.:[ packet storm ]:.
                           
notoriously trustworthy
notoriously trustworthy

 Section:  .. / 0709-advisories  /

Page 1 of 20
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 >> Files 1 - 25 of 493
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: USN-522-1.txt
Description:
 Ubuntu Security Notice 522-1 - It was discovered that OpenSSL did not correctly perform Montgomery multiplications. Local attackers might be able to reconstruct RSA private keys by examining another user's OpenSSL processes. Moritz Jodeit discovered that OpenSSL's SSL_get_shared_ciphers function did not correctly check the size of the buffer it was writing to. A remote attacker could exploit this to write one NULL byte past the end of an application's cipher list buffer, possibly leading to arbitrary code execution or a denial of service.
Homepage:http://security.ubuntu.com/
File Size:12962
Related CVE(s):CVE-2007-3108, CVE-2007-5135
Last Modified:Sep 30 02:29:55 2007
MD5 Checksum:81a8377a3cae000f1224491d8f4272e7

 ///  File Name: dsa-1378-2.txt
Description:
 Debian Security Advisory 1378-2 - Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.
Homepage:http://www.debian.org/security
File Size:37651
Related CVE(s):CVE-2007-3731, CVE-2007-3739, CVE-2007-3740, CVE-2007-4573, CVE-2007-4849
Last Modified:Sep 30 02:28:14 2007
MD5 Checksum:04adbac7175324943e6ca6d65e6bbeae

 ///  File Name: MDKSA-2007-190.txt
Description:
 Mandriva Linux Security Advisory - A vulnerability was discovered in KDM by Kees Huijgen where under certain circumstances and in particular configurations, KDM could be tricked into allowing users to login without a password.
Homepage:http://www.mandriva.com/security/
File Size:12317
Related CVE(s):CVE-2007-4569
Last Modified:Sep 30 01:45:50 2007
MD5 Checksum:9be7857e3066a43ebdd940e6aa5d3048

 ///  File Name: USN-521-1.txt
Description:
 Ubuntu Security Notice 521-1 - Luigi Auriemma discovered that libmodplug did not properly sanitize its input. A specially crafted AMF file could be used to exploit this situation to cause buffer overflows and possibly execute arbitrary code as the user.
Homepage:http://security.ubuntu.com/
File Size:4162
Related CVE(s):CVE-2006-4192
Last Modified:Sep 30 01:44:42 2007
MD5 Checksum:bc77e9b2d2f87a175182f634fa4a1e79

 ///  File Name: 2007-006-RubySSL.txt
Description:
 A vulnerability results from the Net::HTTPS library from Ruby versions 1.8.5 and 1.8.6 failing to validate the name on the SSL certificate against the DNS name requested by the user. By not validating the name, the library allows an attacker to present a cryptographically valid certificate with an invalid CN.
Author:Chris Clark
Homepage:http://www.isecpartners.com/
File Size:3148
Last Modified:Sep 30 01:39:24 2007
MD5 Checksum:f43ab01ee2c728fcf04ea146cfb06364

 ///  File Name: sa26964.txt
Description:
 Secunia Security Advisory - 7jdg has reported a vulnerability in Xunlei Thunder, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/26964/
File Size:2376
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:475e7dcdc6b7b30e6f9bd82e49e388ca

 ///  File Name: sa26973.txt
Description:
 Secunia Security Advisory - Tan Chew Keong has discovered a vulnerability in ICEOWS, which can be exploited by malicious people to compromise a user's system.
Homepage:http://secunia.com/advisories/26973/
File Size:2357
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:8a1016883f5ea30fc05d3b277ca73940

 ///  File Name: sa26976.txt
Description:
 Secunia Security Advisory - Two security issues have been reported in Sun Java System Access Manager, which can be exploited by malicious people to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/26976/
File Size:2976
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:5d8b9035895680096e735107b08ab132

 ///  File Name: sa26977.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for kdebase. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.
Homepage:http://secunia.com/advisories/26977/
File Size:5070
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:49dcb905c83e0f67a5a7d44e6072e6fb

 ///  File Name: sa26978.txt
Description:
 Secunia Security Advisory - Debian has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), bypass certain security restrictions, or gain escalated privileges.
Homepage:http://secunia.com/advisories/26978/
File Size:32049
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:4c6d289205eb65c462d39a49f019430d

 ///  File Name: sa26979.txt
Description:
 Secunia Security Advisory - Ubuntu has issued an update for libmodplug. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26979/
File Size:5035
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:376443262b26d0c2c79cd944a77089a1

 ///  File Name: sa26980.txt
Description:
 Secunia Security Advisory - rPath has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information.
Homepage:http://secunia.com/advisories/26980/
File Size:2096
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:a261b6a585ed0860a9eb2f873434ad05

 ///  File Name: sa26981.txt
Description:
 Secunia Security Advisory - Mandriva has issued an update for t1lib. This fixes a vulnerability, which can be exploited by malicious users to potentially compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26981/
File Size:3183
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:b0d65887aa7b6565fd31fc17549f21fc

 ///  File Name: sa26982.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for tetex. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26982/
File Size:2021
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:c0fb21bb259f9eea49e14c9b72039c12

 ///  File Name: sa26983.txt
Description:
 Secunia Security Advisory - Some vulnerabilities, security issues, and a weakness have been reported in the Apple iPhone, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26983/
File Size:4835
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:16369830f14b7fbe8ee2c5298decf41b

 ///  File Name: sa26990.txt
Description:
 Secunia Security Advisory - Janek Vind has reported a vulnerability in NukeSentinel, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:http://secunia.com/advisories/26990/
File Size:2321
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:4f2af7373159aa45815ce361119118f7

 ///  File Name: sa26991.txt
Description:
 Secunia Security Advisory - xoron has discovered a vulnerability in IntegraMOD Nederland(s), which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26991/
File Size:2479
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:054ccbec4f9a71e66f6b83626a760138

 ///  File Name: sa26993.txt
Description:
 Secunia Security Advisory - IBM has acknowledged some vulnerabilities in IBM Websphere Application server for z/OS, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or by malicious people to conduct cross-site scripting attacks or cause a DoS (Denial of Service).
Homepage:http://secunia.com/advisories/26993/
File Size:2636
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:59a9b0fa6c202605e5857e35715685bc

 ///  File Name: sa26995.txt
Description:
 Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:http://secunia.com/advisories/26995/
File Size:2627
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:8bcaf6d09a209d4bbe7fe08c80b3a428

 ///  File Name: sa26997.txt
Description:
 Secunia Security Advisory - Gentoo has issued an update for lighttpd. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Homepage:http://secunia.com/advisories/26997/
File Size:2026
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:c41ad6b5fa1523557b20266679f35050

 ///  File Name: sa27004.txt
Description:
 Secunia Security Advisory - A vulnerability has been reported in Aipo and Aipo ASP, which can be exploited by malicious people to conduct session fixation attacks.
Homepage:http://secunia.com/advisories/27004/
File Size:2366
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:c114f78531ff8c091f8f662472b3beb4

 ///  File Name: sa27007.txt
Description:
 Secunia Security Advisory - Ronald van den Heetkamp has discovered a weakness in Internet Explorer, which potentially can be exploited by malicious people to disclose sensitive information.
Homepage:http://secunia.com/advisories/27007/
File Size:2305
Last Modified:Sep 29 17:23:54 2007
MD5 Checksum:2a29d5c3f355ab8036d251b0b6c7df91

 ///  File Name: glsa-200709-16.txt
Description:
 Gentoo Linux Security Advisory GLSA 200709-16 - Mattias Bengtsson and Philip Olausson have discovered a buffer overflow vulnerability in the function fcgi_env_add() in the file mod_fastcgi.c when processing overly long HTTP headers. Versions less than 1.4.18 are affected.
Homepage:http://security.gentoo.org
File Size:2969
Related CVE(s):CVE-2007-4727
Last Modified:Sep 27 21:35:09 2007
MD5 Checksum:af386920d4c2d8806df005d9b44aca48

 ///  File Name: glsa-200709-17.txt
Description:
 Gentoo Linux Security Advisory GLSA 200709-17 - Mark Richters discovered a buffer overflow in the open_sty() function in file mkind.c. Other vulnerabilities have also been discovered in the same file but might not be exploitable. Tetex also includes vulnerable code from GD library (GLSA 200708-05), and from Xpdf. Versions less than 3.0_p1-r4 are affected.
Homepage:http://security.gentoo.org/
File Size:2991
Related CVE(s):CVE-2007-0650, CVE-2007-3387
Last Modified:Sep 27 21:34:55 2007
MD5 Checksum:1d4c037ac593b7240f5499f7f6cdf85b

 ///  File Name: dsa-1378-1.txt
Description:
 Debian Security Advisory 1378-1 - Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. Evan Teran discovered a potential local denial of service (oops) in the handling of PTRACE_SETREGS and PTRACE_SINGLESTEP requests. Adam Litke reported a potential local denial of service (oops) on powerpc platforms resulting from unchecked VMA expansion into address space reserved for hugetlb pages. Steve French reported that CIFS filesystems with CAP_UNIX enabled were not honoring a process' umask which may lead to unintentionally relaxed permissions. Wojciech Purczynski discovered a vulnerability that can be exploited by a local user to obtain superuser privileges on x86_64 systems. This resulted from improper clearing of the high bits of registers during ia32 system call emulation. This vulnerability is relevant to the Debian amd64 port as well as users of the i386 port who run the amd64 linux-image flavor. Michael Stone reported an issue with the JFFS2 filesystem. Legacy modes for inodes that were created with POSIX ACL support enabled were not being written out to the medium, resulting in incorrect permissions upon remount.
Homepage:http://www.debian.org/security
File Size:35220
Related CVE(s):CVE-2007-3731, CVE-2007-3739, CVE-2007-3740, CVE-2007-4573, CVE-2007-4849
Last Modified:Sep 27 21:33:30 2007
MD5 Checksum:5e6dd1cd0082c7a2a3959335b7ea1e1b
 

 ///  Last 10 Files
  1. :· cts2009-cfp.txt
  2. :· cisco-sa-20090107-gss.txt
  3. :· secadv_20090107.txt
  4. :· oCERT-2008-016.txt
  5. :· SN-2008-04.txt
  6. :· msienull-dos.txt
  7. :· winamp-overflow.txt
  8. :· secunia-sapgui.txt
  9. :· secunia-tsc2.txt
  10. :· secunia-componentone.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· cisco-sa-20090107-gss.txt
  2. :· secadv_20090107.txt
  3. :· oCERT-2008-016.txt
  4. :· msienull-dos.txt
  5. :· secunia-sapgui.txt
  6. :· secunia-tsc2.txt
  7. :· secunia-componentone.txt
  8. :· secunia-hpopenview.txt
  9. :· dsa-1694-2.txt
  10. :· USN-701-2.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· SN-2008-04.txt
  2. :· winamp-overflow.txt
  3. :· phpfusionecart-sql.txt
  4. :· audacity162-crash.txt
  5. :· perceptionliteserve-overflow.txt
  6. :· phpfusionmembers-sql.txt
  7. :· vuplayer249-overflow.txt
  8. :· joomla-traversal.txt
  9. :· cainabel4925-overflow.txt
  10. :· pollhelper-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ip-array_0.05.74c.tar.gz
  2. :· mandos_1.0.3.orig.tar.gz
  3. :· lfi-rfi2.txt
  4. :· tor.uclibc.i686.20090105.iso
  5. :· RFIDIOt-0.1v.tgz
  6. :· ratproxy-1.53.tar.gz
  7. :· opennhrp-0.9.2.tar.bz2
  8. :· rkhunter-1.3.4.tar.gz
  9. :· zerowine-0.0.1.tar.gz
  10. :· inguma-0.1.1.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· cts2009-cfp.txt
  2. :· seacureit-cfp2009.txt
  3. :· msfxdc-contest.txt
  4. :· valsmith_colin_blog_spam.pdf
  5. :· dquist_valsmith_further_down_the_vm_spiral.pdf
  6. :· valsmith_dquist_hacking_malware.pdf
  7. :· uCon2009-CFP.txt
  8. :· md5-considered-harmful.pdf
  9. :· clickjack-xss.txt
  10. :· w3af-userguide.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice