Samsung devices with support for remote controllers suffer from endless restart and possible buffer overflow vulnerabilities. Proof of concept code included.
854a533372bb43e4a6e8df97f85425d1da3dc842c39a23331c498211f1cde33bTeam SHATTER Security Advisory - Oracle Database Server versions 10gR1, 10gR2 (10.2.0.4 and previous patchsets) and 11gR1 (11.1.0.7 and previous patchsets) suffer from a password hash information leak in the OCIPasswordChange API.
e2d8ceacee689c85e629fe5bfcccd557fbcf5ea5105b2a0f0175aef82bc1a1bbThis Metasploit module exploits a vulnerability in Adobe Flash Player for Linux, version 10.0.12.36 and 9.0.151.0 and prior. An input validation vulnerability allows command execution when the browser loads a SWF file which contains shell metacharacters in the arguments to the ActionScript launch method. The victim must have Adobe AIR installed for the exploit to work. This Metasploit module was tested against version 10.0.12.36 (10r12_36).
93d7262043fea9cda6bcae5df8301841074b655ead8497ddc9cbc8fb6a8f410cThis Metasploit module exploits a vulnerability found in TFTP Server 1.4 ST. The flaw is due to the way TFTP handles the filename parameter extracted from a WRQ request. The server will append the user-supplied filename to TFTP server binary's path without any bounds checking, and then attempt to open this with a fopen(). Since this isn't a valid file path, fopen() returns null, which allows the corrupted data to be used in a strcmp() function, causing an access violation. Since the offset is sensitive to how the TFTP server is launched, you must know in advance if your victim machine launched the TFTP as a 'Service' or 'Standalone' , and then manually select your target accordingly. A successful attempt will lead to remote code execution under the context of SYSTEM if run as a service, or the user if run as a standalone. A failed attempt will result a denial-of-service.
97a2a64a4d7b26a5088cf3d73076bee782c41a2cccb84de4ec3d8a09cc34adadMandriva Linux Security Advisory 2012-060 - A potentially exploitable vulnerability has been discovered in the OpenSSL function asn1_d2i_read_bio that affects S/MIME or CMS applications using the built in MIME parser SMIME_read_PKCS7 or SMIME_read_CMS. The updated packages have been patched to correct this issue.
7142e404c604651a4de9f5df2e213ba7bf268b765edfd778fb1588130a165768This is a whitepaper called Exploring Windows Backdoors - Bypassing Firewalls on Webhosting Providers.
38f11023e9d479f3a8474437778cd503766c4e12137a5484b98856546e803504Secunia Security Advisory - A vulnerability has been reported in Shibboleth Service Provider, which potentially can be exploited by malicious people to compromise a vulnerable system.
81d8fde4bcad9894e6ab0a378bd46f0fec77e70578e08e000008968ab46f7633Secunia Security Advisory - A security issue has been reported in TwitRocker2 for Android, which can be exploited by malicious people to bypass certain security restrictions.
9961016de8177868295fabbd84e0b7426e28e28751677e8e2de8b64ad8238caeSecunia Security Advisory - Some vulnerabilities with an unknown impact have been reported in the Zingiri Web Shop plugin for WordPress.
2cdbbae3ac23ec9743dd4cc118e0eeddc11c1d4868563fcc91e934fe5e08dd0aSecunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
6b519390b425c832453d74a5c0280a3dafd72a045d6953fdaaec5f835764dd2dSecunia Security Advisory - SUSE has issued an update for libtiff. This fixes two vulnerabilities, which can be exploited by malicious people to compromise an application using the library.
6ec021d652eaeb9861e750612185eeac2053f035f5363f16d0d8f85c560ab38dSecunia Security Advisory - IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
73874a3317e1283737c13961dca9653785f46eb70b55eb2a43c425ac33dd126cSecunia Security Advisory - A security issue has been reported in the Shibboleth Identity Provider, which can be exploited by malicious people to conduct spoofing attacks.
33654231f514f7b8aaece71fb3e6ce8d961e1c5aa487a95fcc87c97e473bc74bSecunia Security Advisory - Sony has discovered a vulnerability in ChatBlazer Enterprise Server, which can be exploited by malicious people to conduct cross-site scripting attacks.
f80dfb9eddfd212b083444d042d269df2d66cb46ecc742330ebb96ff8e0681b5Ubuntu Security Notice 1424-1 - It was discovered that OpenSSL could be made to dereference a NULL pointer when processing S/MIME messages. A remote attacker could use this to cause a denial of service. These issues did not affect Ubuntu 8.04 LTS. Tavis Ormandy discovered that OpenSSL did not properly perform bounds checking when processing DER data via BIO or FILE functions. A remote attacker could trigger this flaw in services that used SSL to cause a denial of service or possibly execute arbitrary code with application privileges. Various other issues were also addressed.
16cd6f0c4fab137dff803ac2d2cfb01f273de4e132798b3f8032fb92d895a98cDebian Linux Security Advisory 2453-2 - It was discovered that the last security update for gajim, DSA-2453-1, introduced a regression in certain environments.
b1fb80c3fdbcf71fd6eb1389efd82d09a8a8af11eee74efd97d96c872aecc243
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed