what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 178 RSS Feed

Files Date: 2008-07-10

pkd-0.6.tgz
Posted Jul 10, 2008
Authored by eric

ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.

tags | tool, kernel, udp, firewall
systems | linux
SHA-256 | f420f6fd1d85f1272c4ba95244e27bb7c54c3c5dd2be5df4a01673d04169da58
Secunia Security Advisory 31029
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for openoffice and openoffice-bin. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.

tags | advisory
systems | linux, gentoo
SHA-256 | bba0adba5d9bfc7f9c5ef557dd2438ed03ea5667f5732e50f7dc5e5192e7e221
iDEFENSE Security Advisory 2008-07-09.1
Posted Jul 10, 2008
Authored by iDefense Labs | Site idefense.com

iDefense Security Advisory 07.09.08 - Remote exploitation of a heap buffer overflow vulnerability in Novell Inc.'s eDirectory could allow an attacker to execute arbitrary code with the privileges of the affected service. The vulnerability exists due to an incorrect calculation when allocating a heap buffer to store the search parameters. By passing NULL search parameters, it is possible to overflow a heap based buffer with the string "(null)". This can result in the corruption of heap management structures, and depending on the layout of the heap, possibly function pointers. iDefense has confirmed the existence of this vulnerability in eDirectory version 8.8 SP2 for Linux. Other versions may also be affected.

tags | advisory, remote, overflow, arbitrary
systems | linux
advisories | CVE-2008-1809
SHA-256 | 627e6dd7ce09a52c670678f4c422f600ab53d2e3e6fcfe6e750bf708d64d17c2
Zero Day Initiative Advisory 08-041
Posted Jul 10, 2008
Authored by Tipping Point, Sebastian Apelt | Site zerodayinitiative.com

A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, bound by default to TCP port 524. Flawed arithmetic applied to a user-supplied value results in an integer overflow and subsequently a complete stack smash allowing an attacker to execute arbitrary code via SEH redirection.

tags | advisory, remote, overflow, arbitrary, tcp
SHA-256 | b8fab3a9c1fe5bdfe8b5490324976c46300330796237327dfa591f6ec5ca1bcb
Secunia Security Advisory 30996
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for openldap. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, redhat
SHA-256 | 9d45f6ffb2a15c2815e7d5ae0f1b8d382fae1b832c8aac27d26791ea890f8094
Secunia Security Advisory 31023
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Slackware has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.

tags | advisory, spoof, vulnerability, xss
systems | linux, slackware
SHA-256 | d623e7d1a01334bed4296e331bd246f33a6203c1cb0741b50bf2807ce129478e
wpacrack.py.txt
Posted Jul 10, 2008
Authored by d3hydr8 | Site darkc0de.com

Python script that cracks a 256-bit WPA-PSK hash (64 char) using wpa_passphrase and a wordlist.

tags | tool, scanner, python
systems | unix
SHA-256 | 64f83af457754e31a3d03e207fb755e633bab664fab632e28121f6d198cb0ca0
msowa-xss.txt
Posted Jul 10, 2008
Authored by Michael Jordon | Site contextis.co.uk

Several cross site scripting vulnerabilities were found in within Outlook Web Access (OWA) 2003/2007. An attacker can craft a malicious email which will trigger within a user's browser. Different version of OWA and different clients (Light and Premium) have different attack vectors which can result in an attacker gaining persistent control over a victim's use of Outlook Web Access.

tags | advisory, web, vulnerability, xss
advisories | CVE-2008-2247, CVE-2008-2248
SHA-256 | 6205a42f3bf0ba82a7bf26ac1fb8f7a9a54e2491097c347b64ff8486727cbf74
Secunia Security Advisory 31000
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - k1tk4t has reported a vulnerability in AuraCMS, which can be exploited by malicious people to manipulate certain data.

tags | advisory
SHA-256 | 49df3bb2bbfa329c7587548d2526f2c5168c1b7baba710d4294b3083a8b892d0
Secunia Security Advisory 31009
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Hussin X has reported a vulnerability in DreamPics Builder, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 004e4c7ddc5555b2944dd8b0b67e1c24eef8503c13c50ba625432a7298fd8812
Secunia Security Advisory 31020
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for java-1.7.0-icedtea. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.

tags | advisory, java, denial of service, vulnerability
systems | linux, fedora
SHA-256 | 1cb677812b72dd44d4b8e191ebe610f2458ca5e156552c042dbd60791183560a
Secunia Security Advisory 31022
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.

tags | advisory
systems | linux, slackware
SHA-256 | f7d24a5aec385fcd0cf7137218c19ca8435639dbd0ff55fe37698111ffdf0380
Secunia Security Advisory 31024
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in vbDrupal, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, session fixation, SQL injection, and script insertion attacks.

tags | advisory, vulnerability, xss, sql injection, csrf
SHA-256 | 7af3d48a96f80b18c6b39f2d401d09e2246437871b81d710cb5b9a6e5edf1397
Secunia Security Advisory 31025
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for nx. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.

tags | advisory, denial of service, local, vulnerability
systems | linux, gentoo
SHA-256 | d720095f588dbadd7b20e295ce24eee335c13070fd9c3c397a1a7113333264e6
Secunia Security Advisory 31026
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for apache. This fixes a some vulnerabilities, which can be exploited by malicious people to conduct cross-site request forgery attacks and cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability, csrf
systems | linux, gentoo
SHA-256 | 1824580692839faaaaa91c644edd7adec1f0b126ce0ec6260fefbfba8c519c35
Secunia Security Advisory 31028
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, session fixation, SQL injection, and script insertion attacks.

tags | advisory, vulnerability, xss, sql injection, csrf
SHA-256 | 592fd9632da540ec09596b2729ae2c750ac46f9daa38f5d013f1de6c47a51105
Secunia Security Advisory 31030
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Infoblox NIOS, which can be exploited by malicious people to poison the DNS cache.

tags | advisory
SHA-256 | cfa0a209bd2314cd0ad262d62d38c77e9933b93c02d94cd500b80cd3a8538ab6
Secunia Security Advisory 31031
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Nixu Secure Name Server, which can be exploited by malicious people to poison the DNS cache.

tags | advisory
SHA-256 | 6158abd92f736f6c1c41b241404b27ff6eaa9b48383ddb2b11fc48e064b2d3c0
Secunia Security Advisory 31037
Posted Jul 10, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in some Sophos products, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | 9004dd169b1ed6c7659568507847ba051564f157b00de3548cc9f420a3780862
gapicms-rfi.txt
Posted Jul 10, 2008
Authored by Ghost Hacker | Site real-hack.net

gapicms version 9.0.2 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 5b85676724985ad2a1eb250ccd6d87902782fcf9c4daeed8f4317efd19663860
phpdatingclub-lfi.txt
Posted Jul 10, 2008
Authored by Big Ben

phpDatingClub suffers from a local file inclusion vulnerability in website.php.

tags | exploit, local, php, file inclusion
SHA-256 | 3e18f03c175ccb6f59fcbe4f2150f91405040e958817805d174bbbbee0a8ba6f
dreamnews-sql.txt
Posted Jul 10, 2008
Authored by Hussin X | Site tryag.cc

The DreamNews Manager is susceptible to a SQL injection vulnerability.

tags | exploit, sql injection
SHA-256 | 98732797b4dcb4c761bc0e1f76e53fbced654cf7cd8ed204d54367fb1acc1cfd
Gentoo Linux Security Advisory 200807-7
Posted Jul 10, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200807-07 - Multiple integer overflow and buffer overflow vulnerabilities have been discovered in the X.Org X server as shipped by NX and NX Node (GLSA 200806-07). Versions less than 3.2.0-r3 are affected.

tags | advisory, overflow, vulnerability
systems | linux, gentoo
SHA-256 | de5dcf9d37e34e1ca625be05a6241f4dfac3593a33c3c3e46bdf53fcc1b1075d
Gentoo Linux Security Advisory 200807-6
Posted Jul 10, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200807-06 - Multiple vulnerabilities in Apache might lead to a Denial of Service. Versions less than 2.2.9 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2007-6420, CVE-2008-1678, CVE-2008-2364
SHA-256 | f81470d25768f8c79f9875c31bea172f9710de2892364cb602d9c02db8e85a6c
Gentoo Linux Security Advisory 200807-5
Posted Jul 10, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200807-05 - Sean Larsson (iDefense Labs) reported an integer overflow in the function rtl_allocateMemory() in the file sal/rtl/source/alloc_global.c. Versions less than 2.4.1 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2008-2152
SHA-256 | 56902be5c5e213a71bea6f352a05ba6fb8539b4595fbd903b4dd774ddbc86008
Page 1 of 8
Back12345Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    0 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close