Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in the Opera Mail client, which can be exploited by a malicious person to conduct script insertion attacks and to spoof the name of attached files.
3549ef96e3aa3dcd07401caea4f76ad545fbb260bf4b89da55aeabbd29231af9Secunia Security Advisory - A vulnerability has been reported in Storage Exec / StorageCentral, which can be exploited by malicious people to compromise a user's system.
d1246dcde2a6244792663d5e941b2a8886762f230a9a2e6da821d87caa1ddadbSecunia Security Advisory - A vulnerability has been reported in Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
66818426d081a5bfd85a14872ce14c8b2887a42f380bad66c8b653051829a8a8Yersinia implements several attacks for the following protocols: Spanning Tree (STP), Cisco Discovery (CDP), Dynamic Host Configuration (DHCP), Hot Standby Router (HSRP), Dynamic Trunking (DTP), 802.1q and VLAN Trunking (VTP), helping a pen-tester with different tasks.
d64dacb4d4352447f3f0f1e7db28c86b3131fd9d94c24d07a6636f1bfd305901Spymac Web Os v4.0 suffers from multiple XSS vulnerabilities.
7880d5ee300092ed58b760fb7f3be1e1b3f52296ae146a2467cf93fc4759fa56Pmgraph is a simple Perl script to create some graphs from Snort's perfmonitor preprocessor by using RRDtool. Example output can be found on the homepage.
fc6fe068cba52a19f563fa405cd2cc1abfcd0148a14523304bd75babe9c29825Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.
4453946f01226feee244f68544289b1ec2b95d5b9210bd0dfc4f626fc526d970The TAPiON engine is a polymorphic shellcode system that can create unical decryptor, encrypt original data and decrypt it on the fly as code executes.
8f6e5be7e8eb5900f24a644f04d3727b16cb229ef022b4ef410dcba207c05058SUSE Security Announcement - Squid web-proxy suffers from two remotely exploitable denial of service vulnerabilities
ffc33cd2b43d2cecb24ae8a320b2ad4b1318a49d6124ca983dacdafe8c59d8e5Versions up to and including 1.3.3 of SimpleCDR-X fail to set proper permissions on temporary files allowing any user on the system to view the files being recorded.
c3037a1380137e9b987f7c4280a317b3b7640cbde37c66c0b9349dd457d9be53gtkdiskfree versions less than or equal to 1.9.3 create temporary files insecurely.
3edafa77e03edab3c9e2796b7fcbcf17a8bdd3c24c5492a686808376a7a06213Ahnlab V3 Antivirus suffers from multiple vulnerabilities including privilege escalation and security bypass.
2ae763edf25b4f62ff2f3ef50c76412d6dae1da0517c6a1e8125b2eeb7569a1bMyspace.com is vulnerable to XSS in the add comment function. Exploitation provided.
7c0981b07cb61e9a014cc2c718ac1bb06e5b2617782437f63d0c5921dfdb4717ncompress versions less than or equal to 4.2.4-r1 create temporary files insecurely.
cf7cf80dc505790df8475c5587eb24306993c0de2c5f6d27beea53026d8b067darc versions less than or equal to 5.21j create temporary files insecurely.
7963e3d997799d5ea6c6f40b5f8f5b87842ad0a01b022fbb42210d82df4d025dgwcc versions less than or equal to 0.9.6-r2 create temporary files insecurely.
e09b15364c1149d7ffffd5717f233b858ef04539f8216e0cdf3a2d0daeff5fe9TWiki up to and including TWikiRelease02Sep2004 is vulnerable to remote command execution in the revision control function. Detailed exploitation provided.
9797cf4d91992f2125ffb97717f9d5e3e96195eef7114adec5ae0ca6caa97df5This paper outlines the strategies and managing of the processes behind implementing a successful Security Policy. Additionally, it gives recommendations for the creation of a Security Awareness Program, where the main objective would be to provide a staff with a better understanding of the issues stated in a security policy.
54d1796fea46366fe283da2f8d2c15d4f4bb38c67bc8625db620b115e984e6d1OpenAAPD (0.1-beta) is an Anti Arp Poisoning Daemon for OpenBSD operating system which works with or without DHCP protocol support on the LAN networks without compromising the ARP protocol performances.
7e40122f727c2cb77ddb30fb26e545ac53ec6fe39bd4cc1dcd3c1fab7bad68e3Debian Security Advisory DSA 812-1 - Peter Karlsson discovered a buffer overflow in Turquoise SuperStat, a program for gathering statistics from Fidonet and Usenet, that can be exploited by a specially crafted NNTP server.
1f7593fee3817b5bab9f496d27766d0d10e00ee1bcfa32c3ff7d6fc520a2f2e1Debian Security Advisory DSA 815-1 - Ilja van Sprundel discovered a serious lock file handling error in kcheckpass that can, in some configurations, be used to gain root access.
b155825f61d54781f87768ef4356bafdbe992c04e8ff2d5b30a1c6e01f40c8daDebian Security Advisory DSA 814-1 - Javier Fern
6cbf839becbb4c2bd16a009e93e7f9d5605558810955bfd1248c5c7317268196Debian Security Advisory DSA 813-1 - Several problems have been discovered in libgadu which is also part of centericq, a text-mode multi-protocol instant messenger client. The Common Vulnerabilities and Exposures project identifies the following problems:
eab2e5f11caed664a7a91178f9fb3fd46bd5eb7589ef01bc53a0d2ee60be9a0aSecunia Security Advisory - rgod has discovered a vulnerability in CuteNews, which can be exploited by malicious people to compromise a vulnerable system.
1e9e8ef683f543f186166e0a35847327b81f9c5274663b8ac28cba0d3af54e4bSecunia Security Advisory - Jonas Thambert has reported a security issue in SimpleCDR-X, which can be exploited by malicious, local users to gain access to sensitive information.
d279e430ed3f025cc7d535acaeff864c28e8035cd539ebda70c44da025d53735
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed