what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 51 RSS Feed

Files Date: 2012-06-25 to 2012-06-26

Gentoo Linux Security Advisory 201206-32
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-32 - An error in the verification of SSL certificates in Links might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 2.6 are affected.

tags | advisory, remote
systems | linux, gentoo
SHA-256 | 2844cba5db93a16c292bda396e0c06a8ae6bcd3c1befdcb1c5b2875a67615f1d
Gentoo Linux Security Advisory 201206-31
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-31 - Multiple vulnerabilities have been found in Linux-PAM, allowing local attackers to possibly gain escalated privileges, cause a Denial of Service, corrupt data, or obtain sensitive information. Versions less than 1.1.5 are affected.

tags | advisory, denial of service, local, vulnerability
systems | linux, gentoo
advisories | CVE-2010-3316, CVE-2010-3430, CVE-2010-3431, CVE-2010-3435, CVE-2010-3853, CVE-2010-4706, CVE-2010-4707, CVE-2010-4708, CVE-2011-3148, CVE-2011-3149
SHA-256 | 70b66584b8817a240db5a659f9e3fb27abfb44c6a46e9e68c554ca01bafc291f
Gentoo Linux Security Advisory 201206-30
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-30 - An error in the hostname matching in sendmail might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 8.14.4 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2009-4565
SHA-256 | e81c680a240ecc016d13ad4e7e1e4963af6de79ece9e1a280f15e3e3925484ac
Gentoo Linux Security Advisory 201206-29
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-29 - Multiple vulnerabilities were found in mount-cifs, the worst of which leading to privilege escalation. Versions less than 3.4.6 are affected.

tags | advisory, vulnerability
systems | linux, gentoo
advisories | CVE-2010-0547, CVE-2010-0787
SHA-256 | aec8dbbc16f75047942983e84a3b0014380e54e4ec733595b3b7b9ad80ab33d5
Gentoo Linux Security Advisory 201206-28
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-28 - Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. Versions less than 2009-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2009-1284, CVE-2010-0739, CVE-2010-0827, CVE-2010-1440
SHA-256 | 22c42bb7b7ec6932a92cdb102c3c8795014df13f16038fca30ce11d10a834cbf
Gentoo Linux Security Advisory 201206-36
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-36 - Multiple vulnerabilities were found in logrotate, which could lead to arbitrary system command execution. Versions less than 3.8.0 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2011-1098, CVE-2011-1154, CVE-2011-1155, CVE-2011-1549
SHA-256 | be9fd5a4e003c592a8e519a6693aa11f6ecc9162b5f96b4262f00bd5843d1bde
Gentoo Linux Security Advisory 201206-35
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-35 - Multiple vulnerabilities were found in nbd, which could lead to remote execution of arbitrary code. Versions less than 2.9.22 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2011-0530, CVE-2011-1925
SHA-256 | ba2c3b7ab48e436fc9ebb6afe201e5730246d150155fedd86d2bd9d097c2b5fe
Gentoo Linux Security Advisory 201206-34
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-34 - An error in the hostname matching in msmtp might enable remote attackers to conduct man-in-the-middle attacks. Versions less than 1.4.19 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2009-3942
SHA-256 | 8ba06fe3d8db6a4789b2a24274ef4e1b78361d031949c77fdecb5c5f0b50d5d1
Gentoo Linux Security Advisory 201206-33
Posted Jun 25, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201206-33 - A vulnerability has been found in Postfix, the worst of which possibly allowing remote code execution. Versions less than 2.7.4 are affected.

tags | advisory, remote, code execution
systems | linux, gentoo
advisories | CVE-2011-0411, CVE-2011-1720
SHA-256 | 05e98f47777707c46cf6dde146609306a3f61d80648b0c877d2ed8871983f6f0
Asus iKVM/IPMI Backdoor / Cleartext Passwords
Posted Jun 25, 2012
Authored by Pedro Dias

The Asus iKVM/IPMI implementation stores credentials in the clear, in a text file, and readable by the anonymous user which has a hardcoded password of "anonymous" with no way to change it.

tags | exploit, info disclosure
systems | linux
SHA-256 | 113384f21d7260eda3e28efe8b129c714d9f70b1f537a8ebb70663c9928415dc
Apple QuickTime Security Bypass
Posted Jun 25, 2012
Authored by Adam Gowdiak | Site security-explorations.com

Security Explorations does not agree with Apple's evaluation of a vulnerability they reported. They have decided to release proof of concept code to demonstrate a bypass vulnerability in Apple QuickTime Java extensions.

tags | exploit, java, proof of concept, bypass
systems | linux, apple
SHA-256 | c2aeee9d3f479037cf3a1177e445be5a6068ad94532c3d4c68af96ada0b39421
Apache Roller 4.x / 5.x Cross Site Request Forgery
Posted Jun 25, 2012
Authored by Jun Zhu | Site apache.org

Apache Roller versions 4.0.0 through 4.0.1 and 5.0 suffer from a cross site request forgery vulnerability.

tags | advisory, csrf
advisories | CVE-2012-2380
SHA-256 | 4763bc6a74cffbb8c4a98ebfd85497d4c135a0229565573c11711bb32366736c
Apache Roller 4.x / 5.x Cross Site Scripting
Posted Jun 25, 2012
Authored by Jun Zhu | Site apache.org

Apache Roller versions 4.0.0 through 4.0.1 and 5.0 suffer from a cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2012-2381
SHA-256 | 2a3ef283fa2c44950937510f6450a29a58cbf100742cf9efd1a746297da0ed8a
Kingview Touchview 6.53 EIP Overwrite
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Kingview Touchview version 6.53 suffers from an EIP direct control vulnerability.

tags | exploit
SHA-256 | f614238bf00bbff01c4cacb0de5e0d817d19edb0c4b62a906b365aace0a82525
Kingview Touchview 6.53 Heap Overflows
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Kingview Touchview version 6.53 suffers from multiple heap overflow vulnerabilities.

tags | exploit, overflow, vulnerability
SHA-256 | 37f45498f2bff4a854d189b580bf99ea79b9dc21dfa6b458fdc14b0c63e2c8b6
Mandriva Linux Security Advisory 2012-100
Posted Jun 25, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-100 - An integer signedness error, leading to heap based buffer overflow was found in the way the imfile module of rsyslog, an enhanced system logging and kernel message trapping daemon, processed text files larger than 64 KB. When the imfile rsyslog module was enabled, a local attacker could use this flaw to cause denial of service via specially-crafted message, to be logged. The updated packages have been patched to correct this issue.

tags | advisory, denial of service, overflow, kernel, local
systems | linux, mandriva
advisories | CVE-2011-4623
SHA-256 | 613dfcef425f4a5b661ad286cf09803a2aa7044018ac10a963dd2f0b79087e99
Insecurity Of Poorly Designed Remote File Inclusion Payloads Part 2
Posted Jun 25, 2012
Authored by bwall | Site firebwall.com

This whitepaper discusses the insecurity of poorly designed remote file inclusion payloads. This is part two.

tags | paper, remote, file inclusion
SHA-256 | 357450c73effdc1d8d79eadc0c1966d2cf52597ec2b85ef66ef49ae5a9a554f2
Slim PDF Reader 1.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Slim PDF Reader version 1.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4220
SHA-256 | d1ffdeb69b179bf453e9df13d5f38f2ea80e5975170ad4c9dfbaf90077a7117b
Hashdays 2012 Call For Papers
Posted Jun 25, 2012
Site hashdays.ch

Hashdays 2012 Call For Papers - Hashdays is an international security technology and research conference offering both trainings/workshops and traditional presentation tracks. The event features many international IT security experts sharing their deep technical knowledge in an open environment and takes place October 31st to November 3rd, 2012 in Lucerne.

tags | paper, conference
SHA-256 | 6e0ac8238a53b8ebe88af5e47d06f685e8e944f0c7bdf03885eef4a921bcec0d
Western Digital TV (WD-TV) Live Remote Code Execution
Posted Jun 25, 2012
Authored by Wolf Bee

The WD TV Live Streaming Media Player suffers from two implementation flaws that together allow for remote command execution as root.

tags | exploit, remote, root
SHA-256 | 30e038aaf42732de5c7c31917ec77feb71e99f5a032ca468e8d514c9181e41c1
Drupal Drag And Drop 6.x-1.5 Shell Upload
Posted Jun 25, 2012
Authored by Sammy FORGIT

Drupal Drag and Drop third party module version 6.x-1.5 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | d20be48fb476e6e13f7e457963b8e28ac136039c50a776c45993e46260ecf151
Autopagina CMS 2.8 SQL Injection
Posted Jun 25, 2012
Authored by Sammy FORGIT

Autopagina CMS version 2.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | a563a2bdda1882cafa89faf3ca21ba53255d47d50c45f1edde7b0866d86b906f
Umapresence 2.6.0 Shell Upload / File Deletion
Posted Jun 25, 2012
Authored by Sammy FORGIT

Umapresence version 2.6.0 suffers from remote shell upload and file deletion vulnerabilities.

tags | exploit, remote, shell, vulnerability
SHA-256 | 34c100c2e912e0c0e0f50bd32af4870f83873de3311da8742d14b3108c80e283
Able2Extract 6.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Able2Extract and Able2Extract server version 6.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4222
SHA-256 | ab32292905312ba912de21c5e6dc97b63078bc9aba3c2d7e2bb0d20ef3ff08fb
Able2Doc / Able2Doc Professional 6.0 Memory Corruption
Posted Jun 25, 2012
Authored by Carlos Mario Penagos Hollmann

Able2Doc and Able2Doc Professional version 6.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2011-4221
SHA-256 | c10a756810f848125bb592c0fffa27ca8b2a9b951b84b8538dac2d376c20130c
Page 1 of 3
Back123Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close