.:[ packet storm ]:.
                           
honesty is the best policy
honesty is the best policy

 ///  File Name:USN-685-1.txt
Description:
Ubuntu Security Notice USN-685-1 - Wes Hardaker discovered that the SNMP service did not correctly validate HMAC authentication requests. An unauthenticated remote attacker could send specially crafted SNMPv3 traffic with a valid username and gain access to the user's views without a valid authentication passphrase. John Kortink discovered that the Net-SNMP Perl module did not correctly check the size of returned values. If a user or automated system were tricked into querying a malicious SNMP server, the application using the Perl module could be made to crash, leading to a denial of service. This did not affect Ubuntu 8.10. It was discovered that the SNMP service did not correctly handle large GETBULK requests. If an unauthenticated remote attacker sent a specially crafted request, the SNMP service could be made to crash, leading to a denial of service.
Homepage:http://security.ubuntu.com/
File Size:22597
Related CVE(s):CVE-2008-0960, CVE-2008-2292, CVE-2008-4309
Last Modified:Dec 3 21:50:13 2008
MD5 Checksum:160150a1aec9ec4fbae385d4790925ed

 .:. Back
 

 ///  Last 10 Files
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· quotebook-disclose.txt
  8. :· cts2009-cfp.txt
  9. :· cisco-sa-20090107-gss.txt
  10. :· secadv_20090107.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· FreeBSD-SA-09-01.lukemftpd.txt
  2. :· FreeBSD-SA-09-02.openssl.txt
  3. :· USN-704-1.txt
  4. :· CA20090107-01.txt
  5. :· dsa-1697-1.txt
  6. :· dsa-1696-1.txt
  7. :· cisco-sa-20090107-gss.txt
  8. :· secadv_20090107.txt
  9. :· oCERT-2008-016.txt
  10. :· msienull-dos.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· quotebook-disclose.txt
  2. :· SN-2008-04.txt
  3. :· winamp-overflow.txt
  4. :· phpfusionecart-sql.txt
  5. :· audacity162-crash.txt
  6. :· perceptionliteserve-overflow.txt
  7. :· phpfusionmembers-sql.txt
  8. :· vuplayer249-overflow.txt
  9. :· joomla-traversal.txt
  10. :· cainabel4925-overflow.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ip-array_0.05.74c.tar.gz
  2. :· mandos_1.0.3.orig.tar.gz
  3. :· lfi-rfi2.txt
  4. :· tor.uclibc.i686.20090105.iso
  5. :· RFIDIOt-0.1v.tgz
  6. :· ratproxy-1.53.tar.gz
  7. :· opennhrp-0.9.2.tar.bz2
  8. :· rkhunter-1.3.4.tar.gz
  9. :· zerowine-0.0.1.tar.gz
  10. :· inguma-0.1.1.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· cts2009-cfp.txt
  2. :· seacureit-cfp2009.txt
  3. :· msfxdc-contest.txt
  4. :· valsmith_colin_blog_spam.pdf
  5. :· dquist_valsmith_further_down_the_vm_spiral.pdf
  6. :· valsmith_dquist_hacking_malware.pdf
  7. :· uCon2009-CFP.txt
  8. :· md5-considered-harmful.pdf
  9. :· clickjack-xss.txt
  10. :· w3af-userguide.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice