Trafscrambler is an anti-sniffer/IDS NKE (Network Kernel Extension) for Mac OS X. Author tested this on x86 OS X versions 10.5.6 and 10.5.7. It should work on PPC and older releases as well.
fa6467defc5898d3d8beae8d23338a8978e1e90bd33e00f07621ebd82993a881Discuz version 6.0 suffers from a remote SQL injection vulnerability.
e8b8763149ee62b88075044f2d3d6c39eba1cc197ad4d1036df347767dce6ac4Debian Security Advisory 1862-1 - A vulnerability has been discovered in the Linux kernel that may lead to privilege escalation.
ee03984f78e4ddfab0750a75c78f010f203c4cd1a6a8ac0e7fd4ae37e1d6ba45The Call For Papers for ClubHack 2009 has been announced. For a full list of topics and more information on the convention, hit the home page.
b84e64fcba7fa5f28f913d535302369f7d7d2dbf2129f7da197c6ed6cce2074aLinux 2.x kernel sock_sendpage() local root exploit. It works on 2.4, 2.6, x86, x64, 4k stacks, 8k stacks, with/without cred framework, bypasses mmap_min_addr in any public way possible (auto-detecting which method to use).
085bb4412db15ce9acadc2e1a2519153ebf77890ac9c1ffc08873eb10d337f04The BlueCoat Proxy 8100 series suffers from a bypass vulnerability when a forged Referer header is used.
c138c1e6b01deee8cdc4237516c1a47da8aa1ca1466f06bf60a78bbde070cdd2ICQ version 6.5 suffers from a HTML injection vulnerability.
47e5107f4c6fbacd60b513e4af30bb3ea087276cc908d5e80cdc241f35e569bcSUSE Security Announcement - The ibsvn_delta library in Subversion is vulnerable to integer overflows while processing svndiff streams, this leads to overflows on the heap because of insufficient memory allocation.
6a78b4f37e3feb3c74472559d5038b900e35177e18a1264f90125966092d0cebNaroun ADSL-Tools suffers from an authentication bypass vulnerability.
181964ea10823e0c4a6cb83bf6a736544186f1ec15b7a40fce9631b630a9ac52Mandriva Linux Security Advisory 2009-203 - lib/ssluse.c in cURL and libcurl 7.4 through 7.19.5, when OpenSSL is used, does not properly handle a '\\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. This update provides a solution to this vulnerability.
64a046ec10964c7bc97cd39c1a82bb0dfd856c661b18bd5a0fa74d1986865cf5Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
5a61ef918e33b06357aa00830181bdcdc4638f77853158d3103bc6c24d7c34feMandriva Linux Security Advisory 2009-202 - Multiple integer overflows in memcached 1.1.12 and 1.2.2 allow remote attackers to execute arbitrary code via vectors involving length attributes that trigger heap-based buffer overflows. This update provides a solution to this vulnerability. Additionally memcached-1.2.x has been upgraded to 1.2.8 for 2009.0/2009.1 and MES 5 that contains a number of upstream fixes, the repcached patch has been upgraded to 2.2 as well.
e6e9ee0c52adb3613ae8674db4468595b6600a305b72fb7f18fea4e6429e6caaDebian Security Advisory 1861-1 - Rauli Kaksonen, Tero Rontti and Jukka Taimisto discovered several vulnerabilities in libxml, a library for parsing and handling XML data files, which can lead to denial of service conditions or possibly arbitrary code execution in the application using the library.
cf1ba6edbf0c2b6efad11fb80510f02152cfeacc8e88c5e4a39e29cbd5843bb2VLC Media Player versions 1.0.1 and below smb:// URI buffer overflow exploit.
5366832dcb568b66c552c6d27000f073a34bd3528d9bc886d74ff1cebc9969c1MyWeight version 1.0 suffers from a remote shell upload vulnerability.
fa50919e60bea6261c3daa2d775f33907e095f3a2154ca1b95365ae8dd2138beDS CMS version 1.0 suffers from a remote SQL injection vulnerability.
615556499ae8fb790cc9484be3ac1f1884e94617eb6fb13088260cde08d6d665Secunia Security Advisory - A vulnerability has been reported in Snom VoIP Phones, which can be exploited by malicious people to bypass certain security restrictions.
28072de01c18c917a7d173e04d5f51d97f441253efabace4d1294974462a32e1Secunia Security Advisory - webDEViL has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people and by malicious, local users to cause a DoS (Denial of Service).
69d050317700cacd804b44574f3a49efa93bbccda75999abfc590f27bc5d404eSecunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in GEM Engine, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise an application using the engine.
ad3964708e55715e56ee9ab1ee146edb24efa03306731a23c979f9db7abfd0a4Secunia Security Advisory - A vulnerability has been reported in Novell NetWare, which can be exploited by malicious people to cause a DoS (Denial of Service).
a7a3f913cdeec134a9726da9f5d2bcec9c09e5c91765f8f0803a3f6df929a62fSecunia Security Advisory - Luigi Auriemma has reported some vulnerabilities in Faces of War, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
2be217ba5956067a025d7dce255a3036cb764a079783ec22bbb990b0c7cd451dSecunia Security Advisory - Debian has issued an update for ruby1.8 and ruby1.9. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks and cause a DoS (Denial of Service).
777bda265e966a50d91140a3fdb36cad8612179c72057f3bb155a1cacf4f0ffcSecunia Security Advisory - A vulnerability has been discovered in SquirrelMail, which can be exploited by malicious people to conduct cross-site request forgery attacks.
ffca9418da2d6e5070d14747163195b790f5cedcbe7d8cd2f3bc935e78c0cf28Secunia Security Advisory - Apple has issued a Security Update for BIND. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
1f676dc3ad0632cd84f98114a1397fba6befa758b7ee834f22e9be94f3839dd3Secunia Security Advisory - Ubuntu has issued an update for fetchmail. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
76afa0f6151876114250abe7d7502c701e05dd7839116edcf7bae163fe9aed80
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed