fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
ebf0f5a55992e516fa44063993cbcc51bb9555cef769ac9ab5d8be77a8df99dcCore Security Technologies Advisory - Artweaver is prone to a security vulnerability when processing AWD files. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine by enticing Artweaver users to open a specially crafted file.
8873c3cc679a450c834c0d3effea661d00b6fc7035c223ebc4f127cdeecfa1c1Core Security Technologies Advisory - XnView is prone to a security vulnerability when processing PCT files. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine, by enticing the user of XnView to open a specially crafted file.
ca26300ca7108c01d37afc023226b062ec8f28da70b639d5efffa6f4508c47ceRed Hat Security Advisory 2013-1101-01 - The virtio-win package provides paravirtualized network drivers for most Microsoft Windows operating systems. Paravirtualized drivers are virtualization-aware drivers used by fully virtualized guests running on Red Hat Enterprise Linux. An unquoted search path flaw was found in the way the QEMU Guest Agent service installation was performed on Windows. Depending on the permissions of the directories in the unquoted search path, a local, unprivileged user could use this flaw to have a binary of their choosing executed with SYSTEM privileges.
ec47d43348aba295395f355d49d7df9d89d29633f2e0a120214cee8ab4f597aeRed Hat Security Advisory 2013-1100-01 - KVM is a full virtualization solution for Linux on AMD64 and Intel 64 systems. qemu-kvm is the user-space component for running virtual machines using KVM. An unquoted search path flaw was found in the way the QEMU Guest Agent service installation was performed on Windows. Depending on the permissions of the directories in the unquoted search path, a local, unprivileged user could use this flaw to have a binary of their choosing executed with SYSTEM privileges. This issue was discovered by Lev Veyde of Red Hat.
17f080562461d9428e71f2571c2d5e807125df384a59fdf41c09bd5873a86e96The DMCRUIS/0.1 web server on Samsung TVs suffers from a denial of service vulnerability.
e9b3d22fa6b4f3fc19e75db76fe9f037ca994a090ee5b9c167a7c2876397d627Photo Server version 2.0 suffers from remote shell upload and command injection vulnerabilities.
149ec4f509df9c7841d47111e32d365b17fccc1ffcff2c4cc0364c89074f6895Dell Kace 1000 SMA version 5.4.742 suffers from a remote SQL injection vulnerability.
693c5b2e61edff845088532a9358fff8f70678f354d983b1ac6cbfc327108d2aCollabtive version 1.0 suffers from cross site scripting, remote shell upload, and arbitrary account deletion vulnerabilities.
db6047545975993b9eb3318de2e4ffdb0ea6799f5df0acdd3e8af273d4493481OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.
66ebf924304409356b35a3423e4b7255996c5a42503c3188bf08c6446f436ddcThe WordPress FlagEm plugin suffers from a cross site scripting vulnerability.
b2aff13a721933615831574d3a200e0aa8d91b95d990db54195e7205f361aeb2PCMan FTP Server version 2.0.7 remote buffer overflow exploit.
823e653d8a82b7def332d37498fc6aa74c4bd6b3c4d38913e525c15b1fff1e71Microsoft DirectShow suffers from an arbitrary memory overwrite vulnerability.
966359e1bfa8e5872cbdaaf4d8d308eea241b248036ed506a60a1cb9909d046fRootPanel suffers from a remote SQL injection vulnerability that allows for account takeover.
3b0a2b15e86e26905ee913231acbaecfa5ddc1f2eefcea4109cfc8734f8e8c13Jetaudio version 8.0.17 suffers from a denial of service vulnerability when handling a malicious .m3u file.
120dc26c9dad5d23c8bbfa20b77c6e8094e7c37d3f7486ece227d645cfb2c75dVbsEdit version 5.9.3 suffers from a buffer overflow vulnerability.
58ac21c66b7e12fd936c5067c4466ccea32a8778db1358b7ba0282b79506259c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed