what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 22 of 22 RSS Feed

Files Date: 2009-05-03

Gentoo Linux Security Advisory 200905-1
Posted May 3, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200905-01 - Multiple vulnerabilities have been found in Asterisk allowing for Denial of Service and username disclosure.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2008-1897, CVE-2008-2119, CVE-2008-3263, CVE-2008-3264, CVE-2008-3903, CVE-2008-5558, CVE-2009-0041
SHA-256 | 8a221aac12797d099e480341a469baefe427ff3bc8ee0f6cb9b7b14595721e9d
Debian Linux Security Advisory 1786-1
Posted May 3, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1786-1 - It was discovered that acpid, a daemon for delivering ACPI events, is prone to a denial of service attack by opening a large number of UNIX sockets, which are not closed properly.

tags | advisory, denial of service
systems | linux, unix, debian
advisories | CVE-2009-0798
SHA-256 | d8392ecfca012f354dd3cd9542df8b03bd41c24292e62c4e3bdad388dabeb39a
Debian Linux Security Advisory 1785-1
Posted May 3, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1785-1 - Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to denial of service or the execution of arbitrary code.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2009-1210, CVE-2009-1268, CVE-2009-1269
SHA-256 | 3b255c02cc00d98db5dfd4da976b368527b521722843703368f6b15e5fbec7df
MiniTwitter 0.2-Beta SQL Injection
Posted May 3, 2009
Authored by YEnH4ckEr

MiniTwitter version 0.2-Beta suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 00d9d56dcde580db6705020cbf064f4ce46361aef47a3fd40880d09d39c76f90
MiniTwitter 0.2-Beta User Options Changer
Posted May 3, 2009
Authored by YEnH4ckEr

MiniTwitter version 0.2-Beta User Options changer exploit.

tags | exploit
SHA-256 | d44f9d4e7178502d32ab2fc499eb3ef14ace1155ffabccab2694cf3815dba5a8
Mandriva Linux Security Advisory 2009-104
Posted May 3, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-104 - udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space. The updated packages have been patched to prevent this.

tags | advisory, kernel, local
systems | linux, mandriva
advisories | CVE-2009-1185
SHA-256 | e2f778a58e68d599de2ba53ebd615a409c33dca8819654433751264c35a5952c
Mandriva Linux Security Advisory 2009-103
Posted May 3, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-103 - Security vulnerabilities have been identified and fixed in udev. udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space. Buffer overflow in the util_path_encode function in udev/lib/libudev-util.c in udev before 1.4.1 allows local users to cause a denial of service (service outage) via vectors that trigger a call with crafted arguments. The updated packages have been patched to prevent this.

tags | advisory, denial of service, overflow, kernel, local, vulnerability
systems | linux, mandriva
advisories | CVE-2009-1185, CVE-2009-1186
SHA-256 | cd2e31bea17b5583908595fc2d863efea69dd947c8453e4883a76468d131c428
Mandriva Linux Security Advisory 2009-102
Posted May 3, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-102 - mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request. This update provides fixes for that vulnerability.

tags | advisory, remote, web
systems | linux, mandriva
advisories | CVE-2009-1191
SHA-256 | a5a7b231c6a42221cdc1fa8fdcce4e43a477bfbdca5eb1e881627cce83031126
RM Downloader Universal Overflow
Posted May 3, 2009
Authored by Stack | Site v4-team.com

RM Downloader universal local stack overflow exploit that creates a malicious .smi file.

tags | exploit, overflow, local
SHA-256 | 8b9942f9aef6012cf9733ca932d7127338b93f308e980ff7f29d7f70cdc0d883
RM Downloader Local Stack Overflow
Posted May 3, 2009
Authored by ThE g0bL!N | Site h4ckf0ru.com

RM Downloader local stack overflow exploit that creates a malicious .smi file.

tags | exploit, overflow, local
SHA-256 | 0f83a5ed4f168e59530158b15e7766d61f830311cbbb281627e32d193f865613
Pecio CMS 1.1.5 Local File Inclusion
Posted May 3, 2009
Authored by SirGod | Site insecurity.ro

Pecio CMS version 1.1.5 suffers from a local file inclusion vulnerability in index.php.

tags | exploit, local, php, file inclusion
SHA-256 | fb9754b5bf843b0e480d79ed823afac486d5507be38f577ff6e825ca73fcab7d
Anti-Fraud Image Solutions
Posted May 3, 2009
Authored by Gunter Ollmann | Site technicalinfo.net

Whitepaper called Anti-Fraud Image Solutions - The Use Of Distribution Tracing Within Web Content To Identify Counterfeiting Sources.

tags | paper, web
SHA-256 | b9fe2c5926e1fdc309e98785e517a3dfb8ccf9d52c4c01eab58053100d2be83e
Audio Entropyd /dev/random Feeder
Posted May 3, 2009
Authored by Folkert van Heusden | Site vanheusden.com

audio-entropyd feeds the /dev/random device with entropy data read from an audio device. The audio data is not copied as is, but first 'de-biased' and analyzed to determine how many bits of entropy are in it. This program is useful for systems doing many cryptographic tasks like VPN endpoints or GPG clients; it helps prevent the /dev/random device from being depleted and blocking reads.

Changes: There are major bugfixes. Users are urged to install this release. It also adds ALSA support.
tags | encryption
SHA-256 | 29d4350ad8ef26233e1b35ba0e8dd0b1138475c0f840008304677812dbdb2c15
Mercury Audio Player 1.21 Stack Overflow
Posted May 3, 2009
Authored by His0k4

Mercury Audio Player version 1.21 local SEH overwrite exploit that creates a malicious .m3u file.

tags | exploit, local
SHA-256 | a940782d6df2a2d958db107ec4541984095f764612c6e48a9adf3024edd261c2
Addonics NAS Adapter FTP Denial Of Service
Posted May 3, 2009
Authored by h00die

Addonics NAS Adapter remote FTP server denial of service exploit.

tags | exploit, remote, denial of service
SHA-256 | 873f1ca01bb0427aae2c7f7b63e103edc4b0e3982b7c4fce18737c13327ee837
Beatport Player 1.0.0.283 SEH Overwrite
Posted May 3, 2009
Authored by His0k4

Beatport Player version 1.0.0.283 local SEH overwrite exploit that creates a malicious .m3u file.

tags | exploit, local
SHA-256 | 19225c2de1f6403fe9f321b7f3b53d1fe2dea9fdd9711ede4f614c0a96291779
Beatport Player 1.0.0.283 Stack Overflow
Posted May 3, 2009
Authored by Encrypt3d.M!nd

Beatport Player version 1.0.0.283 local stack overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow, local
SHA-256 | 7d5925b09e70e314d28c3110103985feda988c81dfacf94852b344638e69f574
Beatport Player 1.0.0.283 Stack Overflow
Posted May 3, 2009
Authored by Stack | Site v4-team.com

Beatport Player version 1.0.0.283 local stack overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow, local
SHA-256 | 137b254dc917f43e4f0cbbdc09c52d6c53e45d576f1f0ff054e76e04daff535d
Beatport Player 1.0.0.283 Buffer Overflow
Posted May 3, 2009
Authored by SirGod | Site insecurity.ro

Beatport Player version 1.0.0.283 local buffer overflow proof of concept exploit that creates a malicious .m3u file.

tags | exploit, denial of service, overflow, local, proof of concept
SHA-256 | 1501a59545192f98bc98f911574c769bf3a071a81009976a63c012a3319637ee
Packet Storm New Exploits For April, 2009
Posted May 3, 2009
Authored by Todd J. | Site packetstormsecurity.com

Packet Storm new exploits for April, 2009.

tags | exploit
SHA-256 | 7121ded4c11f7b2540b672fabd936b53283b6675b48f18ee8deef905cb814757
Golabi CMS 1.0.1 Session Poisoning
Posted May 3, 2009
Authored by CrazyAngel | Site crazyangel.ir

Golabi CMS versions 1.0.1 and below suffer from a session poisoning vulnerability.

tags | exploit
SHA-256 | 9263c62d47ffbd972ad872230f45d347d91d79e869666f6be05f7806cc76d36a
Debian Linux Security Advisory 1784-1
Posted May 3, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1784-1 - Tavis Ormandy discovered several integer overflows in FreeType, a library to process and access font files, resulting in heap- or stack-based buffer overflows leading to application crashes or the execution of arbitrary code via a crafted font file.

tags | advisory, overflow, arbitrary
systems | linux, debian
advisories | CVE-2009-0946
SHA-256 | 23030ae394b9f2eb83a6a820d657a6c311fe75f42de42d3f647c0a1f15db45cb
Page 1 of 1
Back1Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close