.:[ packet storm ]:.
                             
yeah, it makes us nervous too
yeah, it makes us nervous too

 Section:  .. / 0708-advisories  /

Page 7 of 24
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 >> Files 150 - 175 of 581
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: sa26531.txt
Description:
 Secunia Security Advisory - IBM has acknowledged a vulnerability in AIX, which can be exploited by malicious people to poison the DNS cache.
Homepage:http://secunia.com/advisories/26531/
File Size:2442
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:3bc964927a4a90d18d33be950a0849e2

 ///  File Name: sa26530.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in ClamAV, which can potentially be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26530/
File Size:2672
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:61315b11701b64f87e5a61106706e45e

 ///  File Name: sa26525.txt
Description:
 Secunia Security Advisory - rgod has discovered a vulnerability in the eCentrex VOIP Client Component ActiveX control, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/26525/
File Size:2614
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:877976c2a445b56776ae25580113f25c

 ///  File Name: sa26523.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Trend Micro ServerProtect, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26523/
File Size:4317
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:174b98e158e9c19dea041a3098fe0592

 ///  File Name: sa26522.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for vim. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26522/
File Size:2959
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:ae88926426df3d27e194626185e8cf78

 ///  File Name: sa26520.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for gdm. This fixes a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26520/
File Size:2607
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:1baa56cfc3eb70b6fa7e9b3567115a8f

 ///  File Name: sa26492.txt
Description:
 Secunia Security Advisory - A security issue has been reported in po4a, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Homepage:http://secunia.com/advisories/26492/
File Size:2405
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:e4a7f3b6b839f1ebbba24c7230a93b44

 ///  File Name: sa24023.txt
Description:
 Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in PRISM Guard Shield, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/24023/
File Size:2577
Last Modified:Aug 23 17:47:08 2007
MD5 Checksum:c743185c9a8af86e2f45670ff61ab79d

 ///  File Name: MDKSA-2007-168.txt
Description:
 Mandriva Linux Security Advisory - A format string vulnerability in the helptags support in vim allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file.
Homepage:http://www.mandriva.com/security/
File Size:4980
Related CVE(s):CVE-2007-2953
Last Modified:Aug 22 05:31:06 2007
MD5 Checksum:c3ef468b317e1dd205b98f09d03ae37f

 ///  File Name: 08.21.07-2.txt
Description:
 iDefense Security Advisory 08.21.07 - Remote exploitation of an integer overflow vulnerability in Trend Micro Inc.'s ServerProtect anti-virus software could allow attackers to execute arbitrary code with system level privilege. iDefense has confirmed the existence of this vulnerability in ServerProtect for Windows 5.58 Build 1176 (Security Patch 3). Previous versions, as well as versions for other platforms, are suspected to be vulnerable.
Author:Jun Mao
Homepage:http://www.idefense.com/
File Size:3729
Related CVE(s):CVE-2007-4219
Last Modified:Aug 22 05:30:11 2007
MD5 Checksum:8fd467dd35cd0eb802b69ada8af66951

 ///  File Name: 08.21.07-1.txt
Description:
 iDefense Security Advisory 08.21.07 - Remote exploitation of multiple buffer overflow vulnerabilities in Trend Micro Inc.'s ServerProtect anti-virus software could allow attackers to execute arbitrary code with system level privilege. iDefense has confirmed the existence of these vulnerabilities in ServerProtect for Windows 5.58 Build 1176 (Security Patch 3). Previous versions, as well as versions for other platforms, are suspected to be vulnerable.
Author:Code Audit Labs, Jun Mao
Homepage:http://www.idefense.com/
File Size:5291
Related CVE(s):CVE-2007-4218
Last Modified:Aug 22 05:28:51 2007
MD5 Checksum:d3438206ebffc136ca8bf363a5b397a6

 ///  File Name: AST-2007-020.txt
Description:
 Asterisk Project Security Advisory - Asterisk suffers from a resource exhaustion vulnerability in the SIP channel driver.
Author:Russell Bryant
Homepage:http://www.asterisk.org/security
File Size:9776
Related CVE(s):CVE-2007-4455
Last Modified:Aug 22 05:25:24 2007
MD5 Checksum:c24cedea8b524fefe65082260d74444e

 ///  File Name: 08.20.07-3.txt
Description:
 iDefense Security Advisory 08.20.07 - Remote exploitation of buffer overflow vulnerability in Trend Micro Inc.'s SSAPI Engine could allow attackers to execute arbitrary code with system level privileges. Trend Micro products which include the VST functionality are vulnerable to a stack-based buffer overflow in the vstlib32.dll library. This overflow is triggered when an attacker creates a file on the local file system with an overly long path. When vstlib32 receives the ReadDirectoryChangesW callback notification from the Operating System, a stack based buffer overflow will occur. iDefense confirmed the existence of this vulnerability in vstlib32.dll version 1.2.0.1012. This file is known to be included in several of Trend Micro's products such as PC-Cillin Internet Security 2007 and their AntiSpyware products.
Homepage:http://www.idefense.com/
File Size:3479
Related CVE(s):CVE-2007-3873
Last Modified:Aug 21 23:12:28 2007
MD5 Checksum:192695eb948f31d52f3f2e83436ab79d

 ///  File Name: sa26547.txt
Description:
 Secunia Security Advisory - The Madynes research team at INRIA Lorraine has reported some vulnerabilities in Cisco IP Phone 7940, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26547/
File Size:2461
Last Modified:Aug 21 22:53:35 2007
MD5 Checksum:3571c4c79f9ff2e8b516b3d1467dc44d

 ///  File Name: sa26513.txt
Description:
 Secunia Security Advisory - Some vulnerabilities and a security issue have been reported in ZoneAlarm products, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/26513/
File Size:4194
Last Modified:Aug 21 22:53:26 2007
MD5 Checksum:da6958f129dfedc7f16b6fb1fa11894f

 ///  File Name: USN-501-1.txt
Description:
 Ubuntu Security Notice 501-1 - It was discovered that Jasper did not correctly handle corrupted JPEG2000 images. By tricking a user into opening a specially crafted JPG, a remote attacker could cause the application using libjasper to crash, resulting in a denial of service.
Homepage:http://security.ubuntu.com/
File Size:9183
Related CVE(s):CVE-2007-2721
Last Modified:Aug 21 22:53:13 2007
MD5 Checksum:18edf90bd95d39f3b3040bf19cf030b2

 ///  File Name: USN-500-1.txt
Description:
 Ubuntu Security Notice 500-1 - Sebastian Krahmer discovered that rsync contained an off-by-one miscalculation when handling certain file paths. By creating a specially crafted tree of files and tricking an rsync server into processing them, a remote attacker could write a single NULL to stack memory, possibly leading to arbitrary code execution.
Homepage:http://security.ubuntu.com/
File Size:4963
Related CVE(s):CVE-2007-4091
Last Modified:Aug 21 22:52:31 2007
MD5 Checksum:dfa497d0dfc47f8fa6a7754ca178a16d

 ///  File Name: ZDI-07-049.txt
Description:
 Multiple vulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of EMC Networker. Authentication is not required to exploit this vulnerability.
Author:Tenable Network Security
Homepage:http://www.zerodayinitiative.com/
File Size:3282
Related CVE(s):CVE-2007-3618
Last Modified:Aug 21 22:47:48 2007
MD5 Checksum:73df57f0606605ed45fd5cc1e84e1ea6

 ///  File Name: fileinfo-multi.txt
Description:
 Fileinfo version 2.0.9, the lister plugin for Total Commander, suffers from input validation vulnerabilities. Prior versions may also be affected.
Author:Gynvael Coldwind
File Size:3561
Last Modified:Aug 21 22:17:10 2007
MD5 Checksum:2803367de07306144f6b3c62e2f01195

 ///  File Name: MDKSA-2007-167-1.txt
Description:
 Mandriva Linux Security Advisory - David Thiel discovered that libvorbis did not correctly verify the size of certain headers, and did not correctly clean up a broken stream. If a user were tricked into processing a specially crafted Vorbis stream, a remote attacker could possibly cause a denial of service or execute arbitrary code with the user's privileges.
Homepage:http://www.mandriva.com/security/
File Size:3238
Related CVE(s):CVE-2007-3106, CVE-2007-4029
Last Modified:Aug 21 22:14:33 2007
MD5 Checksum:c20786b35d77d28552cf809628bf4b16

 ///  File Name: zonealarm-inputval.txt
Description:
 ZoneAlarm versions prior to 7.0.362 suffer from an insufficient buffer validation vulnerability.
Author:Ruben Santamarta
Homepage:http://www.reversemode.com/
File Size:2516
Last Modified:Aug 21 22:11:48 2007
MD5 Checksum:ea6a9dc1c15d8ff9498fcb8e3a8cc419

 ///  File Name: 08.20.07-2.txt
Description:
 iDefense Security Advisory 08.20.07 - Local exploitation of multiple input validation vulnerabilities within multiple Check Point Zone Alarm products could allow an attacker to execute arbitrary code in kernel (ring0) context. The problems specifically exist within the IOCTL handling code in the vsdatant.sys device driver. The device driver fails to validate user-land supplied addresses passed to IOCTL 0x8400000F and IOCTL 0x84000013. Since the Irp parameters are not correctly validated, an attacker could utilize these IOCTLs to overwrite arbitrary memory with the constant double-word value of 0x60001 or the contents of a buffer returned from ZwQuerySystemInformation. This includes kernel memory as well as the code segments of running processes. iDefense has confirmed the existence of these vulnerabilities within version 6.5.737.0 of vsdatant.sys as installed with Check Point Zone Labs Zone Alarm Free. All other products within the Zone Alarm product line are suspected to be vulnerable. Previous versions are also suspected to be vulnerable.
Author:Ruben Santamarta
Homepage:http://www.idefense.com/
File Size:3747
Related CVE(s):CVE-2007-4216
Last Modified:Aug 21 22:09:51 2007
MD5 Checksum:e676ae3a6bc4dafa566b3d839c9776ca

 ///  File Name: 08.20.07-1.txt
Description:
 iDefense Security Advisory 08.20.07 - Local exploitation of an insecure permission vulnerability in multiple Check Point Zone Labs products allows attackers to escalate privileges or disable protection. The vulnerability specifically exists in the default file Access Control List (ACL) settings that are applied during installation. When an administrator installs any of the Zone Labs ZoneAlarm tools, the default ACL allows any user to modify the installed files. Some of the programs run as system services. This allows a user to simply replace an installed ZoneAlarm file with their own code that will later be executed with system-level privileges. iDefense has confirmed the existence of this vulnerability in ZoneAlarm Security Suite 5.5.062.004 and 6.5.737. It is strongly suspected that other versions of ZoneAlarm and other Zone Labs products are affected by this.
Homepage:http://www.idefense.com/
File Size:3548
Related CVE(s):CVE-2005-2932
Last Modified:Aug 21 22:08:39 2007
MD5 Checksum:d7dd896aaf7baf1b202ed833bfdac86e

 ///  File Name: sa26546.txt
Description:
 Secunia Security Advisory - A security issue has been reported in NuFW, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/26546/
File Size:2378
Last Modified:Aug 21 22:07:00 2007
MD5 Checksum:46dddef6b36771d78938d38395b4306b

 ///  File Name: sa26537.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for rsync. This fixes a vulnerability, which can potentially be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26537/
File Size:2477
Last Modified:Aug 21 22:07:00 2007
MD5 Checksum:b0e17db233af7210e52dba4b080a5224
 

 ///  Last 10 Files
  1. :· USN-651-1.txt
  2. :· nokiaminimap-crash.txt
  3. :· FSC20081009-11.txt
  4. :· FSC20081009-12.txt
  5. :· ayco-sql.txt
  6. :· munzursoft-sql.txt
  7. :· noticeware5122-dos.txt
  8. :· scapy-2.0.0.10.tar.gz
  9. :· caarcserve-dos.txt
  10. :· glsa-200810-02.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-651-1.txt
  2. :· nokiaminimap-crash.txt
  3. :· FSC20081009-11.txt
  4. :· FSC20081009-12.txt
  5. :· caarcserve-dos.txt
  6. :· glsa-200810-02.txt
  7. :· SSRT080099.txt
  8. :· SSRT080046.txt
  9. :· ZDI-08-066.txt
  10. :· ZDI-08-065.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· ayco-sql.txt
  2. :· munzursoft-sql.txt
  3. :· noticeware5122-dos.txt
  4. :· scriptsezid-download.txt
  5. :· scriptsezmhp-lfi.txt
  6. :· stash103exp.txt
  7. :· mswingdi-poc.txt
  8. :· cameralife-sqlxss.txt
  9. :· aradcenter-sql.txt
  10. :· persiantools-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· scapy-2.0.0.10.tar.gz
  2. :· bf10BETA.tar.gz
  3. :· RFIDIOt-Windows-0.1t.zip
  4. :· RFIDIOt-0.1t.tgz
  5. :· opennhrp-0.8.tar.bz2
  6. :· zfz20BETA.tar.gz
  7. :· fwknop-1.9.8.tar.gz
  8. :· msnshadow-0.3_beta.tar.bz2
  9. :· geoipgen0.2b.tgz
  10. :· thc-rfidiot.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· metasploitSMB.pdf
  2. :· webapps-attack.txt
  3. :· dirTraversal.txt
  4. :· targeting-voip.pdf
  5. :· oracle-assault.pdf
  6. :· ShellCodeForBeginners.pdf
  7. :· linux-setresuid.txt
  8. :· nufw-2.2.17.tar.gz
  9. :· slackfire-0.65.d-noarch-1.tgz
  10. :· strongswan-4.2.7.tar.gz
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice