.:[ packet storm ]:.
                             
yeah, it makes us nervous too
yeah, it makes us nervous too

 Section:  .. / 0703-advisories  /

Page 2 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 25 - 50 of 531
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: sa24680.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for ekiga. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24680/
File Size:1999
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:95a463d7e0a29b636363f2d8a0ae8f78

 ///  File Name: sa24678.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in mod_perl, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/24678/
File Size:2284
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:24078bac622cb16e2dcf573f72f55131

 ///  File Name: sa24676.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for openoffice.org. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24676/
File Size:11546
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:bbd26eef56797db593ece587af4a8c03

 ///  File Name: sa24674.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in CruiseWorks, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24674/
File Size:2235
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:ed4946247f9a8b49e8f92b0b5011c991

 ///  File Name: sa24669.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Overlay Weaver, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/24669/
File Size:2360
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:4d9105392433810a8825a1bc6f3857f5

 ///  File Name: sa24667.txt
Description:
 Secunia Security Advisory - A weakness has been reported in Windows Vista, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/24667/
File Size:2452
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:db636e5a958775755a35fb72c99ef205

 ///  File Name: sa24666.txt
Description:
 Secunia Security Advisory - Elliot Kendall has reported a weakness in DataDomain OS, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/24666/
File Size:2422
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:3f8c145abf8b4d3dc4b512b6f3c1371a

 ///  File Name: sa24664.txt
Description:
 Secunia Security Advisory - Jonathan So has discovered a vulnerability in Corel WordPerfect Office X3, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24664/
File Size:2469
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:435e87d6fd96e6b9fb51eae8517736e0

 ///  File Name: sa24661.txt
Description:
 Secunia Security Advisory - rPath has issued an update for inkscape. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24661/
File Size:2061
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:0670c6f31a1ccc4495aab93679a95805

 ///  File Name: sa24659.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/24659/
File Size:3339
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:ca86bb6100303495137e184776288264

 ///  File Name: sa24658.txt
Description:
 Secunia Security Advisory - A security issue has been reported in various Linksys products, which can be exploited to disclose certain sensitive information.
Homepage:http://secunia.com/advisories/24658/
File Size:2487
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:0f70d81a00ae1a4cb2bd8c12dafa295f

 ///  File Name: sa24657.txt
Description:
 Secunia Security Advisory - Javier Olascoaga has reported some vulnerabilities in IronMail, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/24657/
File Size:2433
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:ea48aacec7b3028c3da8b7869936ce29

 ///  File Name: sa24636.txt
Description:
 Secunia Security Advisory - VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to overwrite arbitrary files, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24636/
File Size:2854
Last Modified:Apr 2 04:42:23 2007
MD5 Checksum:85ac16428b8e8749a28b80765ee0a9c1

 ///  File Name: dsa-1270-2.txt
Description:
 Debian Security Advisory 1270-2 - Several security related problems have been discovered in OpenOffice.org, the free office suite. iDefense reported several integer overflow bugs in libwpd, a library for handling WordPerfect documents that is included in OpenOffice.org. Attackers are able to exploit these with carefully crafted WordPerfect files that could cause an application linked with libwpd to crash or possibly execute arbitrary code. Next Generation Security discovered that the StarCalc parser in OpenOffice.org contains an easily exploitable stack overflow that could be used exploited by a specially crafted document to execute arbitrary code. It has been reported that OpenOffice.org does not escape shell meta characters and is hence vulnerable to execute arbitrary shell commands via a specially crafted document after the user clicked to a prepared link.
Homepage:http://www.debian.org/security
File Size:40801
Related CVE(s):CVE-2007-0002, CVE-2007-0238, CVE-2007-0239
Last Modified:Mar 29 09:00:58 2007
MD5 Checksum:b6ee02a59e56836dba49bc7eb9c15c96

 ///  File Name: truecrypt-dos.txt
Description:
 It seems to be possible to perform various denial of service attacks on a Linux computer running TrueCrypt version 4.3 in setuid root mode, or possibly introduce evil binaries into normally trusted locations.
Author:Tim Rees
File Size:3357
Last Modified:Mar 29 08:59:34 2007
MD5 Checksum:db98fbeafa6162466a942f5d230e0a4d

 ///  File Name: ZDI-07-011.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Domino Server. Authentication is not required to exploit this vulnerability. The specific flaw exists in the CRAM-MD5 authentication mechanism of nimap.exe which binds by default to TCP port 143. No check is done on the length on the supplied username prior to processing it through a custom copy loop. If the username is longer than 256 bytes, a pointer overwrite may occur in the function nnotes.dll.CStream::ToBase64() which is later called and can therefore result in execution of arbitrary code.
Homepage:http://www.zerodayinitiative.com/
File Size:2791
Related CVE(s):CVE-2007-1675
Last Modified:Mar 29 08:57:59 2007
MD5 Checksum:5c2e6493ad6fd7fd47212cfb14190a41

 ///  File Name: cisco-sa-20070328-voip.txt
Description:
 Cisco Security Advisory - Cisco Unified CallManager (CUCM) and Cisco Unified Presence Server (CUPS) contain multiple vulnerabilities which may result in the failure of CUCM or CUPS functionality, resulting in a Denial of Service (DoS) condition. There are no workarounds for these vulnerabilities. Cisco has made free software available to address these vulnerabilities for affected customers.
Homepage:http://www.cisco.com/
File Size:17281
Last Modified:Mar 29 08:56:59 2007
MD5 Checksum:1b50992d840f1049b2eaca81708c20ac

 ///  File Name: 03.28.07-2.txt
Description:
 iDefense Security Advisory 03.28.07 - Remote exploitation of a heap overflow vulnerability in the LDAP component of IBM Corp.'s Lotus Domino Server 7.0.1 may allow a remote attacker to cause denial of service or execute arbitrary code. When a malformed request is made to the LDAP component of a Lotus Domino Enterprise Server, a heap overflow can be triggered. The vulnerability specifically exists in the handling of strings larger than 65535 bytes. When a string longer than this value is encountered, the service allocates memory using only the lower 16-bits of the string length. Since the entire string is subsequently copied into the newly allocated buffer, a heap-overflow occurs. This vulnerability has been confirmed to exist within versions 7.0.1 and 7.0.1.1 the Directory Service (LDAP) component of Lotus Domino Server.
Homepage:http://www.idefense.com/
File Size:3439
Last Modified:Mar 29 08:23:56 2007
MD5 Checksum:8aa117e485430eecd0ea8755e3b22dc2

 ///  File Name: 03.28.07.txt
Description:
 iDefense Security Advisory 03.28.07 - Remote exploitation of a cross-site scripting vulnerability in IBM Lotus Domino Web Access allows attackers to execute arbitrary script code in a targeted users browser. The vulnerability specifically exists due to improper HTML filtering of e-mail message contents. Although Web Access attempts to filter out HTML and script code, certain code sequences will bypass the filters and successfully execute JavaScript. iDefense has confirmed that Lotus Domino Web Access 7.0 is vulnerable. Earlier versions are suspected vulnerable.
Homepage:http://www.idefense.com/
File Size:3152
Related CVE(s):CVE-2006-4843
Last Modified:Mar 29 08:23:03 2007
MD5 Checksum:c98de655a9e1663189d5fba0586928d6

 ///  File Name: USN-446-1.txt
Description:
 Ubuntu Security Notice 446-1 - Luigi Auriemma discovered multiple flaws in the Network Audio System server. Remote attackers could send specially crafted network requests that could lead to a denial of service or execution of arbitrary code. Note that default Ubuntu installs do not include the NAS server.
Homepage:http://security.ubuntu.com/
File Size:10809
Related CVE(s):CVE-2007-1543, CVE-2007-1544, CVE-2007-1545, CVE-2007-1546, CVE-2007-1547
Last Modified:Mar 29 08:19:46 2007
MD5 Checksum:a957919d456df89b8db38582d69fa4e7

 ///  File Name: notgood.txt
Description:
 Apparently, the phishing protection provided in Firefox 2.0.0.3 and Opera 9.10 fails to take iframes into account.
Author:nsp
File Size:759
Last Modified:Mar 29 08:18:46 2007
MD5 Checksum:2897825f94a26911417c4e233687db1e

 ///  File Name: yahoo-msg.txt
Description:
 Yahoo mail services when accessed via Yahoo! messenger are vulnerable to information leakage and authentication bypass which is caused due to improper caching of pages by the browser.
Author:Kishor Datar
File Size:3658
Last Modified:Mar 29 07:55:05 2007
MD5 Checksum:c1be1240f8410d328795203fce4e74f5

 ///  File Name: signkorea-activex.txt
Description:
 SignKorea's SKCommAX ActiveX Control Module version 7.2.0.2 and SKCommAX ActiveX Control Module(3280) version 6.6.0.1 suffer from a buffer overflow vulnerability.
Author:GYU TAE PARK
File Size:1757
Last Modified:Mar 29 04:20:12 2007
MD5 Checksum:158e488e8975c281596948b634b1dbdf

 ///  File Name: advisory-20070326-1.txt
Description:
 KDE Security Advisory - The KDE FTP ioslave parses the host address in the PASV response of a FTP server response. mark from bindshell.net pointed out that this could be exploited via JavaScript for automated port scanning. It was not possible to demonstrate the vulnerability via JavaScript with Konqueror from KDE 3.5.x. However, other scenarios are possible. Systems affected are KDE up to and including KDE version 3.5.6.
Homepage:http://www.kde.org/
File Size:1470
Related CVE(s):CVE-2007-1564
Last Modified:Mar 28 18:01:27 2007
MD5 Checksum:e41d0dae2db60f0e276e0faac260dac9

 ///  File Name: USN-445-1.txt
Description:
 Ubuntu Security Notice 445-1 - Sven Krewitt of Secunia Research discovered that XMMS did not correctly handle BMP images when loading GUI skins. If a user were tricked into loading a specially crafted skin, a remote attacker could execute arbitrary code with user privileges.
Homepage:http://security.ubuntu.com/
File Size:7157
Related CVE(s):CVE-2007-0653, CVE-2007-0654
Last Modified:Mar 28 17:59:56 2007
MD5 Checksum:eb9c1ef1b4852eb92a7d5dce510544e6
 

 ///  Last 10 Files
  1. :· USN-651-1.txt
  2. :· nokiaminimap-crash.txt
  3. :· FSC20081009-11.txt
  4. :· FSC20081009-12.txt
  5. :· ayco-sql.txt
  6. :· munzursoft-sql.txt
  7. :· noticeware5122-dos.txt
  8. :· scapy-2.0.0.10.tar.gz
  9. :· caarcserve-dos.txt
  10. :· glsa-200810-02.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-651-1.txt
  2. :· nokiaminimap-crash.txt
  3. :· FSC20081009-11.txt
  4. :· FSC20081009-12.txt
  5. :· caarcserve-dos.txt
  6. :· glsa-200810-02.txt
  7. :· SSRT080099.txt
  8. :· SSRT080046.txt
  9. :· ZDI-08-066.txt
  10. :· ZDI-08-065.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· ayco-sql.txt
  2. :· munzursoft-sql.txt
  3. :· noticeware5122-dos.txt
  4. :· scriptsezid-download.txt
  5. :· scriptsezmhp-lfi.txt
  6. :· stash103exp.txt
  7. :· mswingdi-poc.txt
  8. :· cameralife-sqlxss.txt
  9. :· aradcenter-sql.txt
  10. :· persiantools-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· scapy-2.0.0.10.tar.gz
  2. :· bf10BETA.tar.gz
  3. :· RFIDIOt-Windows-0.1t.zip
  4. :· RFIDIOt-0.1t.tgz
  5. :· opennhrp-0.8.tar.bz2
  6. :· zfz20BETA.tar.gz
  7. :· fwknop-1.9.8.tar.gz
  8. :· msnshadow-0.3_beta.tar.bz2
  9. :· geoipgen0.2b.tgz
  10. :· thc-rfidiot.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· metasploitSMB.pdf
  2. :· webapps-attack.txt
  3. :· dirTraversal.txt
  4. :· targeting-voip.pdf
  5. :· oracle-assault.pdf
  6. :· ShellCodeForBeginners.pdf
  7. :· linux-setresuid.txt
  8. :· nufw-2.2.17.tar.gz
  9. :· slackfire-0.65.d-noarch-1.tgz
  10. :· strongswan-4.2.7.tar.gz
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice