all things security
Showing 1 - 25 of 39 RSS Feed

Files Date: 2011-09-07

Ubuntu Security Notice USN-1197-3
Posted Sep 7, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1197-3 - USN-1197-1 partially addressed an issue with Dutch Certificate Authority DigiNotar mis-issuing fraudulent certificates. This update actively distrusts the DigiNotar root certificate as well as several intermediary certificates. Also included in this list of distrusted certificates are the Staat der Nederlanden root certificates. It was discovered that Dutch Certificate Authority DigiNotar, had mis-issued multiple fraudulent certificates. These certificates could allow an attacker to perform a "man in the middle" (MITM) attack which would make the user believe their connection is secure, but is actually being monitored. For the protection of its users, Mozilla has removed the DigiNotar certificate. Sites using certificates issued by DigiNotar will need to seek another certificate vendor.

tags | advisory, root
systems | linux, ubuntu
MD5 | 7457beab2b2600394ce6faba80915612
Crush FTP 5 Blue Screen Of Death
Posted Sep 7, 2011
Authored by BSOD Digital

Crush FTP 5 APPE command remote blue screen of death proof of concept denial of service exploit.

tags | exploit, remote, denial of service, proof of concept
MD5 | 5c3177b65f8bbccd6e2b6584119d37f0
WordPress Eventify Simple Events 1.7.f SQL Injection
Posted Sep 7, 2011
Authored by Miroslav Stampar

WordPress Eventify - Simple Events plugin versions 1.7.f and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7254109599d9d90fbe755847359a8007
WordPress SCORM Cloud 1.0.6.6 SQL Injection
Posted Sep 7, 2011
Authored by Miroslav Stampar

WordPress SCORM Cloud plugin versions 1.0.6.6 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f6719a53ed7aede465ce0b8b4bfbe109
Short Fuzzy Rat Scanner
Posted Sep 7, 2011
Authored by Ratdance

Short Fuzzy Rat is a web fuzzing script written in perl. It was inspired by Luca Carettoni's original fuzzing list of 879 attack vectors with 8 levels of recursion.

tags | tool, web, scanner, perl
systems | linux, unix
MD5 | 689a4f94fea9bcf1e3ba7d7e8c5313b9
Red Hat Security Advisory 2011-1268-01
Posted Sep 7, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1268-01 - Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. The RHSA-2011:1242 Firefox update rendered HTTPS certificates signed by a certain Certificate Authority as untrusted, but made an exception for a select few. This update removes that exception, rendering every HTTPS certificate signed by that CA as untrusted. All Firefox users should upgrade to these updated packages, which contain Firefox version 3.6.22. After installing the update, Firefox must be restarted for the changes to take effect.

tags | advisory, web
systems | linux, redhat
MD5 | a0df7931b8f39609074e2567053d5564
Red Hat Security Advisory 2011-1267-01
Posted Sep 7, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1267-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. The RHSA-2011:1243 Thunderbird update rendered HTTPS certificates signed by a certain Certificate Authority as untrusted, but made an exception for a select few. This update removes that exception, rendering every HTTPS certificate signed by that CA as untrusted. All Thunderbird users should upgrade to this updated package, which resolves this issue. All running instances of Thunderbird must be restarted for the update to take effect.

tags | advisory, web
systems | linux, redhat
MD5 | 1ff36aa584e9d1b9a121e9b5b1d39524
OpenSSL Toolkit 1.0.0e
Posted Sep 7, 2011
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Initialization of X509_STORE_CTX was fixed to eliminate a case where CRLs with "nextUpdate" in the past were sometimes accepted. An error in SSL memory handling for (EC)DH ciphersuites was fixed. A memory leak on bad inputs to x509_name_ex_d2i was fixed. Some ECC ciphersuites are no longer restricted to SHA1. Protection against ECDSA timing attacks was introduced
tags | encryption, protocol
systems | unix
advisories | CVE-2011-3207, CVE-2011-3210
MD5 | 7040b89c4c58c7a1016c0dfa6e821c86
WordPress WP Forum Server 1.7 SQL Injection
Posted Sep 7, 2011
Authored by Miroslav Stampar

WordPress WP Forum Server versions 1.7 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 550f3eee266baafbcbf078a3b7fb9a41
Secunia Security Advisory 45899
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Blue Coat Reporter, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
MD5 | 96f5676e815dd4dd247761ed808e23ed
Secunia Security Advisory 45813
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Tweet old post plugin for WordPress, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | f160187e212fd056468f47c44c258c8c
Secunia Security Advisory 45901
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for gstreamer-plugins. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, redhat
MD5 | 77af895d11341186407fc30a37f4f102
Secunia Security Advisory 45917
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for rubygem-activesupport. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
systems | linux, fedora
MD5 | 8ee6e02f63c1f66386d6cf3941aae8f1
Secunia Security Advisory 45898
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Blue Coat Reporter, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
MD5 | 8034271e0a615138324f54ea74608beb
Secunia Security Advisory 45882
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - NoGe has discovered multiple vulnerabilities in PlaySMS SMS Gateway, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
MD5 | 935377c55adcf7018d2d3a43288ec782
Secunia Security Advisory 45918
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for dhcp. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, fedora
MD5 | 647cbeb70cce5bb0bded2371fd2921e2
Secunia Security Advisory 45919
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for libsndfile. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.

tags | advisory
systems | linux, fedora
MD5 | b75ccc9b02b7f99dc9bc26eb51cca8df
Secunia Security Advisory 45827
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Hastymail2, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | b4d6bd2346adefb6ff6aa0f29ba7aad2
Secunia Security Advisory 45861
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in OpenFabrics Enterprise Distribution, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
MD5 | b52636dd0f84684144e57ac45d90d709
Secunia Security Advisory 45897
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose certain system information, cause a DoS (Denial of Service), and gain escalated privileges and by malicious, local users in a guest virtual machine and malicious people to cause a DoS.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, redhat
MD5 | a06eefdc4976091a75e84ef2273601bb
Secunia Security Advisory 45924
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in GnuCash, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | f8ceab2794818f16baaeff3bc302b235
Secunia Security Advisory 45884
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in Zikula Application Framework, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 52eb21d622b77a6c11cafea63f60a5d2
Secunia Security Advisory 45846
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Miroslav Stampar has discovered two vulnerabilities in the KNR Author List plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 021d21e90dd88177e49237cd1531bc53
Secunia Security Advisory 45925
Posted Sep 7, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the wpcu3er plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | cd796bd2a6c314cea65f98b402c3490e
Red Hat Security Advisory 2011-1266-01.xt
Posted Sep 7, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1266-01.xt - SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. The RHSA-2011:1244 SeaMonkey update rendered HTTPS certificates signed by a certain Certificate Authority as untrusted, but made an exception for a select few. This update removes that exception, rendering every HTTPS certificate signed by that CA as untrusted. All SeaMonkey users should upgrade to these updated packages, which correct this issue. After installing the update, SeaMonkey must be restarted for the changes to take effect.

tags | advisory, web
systems | linux, redhat
MD5 | ddb71ce299c76be6e4bdedab64842cce
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close