what you don't know can hurt you
Showing 1 - 25 of 43 RSS Feed

Files Date: 2007-11-30

Mandriva Linux Security Advisory 2007.224
Posted Nov 30, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges. This update corrects all known regressions with previous Samba updates due to the security fixes to correct CVE-2007-4572.

tags | advisory, remote, denial of service, overflow, arbitrary, root
systems | linux, mandriva
advisories | CVE-2007-5398, CVE-2007-4572
MD5 | 35c3dfda88c38965355ccbfee1082a66
Ubuntu Security Notice 549-1
Posted Nov 30, 2007
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 549-1 - Various integer overflows, arbitrary code execution, and denial of service vulnerabilities have been fixed in PHP 5.

tags | advisory, denial of service, overflow, arbitrary, php, vulnerability, code execution
systems | linux, ubuntu
advisories | CVE-2007-1285, CVE-2007-2872, CVE-2007-3799, CVE-2007-3998, CVE-2007-4657, CVE-2007-4658, CVE-2007-4660, CVE-2007-4661, CVE-2007-4662, CVE-2007-4670, CVE-2007-5898, CVE-2007-5899
MD5 | 480e0abf31a634a029d87570b870ea34
AST-2007-026.txt
Posted Nov 30, 2007
Authored by Tilghman Lesher | Site asterisk.org

Asterisk Project Security Advisory - A SQL injection vulnerability exists in Asterisk versions prior to 1.4.15. Input buffers were not properly escaped when providing the ANI and DNIS strings to the Call Detail Record Postgres logging engine. An attacker could potentially compromise the administrative database containing users' usernames and passwords used for SIP authentication, among other things.

tags | advisory, sql injection
MD5 | c6c1a7986ed7ead3dab0bea6978ffb05
AST-2007-025.txt
Posted Nov 30, 2007
Authored by P. Chisteas, Tilghman Lesher | Site asterisk.org

Asterisk Project Security Advisory - A SQL injection vulnerability exists in Asterisk versions prior to 1.4.15. Input buffers were not properly escaped when providing lookup data to the Postgres Realtime Engine. An attacker could potentially compromise the administrative database containing users' usernames and passwords used for SIP authentication, among other things.

tags | advisory, sql injection
MD5 | ffa2808110235fd54fffd855e12201bc
incSTK_ssh_client_trojan.tar.gz
Posted Nov 30, 2007
Authored by Incognito/STK

This patch makes OpenSSH register triplets <host user password> in a temporary file. Revised for versions 4.7 and below.

tags | encryption
MD5 | d5b7cb7ef2b2256d4813a22db4a13c36
rathole-1.2.tar.gz
Posted Nov 30, 2007
Authored by Incognito/STK

RatHole is a unix backdoor which compiles cleanly on standard Linux and OpenBSD (probably other BSD flavors also) without additional libraries. It features blowfish encryption, process name hiding and definition of a preferred shell. It spits no error messages (like for sockets already bound) because it is supposed to be stealth. When a client connects to the backdoor a new shell process and two pipe files are created. The I/O of the shell is duped to the pipes and the daemon encrypts the communication.

tags | tool, shell, rootkit
systems | linux, unix, bsd, openbsd
MD5 | c652966a5d9a09c29369794979d4ac6b
ossigeno22-rfi.txt
Posted Nov 30, 2007
Authored by ShAy6oOoN

Ossigeno Suite CMS versions 2.2 and below suffer from remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | 051f6e3d7c633886ea156c35f2856754
FreeBSD-SA-07-10.gtar.txt
Posted Nov 30, 2007
Site security.freebsd.org

FreeBSD Security Advisory - Insufficient sanity checking of paths containing '.' and '..' allows gtar to overwrite arbitrary files on the system.

tags | advisory, arbitrary
systems | freebsd
advisories | CVE-2007-4131
MD5 | bc93f9ccc2af18609b0279202b3894a1
FreeBSD-SA-07-09.random.txt
Posted Nov 30, 2007
Site security.freebsd.org

FreeBSD Security Advisory - Under certain circumstances, a bug in the internal state tracking on the random and urandom devices can be exploited to allow replaying of data distributed during subsequent reads.

tags | advisory
systems | freebsd
advisories | CVE-2007-6150
MD5 | 1a8e43d82656db1e04719bae42deb95b
apc-flaw.txt
Posted Nov 30, 2007
Authored by Gary Simat, Randy Kent

APC PDU products appear to be susceptible to a login bypass vulnerability.

tags | exploit, bypass
MD5 | 4bc09aa79a448444bcbdde8d01b65592
Debian Linux Security Advisory 1409-3
Posted Nov 30, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1409-3 - This update fixes all currently known regressions introduced with the previous two revisions of DSA-1409. Several local/remote vulnerabilities have been discovered in samba, a LanManager-like file and printer server for Unix. Alin Rad Pop of Secunia Research discovered that nmbd did not properly check the length of netbios packets. When samba is configured as a WINS server, a remote attacker could send multiple crafted requests resulting in the execution of arbitrary code with root privileges. Samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. When samba is configured as a Primary or Backup Domain Controller, a remote attacker could send malicious logon requests and possibly cause a denial of service.

tags | advisory, remote, denial of service, overflow, arbitrary, local, root, vulnerability
systems | linux, unix, debian
advisories | CVE-2007-5398, CVE-2007-4572
MD5 | 35eb85ee31049d6fb7c6321f9ecc5f02
HP Security Bulletin 2007-14.99
Posted Nov 30, 2007
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with HP-UX Apache. The vulnerability could be exploited remotely to execute arbitrary code.

tags | advisory, arbitrary
systems | hpux
advisories | CVE-2007-5135
MD5 | 01a4cbc604d81903355a69b1541136cc
HP Security Bulletin 2007-13.19
Posted Nov 30, 2007
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could by exploited remotely to allow cross site scripting (XSS).

tags | advisory, xss
MD5 | e07411d9a1c25a2867dcd1ccdf2f004b
IRM-tibcodos.txt
Posted Nov 30, 2007
Authored by Varun Uppal, Andy Davis - IRMPLC | Site irmplc.com

The TIBCO Rendezvous RVD daemon is vulnerable to a memory leak, which when remotely triggered, prevents any further RV communication until the daemon is manually restarted.

tags | advisory, denial of service, memory leak
MD5 | 33fa196ab9bb365713d31238582bca13
aquick-winosx.txt
Posted Nov 30, 2007
Authored by Subreption LLC | Site subreption.com

Apple Quicktime versions 7.2 and 7.3 RTSP response Content-Type header stack buffer overflow exploit for Mac-OSX and Microsoft Windows.

tags | exploit, overflow
systems | windows, apple
MD5 | d4baf9f14cde879e614f5c6db71a820e
ftpadmin-multi.txt
Posted Nov 30, 2007
Authored by Omnipresent

FTP Admin version 0.1.0 suffers from bypass, local file inclusion, and cross site scripting vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
MD5 | 1e741f922fd81e1ff0a42de723906a5f
seditio-sql.txt
Posted Nov 30, 2007
Authored by InATeam | Site inattack.ru

Seditio CMS versions 1.21 and below remote SQL injection exploit.

tags | exploit, remote, sql injection
MD5 | 468a077a42d53b68260892de589cbfce
learnloop2-disclose.txt
Posted Nov 30, 2007
Authored by GolD_M | Site tryag.cc

LearnLoop version 2.0beta7 suffers from a remote file disclosure vulnerability in file_download.php.

tags | exploit, remote, php, info disclosure
MD5 | 5e6cd1e53b99aaa460c0f6ceca7a3dce
kml-disclose.txt
Posted Nov 30, 2007
Authored by GolD_M | Site tryag.cc

KML Share version 1.1 suffers from a remote file disclosure vulnerability in region.php.

tags | exploit, remote, php, info disclosure
MD5 | 2b1ec2490af8164970e908bd9e80aad0
webed-disclose.txt
Posted Nov 30, 2007
Authored by GolD_M | Site tryag.cc

WebED version 0.0.9 suffers from a remote file disclosure vulnerability in index.php.

tags | exploit, remote, web, php, info disclosure
MD5 | 9269a457a149191bd915d544cc6e3c8d
webmeetme-disclose.txt
Posted Nov 30, 2007
Authored by Evil.Man | Site tryag.cc

Web-MeetMe version 3.0.3 suffers from a remote file disclosure vulnerability in play.php.

tags | exploit, remote, web, php, info disclosure
MD5 | d4655f22240f4a2600afd9d831200b17
wmp-dos.txt
Posted Nov 30, 2007
Authored by Woo-Chi, Gil-Dong

Windows Media Player AIFF divide by zero exception denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
systems | windows
MD5 | 418492572208c1f1fa8aac6f3178c854
shinnai-msapi.pdf
Posted Nov 30, 2007
Authored by shinnai | Site shinnai.altervista.org

Whitepaper detailing Microsoft API function pointer hijacking.

tags | paper
MD5 | defc0c2f3c81fbe2b0984fb4f41d73ac
snort2pf-4.3.tar.gz
Posted Nov 30, 2007
Authored by Stephan Schmieder | Site bsd-security.org

Snort2Pf is a small Perl daemon which greps Snort's alertfile and blocks the bad hosts for a given amount of time using pfctl.

Changes: Added the -t option to use a table instead of an anchor. Improved manpages.
tags | tool, perl, sniffer
MD5 | 911f9a894f70d80898bb4210f2f2b892
nuhe-0.05.tar.gz
Posted Nov 30, 2007
Authored by Tuomo Makinen | Site nuhe.sourceforge.net

Nuhe is a rule based log monitoring system which is capable of taking action when rules are matched against log activity. By default, Nuhe runs in the background (as a daemon), but it can also be used in the foreground in a log analyzer mode.

Changes: Added multiple sources functionality for actions. Various other fixes and changes.
tags | system logging
systems | unix
MD5 | 45c37c6df91532733e53d67d257c10db
Page 1 of 2
Back12Next

File Archive:

December 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    1 Files
  • 2
    Dec 2nd
    16 Files
  • 3
    Dec 3rd
    17 Files
  • 4
    Dec 4th
    23 Files
  • 5
    Dec 5th
    11 Files
  • 6
    Dec 6th
    10 Files
  • 7
    Dec 7th
    1 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    12 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close