.:[ packet storm ]:.
                             
the vulnerability safehouse
the vulnerability safehouse

 Section:  .. / 0711-advisories  /

Page 1 of 24
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 >> Files 1 - 25 of 591
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: TA07-334A.txt
Description:
 Technical Cyber Security Alert TA07-334A - Apple QuickTime contains a buffer overflow vulnerability in the way QuickTime processes Real Time Streaming Protocol (RTSP) streams. Exploitation of this vulnerability could allow an attacker to execute arbitrary code.
Homepage:http://www.us-cert.gov/
File Size:6189
Last Modified:Dec 2 15:40:22 2007
MD5 Checksum:af3a90f973dacfd90526128ee0e21b9e

 ///  File Name: realpdos.txt
Description:
 Realplayer 11 suffers from a denial of service condition related to ActiveX.
Author:Abed Adonis
Homepage:http://www.safehack.com/
File Size:4093
Last Modified:Dec 2 15:35:28 2007
MD5 Checksum:5602ec9844f03bb434ca6ddf3914db67

 ///  File Name: MDKSA-2007-224-3.txt
Description:
 Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges. This update corrects all known regressions with previous Samba updates due to the security fixes to correct CVE-2007-4572.
Homepage:http://www.mandriva.com/security/
File Size:17994
Related CVE(s):CVE-2007-5398, CVE-2007-4572
Last Modified:Nov 30 01:59:23 2007
MD5 Checksum:35c3dfda88c38965355ccbfee1082a66

 ///  File Name: USN-549-1.txt
Description:
 Ubuntu Security Notice 549-1 - Various integer overflows, arbitrary code execution, and denial of service vulnerabilities have been fixed in PHP 5.
Homepage:http://security.ubuntu.com/
File Size:54920
Related CVE(s):CVE-2007-1285, CVE-2007-2872, CVE-2007-3799, CVE-2007-3998, CVE-2007-4657, CVE-2007-4658, CVE-2007-4660, CVE-2007-4661, CVE-2007-4662, CVE-2007-4670, CVE-2007-5898, CVE-2007-5899
Last Modified:Nov 30 01:57:43 2007
MD5 Checksum:480e0abf31a634a029d87570b870ea34

 ///  File Name: AST-2007-026.txt
Description:
 Asterisk Project Security Advisory - A SQL injection vulnerability exists in Asterisk versions prior to 1.4.15. Input buffers were not properly escaped when providing the ANI and DNIS strings to the Call Detail Record Postgres logging engine. An attacker could potentially compromise the administrative database containing users' usernames and passwords used for SIP authentication, among other things.
Author:Tilghman Lesher
Homepage:http://www.asterisk.org/security
File Size:7982
Last Modified:Nov 30 01:54:47 2007
MD5 Checksum:c6c1a7986ed7ead3dab0bea6978ffb05

 ///  File Name: AST-2007-025.txt
Description:
 Asterisk Project Security Advisory - A SQL injection vulnerability exists in Asterisk versions prior to 1.4.15. Input buffers were not properly escaped when providing lookup data to the Postgres Realtime Engine. An attacker could potentially compromise the administrative database containing users' usernames and passwords used for SIP authentication, among other things.
Author:P. Chisteas, Tilghman Lesher
Homepage:http://www.asterisk.org/security
File Size:7826
Last Modified:Nov 30 01:53:45 2007
MD5 Checksum:ffa2808110235fd54fffd855e12201bc

 ///  File Name: FreeBSD-SA-07-10.gtar.txt
Description:
 FreeBSD Security Advisory - Insufficient sanity checking of paths containing '.' and '..' allows gtar to overwrite arbitrary files on the system.
Homepage:http://security.freebsd.org/
File Size:3247
Related CVE(s):CVE-2007-4131
Last Modified:Nov 30 01:09:59 2007
MD5 Checksum:bc93f9ccc2af18609b0279202b3894a1

 ///  File Name: FreeBSD-SA-07-09.random.txt
Description:
 FreeBSD Security Advisory - Under certain circumstances, a bug in the internal state tracking on the random and urandom devices can be exploited to allow replaying of data distributed during subsequent reads.
Homepage:http://security.freebsd.org/
File Size:4560
Related CVE(s):CVE-2007-6150
Last Modified:Nov 30 01:08:37 2007
MD5 Checksum:1a8e43d82656db1e04719bae42deb95b

 ///  File Name: dsa-1409-3.txt
Description:
 Debian Security Advisory 1409-3 - This update fixes all currently known regressions introduced with the previous two revisions of DSA-1409. Several local/remote vulnerabilities have been discovered in samba, a LanManager-like file and printer server for Unix. Alin Rad Pop of Secunia Research discovered that nmbd did not properly check the length of netbios packets. When samba is configured as a WINS server, a remote attacker could send multiple crafted requests resulting in the execution of arbitrary code with root privileges. Samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. When samba is configured as a Primary or Backup Domain Controller, a remote attacker could send malicious logon requests and possibly cause a denial of service.
Homepage:http://www.debian.org/security
File Size:43013
Related CVE(s):CVE-2007-5398, CVE-2007-4572
Last Modified:Nov 30 01:05:04 2007
MD5 Checksum:35eb85ee31049d6fb7c6321f9ecc5f02

 ///  File Name: SSRT071499.txt
Description:
 HP Security Bulletin - A potential security vulnerability has been identified with HP-UX Apache. The vulnerability could be exploited remotely to execute arbitrary code.
Homepage:http://www.hp.com/
File Size:7377
Related CVE(s):CVE-2007-5135
Last Modified:Nov 30 01:04:22 2007
MD5 Checksum:01a4cbc604d81903355a69b1541136cc

 ///  File Name: SSRT071319.txt
Description:
 HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). This vulnerability could by exploited remotely to allow cross site scripting (XSS).
Homepage:http://www.hp.com/
File Size:7342
Last Modified:Nov 30 01:03:53 2007
MD5 Checksum:e07411d9a1c25a2867dcd1ccdf2f004b

 ///  File Name: IRM-tibcodos.txt
Description:
 The TIBCO Rendezvous RVD daemon is vulnerable to a memory leak, which when remotely triggered, prevents any further RV communication until the daemon is manually restarted.
Author:Varun Uppal, Andy Davis
Homepage:http://www.irmplc.com/
File Size:2981
Last Modified:Nov 30 01:00:48 2007
MD5 Checksum:33fa196ab9bb365713d31238582bca13

 ///  File Name: glsa-200711-20-04.txt
Description:
 Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200711-20:04 - Roland Clobus discovered that the Pioneers server may free sessions objects while they are still in use, resulting in access to invalid memory zones. Bas Wijnen discovered an error when closing connections which can lead to a failed assertion. Versions less than 0.11.3-r1 are affected.
Homepage:http://security.gentoo.org/
File Size:3003
Related CVE(s):CVE-2007-5933, CVE-2007-6010
Last Modified:Nov 30 00:38:19 2007
MD5 Checksum:2f449d948a4a3611043470e9b3383b10

 ///  File Name: sa27808.txt
Description:
 Secunia Security Advisory - IRCRASH (Dr.Crash) has reported some vulnerabilities in Softbiz Freelancers Script, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Homepage:http://secunia.com/advisories/27808/
File Size:2618
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:01da5745346b55ef8654486ad7475bff

 ///  File Name: sa27829.txt
Description:
 Secunia Security Advisory - Joffrey Czarney has reported a weakness in Cisco Unified IP Phones, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/27829/
File Size:2779
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:11eb767c7465180e59a17f2196a26045

 ///  File Name: sa27831.txt
Description:
 Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/27831/
File Size:2782
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:b6bb32ad6dc69f573422de83b118344e

 ///  File Name: sa27832.txt
Description:
 Secunia Security Advisory - Sun has acknowledged some vulnerabilities in Sun Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27832/
File Size:2622
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:74b52d69f6104bd5b631fb8f44675b1b

 ///  File Name: sa27837.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in @Mail, which can be exploited by malicious people to conduct cross-site scripting attacks.
Homepage:http://secunia.com/advisories/27837/
File Size:2381
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:b06f85dafd733cfe4fd5df0187aa2679

 ///  File Name: sa27849.txt
Description:
 Secunia Security Advisory - Some vulnerabilities have been reported in Autonomy Keyview SDK, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/27849/
File Size:3178
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:bbe0b2f853eeef12ab2e066b4c89ba7f

 ///  File Name: sa27852.txt
Description:
 Secunia Security Advisory - GoLd_M has reported a vulnerability in PHP_CON, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27852/
File Size:2572
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:dba6c13851e8f48f1089380a386f18dc

 ///  File Name: sa27854.txt
Description:
 Secunia Security Advisory - MhZ91 has discovered two vulnerabilities in Charray's CMS, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27854/
File Size:2614
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:351f90941c5a218c4f204b8d80271937

 ///  File Name: sa27855.txt
Description:
 Secunia Security Advisory - Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks or potentially compromise a user's system.
Homepage:http://secunia.com/advisories/27855/
File Size:3347
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:ad89063dcfaa50b1470a8115d8aaff0e

 ///  File Name: sa27856.txt
Description:
 Secunia Security Advisory - rPath has issued an update for cups, poppler, and tetex. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
Homepage:http://secunia.com/advisories/27856/
File Size:2701
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:abd5c436bae8c817193d8e2049f54e35

 ///  File Name: sa27857.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for cpio. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
Homepage:http://secunia.com/advisories/27857/
File Size:2838
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:137fe09ab3f186e003af56cbf7074031

 ///  File Name: sa27858.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for pidgin. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/27858/
File Size:5831
Last Modified:Nov 30 00:36:59 2007
MD5 Checksum:2eaae8ad5eaef751b5facf464b498903
 

 ///  Last 10 Files
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· SSRT080039.txt
  3. :· 25C3-CFP.txt
  4. :· SCANIT-2008-003.txt
  5. :· SCANIT-2008-002.txt
  6. :· SCANIT-2008-001.txt
  7. :· usurdat.zip
  8. :· usurdat.txt
  9. :· glsa-200807-02.txt
  10. :· glsa-200807-01.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· SSRT080039.txt
  2. :· SCANIT-2008-003.txt
  3. :· SCANIT-2008-002.txt
  4. :· SCANIT-2008-001.txt
  5. :· usurdat.txt
  6. :· glsa-200807-02.txt
  7. :· glsa-200807-01.txt
  8. :· USN-617-2.txt
  9. :· haloloop2.txt
  10. :· stalker39x.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· usurdat.zip
  2. :· blogparticle-traverse.txt
  3. :· hbr-rfi.txt
  4. :· 0806-exploits.tgz
  5. :· mambongal-sql.txt
  6. :· psys070-sql.txt
  7. :· pivot-disclosure.txt
  8. :· rcm-sql.txt
  9. :· barenuked-admin.txt
  10. :· faname10-xss.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· pktanon-1.2.0-dev.tar.gz
  2. :· unhide20080519.tgz
  3. :· prelude-manager-0.9.13.tar.gz
  4. :· nwldapbf.txt
  5. :· dnsenum1.2.tar.gz
  6. :· grubbrute.txt
  7. :· bsqlbf-v2.1.zip
  8. :· rfdump-1.6.tar.gz
  9. :· tmin-0.04.tar.gz
  10. :· iptables-1.4.1.1.tar.bz2
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· browser_insecurity_iceberg_2008.pdf
  2. :· 25C3-CFP.txt
  3. :· bacom2008-cfp.txt
  4. :· strongswan-4.2.4.tar.gz
  5. :· Reverse.Engineering.AntiCracking.Techniques.pdf
  6. :· An-approach-to-malware-collection-log-visualization.pdf
  7. :· the-extended-html-form-attack-revisited.pdf
  8. :· ISOI-CFP2008.txt
  9. :· DEFE-24-1925.pdf
  10. :· DEFE-24-1924.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice