SAM is a Real-Time Snort alert monitor. SAM provides many ways to indicate that you may be experiencing an intrusion attempt on your network including audio/visual warnings, email warnings, etc. SAM is written in Java for maximum portability.
c40fa01249c626bf864be81898357d0aceb73a0915fbc7b5a83e3626b861ad2eSQL injection and path disclosure vulnerabilities exist in EveryDNS.net service.
86609e1a57d1840849fa6d4f52e519b27afcefd68d91df18e7ffd4e4731f905fWhitepaper discussing the exploration of adjacent memory against strncpy().
88bde55acd194246f9fe3c0191e349c3db1bdbe1aa97ca16802986be8d5e2762Secunia Security Advisory - http-equiv has discovered a vulnerability in RealPlayer, which can be exploited by malicious people to bypass certain security restrictions.
7a1c162d0f7a6dbd79d69eb7d65b531d8bf0a0e90cdd05bbee85a87fe6456f3fGentoo Linux Security Advisory GLSA 200502-01 - FireHOL is vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files. Versions below 1.224 are affected.
c5c7b42d8435ba6e8ccee9de45d9d463b10bb3920bb81cbfc5251bdfb5f0dcb4Simple perl script that can be used to track overflows.
8e0e9ec7916d675fec7225824346945763cb053af127a78bfecd094a93b211aeDebian Security Advisory 662-1 - Several vulnerabilities have been discovered in Squirrelmail, a commonly used webmail system. Upstream developers noticed that an unsanitized variable could lead to cross site scripting. Grant Hollingworth discovered that under certain circumstances URL manipulation could lead to the execution of arbitrary code with the privileges of www-data. This problem only exists in version 1.2.6 of Squirrelmail.
2f1b470ff1e1b6b6d1992aa09267ff6a4ccd36243f44f033382e76d37b0a7dffThe newsfetch package version 1.21 uses several insecure sscanf calls to read data out of a 501 byte buffer into a 100 byte buffer.
ce9615a1e335410069ba0ff6c7fd2586de29efc5340197e25eccbbcd305d9df9Secunia Security Advisory - Niels Heinen has reported a vulnerability in Newspost, which can be exploited by malicious people to compromise a user's system.
d610a78fd05a301e53803bc43b1c501bc7ba1f3d79245c8d43403d1d5dcf8b43Ubuntu Security Notice USN-71-1 - John Heasman discovered a local privilege escalation in the PostgreSQL server. Any user could use the LOAD extension to load any shared library into the PostgreSQL server; the library's initialisation function was then executed with the permissions of the server.
f40289e551de253f46b278a135fa5bf52e368985f7348fc3bcd1d3c3f4673038Secunia Security Advisory - A security issue with an unknown impact has been reported in Squid. The problem is caused due to a HTTP protocol mismatch when handling oversized reply headers.
066a0091d1e5f3d4e97c4508e1ce4aa916b67ecd95532f79d7ca7fe545994933Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in Intuity Audix R5, which can be exploited by malicious people to cause a DoS (Denial of Service).
dc997158d474e2f7bbe2fd73aebcffa2b7a026fc5b2f0b8514b9402d00f3f575HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running the TGA daemon, where certain network traffic could be used to create a Denial of Service (DoS). The vulnerability is remotely exploitable. Affected versions: HP-UX B.11.04 with Virtualvault 4.7, 4.6 or 4.5.
a9533c45ec3e7f1a2c3f46aa1d9e04d43f78be51672a06129d6dcb7567f7c8c4Call for papers for the Hack In The Box Security Conference 2005 in Manama, Bahrain from April 10th to the 13th.
3cad34c649b9f1fa030c8ae6b7c7cb4af2aad6f6a66883a561cbddc7fc523b0dRemote exploit for a buffer overflow vulnerability Savant Web Server 3.1 that allows for remote code execution by sending a malformed HTTP request.
879bb95f484a5ae79c71b373fa76693e14558c6f822ed39c731fc778c00110adSecunia Security Advisory - A vulnerability has been reported in AIX, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an unspecified error allowing execution of arbitrary code with root privileges. Successful exploitation requires that the system has been configured as a NIS client. The vulnerability affects AIX 5.3 only.
ed65090a2cb0e9c01e708aaaa0595035ed578b7504c6c2f807eb3e6e929d4338Secunia Security Advisory - Ziv Kamir has reported a vulnerability in Eternal Lines Web Server, which can be exploited by malicious people to cause a DoS (Denial of Service).
c5dcefb75e69730a7fc01748c7034b0b9faab1ac19fffe14c7a04394af49a841
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed