaffSecunia Security Advisory - ajann has discovered a vulnerability in FD Script, which can be exploited by malicious people to gain knowledge of sensitive information.
0acd16db8f6da62126267a51ffc2c9a6eafcf6e9d44c25970757f9db9d82929c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed