what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 36 RSS Feed

Files Date: 2009-02-20

ZoneAlarm 8.0.020.000 Denial Of Service
Posted Feb 20, 2009
Authored by Azim Poonawala

Small write up discussing a method to crash vsmon.exe in ZoneAlarm version 8.0.020.000.

tags | paper, denial of service
SHA-256 | 1331390244096724bd046fc6e4ecab6a6e9ab0c7b1e189a8de19cfeccc4c234e
Mandriva Linux Security Advisory 2009-047
Posted Feb 20, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-047 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current Vim working directory. This update provides fix for that vulnerability.

tags | advisory, arbitrary, local, python
systems | linux, mandriva
advisories | CVE-2009-0316
SHA-256 | d48c84ca9ac1f19f71f9715ece4c33381c11e28839207dfc4fc4b6b45ab36bcb
Technical Cyber Security Alert 2009-51A
Posted Feb 20, 2009
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA09-051A - Adobe has released Security Bulletin APSB09-01, which describes a vulnerability that affects Adobe Reader and Acrobat. This vulnerability could allow a remote attacker to execute arbitrary code.

tags | advisory, remote, arbitrary
SHA-256 | d1b030978b5d5908c77fd45b7fc27bc22a2d7415ace32d36207e56d61b376b8b
Mandriva Linux Security Advisory 2009-045
Posted Feb 20, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-045 - A number of vulnerabilities have been found and correct in PHP. The updated packages have been patched to correct these issues.

tags | advisory, php, vulnerability
systems | linux, mandriva
advisories | CVE-2008-5557, CVE-2008-5658, CVE-2008-5624, CVE-2008-5625
SHA-256 | 464ba2eaffec51fde6159e226f1d27cab7a06d4787b887a8a366bbb71592a068
Search Engine Assessment Tool 0.3
Posted Feb 20, 2009
Authored by Peter Kacherginsky | Site midnightresearch.com

SEAT (Search Engine Assessment Tool) is the next generation information digging application geared toward the needs of security professionals. SEAT uses information stored in search engine databases, cache repositories, and other public resources to scan a site for potential vulnerabilities. It's multi-threaded, multi-database, and multi-search-engine capabilities permit easy navigation through vast amounts of information with a goal of system security assessment. Furthermore, SEAT's ability to easily process additional search engine signatures as well as custom made vulnerability databases allows security professionals to adapt SEAT to their specific needs.

Changes: Fixed segmentation error. Various performance enhancements. Updated report generation. Updated XML SE database.
tags | tool, scanner, vulnerability
systems | unix
SHA-256 | b5d62280c922f81bdff023ae75a968bc2a2308604bbb370f81ef2dffdc5e0b4d
Webshag Web Server Audit Tool 1.10
Posted Feb 20, 2009
Site scrt.ch

Webshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing.

tags | tool, web, scanner, python
systems | unix
SHA-256 | a1ea1cc0c87e44a19fad7edc1658c6c57705aa1fc3ff3304f1e4a669b523a049
OpenNHRP NBMA Next Hop Resolution 0.9.3
Posted Feb 20, 2009
Authored by Timo Teras | Site sourceforge.net

OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.

Changes: Removed an assertation. Made monotonic clock work with old uclibc.
tags | encryption, protocol
systems | cisco, linux
SHA-256 | 4dbfb313a01b24064f7de1a5e23e6946b661cea7bbcc25d440d57ce8511b7b3b
Codename Circumference Diameter Protocol Implementation
Posted Feb 20, 2009
Authored by Jan Engelhardt | Site circum.sourceforge.net

Circumference is an implementation of a WebAuth client and server to supplement the recently-written specification for the WebAuth Diameter Application, complete with an extensible Diameter server and base library. Diameter is specified in RFC3588 and its updates.

tags | tool
systems | unix
SHA-256 | 8efc00212e5482321cdbc6bea1dd7d11bcecd4e84fd91ca2700d44dd424d0dc1
Cmd.exe Shellcode For XP SP2 FR
Posted Feb 20, 2009
Authored by Stack | Site v4-team.com

32 bytes small win32 XP shellcode that executes cmd.exe.

tags | shellcode
systems | windows
SHA-256 | b36a1c2bdb9bf1de0664f41913ac5cb7087d0f9dd4de9c560add62ed05a46be8
Internet Explorer 7 Memory Corruption For Win2k3 SP2
Posted Feb 20, 2009
Authored by webDEViL

Microsoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written for 2K3 SP2.

tags | exploit
SHA-256 | ea20d5bbe51604a1a76dd0af9b738fa01461f0c874d138c5bd4b6d80a63953a3
Internet Explorer 7 Memory Corruption
Posted Feb 20, 2009
Site securestate.com

Microsoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written in Python.

tags | exploit, python
SHA-256 | 9e7f0687f574f72b85bee2288044bcd0a331152709a304634a4e77e38ea32a1b
Internet Explorer 7 Memory Corruption For XP SP2
Posted Feb 20, 2009
Authored by Abysssec | Site abysssec.com

Microsoft Internet Explorer 7 memory corruption exploit that leverages the vulnerability listed in MS09-002. Written for XP SP2.

tags | exploit
SHA-256 | 644c80da1941f20f2ccfe7781a3d0af151de94d40c09491b14de620bf5b49ed6
phpBB 3 Remote File Inclusion
Posted Feb 20, 2009
Authored by Kacper | Site devilteam.pl

phpBB 3 with the Autopost Bot module versions 0.1.3 and below suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | a99c8dc748f560fad926fc23ff47b28539507b65089201ffc1d57d4fbb9b8c9e
CaLogic Calendars SQL Injection
Posted Feb 20, 2009
Authored by Pouya Server

CaLogic Calendars suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | ed2a9170ad90d288f97a9d5d0f37737d338b169c28c42f3e94a1eae0fe500e26
Mandriva Linux Security Advisory 2009-046
Posted Feb 20, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-046 - Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current dia working directory. This update provides fix for that vulnerability.

tags | advisory, arbitrary, local, python
systems | linux, mandriva
advisories | CVE-2008-5984
SHA-256 | 63dd0f94bbaeda395355c1df705da76ca72c3a9a32c470186fe327055a226c3a
Mandriva Linux Security Advisory 2009-044
Posted Feb 20, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-044 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 3.x, version 3.0.5. This update provides the latest Mozilla Firefox 3.x to correct these issues. As Mozilla Firefox 2.x has been phased out, version 3.x is also being provided for Mandriva Linux 2008 Spring.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2009-0352, CVE-2009-0353, CVE-2009-0354, CVE-2009-0355, CVE-2009-0356, CVE-2009-0357, CVE-2009-0358
SHA-256 | b512e67d838f76d1d0ad86dfc7930d4e889c6489b61987d50067987a2f3dd1e9
View Counter Script Via Proxies
Posted Feb 20, 2009
Authored by Osirys | Site y-osirys.com

This is a perl script that will visit a page repeatedly using various proxies. Can be used for testing purposes.

tags | tool, perl
systems | unix
SHA-256 | b64aaf2e2c1ae0d074f0f673d2a3833e95a4d9a915ee5ea551a718154d8c8960
Graugon Forum 1 SQL Injection
Posted Feb 20, 2009
Authored by Osirys | Site y-osirys.com

Graugon Forum version 1 remote SQL command injection exploit.

tags | exploit, remote, sql injection
SHA-256 | 6c2ec2aad1ea76fe2b23455770e447fd19c79c244d1aa9d8a11899e433b8efcc
Secunia Security Advisory 33979
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Yaws, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | fccf02de4d1c2888d9824f293a43c44e5ce7850a0886caded0caba362919e81b
Secunia Security Advisory 33901
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Adobe Reader/Acrobat, which can be exploited by malicious people to compromise a user's system.

tags | advisory
SHA-256 | 8c87b1a26a818df795cf673da25888a54a44f430526bec41d7da62f7a7b8b863
Secunia Security Advisory 33993
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Pouya_Server has reported a security issue in multiple i-dreams products, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
SHA-256 | 83153ad0a530f9503d54a04fe284aa31cf7c8c0597c7fe63568115e0d0ac78ac
Secunia Security Advisory 33938
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weakness has been reported in the Linux Kernel, which can be exploited by malicious, local users to bypass certain security restrictions.

tags | advisory, kernel, local
systems | linux
SHA-256 | 55dd75aac32d9677b03631f21acad0ca01af257efa432fb6311924d4ff87ecdb
Secunia Security Advisory 33995
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for cups. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
systems | linux, redhat
SHA-256 | 5c33980b41cb398e62abd2a7f85822c4ac0b251daa184d213a360a8a00947bc5
Secunia Security Advisory 33996
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for imap. This fixes two vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges, and by malicious people to potentially compromise a vulnerable system.

tags | advisory, local, vulnerability, imap
systems | linux, redhat
SHA-256 | f725e50d455d139e918b7de226f2806eaff9f8f3faba6a2b624a8648b62ab670
Secunia Security Advisory 33988
Posted Feb 20, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - mckt has discovered some vulnerabilities in Zen Cart, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, vulnerability, csrf
SHA-256 | 7549c78f06ecbecbfc364e8c179b110219f85081e10f00b7f96819bf619b227f
Page 1 of 2
Back12Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close