what you don't know can hurt you
Showing 1 - 25 of 51 RSS Feed

Files Date: 2012-06-25

Gentoo Linux Security Advisory 201206-32
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-32 - An error in the verification of SSL certificates in Links might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 2.6 are affected.

tags | advisory, remote
systems | linux, gentoo
MD5 | 4f587c1208ab63e68b65d261c9b42767
Gentoo Linux Security Advisory 201206-31
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-31 - Multiple vulnerabilities have been found in Linux-PAM, allowing local attackers to possibly gain escalated privileges, cause a Denial of Service, corrupt data, or obtain sensitive information. Versions less than 1.1.5 are affected.

tags | advisory, denial of service, local, vulnerability
systems | linux, gentoo
advisories | CVE-2010-3316, CVE-2010-3430, CVE-2010-3431, CVE-2010-3435, CVE-2010-3853, CVE-2010-4706, CVE-2010-4707, CVE-2010-4708, CVE-2011-3148, CVE-2011-3149
MD5 | e6620ba56b503fdc619693864274ef3b
Gentoo Linux Security Advisory 201206-30
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-30 - An error in the hostname matching in sendmail might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 8.14.4 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2009-4565
MD5 | 0825f570770528b4248fd45b3743b9fb
Gentoo Linux Security Advisory 201206-29
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-29 - Multiple vulnerabilities were found in mount-cifs, the worst of which leading to privilege escalation. Versions less than 3.4.6 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2010-0547, CVE-2010-0787
MD5 | 65d6f4c8120afb7c7f3c1ce0c03c6071
Gentoo Linux Security Advisory 201206-28
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-28 - Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. Versions less than 2009-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2009-1284, CVE-2010-0739, CVE-2010-0827, CVE-2010-1440
MD5 | 28dae74e315c9d1eae43c90dfdd8c983
Gentoo Linux Security Advisory 201206-36
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-36 - Multiple vulnerabilities were found in logrotate, which could lead to arbitrary system command execution. Versions less than 3.8.0 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2011-1098, CVE-2011-1154, CVE-2011-1155, CVE-2011-1549
MD5 | 8862f7a63eacbcf72eb569bd4b08d1fd
Gentoo Linux Security Advisory 201206-35
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-35 - Multiple vulnerabilities were found in nbd, which could lead to remote execution of arbitrary code. Versions less than 2.9.22 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2011-0530, CVE-2011-1925
MD5 | fd9326481b90078ff816a43b6d432c4d
Gentoo Linux Security Advisory 201206-34
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-34 - An error in the hostname matching in msmtp might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 1.4.19 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2009-3942
MD5 | ef5bd1ce2d222e9d3082bbf5f214bfaa
Gentoo Linux Security Advisory 201206-33
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-33 - A vulnerability has been found in Postfix, the worst of which possibly allowing remote code execution. Versions less than 2.7.4 are affected.

tags | advisory, remote, code execution
systems | linux, gentoo
advisories | CVE-2011-0411, CVE-2011-1720
MD5 | 747c3d1ceb77eac7ea28b8d7ce15ee48
Asus iKVM/IPMI Backdoor / Cleartext Passwords
Posted Jun 25, 2012
Authored by Pedro Dias

The Asus iKVM/IPMI implementation stores credentials in the clear, in a text file, and readable by the anonymous user which has a hardcoded password of "anonymous" with no way to change it.

tags | exploit, info disclosure
systems | linux
MD5 | b30bf635fe2aaab78a2fc2a690b9c68f
Apple QuickTime Security Bypass
Posted Jun 25, 2012
Authored by Adam Gowdiak | Site security-explorations.com

Security Explorations does not agree with Apple's evaluation of a vulnerability they reported. They have decided to release proof of concept code to demonstrate a bypass vulnerability in Apple QuickTime Java extensions.

tags | exploit, java, proof of concept, bypass
systems | linux, apple
MD5 | b455e16bcd79c5388b8972a887d86fc8
Apache Roller 4.x / 5.x Cross Site Request Forgery
Posted Jun 25, 2012
Authored by Jun Zhu | Site apache.org

Apache Roller versions 4.0.0 through 4.0.1 and 5.0 suffer from a cross site request forgery vulnerability.

tags | advisory, csrf
advisories | CVE-2012-2380
MD5 | 96f6190baa631ef508f5afd8d09c46e7
Apache Roller 4.x / 5.x Cross Site Scripting
Posted Jun 25, 2012
Authored by Jun Zhu | Site apache.org

Apache Roller versions 4.0.0 through 4.0.1 and 5.0 suffer from a cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2012-2381
MD5 | 72d9f1813de4754d252e6afa88793e38
Kingview Touchview 6.53 EIP Overwrite
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Kingview Touchview version 6.53 suffers from an EIP direct control vulnerability.

tags | exploit
MD5 | baeb6e39abe481565a5dbd7a7b401487
Kingview Touchview 6.53 Heap Overflows
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Kingview Touchview version 6.53 suffers from multiple heap overflow vulnerabilities.

tags | exploit, overflow, vulnerability
MD5 | 13b5fa51547273873ea1c36fdc30c174
Mandriva Linux Security Advisory 2012-100
Posted Jun 25, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-100 - An integer signedness error, leading to heap based buffer overflow was found in the way the imfile module of rsyslog, an enhanced system logging and kernel message trapping daemon, processed text files larger than 64 KB. When the imfile rsyslog module was enabled, a local attacker could use this flaw to cause denial of service via specially-crafted message, to be logged. The updated packages have been patched to correct this issue.

tags | advisory, denial of service, overflow, kernel, local
systems | linux, mandriva
advisories | CVE-2011-4623
MD5 | 9cbfeaf506f42ed876fdb65df961206e
Insecurity Of Poorly Designed Remote File Inclusion Payloads Part 2
Posted Jun 25, 2012
Authored by bwall | Site firebwall.com

This whitepaper discusses the insecurity of poorly designed remote file inclusion payloads. This is part two.

tags | paper, remote, file inclusion
MD5 | db334ed835af32fbdea7852b6b5cba1e
Slim PDF Reader 1.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Slim PDF Reader version 1.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4220
MD5 | fa867045b7572deef3a191844fad57e5
Hashdays 2012 Call For Papers
Posted Jun 25, 2012
Site hashdays.ch

Hashdays 2012 Call For Papers - Hashdays is an international security technology and research conference offering both trainings/workshops and traditional presentation tracks. The event features many international IT security experts sharing their deep technical knowledge in an open environment and takes place October 31st to November 3rd, 2012 in Lucerne.

tags | paper, conference
MD5 | 0d9b06173bf8b27af376f4e5f7fec032
Western Digital TV (WD-TV) Live Remote Code Execution
Posted Jun 25, 2012
Authored by Wolf Bee

The WD TV Live Streaming Media Player suffers from two implementation flaws that together allow for remote command execution as root.

tags | exploit, remote, root
MD5 | 268a44dbddc2d9b6b4f15fc418eed118
Drupal Drag And Drop 6.x-1.5 Shell Upload
Posted Jun 25, 2012
Authored by Sammy FORGIT

Drupal Drag and Drop third party module version 6.x-1.5 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | d231d5209233b10f581920ad6e54c2cc
Autopagina CMS 2.8 SQL Injection
Posted Jun 25, 2012
Authored by Sammy FORGIT

Autopagina CMS version 2.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a8b341071924160ea47bd8aa7ed81d2d
Umapresence 2.6.0 Shell Upload / File Deletion
Posted Jun 25, 2012
Authored by Sammy FORGIT

Umapresence version 2.6.0 suffers from remote shell upload and file deletion vulnerabilities.

tags | exploit, remote, shell, vulnerability
MD5 | 938b6ee03d3db9422bacc1892c2b964c
Able2Extract 6.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Able2Extract and Able2Extract server version 6.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4222
MD5 | 70d0cff4629a029b21d8d0a8d50aee4c
Able2Doc / Able2Doc Professional 6.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Able2Doc and Able2Doc Professional version 6.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4221
MD5 | a9ff9cc2ecadb17fb000f40f10113244
Page 1 of 3
Back123Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    14 Files
  • 19
    Oct 19th
    8 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close