.:[ packet storm ]:.
                             
beyond paranoid
beyond paranoid

 Section:  .. / 0805-advisories  /

Page 25 of 25
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 >> Files 600 - 615 of 615
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: dsa-1569-1.txt
Description:
 Debian Security Advisory 1569-1 - It was discovered that Cacti, a systems and services monitoring frontend, performed insufficient input sanitizing, leading to cross site scripting and SQL injection being possible.
Homepage:http://www.debian.org/security
File Size:3076
Related CVE(s):CVE-2008-0783, CVE-2008-0785
Last Modified:May 5 14:21:38 2008
MD5 Checksum:7e570d1ee38f5fd86083687cc05921e8

 ///  File Name: dsa-1568-1.txt
Description:
 Debian Security Advisory 1568-1 - "unsticky" discovered that b2evolution, a blog engine, performs insufficient input sanitising, allowing for cross site scripting.
Homepage:http://www.debian.org/security
File Size:3120
Related CVE(s):CVE-2007-0175
Last Modified:May 5 14:20:54 2008
MD5 Checksum:f9e73cec816de809b3aa14a1a0c1a5ce

 ///  File Name: dsa-1567-1.txt
Description:
 Debian Security Advisory 1567-1 - Stefan Cornelius discovered a vulnerability in the Radiance High Dynamic Range (HDR) image parser in Blender, a 3D modelling application. The weakness could enable a stack-based buffer overflow and the execution of arbitrary code if a maliciously-crafted HDR file is opened, or if a directory containing such a file is browsed via Blender's image-open dialog.
Homepage:http://www.debian.org/security
File Size:5193
Related CVE(s):CVE-2008-1102
Last Modified:May 5 14:20:24 2008
MD5 Checksum:17e02085dd445b7a2b13941066ee38c4

 ///  File Name: webmodz.txt
Description:
 WebMod versions 0.48 and below suffer from directory traversal, buffer overflow, and disclosure vulnerabilities.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:webmodz.zip
File Size:3516
Last Modified:May 5 14:03:20 2008
MD5 Checksum:446b41bca98f6c09f4273b89e3ff5922

 ///  File Name: USN-606-1.txt
Description:
 Ubuntu Security Notice 606-1 - Thomas Pollet discovered that CUPS did not properly validate the size of PNG images. A local attacker, and a remote attacker if printer sharing is enabled, could send a crafted file and cause a denial of service or possibly execute arbitrary code as the non-root user in Ubuntu 6.06 LTS and 7.04. In Ubuntu 7.10, attackers would be isolated by the AppArmor CUPS profile.
Homepage:http://security.ubuntu.com/
File Size:18105
Related CVE(s):CVE-2008-1722
Last Modified:May 5 14:00:06 2008
MD5 Checksum:7d5d5bc230258dce039aa660f76063ad

 ///  File Name: cod4statz.txt
Description:
 Call of Duty 4: Modern Warfare versions 1.5 and below are susceptible to a denial of service vulnerability.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:cod4statz.zip
File Size:4044
Last Modified:May 2 16:39:52 2008
MD5 Checksum:e1f594ee499ddd8246fbc815033fbe6c

 ///  File Name: dsa-1566-1.txt
Description:
 Debian Security Advisory 1566-1 - Dmitry Levin discovered a vulnerability in path handling code used by the cpio archive utility. The weakness could enable a denial of service (crash) or potentially the execution of arbitrary code if a vulnerable version of cpio is used to extract or to list the contents of a maliciously crafted archive.
Homepage:http://www.debian.org/security
File Size:4745
Related CVE(s):CVE-2007-4476
Last Modified:May 2 15:28:57 2008
MD5 Checksum:476ba261ed8d427273e76818858d57c5

 ///  File Name: MDVSA-2008-095.txt
Description:
 Mandriva Linux Security Advisory - Multiple vulnerabilities have been address in OpenOffice including arbitrary java code execution and multiple heap overflows.
Homepage:http://www.mandriva.com/security/
File Size:12995
Related CVE(s):CVE-2007-4575, CVE-2007-5745, CVE-2007-5746, CVE-2007-5747, CVE-2008-0320
Last Modified:May 2 15:28:24 2008
MD5 Checksum:8fe160a1e8ed56ff9eedeb3b2061da2a

 ///  File Name: dsa-1565-1.txt
Description:
 Debian Security Advisory 1565-1 - Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. Cyrill Gorcunov reported a NULL pointer dereference in code specific to the CHRP PowerPC platforms. Local users could exploit this issue to achieve a Denial of Service (DoS). Nick Piggin of SuSE discovered a number of issues in subsystems which register a fault handler for memory mapped areas. This issue can be exploited by local users to achieve a Denial of Service (DoS) and possibly execute arbitrary code. David Peer discovered that users could escape administrator imposed cpu time limitations (RLIMIT_CPU) by setting a limit of 0. Alexander Viro discovered a race condition in the directory notification subsystem that allows local users to cause a Denial of Service (oops) and possibly result in an escalation of privileges.
Homepage:http://www.debian.org/security
File Size:37278
Related CVE(s):CVE-2007-6694, CVE-2008-0007, CVE-2008-1294, CVE-2008-1375
Last Modified:May 1 18:34:19 2008
MD5 Checksum:ae6543607f059d419bb854fa3f84d205

 ///  File Name: dsa-1564-1.txt
Description:
 Debian Security Advisory 1564-1 - Several remote vulnerabilities have been discovered in wordpress, a weblog manager. Multiple cross-site scripting vulnerabilities allowed remote authenticated administrators to inject arbitrary web script or HTML. SQL injection vulnerability allowed allowed remote authenticated administrators to execute arbitrary SQL commands. WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to a file with a binary content type, which is downloaded even though it cannot contain usable pingback data. Insufficient input sanitising caused an attacker with a normal user account to access the administrative interface.
Homepage:http://www.debian.org/security
File Size:3992
Related CVE(s):CVE-2007-3639, CVE-2007-4153, CVE-2007-4154, CVE-2007-0540
Last Modified:May 1 18:32:00 2008
MD5 Checksum:c02afb1d586036ee19f75990816839c2

 ///  File Name: 04.30.08-1.txt
Description:
 iDefense Security Advisory 04.30.08 - Remote exploitation of a design error in Akamai Technologies, Inc's Download Manager allows attackers to execute arbitrary code in the context of the current user. iDefense confirmed the existence of this vulnerability using version 2.2.2.1 of Akamai Technologies Inc's DownloadManagerV2.ocx. Additionally, iDefense confirmed the problem exists in version 2.2.2.0 of the Download Manager Java Applet. All versions prior to the fixed version are suspected to be vulnerable.
Author:Peter Vreugdenhil
Homepage:http://www.idefense.com/
File Size:4508
Related CVE(s):CVE-2008-6339
Last Modified:May 1 18:26:46 2008
MD5 Checksum:4026d3cb280e06a5aeaf9544acbbbdd7

 ///  File Name: oracle-cdc.txt
Description:
 Team SHATTER Security Advisory - Oracle Database Server versions 10gR1, 10gR2 and 11gR1 suffer from a SQL injection vulnerability in SYS.DBMS_CDC_UTILITY.LOCK_CHANGE_SET.
Author:Esteban Martinez Fayo
Homepage:http://www.appsecinc.com/
File Size:2397
Last Modified:May 1 18:25:35 2008
MD5 Checksum:3262e67beb4e36a4ad72fdece4efc664

 ///  File Name: oracle-kupf.txt
Description:
 Team SHATTER Security Advisory - Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 suffer from a buffer overflow vulnerability in SYS.KUPF$FILE_INT.GET_FULL_FILENAME.
Author:Esteban Martinez Fayo
Homepage:http://www.appsecinc.com/
File Size:2384
Last Modified:May 1 18:25:06 2008
MD5 Checksum:3855f9163df523dcf29cdbacdf873df0

 ///  File Name: oracle-aqjms.txt
Description:
 Team SHATTER Security Advisory - Oracle Database Server versions 9iR1, 9iR2 (9.2.0.7 and previous patchsets) and 10gR1 suffer from a buffer overflow vulnerability in SYS.DBMS_AQJMS_INTERNAL.
Author:Esteban Martinez Fayo
Homepage:http://www.appsecinc.com/
File Size:2446
Last Modified:May 1 18:23:42 2008
MD5 Checksum:b6ca92dc152400241d7c65a7995dfa11

 ///  File Name: astrocam-xss.txt
Description:
 AstroCam versions 2.5.0 through 2.7.3 suffer from a cross site scripting vulnerability.
Author:Steffen Wendzel
Homepage:http://www.wendzel.de/
File Size:598
Last Modified:May 1 10:48:53 2008
MD5 Checksum:da3dc7e8fa1ea5f18aabbed41e811105
 

 ///  Last 10 Files
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citectodbc-fivews.txt
  5. :· citect_scada_odbc.rb.txt
  6. :· flockweb-dos.txt
  7. :· google-chrome-dos4.txt
  8. :· google-download2.txt
  9. :· PLSA-2008-41.txt
  10. :· PLSA-2008-40.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· PLSA-2008-41.txt
  2. :· PLSA-2008-40.txt
  3. :· PLSA-2008-39.txt
  4. :· PLSA-2008-38.txt
  5. :· PLSA-2008-37.txt
  6. :· MDVSA-2008-188.txt
  7. :· glsa-200809-05.txt
  8. :· PLSA-2008-36.txt
  9. :· microworld-insecure.txt
  10. :· SSRT080119.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· phpauction32-rfi.txt
  2. :· silentum-xss.txt
  3. :· iranmc-sql.txt
  4. :· citect_scada_odbc.rb.txt
  5. :· flockweb-dos.txt
  6. :· google-chrome-dos4.txt
  7. :· google-download2.txt
  8. :· webcmsportal-blindsql.txt
  9. :· esfaq-sql.txt
  10. :· vastal-itechcosmetics.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· clamav-0.94.tar.gz
  2. :· distack-1.1.0-dev.tar.gz
  3. :· samhain-2.4.6.tar.gz
  4. :· sqlmap-0.6.tar.gz
  5. :· psbot.py.txt
  6. :· mimedefang-2.65.tar.gz
  7. :· advchk-2.11.tar.bz2
  8. :· kisgearth-0.01f.tar.bz2
  9. :· lynis-1.2.0.tar.gz
  10. :· fwknop-1.9.7.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· citectodbc-fivews.txt
  2. :· freebsd-revcon.txt
  3. :· insecurityoverview-samsung.pdf
  4. :· xcon2008-cfp.txt
  5. :· aslr-bypass.txt
  6. :· alphanumeric-shellcode.txt
  7. :· imagebase-shellcode.txt
  8. :· mysql-injection-newbies.txt
  9. :· draft-gont-opsec-ip-security-01.txt
  10. :· draft-ietf-tsvwg-port-randomization-02.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice