.:[ packet storm ]:.
                             
paranoia is a friend like no other
paranoia is a friend like no other

 Section:  .. / 0612-advisories  /

Page 22 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 525 - 546 of 546
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: USN-390-3.txt
Description:
 Ubuntu Security Notice 390-3 - USN-390-2 fixed vulnerabilities in evince. This update provides the corresponding update for evince-gtk. A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrary code with the user's privileges.
Homepage:http://security.ubuntu.com/
File Size:3808
Related CVE(s):CVE-2006-5864
Last Modified:Dec 7 10:45:39 2006
MD5 Checksum:f29d1be388fa20d67e7e666ceff2abe6

 ///  File Name: USN-391-1.txt
Description:
 Ubuntu Security Notice 391-1 - A heap overflow was discovered in the OLE processing code in libgsf. If a user were tricked into opening a specially crafted OLE document, an attacker could execute arbitrary code with the user's privileges.
Homepage:http://security.ubuntu.com/
File Size:16636
Related CVE(s):CVE-2006-4514
Last Modified:Dec 6 07:16:42 2006
MD5 Checksum:2e9b45e731cb3c390191fcacb3a778d9

 ///  File Name: USN-392-1.txt
Description:
 Ubuntu Security Notice 392-1 - A buffer overflow was discovered in the Real Media input plugin in xine-lib. If a user were tricked into loading a specially crafted stream from a malicious server, the attacker could execute arbitrary code with the user's privileges.
Homepage:http://security.ubuntu.com/
File Size:7943
Related CVE(s):CVE-2006-6172
Last Modified:Dec 6 07:17:20 2006
MD5 Checksum:4805d19f9bf436969ea48098b2db01c7

 ///  File Name: USN-393-1.txt
Description:
 Ubuntu Security Notice 393-1 - Tavis Ormandy discovered that gnupg was incorrectly using the stack. If a user were tricked into processing a specially crafted message, an attacker could execute arbitrary code with the user's privileges.
Homepage:http://security.ubuntu.com/
File Size:7334
Related CVE(s):CVE-2006-6235
Last Modified:Dec 7 10:49:11 2006
MD5 Checksum:ae7e885e1e848d46f45696388747c18b

 ///  File Name: USN-394-1.txt
Description:
 Ubuntu Security Notice 394-1 - An error was found in Ruby's CGI library that did not correctly quote the boundary of multipart MIME requests. Using a crafted HTTP request, a remote user could cause a denial of service, where Ruby CGI applications would end up in a loop, monopolizing a CPU.
Homepage:http://security.ubuntu.com/
File Size:21449
Related CVE(s):CVE-2006-6303
Last Modified:Dec 8 23:08:03 2006
MD5 Checksum:1c6068d99a3db060a1425b45119d2ca7

 ///  File Name: USN-395-1.txt
Description:
 Ubuntu Security Notice 395-1 - Multiple vulnerabilities in the Linux Kernel.
Homepage:http://security.ubuntu.com/
File Size:138230
Last Modified:Dec 14 23:54:38 2006
MD5 Checksum:b9937e102aa738fbc55866c983272d69

 ///  File Name: USN-396-1.txt
Description:
 Ubuntu Security Notice 396-1 - A format string vulnerability was discovered in the gdmchooser component of the GNOME Display Manager. By typing a specially crafted host name, local users could gain gdm user privileges, which could lead to further account information exposure.
Homepage:http://security.ubuntu.com/
File Size:3517
Related CVE(s):CVE-2006-6105
Last Modified:Dec 15 10:59:29 2006
MD5 Checksum:0d66d20c3dd9b844343d1d23529e95d7

 ///  File Name: USN-397-1.txt
Description:
 Ubuntu Security Notice 397-1 - Jose Ramon Palanco discovered that the mono System.Web class did not consistently verify local file paths. As a result, the source code for mono web applications could be retrieved remotely, possibly leading to further compromise via the application's source.
Homepage:http://security.ubuntu.com/
File Size:23737
Related CVE(s):CVE-2006-6104
Last Modified:Dec 22 01:21:29 2006
MD5 Checksum:a949f0ca6731a6a8592c47a80bedeb44

 ///  File Name: woltlab23x.txt
Description:
 Woltlab Burning Board version 2.3.x suffers from a cross site scripting vulnerability in register.php.
Author:666
File Size:2877
Last Modified:Dec 6 04:39:47 2006
MD5 Checksum:a6acd75e7e001bc13ccc757e6fffda05

 ///  File Name: ZDI-06-043.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of the Novell Netware Client. Versions 4.91 (SP1 and SP2) are affected. Authentication is not required to exploit this vulnerability.
Homepage:http://www.zerodayinitiative.com/
File Size:3098
Related CVE(s):CVE-2006-5854
Last Modified:Dec 6 03:44:45 2006
MD5 Checksum:ea0f9c391083b6b381c251cc34ef9ee2

 ///  File Name: ZDI-06-044.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Download Manager versions 2.1 and below. User interaction is required to exploit this vulnerability in that the target must visit a malicious page.
Homepage:http://www.zerodayinitiative.com/
File Size:2963
Related CVE(s):CVE-2006-5856
Last Modified:Dec 7 10:46:38 2006
MD5 Checksum:1c024272f1a97efe22209ae164b86e01

 ///  File Name: ZDI-06-045.txt
Description:
 ZDI-06-045: Sophos Anti-Virus CPIO Archive Parsing Buffer Overflow Vulnerability
Homepage:http://www.zerodayinitiative.com/
File Size:2707
Last Modified:Dec 14 23:53:20 2006
MD5 Checksum:3a51060f8f0625ce78e55b39aa04fc5c

 ///  File Name: ZDI-06-046.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos Anti-Virus. The specific flaw exists in the parsing of SIT archives. When a long non-null terminated filename is processed by veex.dll, a heap overflow occurs due to the miscalculation of the string's actual size. Exploitation is possible leading to remote code execution running under the SYSTEM context.
Homepage:http://www.zerodayinitiative.com/
File Size:2557
Related CVE(s):CVE-2006-6335
Last Modified:Dec 15 09:51:18 2006
MD5 Checksum:574724912b52b37ed18d1d664973f1bd

 ///  File Name: ZDI-06-047.txt
Description:
 ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
Homepage:http://www.zerodayinitiative.com/
File Size:3080
Last Modified:Dec 14 23:52:46 2006
MD5 Checksum:d7e0aed6dc9e552cfa10329e3273cf33

 ///  File Name: ZDI-06-048.txt
Description:
 ZDI-06-048: Microsoft Internet Explorer normalize() Function Memory Corruption Vulnerability
Homepage:http://www.zerodayinitiative.com/
File Size:2773
Last Modified:Dec 14 23:52:19 2006
MD5 Checksum:74f6b3b67cb6b9f7846eac9700a2f314

 ///  File Name: ZDI-06-049.txt
Description:
 ZDI-06-049: Symantec Veritas NetBackup Long Request Buffer Overflow Vulnerability
Homepage:http://www.zerodayinitiative.com/
File Size:2875
Last Modified:Dec 14 23:51:48 2006
MD5 Checksum:6b41b66ed4d64aa7d2d6b9b3e71555ea

 ///  File Name: ZDI-06-050.txt
Description:
 ZDI-06-050: Symantec Veritas NetBackup CONNECT_OPTIONS Buffer Overflow Vulnerability
Homepage:http://www.zerodayinitiative.com/
File Size:2900
Last Modified:Dec 14 23:49:24 2006
MD5 Checksum:6fba51c6d288e6d86e0b1eb762cdad16

 ///  File Name: ZDI-06-051.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. Affected versions are Mozilla Firefox 2.0.0.0 and Mozilla Firefox 1.5.0.4 through 1.5.0.8.
Homepage:http://www.zerodayinitiative.com/
File Size:2659
Related CVE(s):CVE-2006-6504
Last Modified:Dec 22 01:06:04 2006
MD5 Checksum:0d8cae7b5d09fc8bc72e3f7ebaddf508

 ///  File Name: ZDI-06-052.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on affected installations of Novell NetMail. Successful exploitation requires the attacker to successfully authenticate to the affected service. The specific flaw exists in NetMail's implementation of the Network Messaging Application Protocol (NMAP). The NMAP server lacks bounds checking on parameters supplied to the STOR command, which can lead to an exploitable buffer overflow. The vulnerable daemon, nmapd.exe, binds to TCP port 689. Novell NetMail 3.5.2 is affected.
Homepage:http://www.zerodayinitiative.com/
File Size:2617
Related CVE(s):CVE-2006-6424
Last Modified:Dec 28 00:40:54 2006
MD5 Checksum:ccd5a2f83eb163b9f31a2c4c7b24d37f

 ///  File Name: ZDI-06-053.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on affected versions of Novell NetMail. Authentication is not required to exploit this vulnerability. The specific flaw exists in the NetMail IMAP service, imapd.exe. The service does not sufficiently validate user-input length values when literals are appended to IMAP verbs to specify a command continuation request. The memory allocated to store the additional data may be insufficient, leading to an exploitable heap-based buffer overflow. Novell NetMail 3.5.2 is affected.
Homepage:http://www.zerodayinitiative.com/
File Size:2627
Related CVE(s):CVE-2006-6424
Last Modified:Dec 28 00:41:47 2006
MD5 Checksum:ec5de911d3f800d11fd8101ca211945a

 ///  File Name: ZDI-06-054.txt
Description:
 A vulnerability allows remote attackers to execute arbitrary code on affected installations of Novell NetMail. Successful exploitation requires the attacker to successfully authenticate to the affected service. The specific flaw exists in the NetMail IMAP server's handling of the APPEND command. A lack of bounds checking on a specific parameter to this command can lead to a stack-based buffer overflow. This vulnerability can be exploited to execute arbitrary code. Novell NetMail 3.5.2 is affected.
Homepage:http://www.zerodayinitiative.com/
File Size:2582
Related CVE(s):CVE-2006-6425
Last Modified:Dec 28 00:42:33 2006
MD5 Checksum:85806bd5f8797addb80a34626b056d47
 

 ///  Last 10 Files
  1. :· glsa-200812-07.txt
  2. :· glsa-200812-06.txt
  3. :· glsa-200812-05.txt
  4. :· glsa-200812-04.txt
  5. :· glsa-200812-03.txt
  6. :· glsa-200812-02.txt
  7. :· glsa-200812-01.txt
  8. :· USN-683-1.txt
  9. :· dsa-1676-1.txt
  10. :· pacpoll-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· glsa-200812-07.txt
  2. :· glsa-200812-06.txt
  3. :· glsa-200812-05.txt
  4. :· glsa-200812-04.txt
  5. :· glsa-200812-03.txt
  6. :· glsa-200812-02.txt
  7. :· glsa-200812-01.txt
  8. :· USN-683-1.txt
  9. :· dsa-1676-1.txt
  10. :· USN-682-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· pacpoll-disclose.txt
  2. :· BMSA-2008-09.txt
  3. :· webhub-bypass.txt
  4. :· infinite-bypass.txt
  5. :· bcoos1013-sql.txt
  6. :· preonline-cmsqlxss.txt
  7. :· preclass-sqlxss.txt
  8. :· aspportal-disclose.txt
  9. :· preshoppingmall-cmsqlxss.txt
  10. :· ezpoll-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· vncrush.txt
  2. :· rshatter.txt
  3. :· Exomind-v0.2.tar.gz
  4. :· clamav-0.94.2.tar.gz
  5. :· cadfile.zip
  6. :· anehta-v0.6.0fixed2.zip
  7. :· tagfuzz.txt
  8. :· BrowserRider.20081124.tar.bz2
  9. :· mp3nema-v0_2.tar.gz
  10. :· squid-nufw-helper-1.1.3.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· sqlinj-insouts.txt
  2. :· format-string-linux.txt
  3. :· frame-pointer-overwrite-linux.txt
  4. :· iptablesf.txt
  5. :· nufw-2.2.19.tar.gz
  6. :· frhack2009-cfp.txt
  7. :· oracle-forensics-scns.pdf
  8. :· cansecwest-2009.txt
  9. :· A5.1.zip
  10. :· a51-php.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice