ignore security and it'll go away
Showing 151 - 175 of 1,336 RSS Feed

Perl Files

Debian Security Advisory 2586-1
Posted Dec 12, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2586-1 - Two vulnerabilities were discovered in the implementation of the Perl programming language.

tags | advisory, perl, vulnerability
systems | linux, debian
advisories | CVE-2012-5195, CVE-2012-5526
MD5 | ba7d34e616213873d222fa098dc224ea
Splunk 5.0 Custom App Remote Code Execution
Posted Dec 8, 2012
Authored by sinn3r, juan vazquez, [at]marcwickenden | Site metasploit.com

This Metasploit module exploits a feature of Splunk whereby a custom application can be uploaded through the web based interface. Through the 'script' search command a user can call commands defined in their custom application which includes arbitrary perl or python code. To abuse this behavior, a valid Splunk user with the admin role is required. By default, this module uses the credential of "admin:changeme", the default Administrator credential for Splunk. Note that the Splunk web interface runs as SYSTEM on Windows, or as root on Linux by default. This Metasploit module has only been tested successfully against Splunk 5.0.

tags | exploit, web, arbitrary, root, perl, python
systems | linux, windows
MD5 | 66d1782d500464f50d0470fe9f4bb37a
Secunia Security Advisory 51498
Posted Dec 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Locale::Maketext module for Perl, which can be exploited by malicious users to compromise an application using the module.

tags | advisory, perl, vulnerability
MD5 | 460b2f7bdc29dc022650651e0b501551
Secunia Security Advisory 51457
Posted Dec 2, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for perl. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, perl, vulnerability
systems | linux, ubuntu
MD5 | 1ed06c5c30674f16cac277862ac81bab
NetIQ Privileged User Manager 2.3.1 ldapagnt_eval() Remote Perl Code Execution
Posted Nov 21, 2012
Authored by rgod, juan vazquez | Site metasploit.com

This Metasploit module abuses a lack of authorization in the NetIQ Privileged User Manager service (unifid.exe) to execute arbitrary perl code. The problem exists in the ldapagnt module. The module has been tested successfully on NetIQ PUM 2.3.1 over Windows 2003 SP2, which allows to execute arbitrary code with SYSTEM privileges.

tags | exploit, arbitrary, perl
systems | windows
advisories | OSVDB-87334
MD5 | e53a75b6b8524b04b935bc9eec060537
IP Phone Scanning Made Easy 0.7
Posted Nov 16, 2012
Authored by Cedric Baillet | Site freecode.com

ISME is a small framework to test IP phones from several editors. It can gather information from IP phone infrastructures, test their web servers for default login/password combinations, and also implement attacks against the systems. ISME has been written in perl with a perl/Tk interface to provide a portable and easy to use tool. Full documentation is also provided.

Changes: Added Cisco phone logout mobility feature abuse. Added multiple exploits.
tags | tool, web, scanner, perl
systems | unix
MD5 | 935015f9a02580fefa823235dd8425d7
Novell NetIQ Privileged User Manager 2.3.1 ldapagnt.dll Code Execution
Posted Nov 15, 2012
Authored by rgod | Site retrogod.altervista.org

Novell NetIQ Privileged User Manager version 2.3.1 suffers from a perl code evaluation remote command execution vulnerability in ldapagnt_eval() in ldapagnt.dll. The secure web interface contains a flaw which allows, without prior authentication, to execute a Perl script with SYSTEM privileges. This can be done by sending a POST request with well formed data. Full exploit included.

tags | exploit, remote, web, perl
systems | linux
MD5 | a46a9b4a8a054e22e5db154b03091612
360-FAAR Firewall Analysis Audit And Repair 0.3.7
Posted Nov 9, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release fixes many of the bugs in the cisco reader and writer sections. Cisco configs can now be processed written, re-read, processed and written again cyclically. Access lists using proto groups, specifying only protocol details or using 'ip/any' services are now handled. Protocol group-objects are written and used in rules for service groups with many different protocol types specified within them. 'port-objects' are read in service objects, service groups and protocol groups alike. The cisco 'echo' default service has been updated to remove tcp and udp from its listed ports.
tags | tool, perl
systems | unix
MD5 | 7659db12155996e0e2a9b04fb6abf6c6
360-FAAR Firewall Analysis Audit And Repair 0.3.6
Posted Nov 5, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release resolves many of the problems with the filter sections. Both the specific and the subnet rr mode filter sections have been upgraded to fix many of the issues related to combining various filter mode types, and as a result the filter behavior should be much more predictable. The Cisco and od output section definitions now print service defs for all defined proto types.
tags | tool, perl
systems | unix
MD5 | 904e5b7ba035b5a41502f3905643c618
360-FAAR Firewall Analysis Audit And Repair 0.3.5
Posted Nov 1, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release introduces three new sub routines that are used to run much stronger consistency checks against the internal network and service object, group and rule definitions after each round of processing. These new tests provide much greater visibility of incomplete objects and rules and give details of any missing object elements. The netscreen reader now reads "interface dip" and rule "dip-id" statements and adds appropriate objects and nat translation rules. Warnings are printed for unknown cisco object group objects found in policies during the config read. Various other updates.
tags | tool, perl
systems | unix
MD5 | a709df8da13bc20071d2d64e7ceb67d6
360-FAAR Firewall Analysis Audit And Repair 0.3.4
Posted Oct 29, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release resolves Cisco ICMP default services with out printing stringified hash references in the cs output sections. Cisco network and range objects are listed as such in object-groups instead of as hosts. The cisco output writer uses 'object' in access-lists instead of IP NM, as well as listing range objects using 'range' in access-lists as well as groups. The NAT translation now supports SRC NAT translation for known network objects in rr mode filters.
tags | tool, perl
systems | unix
MD5 | 344e2be14ce2a1b5ce37904b9a4cc31c
Perl 5 Memory Corruption
Posted Oct 26, 2012
Authored by Tim Brown | Site nth-dimension.org.uk

The Perl 5 interpreter is vulnerable to a memory corruption vulnerability which results in memory disclosure and potentially arbitrary code execution when large values are supplied to the x operator.

tags | advisory, arbitrary, perl, code execution
advisories | CVE-2012-5195
MD5 | faabce97452d026be018183bfea09b1a
360-FAAR Firewall Analysis Audit And Repair 0.3.3
Posted Oct 24, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release adds nat capabilities to the Cisco ASA reader. 'static' nat IP IP NM and access-list statements are now added the internal nats table and policy nat rules are identified. Some of the annoying "undefined" variable warnings have been resolved. Various other updates.
tags | tool, perl
systems | unix
MD5 | 8f172bbdc58dfd2dcb2bc49835b8a217
360-FAAR Firewall Analysis Audit And Repair 0.3.2
Posted Oct 17, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release includes a new helper script that converts print mode CSV's to HTML, for easy viewing with a browser on systems without an "office" application suite installed. Netscreen interface vip statements are now added to the NATs table and further consistency checks have been added to the policy build sections to more easily identify problem objects.
tags | tool, perl
systems | unix
MD5 | e43bef5bc175bfb152d9dd59733468b6
Secunia Security Advisory 50845
Posted Oct 3, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Oracle has acknowledged a vulnerability in Perl included in Solaris, which can be exploited by malicious people to conduct HTTP response splitting attacks in an application using the library.

tags | advisory, web, perl
systems | solaris
MD5 | 65a044155307b1d81a914a5b1b8fda91
360-FAAR Firewall Analysis Audit And Repair 0.3.1
Posted Sep 28, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release cleans up the output in the new columns, so that specific VPN policy and object negation usage is easier to see. The VPN rules marked "Any", which are all rules in the rule base not marked with a specific VPN, that pass traffic that can be tunnelled via a route based VPN after dropping out of the policy, are no longer printed. Object's not negated in the policy (marked negation: "no") are also removed from the new columns for clarity. The Cisco ASA/PIX reader has been upgraded so that it prints more user friendly info during the config read ('safe' warnings are now printed as info) and handles rules using protocol groups far better than before. The cisco config reader now also reads negated source and dest services and excludes rules using these from the "rr" mode rulebase builds as well as reading rules with logging and no destination port correctly.
tags | tool, perl
systems | unix
MD5 | bcc2532e92580d24bea535fd8dc81345
360-FAAR Firewall Analysis Audit And Repair 0.3.0
Posted Sep 26, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release further updates the 'print' and 'fltprint' mode spreadsheets to include VPN tunnel usage info and source / destination negation from the policy, as well as "install on" info (most relevant to checkpoint).
tags | tool, perl
systems | unix
MD5 | 453c616769d2299a03e0a2bf7545d067
LFI Exploiter
Posted Sep 26, 2012
Authored by M.R.S.CO

This perl script leverages /proc/self/environ to attempt getting code execution out of a local file inclusion vulnerability.

tags | tool, local, perl, code execution, file inclusion
systems | unix
MD5 | 4a28894995bf7478f9b2b7d5144536dc
360-FAAR Firewall Analysis Audit And Repair 0.2.9
Posted Sep 14, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release further upgrades the NAT analysis capabilities, more NAT details are listed in 'print' mode.
tags | tool, perl
systems | unix
MD5 | 32162fa27ca53234d8a9b8ba17c7de41
360-FAAR Firewall Analysis Audit And Repair 0.2.8
Posted Sep 12, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release further improves the NAT analysis capabilities of 360-FAAR, the output of which is listed in the six new print mode columns, src, dst and service, for both the NAT translations that are listed in the logs and in the policy, for each object.
tags | tool, perl
systems | unix
MD5 | e8f6ed8c1e5c12f8cd929541376a5a33
360-FAAR Firewall Analysis Audit And Repair 0.2.7
Posted Sep 8, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release completely drops the previous NAT methodology and integrates NATs into the rule processing subs and also sports a rewrite of the NAT structures and nat rule listing, the new method is much more robust. Negated rules are now identified in Netscreen and excluded from rr mode rulebases.
tags | tool, perl
systems | unix
MD5 | d6d084b295d482709d7f7f670d53bfe9
360-FAAR Firewall Analysis Audit And Repair 0.2.6
Posted Sep 6, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release correctly adds NAT translation rules for interface mip host statements (ANY service name corrected). It also reads policy nat dst ip statements and adds these to the NAT tables in the same was as for interface mip rules.
tags | tool, perl
systems | unix
MD5 | 9dbfe409c931a9aec7b84ebb264cd92e
360-FAAR Firewall Analysis Audit And Repair 0.2.5
Posted Sep 5, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release adds 'end.' comments to rr mode "enter search INC EX string" instructions and an 'exit' menu option. This release also resolves netscreen MIP(ipaddr) objects from interface mip statements and adds them to the NATs tables. Various other fixes and additions.
tags | tool, perl
systems | unix
MD5 | 275fb64dcbf393c7bbab61d4c15ce68b
IP Phone Scanning Made Easy 0.6
Posted Sep 1, 2012
Authored by Cedric Baillet | Site freecode.com

ISME is a small framework to test IP phones from several editors. It can gather information from IP phone infrastructures, test their web servers for default login/password combinations, and also implement attacks against the systems. ISME has been written in perl with a perl/Tk interface to provide a portable and easy to use tool. Full documentation is also provided.

tags | tool, web, scanner, perl
systems | linux, unix
MD5 | ac14bb3e4b7ade8b90d4e927939e68e8
Secunia Security Advisory 50336
Posted Aug 22, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for libconfig-inifiles-perl. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

tags | advisory, local, perl
systems | linux, ubuntu
MD5 | c0361508426f1248c2dd62f186f48c3b
Page 7 of 54
Back56789Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    6 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close