exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 7 of 7 RSS Feed

Files Date: 2007-09-08 to 2007-09-09

Mandriva Linux Security Advisory 2007.174
Posted Sep 8, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A stack buffer overflow vulnerability was discovered in the RPC library used by Kerberos' kadmind program by Tenable Network Security. A remote unauthenticated user who could access kadmind would be able to trigger the flaw and cause it to crash. This issue is only applicable to Kerberos 1.4 and higher. Garrett Wollman found an uninitialized pointer vulnerability in kadmind which a remote unauthenticated attacker able to access kadmind could exploit to cause kadmind to crash. This issue is only applicable to Kerberos 1.5 and higher. The MIT Kerberos Team found a problem with the originally published patch for CVE-2007-3999. A remote unauthenticated attacker able to access kadmind could trigger this flaw and cause kadmind to crash.

tags | advisory, remote, overflow
systems | linux, mandriva
advisories | CVE-2007-3999, CVE-2007-4000, CVE-2007-4743
SHA-256 | 419c6d6e4703fc5ed341977474f79acb6d9a9c8398ff622b03be2b6d07615035
Ubuntu Security Notice 511-2
Posted Sep 8, 2007
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 511-2 - USN-511-1 fixed vulnerabilities in krb5 and librpcsecgss. The fixes were incomplete, and only reduced the scope of the vulnerability, without fully solving it. It was discovered that the libraries handling RPCSEC_GSS did not correctly validate the size of certain packet structures. An unauthenticated remote user could send a specially crafted request and execute arbitrary code with root privileges.

tags | advisory, remote, arbitrary, root, vulnerability
systems | linux, ubuntu
advisories | CVE-2007-3999
SHA-256 | 27c26c3a9ce917d976ca3105c865961730631a1995d3534b318b86cc5835fe0b
mssql-overflow.txt
Posted Sep 8, 2007
Authored by rgod | Site retrogod.altervista.org

Microsoft SQL Server Distributed Management Objects OLE DLL for SQL Enterprise Manager remote buffer overflow exploit that makes use of sqldmo.dll.

tags | exploit, remote, overflow
SHA-256 | 1ce95bc82766e57689e496cbc4fd2182f5c05d73f3ca933f27c93da5c0cf9a1c
buffalo_070907.txt
Posted Sep 8, 2007
Authored by Henri Lindberg | Site louhi.fi

The Buffalo AirStation WHR-G54S web management interface suffers from a cross site request forgery vulnerability.

tags | advisory, web, csrf
SHA-256 | 2c5d4202d43918d840d2e7aa01dc9415e6371116fce87e2832622a31e12acd55
ekoparty3rd-cfp.txt
Posted Sep 8, 2007
Site ekoparty.com.ar

The Ekoparty 3rd edition Information and Insecurity Conference Call For Papers has been announced. It will take place in Buenos Aires, Argentina from November 30th through December 1st, 2007.

tags | paper, conference
SHA-256 | cc41b88c157fa9354bdef4d0803ec162d5df5c56595d5e9a283fa0d48409ce3a
Samhain File Integrity Checker
Posted Sep 8, 2007
Authored by Rainer Wichmann | Site samhain.sourceforge.net

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.

Changes: Various updates.
tags | tool, tcp, intrusion detection
systems | linux, unix, solaris, aix, hpux, unixware
SHA-256 | 8335fe4e53907997a4cd4a39ec87cb5d9e8ecec7e595548298bef9385c24a7a1
online-rfi.txt
Posted Sep 8, 2007
Authored by MhZ91 | Site inj3ct-it.org

Online Fantasy Football League (OFFL) version 0.2.6 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
SHA-256 | daa3003436e53b9d53239febe45f903dc9ae3387097e2ce79a8e3b26b86dadf4
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close