.:[ packet storm ]:.
                             
the vulnerability safehouse
the vulnerability safehouse

 Section:  .. / 0710-advisories  /

Page 3 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 50 - 75 of 664
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: dsa-1381-1.txt
Description:
 Debian Security Advisory 1381-1 - Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:9455
Related CVE(s):CVE-2006-5755, CVE-2007-4133, CVE-2007-4573, CVE-2007-5093
Last Modified:Oct 3 19:12:34 2007
MD5 Checksum:7ca8366703ba07776dc56024c6076f42

 ///  File Name: dsa-1381-2.txt
Description:
 Debian Security Advisory 1381-2 - Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. This is an update to DSA-1381-1 which included only amd64 binaries for linux-2.6. Builds for all other architectures are now available, as well as rebuilds of ancillary packages that make use of the included linux source.
Homepage:http://www.debian.org/security
File Size:38855
Related CVE(s):CVE-2006-5755, CVE-2007-4133, CVE-2007-4573, CVE-2007-5093
Last Modified:Oct 12 21:36:36 2007
MD5 Checksum:ca85f0d74f6a9ab241328ff4acc9f934

 ///  File Name: dsa-1383-1.txt
Description:
 Debian Security Advisory 1383-1 - It was discovered that a cross site scripting vulnerability in GForge, a collaborative development tool, allows remote attackers to inject arbitrary web script or HTML in the context of a logged in user's session.
Homepage:http://www.debian.org/security
File Size:8154
Related CVE(s):CVE-2007-3918
Last Modified:Oct 5 22:56:24 2007
MD5 Checksum:d863c796e7dd0f8e5f08eaee655af33d

 ///  File Name: dsa-1384-1.txt
Description:
 Debian Security Advisory 1384-1 - Several local vulnerabilities have been discovered in the Xen hypervisor packages which may lead to the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:4426
Related CVE(s):CVE-2007-4993, CVE-2007-1320
Last Modified:Oct 5 22:55:38 2007
MD5 Checksum:b618188d8cd922f81ab60bf8149a0381

 ///  File Name: dsa-1385-1.txt
Description:
 Debian Security Advisory 1385-1 Sean Larsson discovered that two code paths inside the X Font Server handle integer values insecurely, which may lead to the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:160468
Related CVE(s):CVE-2007-4568
Last Modified:Oct 11 00:14:40 2007
MD5 Checksum:8b40c5f4eb1b84db7866ac70b44eb4e8

 ///  File Name: dsa-1386-1.txt
Description:
 Debian Security Advisory 1386-1 - A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. Note that both wesnoth and the wesnoth server are affected.
Homepage:http://www.debian.org/security
File Size:16769
Related CVE(s):CVE-2007-3917
Last Modified:Oct 15 19:13:35 2007
MD5 Checksum:f05967000506df7b75f26358bfa790a9

 ///  File Name: dsa-1386-2.txt
Description:
 Debian Security Advisory 1386-2 - A problem has been discovered in the processing of chat messages. Overly long messages are truncated by the server to a fixed length, without paying attention to the multibyte characters. This leads to invalid UTF-8 on clients and causes an uncaught exception. Note that both wesnoth and the wesnoth server are affected. Note: This advisory only updates the MD5 sums for the stable distribution.
Homepage:http://www.debian.org/security
File Size:16911
Related CVE(s):CVE-2007-3917
Last Modified:Oct 15 19:14:25 2007
MD5 Checksum:7affc2ab988b403b63251d891eec59f9

 ///  File Name: dsa-1387-1.txt
Description:
 Debian Security Advisory 1387-1 - It has been discovered that the original patch for a buffer overflow in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (DSA-1368-1) was insufficient to protect from arbitrary code execution in some environments.
Homepage:http://www.debian.org/security
File Size:6746
Related CVE(s):CVE-2007-4743, CVE-2007-3999
Last Modified:Oct 15 19:15:59 2007
MD5 Checksum:78de8493ffa5690c6e0c603f981854c8

 ///  File Name: dsa-1388-1.txt
Description:
 Debian Security Advisory 1388-1 - It was discovered that dhcp, a DHCP server for automatic IP address assignment, didn't correctly allocate space for network replies. This could potentially allow a malicious DHCP client to execute arbitrary code upon the DHCP server.
Homepage:http://www.debian.org/security
File Size:16986
Related CVE(s):CVE-2007-5365
Last Modified:Oct 18 18:37:54 2007
MD5 Checksum:9d2033eca1d5196eddf26e6f4fb6ffec

 ///  File Name: dsa-1388-3.txt
Description:
 Debian Security Advisory 1388-3 - The patch used to correct the DHCP server buffer overflow in DSA-1388-1 was incomplete and did not adequately resolve the problem. This update to the previous advisory makes available updated packages based on a newer version of the patch.
Homepage:http://www.debian.org/security
File Size:10015
Related CVE(s):CVE-2007-5365
Last Modified:Oct 29 16:49:26 2007
MD5 Checksum:209da10a5803dcf3037c51bb709fbda1

 ///  File Name: dsa-1389-1.txt
Description:
 Debian Security Advisory 1389-1 - It was discovered that zoph, a web based photo management system, performs insufficient input sanitizing, which allows SQL injection.
Homepage:http://www.debian.org/security
File Size:3590
Related CVE(s):CVE-2007-3905
Last Modified:Oct 18 18:39:30 2007
MD5 Checksum:4b0b16e17ae71170c36d120ef22d5d8b

 ///  File Name: dsa-1389-2.txt
Description:
 Debian Security Advisory 1389-2 - It was discovered that zoph, a web based photo management system, performs insufficient input sanitizing, which allows SQL injection. This is an updated advisory to make the update for oldstable (sarge) available, which had been uploaded to the wrong suite.
Homepage:http://www.debian.org/security
File Size:3200
Related CVE(s):CVE-2007-3905
Last Modified:Oct 25 00:19:22 2007
MD5 Checksum:39d2edf9a72cdbfb3b211bc4be0800d3

 ///  File Name: dsa-1390-1.txt
Description:
 Debian Security Advisory 1390-1 - Hamid Ebadi has discovered a buffer overflow the intT1_Env_GetCompletePath routine in t1lib, a Type 1 font rasterizer library. This flaw could allow an attacker to crash and application using the t1lib shared libraries, and potentially execute arbitrary code within such an application's security context.
Homepage:http://www.debian.org/security
File Size:14681
Related CVE(s):CVE-2007-4033
Last Modified:Oct 22 18:09:49 2007
MD5 Checksum:ae420976e7c5372549fdce9c120966d2

 ///  File Name: dsa-1391-1.txt
Description:
 Debian Security Advisory 1391-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird client.
Homepage:http://www.debian.org/security
File Size:17549
Related CVE(s):CVE-2007-3734, CVE-2007-3735, CVE-2007-3844, CVE-2007-3845, CVE-2007-5339, CVE-2007-5340
Last Modified:Oct 22 18:53:51 2007
MD5 Checksum:96c300ce32c8aeaaaff6b0777dace39d

 ///  File Name: dsa-1392-1.txt
Description:
 Debian Security Advisory 1392-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
Homepage:http://www.debian.org/security
File Size:26990
Related CVE(s):CVE-2007-1095, CVE-2007-2292, CVE-2007-3511, CVE-2007-5334, CVE-2007-5337, CVE-2007-5338, CVE-2007-5339, CVE-2007-5340
Last Modified:Oct 22 22:42:31 2007
MD5 Checksum:7bffaf711ae620d91dc0ecf948226b2d

 ///  File Name: dsa-1393-1.txt
Description:
 Debian Security Advisory 1393-1 - It was discovered that xfce-terminal, a terminal emulator for the xfce environment, did not correctly escape arguments passed to the processes spawned by "Open Link". This allowed malicious links to execute arbitrary commands upon the local system.
Homepage:http://www.debian.org/security
File Size:5049
Related CVE(s):CVE-2007-3770
Last Modified:Oct 23 19:22:19 2007
MD5 Checksum:a1d56d58f369edb331ecb44bb9c5dfa1

 ///  File Name: dsa-1394-1.txt
Description:
 Debian Security Advisory 1394-1 - It was discovered that reprepro, a tool to create a repository of Debian packages, when updating from a remote site only checks for the validity of known signatures, and thus does not reject packages with only unknown signatures. This allows an attacker to bypass this authentication mechanism.
Homepage:http://www.debian.org/security
File Size:4858
Related CVE(s):CVE-2007-4739
Last Modified:Oct 23 20:04:29 2007
MD5 Checksum:a849ecbfa377753f58a5918249488aed

 ///  File Name: dsa-1395-1.txt
Description:
 Debian Security Advisory 1395-1 - Steve Kemp from the Debian Security Audit project discovered that xen-utils, a collection of XEN administrative tools, used temporary files insecurely within the xenmon tool allowing local users to truncate arbitrary files.
Homepage:http://www.debian.org/security
File Size:4350
Related CVE(s):CVE-2007-3919
Last Modified:Oct 25 11:13:12 2007
MD5 Checksum:8e557897a1c591934305dea2915ee313

 ///  File Name: dsa-1396-1.txt
Description:
 Debian Security Advisory 1396-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser.
Homepage:http://www.debian.org/security
File Size:11900
Related CVE(s):CVE-2007-1095, CVE-2007-2292, CVE-2007-3511, CVE-2007-5334, CVE-2007-5337, CVE-2007-5338, CVE-2007-5339, CVE-2007-5340
Last Modified:Oct 29 11:26:16 2007
MD5 Checksum:fa0ab9dc676796de4af4f2a1b3f3710f

 ///  File Name: EEYE-cabright.txt
Description:
 eEye Digital Security has discovered a remote vulnerability in CA BrightStor ARCserve Backup Server that allows an attacker to execute arbitrary code as SYSTEM without any user interaction. The exploit is extremely reliable and can be successfully delivered either across the Internet or within local networks via a random TCP port that is disclosed by the BrightStor portmapper service on TCP/111.
Author:Greg Linares
Homepage:http://www.eeye.com/
File Size:5942
Last Modified:Oct 12 00:49:31 2007
MD5 Checksum:10aac82704a7a304ec3cd8cea6cade18

 ///  File Name: egov-xss.txt
Description:
 eGov CMS is susceptible to a cross site scripting vulnerability.
Author:Doz
Homepage:http://www.hackerscenter.com/
File Size:1782
Last Modified:Oct 1 14:39:06 2007
MD5 Checksum:368dde4e0e2f6b629df704126de34beb

 ///  File Name: eleytt-CAvarious.txt
Description:
 Eleytt has discovered various buffer overflow and denial of service vulnerabilities in CA Erwin, G Data Antivirus, CA eTrust, VMware, and CA eTrust ITM.
Author:Michal Bucko
Homepage:http://www.eleytt.com/
File Size:5207
Last Modified:Oct 11 00:04:37 2007
MD5 Checksum:ef00c71b2c72acfd3df7574903ac6026

 ///  File Name: fearfspb.txt
Description:
 F.E.A.R. versions 1.08 and below suffer from a format string vulnerability.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:fearfspb.zip
File Size:2353
Last Modified:Oct 2 00:51:40 2007
MD5 Checksum:568296360b6533f1be24b90cc9b6f6b1

 ///  File Name: firefoxzaptel-dos.txt
Description:
 Firefox version 2.0.0.7 suffers from a remote denial of service vulnerability and Zaptel version 1.4.5.1 suffers from a local buffer overflow vulnerability.
Author:Michal Bucko, Tomasz Polis
Homepage:http://www.eleytt.com/
File Size:4375
Last Modified:Oct 22 23:19:33 2007
MD5 Checksum:a1b3c76dbcb4a803b71f3f3e10ad3237

 ///  File Name: FreeBSD-SA-07-08.openssl.txt
Description:
 FreeBSD Security Advisory - A buffer overflow addressed in FreeBSD-SA-06:23.openssl has been found to be incorrectly fixed.
Homepage:http://security.freebsd.org/
File Size:4355
Related CVE(s):CVE-2007-3738, CVE-2007-5135
Last Modified:Oct 5 01:29:31 2007
MD5 Checksum:9f740bbff007eaefd679f8275d6df98e
 

 ///  Last 10 Files
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· SSRT080039.txt
  3. :· 25C3-CFP.txt
  4. :· SCANIT-2008-003.txt
  5. :· SCANIT-2008-002.txt
  6. :· SCANIT-2008-001.txt
  7. :· usurdat.zip
  8. :· usurdat.txt
  9. :· glsa-200807-02.txt
  10. :· glsa-200807-01.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· SSRT080039.txt
  2. :· SCANIT-2008-003.txt
  3. :· SCANIT-2008-002.txt
  4. :· SCANIT-2008-001.txt
  5. :· usurdat.txt
  6. :· glsa-200807-02.txt
  7. :· glsa-200807-01.txt
  8. :· USN-617-2.txt
  9. :· haloloop2.txt
  10. :· stalker39x.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· usurdat.zip
  2. :· blogparticle-traverse.txt
  3. :· hbr-rfi.txt
  4. :· 0806-exploits.tgz
  5. :· mambongal-sql.txt
  6. :· psys070-sql.txt
  7. :· pivot-disclosure.txt
  8. :· rcm-sql.txt
  9. :· barenuked-admin.txt
  10. :· faname10-xss.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pktanon-1.2.0-dev.tar.gz
  2. :· unhide20080519.tgz
  3. :· prelude-manager-0.9.13.tar.gz
  4. :· nwldapbf.txt
  5. :· dnsenum1.2.tar.gz
  6. :· grubbrute.txt
  7. :· bsqlbf-v2.1.zip
  8. :· rfdump-1.6.tar.gz
  9. :· tmin-0.04.tar.gz
  10. :· iptables-1.4.1.1.tar.bz2
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· 25C3-CFP.txt
  3. :· bacom2008-cfp.txt
  4. :· strongswan-4.2.4.tar.gz
  5. :· Reverse.Engineering.AntiCracking.Techniques.pdf
  6. :· An-approach-to-malware-collection-log-visualization.pdf
  7. :· the-extended-html-form-attack-revisited.pdf
  8. :· ISOI-CFP2008.txt
  9. :· DEFE-24-1925.pdf
  10. :· DEFE-24-1924.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice