Debian Linux Security Advisory 2115-1 - Several remote vulnerabilities have been discovered in Moodle, a course management system.
3258b7f731836fde3862332b759ab1f83d4a7caba2a732e487ef9c08d52f7982Gentoo Linux Security Advisory 201009-9 - fence contains multiple programs containing vulnerabilities that may allow local users to overwrite arbitrary files via a symlink attack. The fence_apc, fence_apc_snmp (CVE-2008-4579) and fence_manual (CVE-2008-4580) programs contain symlink vulnerabilities. Versions less than 2.03.09 are affected.
8a50fbcaf119fc9aaebdef84ea57f50bde4a7b322ffb95abb5c63176eb7ab9dbZero Day Initiative Advisory 10-185 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager Fastback. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FastBack server process (FastBackServer.exe) which listens by default on TCP port 11406. The process searches received packet data for a pipe character (0x7c) and then sends the remaining portion of the string to the event log without sanitization. By providing a specially crafted string with format specifiers this can be leveraged to trigger a format string vulnerability which can lead to arbitrary code execution in the context of the server process.
099ccd8d23f7b93112ddff78af26cdb12adb243ea80b2ae403884be7aa3e8563HP Security Bulletin - A potential security vulnerability has been identified in HP-UX Directory Server and Red Hat Directory Server for HP-UX. The vulnerability could be exploited locally resulting in information disclosure and privilege escalation.
74883147825cd6f325d827574c05b781c43f24d79f4ad70ef31b64bd10bb38dePluck version 4.6.3 suffers from a cross site scripting vulnerability.
4106206f84f80927cec4ea0c9f8eb461b56d318af16c4cfba81058d559e2efd1GetSimple CMS version 2.01 suffers from a cross site scripting vulnerability.
ca324af03071ec6a1dd114443439dbd2cf2ff47df1a3292e488c415143eae142Zimplit version 3.0 suffers from a local file inclusion vulnerability.
b3f960f74327a81cdcdc577b478df53ff2860c529e1f7ed334f1b71848d1fa38Zero Day Initiative Advisory 10-184 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli FastBack Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within FastBackServer.exe which listens by default on TCP port 11460. The issue is due to a strcat of user supplied data to a fixed length buffer located on the stack. By providing sufficiently large values for a group, workgroup, or domain name this buffer can be overflowed. Successful exploitation leads to remote code execution under the context of the fastback server.
1f5cb2f16bd04615eba452c18a64e6713f2fc9992113aaeaf6cc3b464f0f89faZero Day Initiative Advisory 10-183 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli FastBack Server. Authentication is not required to exploit this vulnerability. The flaw exists within FastBackServer.exe which listens by default on TCP port 11460. The issue is due to a strcpy of user supplied data and length to a fixed size buffer located on the stack. Specifically, this issue can be triggered by providing a large enough user_path variable. Successful exploitation leads to remote code execution under the context of the fastback server.
eaf1512e8dbb7c559eadc6a186fa916fa17dff745cb3c7f0c5ad865036cd81b1Zero Day Initiative Advisory 10-182 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli FastBack Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within FastBackServer.exe which listens by default on TCP port 11460. The vulnerable function uses values directly from a received packet as the size and data to several memcpy calls. By providing crafted values this issue can lead to remote code execution under the context of the fastback server.
6e8d9633a9cf6022cc05c44487ee0fd45f81407697636442f97349fbf3ff4f60Zero Day Initiative Advisory 10-181 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli FastBack Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within FastBackServer.exe which listens by default on tcp port 11406. The issue is due to a memcpy within the _AGI_S_ActivateLTScriptReply function. The process trusts a user-supplied length and copies user-supplied data to a fixed length buffer located on the stack. Successful exploitation leads to remote code execution under the context of the fastback server.
d1c3ecc065b8cf296ef18af668645f98716f09eb2fd81e5cc9ade2e4e379f1abZero Day Initiative Advisory 10-180 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli FastBack Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within FastBackServer.exe which listens by default on tcp port 11406. The issue is due to an unsafe copy to a buffer located on the stack. This buffer is used to build a formatted event log message for the AGI_SendToLog method. Successful exploitation leads to remote code execution under the context of the fastback server.
3598dddaedee5b264d1bb4a7b019509be1b0fe906d01049f41d0b633cf497578Zero Day Initiative Advisory 10-179 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager Fastback. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Mount service (FastBackMount.exe). This process listens by default on UDP port 30005. This process writes the value 0x01 to the address specified by the second DWORD from a packet received to it's UDP port. An attacker can exploit this behavior to execute arbitrary code by making several requests to this service.
ac9b3e5bc37b5d482832012c06c3221593f243061a344e6741cb461820ebc120Turtle rootkit for FreeBSD. This kernel module hooks unlink() so the protected file cannot be deleted, hooks kill() so the protected process cannot be killed, and has various other nice bells and whistles.
8b8bd3b4567213634fa8d095649b277321095be6c15b34acae704bab66f4b1d5Quick Player version 1.3 unicode SEH exploit.
16d6bd62dff51e703b445ea2d1410c1cff0e2ffb2c503e42f39e9050791609d3The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
613bbea92805f0314db542c8a50cbbea4a828c393ff09b3fed41d3e8adb72e05Local information disclosure exploit that makes use of an XFS filesystem vulnerability.
ec938c2e616d17c87a0f79d120da932365ac963f62a8000dcc8391e2586f74ae
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed