fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
c2835d4522a45737392c181df6459fb3db2755b779a246601d66359fd8e12d20Belkin wireless G router and ADSL2 modem authentication bypass exploit.
8ce8143e597ced9c7dab89d51e2bdb1e108d115ee28193bc7a9dcfe34a4a08bePardus Linux Security Advisory - Insufficient sanitization can lead to Vim executing arbitrary commands when performing keyword or tag lookup.
1af038f49dd7be46df684cca00b19f3590775e4fc513b99292bcdeb1e65d3219Pardus Linux Security Advisory - Multiple vulnerabilities have discovered by g_ which potentially can be exploited by malicious people to compromise a user's system.
19543faebfa0c824149c043f1f5ca4914a2d200771201b1afa424f14923c36efPardus Linux Security Advisory - A vulnerability has been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service).
64c355dcce91e0b0f828984ad3723412eb26fdf00f38a5667c4504d985959f28149 byte connect back, download a file, and execute shellcode for linux/x86.
d67d04dd640e5e8e64dd7aa188fb64ebe0807bf415e57a234d0efcfc60be458cMatterdaddy Market version 1.1 suffers from multiple SQL injection vulnerabilities.
11d0b6202382e5eb2f71bc99ef8fd6ac20eeac3dd9fb9eb9604da29c14f31a0cBtiTracker versions 1.4.7 and xbtit versions 2.0.542 suffers from a remote SQL injection vulnerability.
0fa6d573893adc76791d44b0b6f3998218991237eafe5070781528a685b61ed8The password checking routine of Grub fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
e6830a2e51a4006859ef717174a6c7a9f4a2c589b17b9d1341a3caf2fa43c057The password checking routine of LILO fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
fbf8278fc9ae31f0953c68b1be7ac5820b419f59c642eb07492b1dd6aec52a2dThe password checking routine of DriveCrypt fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
da41629f4200be17b9393f1177cbdb0f388ddd0e70fc1a3520198adf6cf1f5c5The password checking routine of DiskCryptor fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
b652f695c7247a3de587d408a41942c9ef2f1086cbee2fb843197dfa95167721The password checking routine of the IBM Lenovo BIOS firmware fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
a488508939d0aa7156c8686aa75fbaba363e073efc4b44072a2a13c40dde1e04The password checking routine of Intel BIOS firmware fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
a3dae1efa2a513a1e4d34e8620de7b40c67b3bd5327e513a672c4257d6bfcb28The password checking routine of TrueCrypt fails to sanitize the BIOS keyboard buffer before AND after reading passwords.
950b0f2921b089dffd4a9765fff017372c18e363577ea4a7de73517951bc9089The password checking routine of Hewlett-Packard 68DTT version F.0D (11/22/2005) fails to sanitize the BIOS keyboard buffer after reading user input, resulting in plain text password leakage to local users.
54ba0a5b5b30a41a1774fa59d76509831be07f95f58bd583771d59d208430935The password checking routine of Microsoft Bitlocker fails to sanitize the BIOS keyboard buffer after reading passwords, resulting in plain text password leakage to unprivileged local users.
0e397b0c05032591101d0eee295e0ee467592b78bde1992f3a0c4f810844bc2cSecunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Novell iPrint Client, which can be exploited by malicious people to gain knowledge of potentially sensitive information or compromise a user's system.
60558b8fb8fe7beb79534e81e5e8699ec200a84f9a29e119d697af54b2c48120Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in Calendarix Basic, which can be exploited by malicious people to conduct SQL injection attacks.
9050f782778b3db65bc00817ddddbeea1e001c4d4d4b6b887ee6d0e91bd59916Secunia Security Advisory - ~!Dok_tOR!~ has discovered two vulnerabilities in Matterdaddy Market, which can be exploited by malicious people to conduct SQL injection attacks.
779955a9fec6979bb6aaab369a75b6a5d92774bc617b8a2182261689fd76d8ffSecunia Security Advisory - Some vulnerabilities have been reported in xine-lib, which potentially can be exploited by malicious people to compromise a user's system.
eea1e8b0aa87eee5577e5ca794c825f718bc3bbcb8b8bfec220dd9960b2cb068Secunia Security Advisory - SUSE has issued an update for IBMJava2-JRE and IBMJava2-SDK. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
fe2de267ec401c118b0497294d23bdcc9db084ccf7e861150d8b6b0d1caf798aSecunia Security Advisory - Mr.SQL has reported two vulnerabilities in Five Star Review Script, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
bf1c7ad0d07f751714a017d0270431418adc954403492cfd273b6fd25de58990Secunia Security Advisory - SUSE has issued an update for IBM Java. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and compromise a vulnerable system.
69ff24bc91fac26f51e2abd03f7acc5f0b6a759523a0f8efa8abf7a1c11f5a76Secunia Security Advisory - Tyler Trioxide has reported a vulnerability in Photo Cart, which can be exploited by malicious people to conduct cross-site scripting attacks.
e4468c3e7dc6a42644f6bc0584a41ebbd4543cc93495cd2c4398e98c04344ab3
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed