The Serious engine for games like Alpha Black Zero and Nitro family fails to limit the amount of new players joining a game, allowing for a denial of service. Only one UDP packet is needed to create a fake player.
1d4d9d5101c652cd463fe24cc999f3991959494588e7a826a52df28c2c1a1133
Winfingerprint is a Win32 Host/Network Enumeration Scanner. Winfingerprint is capable of performing SMB, TCP, UDP, ICMP, RPC, and SNMP scans. Using SMB, winfingerprint can enumerate OS, users, groups, SIDs, password policies, services, service packs and hotfixes, NetBIOS shares, transports, sessions, disks, security event log, and time of day in either an NT Domain or Active Directory environment. Winfingerprint-cli is a command line version of winfingerprint and it is currently bundled with each release.
4a336625213434a3182194ac1088dca70eba26241a153ed9271999150ac3e023
Gentoo Linux Security Advisory GLSA 200411-36 - phpMyAdmin is vulnerable to cross-site scripting attacks. Versions below 2.6.0_p3 are susceptible.
3fa6d61a17f65aef0fc13b15a5d049b51f701964bdf1c96d63fcab8787e1ecfb
Simple remote exploit for the SQL injection vulnerability discovered in PHPNews.
c5de8860494ec9c6c1f6fd843c7a558b1fee55f076ab1a36f0363084f66befb4
Security research discussing a new vulnerability discovered in WINS that allows for remote unauthenticated system access.
b36dcc29c389916dbba601c7e517f5d4ec18f3aa881ccfebf4de339e949d0c61
phpBB versions below 2.0.11 suffer from addition SQL injection and directory traversal flaws.
4d879cc6423df932290b6e1b7d9182c499c15eaf7502b726946c2a1b29356b16
PnTresMailer code browser version 6.03 is susceptible to path disclosure and directory traversal attacks.
0a17793363214eba0be0a9ddbc2c21299703b7751b93939842febb4de75a715c
Secunia Security Advisory - A vulnerability has been reported in YaBB, which can be exploited by malicious people to conduct script insertion attacks.
ab95c3c55be85ae0e8ca498fadff512c57499794b2dde161177e9c8b7ee07580
glFlow is a pcap-based traffic analysis tool intended for monitoring high speed links. The detection algorithm is based on realtime NetFlow traffic aggregation and analysis. The code is portable across platforms, it should work on every system with working md4/md5 and pcap implementations, with very little modifications.
ae65c85f078fcd55f2924cc22ad11b6a1e9db36f0075977f6ca03135e9512385
Secunia Security Advisory - cyber flash has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to trick users into downloading malicious files.
0831a126d00d18c5cdb07ba991a9671f8c66b5f06aed588fbc06b83745c69c47
Bilbo is a wrapper for nmap which makes it easier to scan lots of machines or networks.
f67baad0edc920a5ef76782a9c7d16549c2afe4cfab5e20080c6cc291b13b74f
phpCMS versions 1.2.1 and below suffer from information disclosure and cross site scripting flaws.
806a8881ffffbf74b2f09ca1f0f6f7b6e5099e5dc00aaa4a7873b39c8bc03b51
Mandrake Linux Security Update Advisory - The GNU a2ps utility fails to properly sanitize filenames, which can be abused by a malicious user to execute arbitrary commands with the privileges of the user running the vulnerable application.
afffec118e3c478b43f8bd4c296edd84d155a798b59d0a49364f43ef44813126
MailEnable Professional Edition version 1.52 and MailEnable Enterprise Edition version 1.01 both suffer from a remote buffer overflow in their IMAP service. Full exploit included.
32c6ae1f1b84066439bf30e3587f50ec5f207c7c74e794bbd4f1278e559265ab
Exploit that makes use of the PHP memory limit vulnerability discovered in July of 2004.
2c97cd1c958eda9cb6b3a5a97720fabb55603f0d0d23e1c106b84fb552ebbcfa
EZshopper is susceptible to a directory traversal attack. Exploitation included.
cbdb0c2b9acdabdbc38e91ad21b569d3defbbf86aa3ad3d5253a0b43f04f7d69
Debian Security Advisory 598-1 - Max Vozeler noticed that yardradius, the YARD radius authentication and accounting server, contained a stack overflow similar to the one from radiusd which is referenced as CVE-2001-0534. This could lead to the execution of arbitrary code as root.
9ecd3ad0354574b4685ff09a4dd7f47ca78960f6c3f1cf553472b4478e3b85fb
Secunia Security Advisory - Cengiz Aykanat has reported a security issue in eTrust Antivirus, which can be exploited by malicious people to bypass certain security features.
e95ff9f50362359b5420a6cb73b82a1def018e97149d245d91d96bc18c046f35
MIMEDefang is a flexible MIME email scanner designed to protect Windows clients from viruses. Includes the ability to do many other kinds of mail processing, such as replacing parts of messages with URLs. It can alter or delete various parts of a MIME message according to a very flexible configuration file. It can also bounce messages with unacceptable attachments. MIMEDefang works with Sendmail 8.11/8.12's new "Milter" API, which makes it more flexible and efficient than procmail-based approaches.
9ff52d51fbc6ad8805f38be6d2a1a480cc1dd576b920302f003e355f51d7fa96
GNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.
4d04cccf5955cba89c60775f76ef7bea4a91323b7a8ae92aba2af9e541092edb
Motiontrack is a set of tools that detects motion between two images. It is able to successfully distinguish random flicker from real object movement by applying a set of filters to the images, and can optionally ignore given colors and/or image regions. The roadmap provides for being able to identify objects by pattern detection and AI routines. Currently, this tool is able to turn line-art images into ASCII-art text as a demo feature.
57bd0e19f4e2a1bbb8c0e5b5143592d26f0d9fdd31f62ab6968c71a3f9e7d859
This program listens for sound. If it detects any, it starts recording automatically and also automatically stops when things become silent again.
98ad30a0ccb9efab33e61d565dd53b6922e3395876c772d0a65d5485bd65e57e
Ipfreeze is a program that listens to the netlink device. It takes the source address from every incoming packet and adds it to a Netfilter "blacklist" chain. The address is removed from this chain after a user-definable period of time. This allows you to create rules that detect and halt certain odd behaviors, such as ports scans, syn floods, or connection attempts on forbidden ports. The attacker's IP address is blacklisted using the QUEUE target. There is also a whitelist where you can declare hosts that you never want to be blacklisted.
f7206f5b31442c0ea8a3e5a224b5daff709cf39a09762e25c8d5f222137dff07
The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
758b8186c67b0ff6cd3a876eac73982bc7f565f8dc006085cef3cd6c693ad264
Placid is a Web-based frontend for Snort that uses MySQL. It supports searching, sorting, and graphing of events, and was designed for speed and to have little overhead.
232304444140a229233a2a2f5ffa8372f4a9ca1473863c40183b8ccaded97bf6