Small write up discussing a method to crash vsmon.exe in ZoneAlarm version 8.0.020.000.
1331390244096724bd046fc6e4ecab6a6e9ab0c7b1e189a8de19cfeccc4c234eMandriva Linux Security Advisory 2009-047 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current Vim working directory. This update provides fix for that vulnerability.
d48c84ca9ac1f19f71f9715ece4c33381c11e28839207dfc4fc4b6b45ab36bcbTechnical Cyber Security Alert TA09-051A - Adobe has released Security Bulletin APSB09-01, which describes a vulnerability that affects Adobe Reader and Acrobat. This vulnerability could allow a remote attacker to execute arbitrary code.
d1b030978b5d5908c77fd45b7fc27bc22a2d7415ace32d36207e56d61b376b8bMandriva Linux Security Advisory 2009-045 - A number of vulnerabilities have been found and correct in PHP. The updated packages have been patched to correct these issues.
464ba2eaffec51fde6159e226f1d27cab7a06d4787b887a8a366bbb71592a068SEAT (Search Engine Assessment Tool) is the next generation information digging application geared toward the needs of security professionals. SEAT uses information stored in search engine databases, cache repositories, and other public resources to scan a site for potential vulnerabilities. It's multi-threaded, multi-database, and multi-search-engine capabilities permit easy navigation through vast amounts of information with a goal of system security assessment. Furthermore, SEAT's ability to easily process additional search engine signatures as well as custom made vulnerability databases allows security professionals to adapt SEAT to their specific needs.
b5d62280c922f81bdff023ae75a968bc2a2308604bbb370f81ef2dffdc5e0b4dWebshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing.
a1ea1cc0c87e44a19fad7edc1658c6c57705aa1fc3ff3304f1e4a669b523a049OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.
4dbfb313a01b24064f7de1a5e23e6946b661cea7bbcc25d440d57ce8511b7b3bCircumference is an implementation of a WebAuth client and server to supplement the recently-written specification for the WebAuth Diameter Application, complete with an extensible Diameter server and base library. Diameter is specified in RFC3588 and its updates.
8efc00212e5482321cdbc6bea1dd7d11bcecd4e84fd91ca2700d44dd424d0dc132 bytes small win32 XP shellcode that executes cmd.exe.
b36a1c2bdb9bf1de0664f41913ac5cb7087d0f9dd4de9c560add62ed05a46be8Microsoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written for 2K3 SP2.
ea20d5bbe51604a1a76dd0af9b738fa01461f0c874d138c5bd4b6d80a63953a3Microsoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written in Python.
9e7f0687f574f72b85bee2288044bcd0a331152709a304634a4e77e38ea32a1bMicrosoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written for XP SP2.
644c80da1941f20f2ccfe7781a3d0af151de94d40c09491b14de620bf5b49ed6phpBB 3 with the Autopost Bot module versions 0.1.3 and below suffers from a remote file inclusion vulnerability.
a99c8dc748f560fad926fc23ff47b28539507b65089201ffc1d57d4fbb9b8c9eCaLogic Calendars suffers from multiple remote SQL injection vulnerabilities.
ed2a9170ad90d288f97a9d5d0f37737d338b169c28c42f3e94a1eae0fe500e26Mandriva Linux Security Advisory 2009-046 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current dia working directory. This update provides fix for that vulnerability.
63dd0f94bbaeda395355c1df705da76ca72c3a9a32c470186fe327055a226c3aMandriva Linux Security Advisory 2009-044 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 3.x, version 3.0.5. This update provides the latest Mozilla Firefox 3.x to correct these issues. As Mozilla Firefox 2.x has been phased out, version 3.x is also being provided for Mandriva Linux 2008 Spring.
b512e67d838f76d1d0ad86dfc7930d4e889c6489b61987d50067987a2f3dd1e9This is a perl script that will visit a page repeatedly using various proxies. Can be used for testing purposes.
b64aaf2e2c1ae0d074f0f673d2a3833e95a4d9a915ee5ea551a718154d8c8960Graugon Forum version 1 remote SQL command injection exploit.
6c2ec2aad1ea76fe2b23455770e447fd19c79c244d1aa9d8a11899e433b8efccSecunia Security Advisory - A vulnerability has been reported in Yaws, which can be exploited by malicious people to cause a DoS (Denial of Service).
fccf02de4d1c2888d9824f293a43c44e5ce7850a0886caded0caba362919e81bSecunia Security Advisory - A vulnerability has been reported in Adobe Reader/Acrobat, which can be exploited by malicious people to compromise a user's system.
8c87b1a26a818df795cf673da25888a54a44f430526bec41d7da62f7a7b8b863Secunia Security Advisory - Pouya_Server has reported a security issue in multiple i-dreams products, which can be exploited by malicious people to disclose sensitive information.
83153ad0a530f9503d54a04fe284aa31cf7c8c0597c7fe63568115e0d0ac78acSecunia Security Advisory - A weakness has been reported in the Linux Kernel, which can be exploited by malicious, local users to bypass certain security restrictions.
55dd75aac32d9677b03631f21acad0ca01af257efa432fb6311924d4ff87ecdbSecunia Security Advisory - Red Hat has issued an update for cups. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.
5c33980b41cb398e62abd2a7f85822c4ac0b251daa184d213a360a8a00947bc5Secunia Security Advisory - Red Hat has issued an update for imap. This fixes two vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges, and by malicious people to potentially compromise a vulnerable system.
f725e50d455d139e918b7de226f2806eaff9f8f3faba6a2b624a8648b62ab670Secunia Security Advisory - mckt has discovered some vulnerabilities in Zen Cart, which can be exploited by malicious people to conduct cross-site request forgery attacks.
7549c78f06ecbecbfc364e8c179b110219f85081e10f00b7f96819bf619b227f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed