.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / 0710-advisories  /

Page 5 of 27
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 >> Files 100 - 125 of 664
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: glsa-200710-24.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-24 - iDefense Labs reported that the TIFF parsing code uses untrusted values to calculate buffer sizes, which can lead to an integer overflow resulting in heap-based buffer overflow. Versions less than 2.3.0 are affected.
Homepage:http://security.gentoo.org
File Size:3196
Related CVE(s):CVE-2007-2834
Last Modified:Oct 23 14:18:08 2007
MD5 Checksum:73aa4f72707125b1dd6bf01f1f1085c5

 ///  File Name: glsa-200710-25.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-25 - The Gentoo MLDonkey ebuild adds a user to the system named p2p so that the MLDonkey service can run under a user with low privileges. This user is created with a valid login shell and no password. Versions less than 2.9.0-r3 are affected.
Homepage:http://security.gentoo.org
File Size:2762
Last Modified:Oct 25 00:19:47 2007
MD5 Checksum:05c17c8f94837184aabeea42235fa4c3

 ///  File Name: glsa-200710-26.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-26 - Kees Cook from the Ubuntu Security team discovered that the hpssd daemon does not correctly validate user supplied data before passing it to a popen3() call. Versions less than 2.7.9-r1 are affected.
Homepage:http://security.gentoo.org
File Size:2801
Related CVE(s):CVE-2007-5208
Last Modified:Oct 25 00:20:07 2007
MD5 Checksum:e649666c7fb10ca0ea0add486ce22c3a

 ///  File Name: glsa-200710-27.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-27 - regenrecht reported multiple infinite loops in functions ReadDCMImage() and ReadXCFImage(), multiple integer overflows when handling certain types of images, and an off-by-one error in the ReadBlobString() function. Versions less than 6.3.5.10 are affected.
Homepage:http://security.gentoo.org/
File Size:3160
Related CVE(s):CVE-2007-4985, CVE-2007-4986, CVE-2007-4987, CVE-2007-4988
Last Modified:Oct 25 00:21:20 2007
MD5 Checksum:99ed56bd4c8fd98a08f6009975938357

 ///  File Name: glsa-200710-28.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-28 - Dirk Mueller from the KDE development team discovered a boundary error in file qutfcodec.cpp when processing Unicode strings. Versions less than 3.3.8-r4 are affected.
Homepage:http://security.gentoo.org
File Size:2635
Related CVE(s):CVE-2007-4137
Last Modified:Oct 26 11:07:07 2007
MD5 Checksum:90c0608010e086117078f9ec4d76e6d9

 ///  File Name: glsa-200710-29.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-29 - Ulf Harnhammar from Secunia Research discovered a format string error in the inc_put_error() function in file src/inc.c. Versions less than 2.4.5 are affected.
Homepage:http://security.gentoo.org
File Size:3068
Related CVE(s):CVE-2007-2958
Last Modified:Oct 26 11:07:37 2007
MD5 Checksum:a96192db45a4eaca277d2b1ddd5a34fc

 ///  File Name: glsa-200710-30-2.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-30:02 - Andy Polyakov reported a vulnerability in the OpenSSL toolkit, that is caused due to an unspecified off-by-one error within the DTLS implementation. Versions greater than or equal to 0.9.8f are affected.
Homepage:http://security.gentoo.org
File Size:3006
Related CVE(s):CVE-2007-4995
Last Modified:Oct 30 20:31:44 2007
MD5 Checksum:d512f124ed8f60961db844caffc013cb

 ///  File Name: glsa-200710-31.txt
Description:
 Gentoo Linux Security Advisory GLSA 200710-31 - Michael A. Puls II discovered an unspecified flaw when launching external email or newsgroup clients. David Bloom discovered that when displaying frames from different websites, the same-origin policy is not correctly enforced. Versions less than 9.24 are affected.
Homepage:http://security.gentoo.org/
File Size:3022
Related CVE(s):CVE-2007-5540, CVE-2007-5541
Last Modified:Oct 30 20:31:36 2007
MD5 Checksum:7fab15791e85f4456625c973666069b1

 ///  File Name: GS07-02.txt
Description:
 The RSA KEON Registration Authority Web Interface suffers from multiple cross site scripting vulnerabilities. Version 1.0 is susceptible.
Author:Fatih Ozavci, Caglar Cakici
Homepage:http://www.gamasec.net/
File Size:939
Last Modified:Oct 24 23:55:39 2007
MD5 Checksum:03a90818e1fd1fb2fa73e5d90e719eab

 ///  File Name: gsview-zlib.txt
Description:
 The Microsoft Windows binary GSV48W32.EXE of gsview contains a vulnerable version of zlib.
Author:Stefan Kanthak
File Size:920
Related CVE(s):CAN-2005-2096
Last Modified:Oct 22 17:55:04 2007
MD5 Checksum:ac56846a8bc850b4738d5e28d0ed1e2a

 ///  File Name: ie7-bypass.txt
Description:
 Internet Explorer 7 suffers from a simple filter bypass vulnerability.
Author:laurent gaffi
File Size:1117
Last Modified:Oct 15 17:07:52 2007
MD5 Checksum:aced5e3e2ef6a0fa0185c19aea5c13f6

 ///  File Name: igal-disclose.txt
Description:
 i-Gallery version 3.4 suffers from a direct database download vulnerability.
Author:hackerbinhphuoc
Homepage:http://www.vnsecurity.com/
File Size:367
Last Modified:Oct 25 17:00:37 2007
MD5 Checksum:3181bfe829fc056610c22226455cb855

 ///  File Name: ipphone-dos.txt
Description:
 The Nortel UNIStim IP Phone is susceptible to a remote denial of service attack when flooded.
Author:Daniel Stirnimann
Homepage:http://www.csnc.ch/
File Size:2176
Last Modified:Oct 22 17:02:41 2007
MD5 Checksum:3d56fc983b30e1948c34befe50074c7d

 ///  File Name: ipphone-reauth.txt
Description:
 The Nortal UNIStim IP Phone signalization protocol is vulnerable against spoofed re-authentication messages.
Author:Daniel Stirnimann
Homepage:http://www.csnc.ch/
File Size:2579
Last Modified:Oct 22 17:03:58 2007
MD5 Checksum:95c37ff0f2abe14a39f75a521d74451b

 ///  File Name: ipphonesurveil-spoof.txt
Description:
 The Nortel UNIStim IP Phone appears to suffer from a spoofing vulnerability that allows for message interception.
Author:Daniel Stirnimann
Homepage:http://www.csnc.ch/
File Size:2467
Last Modified:Oct 22 17:01:06 2007
MD5 Checksum:0162e97086700ecfe89a57d7af9a7e4e

 ///  File Name: IRM-CiscoLPD.txt
Description:
 IRM Security Advisory 024 - The Line Printer Daemon, which provides print server functionality in Cisco IOS, is vulnerable to a software flaw whereby the length of the hostname of the router is not checked before being copied into a fixed size memory buffer.
Homepage:http://www.irmplc.com/
File Size:3146
Last Modified:Oct 10 23:51:07 2007
MD5 Checksum:1acb6217db3199d6a424bbb89c2f2d87

 ///  File Name: irm-tibco.txt
Description:
 IRM has discovered six critical remote vulnerabilities in TIBCO SmartPGM FX.
Homepage:http://www.irmplc.com/
File Size:2056
Last Modified:Oct 16 18:53:46 2007
MD5 Checksum:af1fc2a481d3b27f271b547978d80463

 ///  File Name: ledgersmb-sql.txt
Description:
 LedgerSMB versions 1.0.0 through 1.2.7 and SQL-Ledger version 2.x are susceptible to SQL injection vulnerabilities.
Author:Chris Travers
File Size:873
Last Modified:Oct 10 02:13:50 2007
MD5 Checksum:80f93761cb45c1458fb9389589c91ff1

 ///  File Name: lfscbof.txt
Description:
 Live For Speed versions 0.5X10 and below suffer from a buffer overflow vulnerability in the client during skin handling.
Author:Luigi Auriemma
Homepage:http://aluigi.org/
Related Exploit:lfscbof.zip
File Size:2728
Last Modified:Oct 15 19:05:34 2007
MD5 Checksum:59a87bd375a64f06c64ec4857d76a4b1

 ///  File Name: lotusnotes702-en.txt
Description:
 Multiple exploitable buffer overflow vulnerabilities were found within the file attachment viewer in IBM Lotus Notes. The vulnerabilities can be exploited to execute arbitrary code by tricking the user to view a malicious DOC, SAM, WPD, or MIF file attachment using the file attachment viewer in Lotus Notes.
Author:Tan Chew Keong
Homepage:http://vuln.sg/
File Size:730
Last Modified:Oct 23 17:40:10 2007
MD5 Checksum:cb64396e5fc37a6dffb9cc2a00047df4

 ///  File Name: macosx-fwissues.txt
Description:
 It appears that the firewall on the new Mac OS X Leopard system is a bit botched.
Author:Juergen Schmidt
Homepage:http://www.heise-security.co.uk/
File Size:1382
Last Modified:Oct 31 11:15:48 2007
MD5 Checksum:bdd41cdbb1eb7588c57821fad260351b

 ///  File Name: MDKSA-2007-191.txt
Description:
 Mandriva Linux Security Advisory - A heap-based buffer overflow in libsndfile could allow remote attackers to execute arbitrary code via a FLAC file with crafted PCM data which contains a block with a size exceeding that of the previous block.
Homepage:http://www.mandriva.com/security/
File Size:3998
Related CVE(s):CVE-2007-4974
Last Modified:Oct 2 20:17:22 2007
MD5 Checksum:a410c18bdd0129aa5e7b7784c8322888

 ///  File Name: MDKSA-2007-192.txt
Description:
 Mandriva Linux Security Advisory - A heap-based buffer overflow was found in MPlayer's AVI handling that could allow a remote attacker to cause a denial of service or possibly execute arbitrary code via a crafted .avi file.
Homepage:http://www.mandriva.com/security/
File Size:3908
Related CVE(s):CVE-2007-4938
Last Modified:Oct 2 20:17:52 2007
MD5 Checksum:e3ec98049484e11c243e2a620b82a68c

 ///  File Name: MDKSA-2007-193.txt
Description:
 Mandriva Linux Security Advisory - A flaw in how OpenSSL performed Montgomery multiplications was discovered %that could allow a local attacker to reconstruct RSA private keys by examining another user's OpenSSL processes. Moritz Jodeit found that OpenSSL's SSL_get_shared_ciphers() function did not correctly check the size of the buffer it was writing to. As a result, a remote attacker could exploit this to write one NULL byte past the end of the application's cipher list buffer, which could possibly lead to a denial of service or the execution of arbitrary code.
Homepage:http://www.mandriva.com/security/
File Size:7307
Related CVE(s):CVE-2007-3108, CVE-2007-5135
Last Modified:Oct 5 02:14:28 2007
MD5 Checksum:d2934c153f0679b7321b754ee6c07501

 ///  File Name: MDKSA-2007-194.txt
Description:
 Mandriva Linux Security Advisory - More vulnerabilities in libvorbis were found that could be used to cause an application linked to libvorbis to crash or execute arbitrary code if used to open a carefully crafted OGG file.
Homepage:http://www.mandriva.com/security/
File Size:6537
Related CVE(s):CVE-2007-4065, CVE-2007-4066
Last Modified:Oct 12 00:20:47 2007
MD5 Checksum:28c2e1c92f5d34ee3fc2673b5baffce9
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice