Secunia Security Advisory - A security issue has been reported in ginp, which can be exploited by malicious people to bypass certain security restrictions.
3ab1f6d3ca36d8d484f297215b97acd3eaf2a506466715db5d51cd406fc6417d
Sun Security Advisory - A system panic may occur on systems that open and close several UDP end points.
10bf6ec41a8db82f32295a3a660842226a8d9b1a7c158bf82b13c735d6252d8c
Debian Security Advisory 661-1 - The Debian Security Audit project discovered that f2c and fc, which are both part of the f2c package, a fortran 77 to C/C++ translator, open temporary files insecurely and are hence vulnerable to a symlink attack.
c176048e4edf43fb9c44c5ce861ed0559b85a08070ccfed40adad603b717b990
Multiple vulnerabilities in Uebimiau WebMail versions 2.7.2 and below allow for the hijacking of session files and other information.
834d17e463670f58d926bf262304f0e4f32dfaf0d2ef316c1799deb007620aec
When a PPTP user is disabled in Ingate Firewall versions 4.1.3 and below, any tunnel created by them is not automatically disabled.
80f85f9fb08f0a173f235a0fae31f290489018416571bc16f578dcc2ccd5f2bd
Exploit for Outlook that can press a button to verify it is okay to access protected contact data. Tested against Windows XP SP1. This functionality may be utilized in future worm creation.
b7b894daaf5e749e2f7ec8cab19e398017e5a3a7694ac2d2bf74ebf782fb2f30
NSFOCUS Security Advisory(SA2005-01) - NSFocus Security Team has found a buffer overflow vulnerability in the plug-in by which WinAMP plays CD. An attacker can construct a malicious playlist file that is embedded in a HTML page. If a user is persuaded to click it, then the attacker can gain complete control over the user's system. All versions below 5.08c are affected.
2f4c6c5035b872fd5a2b5de1569a4facb605684f573d63de5e8c86235f56c895
An unnamed antivirus product can cause a denial of service on Microsoft Windows due to not closing open registry handles.
10e74a2c526a065ee0572cf3e0b04c2ade62abdeccdc6aa8429bc8da242910db
Apple's OS X batch family of commands make poor use of setuid capabilities allowing for privilege escalation.
4b7f8222d4d52c294fcfe9d3930da745c276ff2c756307556f0b7f809f135083
Secunia Security Advisory - A vulnerability has been reported in JUNOS, which can be exploited by malicious people to cause a DoS (Denial of Service).
bd7ae7cb6ff704e5dabca2abcceee84f052d0ae3ca70164a455461bc48a9cbcb
Secunia Security Advisory - A security issue has been reported in Novell iChain, which potentially can be exploited by malicious people to bypass certain security restrictions.
a43a206d2e0759be7da880f6f1a67101b0d22d3bd6ac6a1b75038e36eb2554ab
Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
52f2b2d746b9c822d7b0a66bde762d738b15b0fc077dbad1001cdb2e695b7240
FLoP is utility designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database. Both PostgreSQL and MySQL are currently supported. High priority alerts may be sent out via e-mail.
d1bed331cdc280f6652f5dddcd5097c97252fcf70aeb2a28db3bf8103cf1886a
Ciphire Mail is an email encryption tool. It works in conjunction with your existing email client. It operates seamlessly in the background and does not interfere with normal email routines. It encrypts and decrypts email messages, and can digitally sign each message to provide authentication and guard against identity theft. It resides on your computer, between your email client and your email server, transparently encrypting/decrypting and digitally signing your email communication. It is compatible with all email clients using standard SMTP, POP3, or IMAP4 (including SSL/TLS variants and STARTTLS support). It is free for consumers, non-profit organizations, and the press. Mac version.
1b2bc9c632cdf43bd39319f75c4704f20aaa6f26fc3d124dd8507a42787b73d6
Ciphire Mail is an email encryption tool. It works in conjunction with your existing email client. It operates seamlessly in the background and does not interfere with normal email routines. It encrypts and decrypts email messages, and can digitally sign each message to provide authentication and guard against identity theft. It resides on your computer, between your email client and your email server, transparently encrypting/decrypting and digitally signing your email communication. It is compatible with all email clients using standard SMTP, POP3, or IMAP4 (including SSL/TLS variants and STARTTLS support). It is free for consumers, non-profit organizations, and the press. Linux version.
9554406af367df5442d5d835e7a60e16a91ef242ad928e937bf9157c18a41a1a
Network Security Policy Compiler (NetSPoC) is a tool for security management of large networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains. It provides its own language for describing security policy and the topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which are not. NetSPoC is topology aware - a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B.
76844598b6b447c7bb9e420a50ff52ed6ecc052e1dbf3655c6be89aad39cace6
Pocket IE on a Windows Mobile Pocket PC suffers from Unicode URL obfuscation, local file access, and cross site scripting vulnerabilities.
bec395013c609fcafb8b6c84f0300549081528029323dea25c5102ec9493c217
Modified uselib() local exploit for the Linux kernel series. This version has been modified to also work on SMP kernels. Linux kernel versions 2.4 up to and including 2.4.29-pre3, 2.6 up to and including 2.6.10 are affected.
5e811fb3a37fea86aa97d208b9d826680bddf7e732a63c3f6952d51dfe5d31ea
Technical Cyber Security Alert TA05-026A - Several denial-of-service vulnerabilities have been discovered in Cisco's Internet Operating System (IOS). A remote attacker may be able to cause an affected device to reload the operating system.
af04c26b07b8e8acf730898629d5192660908ccf68ffab884d70853b1086301b
Cisco Torch mass scanning, fingerprinting, and exploitation tool. First alpha release.
5d0502874b3a66bdc6eba7e8cd3ef8bbad03d0f5212ec02084ff276f03dae106
iDEFENSE Security Advisory 01.26.05 - Remote exploitation of a stack based buffer overflow vulnerability in Xelerance Corp.'s Openswan version 2.2.0 could allow attackers to execute arbitrary code.
5d7a745897c2b006a9d5a20eef5988ef5d95c436309b67bb1d389354d61c77ad
Debian Security Advisory 660-1 - The KDE screensaver can crash under certain local circumstances and can be exploited by an attacker with physical access to the workstation to take over the desktop session.
0c1b349ed0e795210c51ff2887ed68397c9d3276528726446dd4c5799a7abe1e
Cisco Security Advisory - Cisco Routers running Internetwork Operating System (IOS) that supports Multi Protocol Label Switching (MPLS) are vulnerable to a Denial of Service (DoS) attack on MPLS disabled interfaces. A system that supports MPLS is vulnerable even if that system is not configured for MPLS. The vulnerability is only present in Cisco IOS release trains based on 12.1T, 12.2, 12.2T, 12.3 and 12.3T. Releases based on 12.1 mainline, 12.1E and all releases prior to 12.1 are not vulnerable.
061fe1bb12e105fc6cabaa2a77c951facb397ec8fea09a26cd84bc79c39b524b
Cisco Security Advisory - A Cisco device running IOS and enabled for the Border Gateway Protocol (BGP) is vulnerable to a Denial of Service (DoS) attack from a malformed BGP packet. Only devices with the command bgp log-neighbor-changes configured are vulnerable. The BGP protocol is not enabled by default, and must be configured in order to accept traffic from an explicitly defined peer. Unless the malicious traffic appears to be sourced from a configured, trusted peer, it would be difficult to inject a malformed packet.
741aa15010a7e4e4c143cde6e734365b823f18d3b50bedffcdf8423e5e202d9b
Cisco Security Advisory - Cisco Internetwork Operating System (IOS) Software is vulnerable to a Denial of Service (DoS) attack from crafted IPv6 packets when the device has been configured to process IPv6 traffic. This vulnerability requires multiple crafted packets to be sent to the device which may result in a reload upon successful exploitation.
447cb2275ca1195795455595b92bf5ffeda844d40af5c416f72e2b114042e948