TinyCA is a simple GUI written in Perl-Gtk to manage a small certification authority. It works as a frontend to OpenSSL. TinyCA lets you manage x509 certificates. It is possible to export data in PEM or DER format for use with servers, as PKCS#12 for use with clients, or as S/MIME certificates for use with email programs. It is also possible to import your own PKCS#10 requests and generate certificates from them. It also lets you create and manage SubCAs for more complex setups. The most important certificate extensions can be configured with the graphical frontend. English and German translations are included.
4227af38fee310741da29ff0681bba55f547548d98b6a5e61b3f768588de47ddSecunia Security Advisory - Secunia Research has discovered a vulnerability in AutoVue SolidModel Professional, which can be exploited by malicious people to compromise a vulnerable system.
0bc70f58e1f846bfe2f7348e8d833ce02acb2383db66f2ac51caed9f03161bf1A vulnerability exists in the IQnetworks Enterprise Security Analyzer. The specific flaw exists within Topology.exe, which binds by default to TCP port 10628. During the processing of long prefixes to the GUIADDDEVICE, ADDDEVICE, or DELETEDEVICE command, a stack based buffer overflow occurs.
07715bdb168d079a02768f60b7e9cb7b8b0b077fa559ea98206c1f98d030d8c1A vulnerability exists in the IQnetworks Enterprise Security Analyzer. The flaw specifically exists within the Syslog daemon, syslogserver.exe, during the processing of long arguments passed through various commands on TCP port 10617.
d8b970170559300470f77cd29528899de52f7ba78748847d398c43a0525f8b81Secunia Security Advisory - Tamriel has reported a vulnerability in TP-Book, which can be exploited by malicious people to conduct script insertion attacks.
30503dd6b1ebba04fd66cff52efce882da244aa935697833b79426999d2bb256Secunia Security Advisory - Ubuntu has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and HTTP response smuggling attacks, disclose sensitive information, and potentially compromise a user's system.
2033ba57bd5e1359046bf70d31cef92414001ee6bbf7a4cbbdfe67e7c1822670Secunia Security Advisory - Gentoo has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).
2635ddbdb736e9200893b14a4d0150ae72773b20104ee148a12bc2345de833bcSecunia Security Advisory - Red Hat has issued an update for php. This fixes some vulnerabilities, where one has an unknown impact and others can be exploited to bypass certain security restrictions or cause a DoS (Denial of Service).
578bcdd4957b811c0a18ca95d8e5e5f9eb470e43bcfc1c4389a41c9d2ad921e0A vulnerability exists in the IQnetworks Enterprise Security Analyzer. The specific flaw exists within EnterpriseSecurityAnalyzer.exe, which binds by default to TCP port 10616. During the processing of long arguments to the LICMGR_ADDLICENSE command a stack based buffer overflow occurs.
62dba3a26852eedc18c6ce2aca71f4563fcba6abc5407d832c1d9a918fee9f91A vulnerability exists in the IQnetworks Enterprise Security Analyzer. The specific flaw exists within the Syslog daemon, syslogserver.exe, during the processing of long strings transmitted to the listening TCP port. The vulnerability is not exposed over UDP. The default configuration does not expose the open TCP port.
a93fa646bd210b8b85b4516fdbb4826f6595d3ffb4b5d0586c0626b6ceb35603Mandriva Linux Security Advisory MDKSA-2006-131 - Peter Bieringer discovered a flaw in the perl Net::Server module where the "log" function was not safe against format string exploits in version 0.87 and earlier.
18a2036ac553cc9bcac5a60f923f05d60b51bf89b98b4e0aedcca31784b89b08TP-Book versions 1.00 and below suffer from cross site scripting vulnerabilities.
ac75b3e81db843f87205e30ba19552b1a490be3cca19dcf6af4b7e11303c5f34Professional Home Page suffers from cross site scripting flaws.
cb81e93281f11d7cad964fe90f442d1f67b51c8c2321a7b22187c14e6d412ae6Gentoo Linux Security Advisory GLSA 200607-10 - During an internal audit the Samba team discovered that a flaw in the way Samba stores share connection requests could lead to a Denial of Service. Versions less than 3.0.22-r3 are affected.
12d5065e71559c4cba0ccfc9d922baf52cde0f7817cdc8a0f920078093221bc0Secunia Research has discovered a vulnerability in FileCOPA, which can be exploited by malicious users to compromise a vulnerable system. The vulnerability is caused due to an integer underflow error in the FTP service (filecpnt.exe) when processing directory arguments passed to certain FTP commands (e.g. "CWD", "DELE", "MDTM", and "MKD"). This can be exploited to cause a stack-based buffer overflow by passing a specially crafted, overly long argument to one of the affected FTP commands. Successful exploitation allows execution of arbitrary code. Versions below 1.01 are affected.
6d3f11d1b2b6f38b433dbc524097d03ff9fd23e22a35197cc06a5f2749b994e8Gentoo Linux Security Advisory GLSA 200607-09 - Wireshark dissectors have been found vulnerable to a large number of exploits, including off-by-one errors, buffer overflows, format string overflows and an infinite loop. Versions less than 0.99.2 are affected.
08b7e6b424df1193980cb9beae5aeb056f2f5de26f9729eefb6e62f4bb5878e6A vulnerability has been found in PowerArchiver version 9.62.03 that allows for arbitrary code execution.
5be398cc76407912583ce04d6d10e64b66f05d6b129c7068c34e6a5947ce19f0A cross site scripting vulnerability exists on MSN.com.
f7bcbdfe9e291eadaba533597376b8987cf3a1d2f09145a324cd67b770b41f55LinksCaffe version 3.0 suffers from SQL injection and cross site scripting flaws.
abe6f567ea6ffa058462500b5a97341cdc184962ce92b8faf57c6baf2628ececAanval is a data management, correlation and analysis console designed specifically for Snort and Syslog data. Featuring custom reports, real time displays, browser-based, multi-user, multi-sensor, advanced analysis charting and graphing, host matching, custom displays, complete remote sensor management, automatic signature updating, signature editing and more.
185adada3e5d37462112fb699d15c57e7e02399f92024d30d26af1c0003566c8A vulnerability has been found in AGEphone versions 1.24 and 1.38.1 that allows for arbitrary code execution.
8f76c6205b8597e13c8c77f5fd93bf27e2587fa1af93d650aac528e988192a08A vulnerability has been found in TurboZIP 6.0 that allows for arbitrary code execution.
463aafbe89aa1791e81c25bf9e6eceb69d145d3722f0a4e9e8d10d48e177b311Some vulnerabilities have been found in DynaZip DZIP32.DLL/DZIPS32.DLL that allow for arbitrary code execution. DynaZip Max version 5.0.0.7 and DynaZip Max Secure version 6.0.0.4 are affected.
50aa225d27ea00eec762bd08537c3f1eb0108a7dee8512410379c0163bcb6564Tumbleweed's Email Firewall has three separate vulnerabilities within its LHA processing routines inside of its EMF Decomposer.
cf7a9b4501c04e92a6ed5abde20ee84edf7fef2e8eac2339fddcd0c475b3757bProof of concept exploit for libmikmod versions 3.2.2 and below which suffer from a heap overflow vulnerability.
760938032806946956c6c94b3c47ee60cba9bc35e115e3e651242f033bdc03f0
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed