.:[ packet storm ]:.
                             
the one stop shop
the one stop shop

 Section:  .. / advisories / debian  /

Page 2 of 5
<< 1 2 3 4 5 >> Files 25 - 50 of 107
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: debian.glibc-overwrite.txt
Description:
 Debian Security Advisory DSA-039-1 - The version of GNU libc that was distributed with Debian GNU/Linux 2.2 suffered from 2 security problems - It was possible to use LD_PRELOAD to load libraries that are listed in /etc/ld.so.cache, even for suid programs, allowing users to create and overwrite files which they should not be able to. In addition, by using LD_PROFILE suid programs would write data to a file in /var/tmp, which was not done safely. Both problems have been fixed in version 2.1.3-17 and we recommend that you upgrade your glibc packages immediately.
Homepage:http://www.debian.org/security
File Size:10082
Last Modified:Mar 14 03:45:13 2001
MD5 Checksum:d0fdc8d182392ec39f7cea8e028c33c8

 ///  File Name: debian.sgml-tools.txt
Description:
 Debian Security Advisory DSA-038-1 - Former versions of sgml-tools created temporary files directly in /tmp in an insecure fashion. Version 1.0.9-15 and higher create a subdirectory first and open temporary files within that directory. We recommend you upgrade your sgml-tools package.
Homepage:http://www.debian.org/security
File Size:3661
Last Modified:Mar 14 00:53:29 2001
MD5 Checksum:1237a93cab2783c04cd06a069e48ab5d

 ///  File Name: debian.xaw3d.txt
Description:
 Debian Security Advisory DSA-037-1 - It has been reported that the AsciiSrc and MultiSrc widget in the Athena widget library handle temporary files insecurely. We recommend you upgrade your nextaw, xaw3d and xaw95 packages.
Homepage:http://www.debian.org/security
File Size:5669
Last Modified:Mar 14 00:34:59 2001
MD5 Checksum:b64cde613ed491c26e181b4c12f893fa

 ///  File Name: debian.mc.txt
Description:
 Debian Security Advisory DSA-036-1 - It has been reported that a local user could tweak Midnight Commander of another user into executing a random program under the user id of the person running Midnight Commander. This behavior has been fixed in the newest version.
Homepage:http://www.debian.org/security
File Size:5578
Last Modified:Mar 14 00:33:37 2001
MD5 Checksum:24b550edd0b2153f46b9bce7f65c53f8

 ///  File Name: debian.man2html.txt
Description:
 Debian Security Advisory DSA-035-1 - Man2html contains a remote denial of service attack which can use up all available memory. Upgrade to the newest version.
Homepage:http://www.debian.org/security
File Size:3588
Last Modified:Mar 10 02:34:27 2001
MD5 Checksum:cf8443cc67a9862590186702a6667ff7

 ///  File Name: debian.eperl.txt
Description:
 Debian Security Advisory DSA-034-1 - When eperl is installed setuid root, it can switch to the UID/GID of the scripts owner. Although Debian doesn't ship the program setuid root, this is a useful feature which people may have activated locally. When the program is used as /usr/lib/cgi-bin/nph-eperl the bugs could lead into a remote vulnerability as well.
Homepage:http://www.debian.org/security
File Size:3977
Last Modified:Mar 10 02:33:20 2001
MD5 Checksum:5c9a8312917867c4723fd4cff47f3f34

 ///  File Name: debian.analog.txt
Description:
 Debian Security Advisory - A buffer overflow in all versions of Analog except 4.16 has been discovered in the ALIAS command. This bug is particularly dangerous if the form interface (which allows unknown users to run the program via a CGI script) has been installed.
Homepage:http://www.debian.org/security
File Size:3964
Last Modified:Mar 10 02:02:19 2001
MD5 Checksum:0fe3e9e21a308bbfb82a017aaed58a2d

 ///  File Name: debian.proftpd.txt
Description:
 Debian Security Advisory: New version of proftpd fixes remote exploits. Debian security homepage here.
File Size:2839
Last Modified:Mar 9 20:43:33 2001
MD5 Checksum:7d1b7e6614c3e12d4c576cf2b82c96e2

 ///  File Name: debian.mgetty.txt
Description:
 Debian Security Advisory DSA-011-1 - Mgetty does not create temporary files in a secure manner, which could lead to a symlink attack. This has been corrected in mgetty 1.1.21-3potato1.
Homepage:http://www.debian.org/security
File Size:3666
Last Modified:Mar 9 20:43:07 2001
MD5 Checksum:23162df44bbd7cc19b7428f00d7924ff

 ///  File Name: debian.sudo.txt
Description:
 Debian Security Advisory DSA-031-1 - Sudo contains a buffer overflow which allows local users to gain root access. This is fixed in v1.6.3p6.
Homepage:http://www.debian.org/security
File Size:3724
Last Modified:Mar 1 01:49:14 2001
MD5 Checksum:8214d7cc4754d7baecfc8c65fe7abc71

 ///  File Name: debian.X.txt
Description:
 Debian Security Advisory DSA-030-1 - XFree86 3.3.6 contains local vulnerabilities - Upgrade to a patched version of 3.3.6.
Homepage:http://www.debian.org/security
File Size:26933
Last Modified:Feb 14 08:15:31 2001
MD5 Checksum:bad13e6d42c27cfa14c8a38990de5a28

 ///  File Name: debian.openssh.txt
Description:
 Debian Security Advisory DSA-027-1 - Versions of OpenSSH prior to v2.3.0p1 are vulnerable to a remote arbitrary memory overwrite attack which may eventually lead into a root exploit. New version available here.
Homepage:http://www.debian.org/security
File Size:4947
Last Modified:Feb 14 06:48:49 2001
MD5 Checksum:39de84b210c9d078847ff8c944021760

 ///  File Name: debian.jazip.txt
Description:
 Debian Security Advisory DSA-017-1 - With older versions of jazip a user could gain root access for members of the floppy group to the local machine. The interface doesn't run as root anymore and this very exploit was prevented. The program now also truncates DISPLAY to 256 characters if it is bigger, which closes the buffer overflow (within xforms).
Homepage:http://www.debian.org/security
File Size:3640
Last Modified:Feb 3 00:02:14 2001
MD5 Checksum:d7a4881c2dace6abb598e9961af3bd25

 ///  File Name: debian.splitvt.txt
Description:
 Debian Security Advisory DSA-014-1 - Splitvt prior to v1.6.5 contains format string vulnerabilities in the -rcfile command line flag, allowing local users to gain access to the tty group.
Homepage:http://www.debian.org/security
File Size:3878
Last Modified:Feb 2 23:59:10 2001
MD5 Checksum:8a5505d8046f63e9a451c85b40b4fe6e

 ///  File Name: debian.wuftpd.txt
Description:
 Debian Security Advisory DSA-016-3 - Security people at WireX have noticed a temp file creation bug and the WU-FTPD development team has found a possible format string bug in wu-ftpd. Both could be remotely exploited.
Homepage:http://www.debian.org/security
File Size:2335
Last Modified:Feb 2 23:58:42 2001
MD5 Checksum:a09f99a92fe112538a8f7b5d194167ad

 ///  File Name: debian.bind2.txt
Description:
 Debian Security Advisory DSA-026-1 - BIND 8 suffered from several buffer overflows which affect Debian distributions. It is possible to construct an inverse query that allows the stack to be read remotely exposing environment variables.
Homepage:http://www.debian.org/security
File Size:6067
Last Modified:Feb 1 00:28:03 2001
MD5 Checksum:2bf9801181e5a8a74736438a87c6d756

 ///  File Name: debian.cron2.txt
Description:
 Debian Security Advisory DSA-024-1 - The FreeBSD team has found a bug in the way new crontabs were handled which allowed malicious users to display arbitrary crontab files on the local system. This only affects valid crontab files so can't be used to get access to /etc/shadow or anything.
Homepage:http://www.debian.org/security
File Size:3767
Last Modified:Jan 31 21:37:21 2001
MD5 Checksum:9bdae6143004633ee4987fa07754723c

 ///  File Name: debian.inn2.txt
Description:
 Debian Security Advisory DSA-023-1 - Inn2 uses insecure tempfiles in several places.
Homepage:http://www.debian.org/security
File Size:6443
Last Modified:Jan 31 21:33:23 2001
MD5 Checksum:fdb23f19eb7bd020b0fb21bccc662b4e

 ///  File Name: debian.apache.txt
Description:
 Debian Security Advisory DSA-021-1 - The mod_rewrite module for Apache has a remote vulnerability which may allow a remote attacker to gain access to arbitrary files. Users of the mod_rewrite module are advised to upgrade. In addition, htdigest and htpasswd use tempfiles insecurely. Since they are not setuid, impact is minimal.
Homepage:http://www.debian.org/security
File Size:5806
Last Modified:Jan 27 08:00:39 2001
MD5 Checksum:077ed523f7eb1d0e211fd199c015a301

 ///  File Name: debian.exmh.txt
Description:
 Debian Security Advisory DSA-022-1 - Exmh v2.2 and below used /tmp for storing temporary files. No checks were made to ensure that nobody placed a symlink with the same name in /tmp in the meantime and thus was vulnerable to a symlink attack.
Homepage:http://www.debian.org/security
File Size:3045
Last Modified:Jan 26 20:37:01 2001
MD5 Checksum:4cacd41df25253eabfe39dcd21dd05eb

 ///  File Name: debian.php4-dos.txt
Description:
 Debian Security Advisory DSA-020-1 - A vulnerability has been found in PHP4 v4.0.4 and below which crashes PHP and sends the source to the client instead of executing it.
Homepage:http://www.debian.org/security
File Size:18270
Last Modified:Jan 26 09:00:26 2001
MD5 Checksum:a119652d3773c86351c778714a10c380

 ///  File Name: debian.squid.txt
Description:
 Debian Security Advisory DSA-019-1 - A tempfile bug has been found in Squid v2.3stable4 when it sends out email messages about updates.
Homepage:http://www.debian.org/security
File Size:5723
Last Modified:Jan 26 08:57:10 2001
MD5 Checksum:b2149c26559a825338d5a3791123baae

 ///  File Name: debian.sash.txt
Description:
 Debian Security Advisory DSA-015-1 - Versions of sash prior to 3.4-4 did not clone /etc/shadow properly which lead into readable files for anybody.
Homepage:http://www.debian.org/security
File Size:3652
Last Modified:Jan 25 23:09:01 2001
MD5 Checksum:55a09e98a3b57eea192a269d4c7ce7e9

 ///  File Name: debian.mysql.txt
Description:
 Debian Security Advisory DSA-013-1 - A buffer overflow has been discovered in the Mysql server v3.22.32 which allows remote attackers to gain mysqld privileges.
Homepage:http://www.debian.org/security
File Size:4708
Last Modified:Jan 25 22:59:54 2001
MD5 Checksum:e5748a33f868012b89ca9355459b1930

 ///  File Name: debian.micq.txt
Description:
 Debian Security Advisory DSA-012-1 - A remotely exploitable buffer overflow has been found in micq v0.4.6.
Homepage:http://www.debian.org/security
File Size:3538
Last Modified:Jan 25 22:45:44 2001
MD5 Checksum:949cd8eb9ed79a73002f78af0b33262f
 

 ///  Last 10 Files
  1. :· pacpoll-disclose.txt
  2. :· USN-682-1.txt
  3. :· USN-681-1.txt
  4. :· BMSA-2008-09.txt
  5. :· webhub-bypass.txt
  6. :· infinite-bypass.txt
  7. :· VA_VD_87_08_XRDP.pdf
  8. :· TKADV2008-013.txt
  9. :· sqlinj-insouts.txt
  10. :· bcoos1013-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-682-1.txt
  2. :· USN-681-1.txt
  3. :· VA_VD_87_08_XRDP.pdf
  4. :· TKADV2008-013.txt
  5. :· dsa-1675-1.txt
  6. :· dsa-1674-1.txt
  7. :· dsa-1673-1.txt
  8. :· dsa-1672-1.txt
  9. :· USN-679-1.txt
  10. :· USN-680-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pacpoll-disclose.txt
  2. :· BMSA-2008-09.txt
  3. :· webhub-bypass.txt
  4. :· infinite-bypass.txt
  5. :· bcoos1013-sql.txt
  6. :· preonline-cmsqlxss.txt
  7. :· preclass-sqlxss.txt
  8. :· aspportal-disclose.txt
  9. :· preshoppingmall-cmsqlxss.txt
  10. :· ezpoll-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· vncrush.txt
  2. :· rshatter.txt
  3. :· Exomind-v0.2.tar.gz
  4. :· clamav-0.94.2.tar.gz
  5. :· cadfile.zip
  6. :· anehta-v0.6.0fixed2.zip
  7. :· tagfuzz.txt
  8. :· BrowserRider.20081124.tar.bz2
  9. :· mp3nema-v0_2.tar.gz
  10. :· squid-nufw-helper-1.1.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sqlinj-insouts.txt
  2. :· format-string-linux.txt
  3. :· frame-pointer-overwrite-linux.txt
  4. :· iptablesf.txt
  5. :· nufw-2.2.19.tar.gz
  6. :· frhack2009-cfp.txt
  7. :· oracle-forensics-scns.pdf
  8. :· cansecwest-2009.txt
  9. :· A5.1.zip
  10. :· a51-php.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice