exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 51 - 59 of 59 RSS Feed

Files Date: 2006-07-24 to 2006-07-25

Technical Cyber Security Alert 2006-200A
Posted Jul 24, 2006
Authored by US-CERT | Site cert.org

Technical Cyber Security Alert TA06-200A - Oracle products and components are affected by multiple vulnerabilities. The impacts of these vulnerabilities include remote execution of arbitrary code, information disclosure, and denial of service.

tags | advisory, remote, denial of service, arbitrary, vulnerability, info disclosure
SHA-256 | 729654164b51a6a62c67a7fc463fa5e4908171755072dd0b90197fb632583582
rPSA-2006-0133-1.txt
Posted Jul 24, 2006
Site rpath.com

rPath Security Advisory - Previous versions of the libpng package contain a weakness in processing images that is known to create a denial of service vulnerability and is expected also to allow unauthorized access. This weakness is triggered by malformed png images that may be provided to applications such as web browsers by an attacker.

tags | advisory, web, denial of service
advisories | CVE-2006-3334
SHA-256 | 32f2e1977a6be9cee119a0f457b46c0c4d26ac2322445ba8f7d03d2f5c6150e9
Gentoo Linux Security Advisory 200607-6
Posted Jul 24, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200607-06 - In pngrutil.c, the function png_decompress_chunk() allocates insufficient space for an error message, potentially overwriting stack data, leading to a buffer overflow. Versions less than 1.2.12 are affected.

tags | advisory, overflow
systems | linux, gentoo
SHA-256 | c52c1fdc9df9fae168bd21bb5d44e810ceff1c721841f8a39adffea4bc0ea41d
Cisco Security Advisory 20060719-mars
Posted Jul 24, 2006
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Security Monitoring, Analysis and Response System (CS-MARS) software contains vulnerabilities related to third-party software and the command line interface (CLI). CS-MARS ships with an Oracle database. The database contains several default Oracle accounts which have well-known passwords. If access to the database is obtained, the default accounts may be used to access sensitive information contained in the database. CS-MARS ships with the JBoss web application server. A component of the JBoss installation may allow a remote, unauthenticated user to execute arbitrary shell commands with the privileges of the CS-MARS administrator. The CS-MARS CLI contains several vulnerabilities which may allow authenticated administrators to execute arbitrary shell commands with root privileges. All vulnerabilities addressed in this advisory have been corrected in CS-MARS software version 4.2.1.

tags | advisory, remote, web, arbitrary, shell, root, vulnerability
systems | cisco
SHA-256 | 6d8365bbd3df900adf1c27abe88979a9285dccdcd49ddb8df480d3c4b145d83c
rPSA-2006-0132-1.txt
Posted Jul 24, 2006
Site rpath.com

rPath Security Advisory - All versions of the ethereal and tethereal packages contain vulnerabilities in packet dissector modules, which may allow various attacks including subverting the user who is running ethereal. Since ethereal is generally run as root to view network traffic directly, this may allow complete access to the vulnerable system.

tags | advisory, root, vulnerability
advisories | CVE-2006-3627, CVE-2006-3628, CVE-2006-3629, CVE-2006-3630, CVE-2006-3631, CVE-2006-3632
SHA-256 | c44a6d6485544a4f0867e5c2113e2255a5f08d8b4523239a0d24aa294287a2ef
Ubuntu Security Notice 320-1
Posted Jul 24, 2006
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 320-1 - Multiple vulnerabilities in php4 and php5 have been fixed in Ubuntu.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2006-0996, CVE-2006-1490, CVE-2006-1494, CVE-2006-1608, CVE-2006-1990, CVE-2006-1991, CVE-2006-2563, CVE-2006-2660, CVE-2006-3011, CVE-2006-3016, CVE-2006-3018
SHA-256 | ed4325f174f86f7991aa6c241942bd4940d3f151a71e55e144c77ccbc88a385b
demostore.txt
Posted Jul 24, 2006
Authored by sledge

The Demo Store version of AFCommerce Shopping Cart is susceptible to SQL injection and cross site scripting flaws.

tags | advisory, xss, sql injection
SHA-256 | af49e1fb5a31ada2438785fe63a8aee4c5ffc469e25e30ba194fe642e1d3ac99
rps-include.txt
Posted Jul 24, 2006
Authored by zeus | Site elitemexico.org

RPS, or Rigter Portal System, versions below 4 suffer from file inclusion and SQL injection vulnerabilities.

tags | exploit, vulnerability, sql injection, file inclusion
SHA-256 | eb30668f52a301223fdc15b4a56edd24bd66ea7a0c2f648136d2163df0b6182e
04072006_rarlabs.pdf
Posted Jul 24, 2006
Authored by Ryan Smith | Site hustlelabs.com

WinRAR versions less than 3.60 beta 7 and greater than 3.0 suffer from multiple buffer overflows due to a lack of constraints while copying data.

tags | advisory, overflow
SHA-256 | f8b7381f74499f50992c3a3cf3c3f915a313f8b38f1c339d779fb109ce1a2ea2
Page 3 of 3
Back123Next

File Archive:

September 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    2 Files
  • 2
    Sep 2nd
    21 Files
  • 3
    Sep 3rd
    0 Files
  • 4
    Sep 4th
    17 Files
  • 5
    Sep 5th
    34 Files
  • 6
    Sep 6th
    29 Files
  • 7
    Sep 7th
    11 Files
  • 8
    Sep 8th
    25 Files
  • 9
    Sep 9th
    0 Files
  • 10
    Sep 10th
    0 Files
  • 11
    Sep 11th
    26 Files
  • 12
    Sep 12th
    23 Files
  • 13
    Sep 13th
    17 Files
  • 14
    Sep 14th
    22 Files
  • 15
    Sep 15th
    16 Files
  • 16
    Sep 16th
    0 Files
  • 17
    Sep 17th
    0 Files
  • 18
    Sep 18th
    19 Files
  • 19
    Sep 19th
    60 Files
  • 20
    Sep 20th
    23 Files
  • 21
    Sep 21st
    15 Files
  • 22
    Sep 22nd
    8 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    17 Files
  • 26
    Sep 26th
    3 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close