CHINANSL Security Advisory(CSA-200012) - Ultraseek Server 3.0 Vulnerability allows malicious users to see the full pathnames of server addons.
a93ef1f7c85039e6f7a88a25020b181c801b9ea32a699a2b5f122ec16a96ce51
Cisco Security Advisory - Catalyst Memory Leak Vulnerability. A series of failed telnet authentication attempts to the switch can cause the Catalyst Switch to fail to pass traffic or accept management connections until the system is rebooted or a power cycle is performed. All types of telnet authentication are affected, including Kerberized telnet, and AAA authentication.
f78e1da717f41cb8bc980acf491fc47ff430a1f0ad3b5d1aa403d9b8a3328338
Bftpd 1.0.12 contains a remote buffer overflow. Denial of service exploit included.
b53b1d6e97dd2c13613462f15448517d0b51dbb7d806ce05e13b0e2e9494dbfc
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
df2d9e51e0cbb95e6490e075f38e11213d18a7f1a702fce011210d9d6a5a7112
The Twilight Minds Extensible Logging Package is intended to provide a basis for efficient logging of sequential output. It helps get the groundwork of logging done and out of the way. It also removes the processes associated with recording log entries and managing logs from the main thread of execution. TwilightMinds.Log allows for one-line logging to any end-point within a common framework, and allows for potentially complex but easily managed logging setups.
7bac1500510cc8a4b406a517db77142bd84457f1bc75a635fa607fe575e68ad2
Secure Reality Pty Ltd. Security Advisory #7 - MarkVision is a printer administration package from Lexmark. Versions previous to v4.4 contain local root buffer overflow vulnerabilities. Fix available here.
3e763f2a074ead41c407459903496036ba90d70aba5782927022137c103963ec
Secure Reality Pty Ltd. Security Advisory #6 - phpGroupWare is a multi-user web based groupware suite written in PHP. Versions below 0.9.7 under Unix make insecure calls to the include() function of PHP which can allow the inclusion of remote files, and thereby the execution of arbitrary commands on the remote web server with the permissions of the web server user, usually 'nobody'. Fix available here.
6726f2b4b34f81a4e34dba7e545c1d74926ef384ea62801eb1b9a0aae10a731a
Secure Reality Pty Ltd. Security Advisory #5 - All 3.x versions of MailMan Webmail below v3.0.26 contain remote command execution vulnerabilities. The code contains several insecure calls to open() containing user specified data. These calls can be used to execute commands on the remote server with the permissions of the user that runs CGI scripts, usually the web server user which is in most cases 'nobody'. Fix available here.
b4dcc0b0843d1cb7fc27df32abe4794efcdd89522f9d488aea343af2e5078e74
ncat is a network config Audit Tool for IOS (and other) configs. ncat reads a master config file (default ./ncat.conf) and checks one or more config files specified on the command line against rules found in the master. Rules specify that a particular chunk of text is either required or forbidden. Once all rules have been checked, a report is output listing violations.
85615dadc4ee83f8faf51ab4c2c37e71451176a055a158b811664ebd8e732dae
Black Watch Labs Security Advisory #00-04 (April 6, 2000) - BizDB is a database and search engine software by Cnctek. Part of the installation is a CGI script, ?bizdb-search.cgi? which is used to search the bizdb database. This script is vulnerable to modification of its paramater, in such way that causes it to run user provided shell commands on the server. Exploit URL's included. These issues have been resolved in newer versions of this software, make sure to upgrade!
24a4ed5c6abb15a3bce91a5494875ecada0d11f6a7bde42b93605a2e1bbe0bd7
VPNet Technologies VSU VPN appliances have serious remote vulnerabilities. A source routing flaw in VSU allows for unauthenticated connections to a target host on protected LAN of VPN, and a flaw in NOS bridging code causes VSU to pass spoofed private address packets from it's public interface to the private network.
0cb8674acbf084b5918dab3149caf09b90482e6bca33a3214386bb64286cb150
Qaudit.pl is a script for quickly auditing .c and .cc source files for stack and heap overflows, format bugs, exec calls, environment variables, and misc functions which often have security issues.
6b50f0f26fca5b87424305765aca11e97a6f5b1fdcca2bb00b3a1259f8d8dbb6
Microsoft Security Bulletin (MS00-096) - Microsoft has released a tool that corrects the permissions on several registry values in Windows 2000. The default permissions allow malicious users to monitor or reconfigure some network devices by displaying the SNMP community name and management station identifiers. Microsoft FAQ on this issue available here
d2e91906cab571f0ef26eb21c3fb73c2fffb4477c47da3c46a5ba001fda6bf67
Microsoft Security Bulletin (MS00-095) - Microsoft has released a tool that corrects the permissions on several registry values in Microsoft Windows NT 4.0. The default permissions allow malicious users to gain additional privileges on affected machines. Affected keys include the SNMP Parameters key, the RAS Administration key, and the MTS Package Administration key. Microsoft FAQ on this issue available here.
05886460d5a8310f027090b6cdd67524d92b48f2b41fbd1a164ffd36c7a78d8b
Remote denial of service exploit for Microsoft Exchange 5.5 SP3 Internet Mail Service and Information Store. The bug is in the handling of a line containing Content="".
0c9cfdbafe736d4492e5824460e8cf1c11123d2a6f395721ed470ff9d5905c32