what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 57 RSS Feed

Files Date: 2005-10-18

AutoScan-0.97.3b.tar.gz
Posted Oct 18, 2005
Authored by AutoScan | Site autoscan.free.fr

AutoScan is an application designed to explore and to manage your network. Entire subnets can be scanned simultaneously without human intervention. The objective of the program is to post the list of all equipment connected to the network. A list of ports preset is scanned for each equipment.

tags | tool, scanner
systems | unix
SHA-256 | e54fa60c48c4066b1430dc57dcbbc629f3bce5059cfc23d75006c86a807c0a92
ewdd.pdf
Posted Oct 18, 2005
Authored by Piotr Bania | Site pb.specialised.info

Exploiting Windows Device Drivers - this paper introduces device driver exploitation techniques, provides detailed descriptions of techniques used and includes full exploit code with sample vulnerable driver code for testing purposes.

tags | paper
systems | windows
SHA-256 | b286889865b77044980a2bb8f1907f8f08f978a367c7253d029233b9bc7b2e6d
winrar-3.50-eng.txt
Posted Oct 18, 2005
Authored by edward11

Local exploit for winrar versions less than or equal to 3.50 ENG version.

tags | exploit, local
SHA-256 | 72532d2181fcd53d15f1e8bd9f2d67844fe4b60830d28411c6b8cc7676e69520
ipeyegui.rar
Posted Oct 18, 2005
Authored by Digital Blast Inc. | Site digitalblast.shinranet.com

This is a GUI for the windows TCP portscanning tool ipEye. ipEye GUI comes with a copy of ipEye, and include visual basic 6 source code.

tags | tcp
systems | windows
SHA-256 | c69d3f4736a110468704dae8d908b9cf710651ad7daa097a86b90d9832a2de03
rfakeap-0.1.tar.gz
Posted Oct 18, 2005
Authored by Laurent Butti | Site rfakeap.tuxfamily.org

Raw Fake AP is a program that emulates IEEE 802.11 access points thanks to wireless raw injection. It aims at creating/injecting both beacon and probe response frames in order to emulate valid IEEE 802.11 access points. This program is a basic proof-of-concept code.

tags | tool, wireless
SHA-256 | 9e4755e10859803427684f739877b9269934518fdc21233cc9616a6e38bfee03
e107remote.txt
Posted Oct 18, 2005
Authored by rgod | Site retrogod.altervista.org

e107 content management system versions 0.617, 0.6171, 0.6172 resetcore.php utility SQL Injection, login bypass, remote code execution, and cross site scripting exploit.

tags | exploit, remote, php, code execution, xss, sql injection
SHA-256 | 4ca6f9a0dff81c384f644a6d180792da376a530181b5b35ff06c8f4bc10d5a0b
wagora420_xpl.txt
Posted Oct 18, 2005
Authored by rgod | Site retrogod.altervista.org

W-agora 4.2.0 Remote code execution and cross site scripting poc exploit.

tags | exploit, remote, code execution, xss
SHA-256 | 286eeb0997736e342ccc111a7f9f077f8c4c62c9862a968ebc49cb15f13f614c
usn-210-1.txt
Posted Oct 18, 2005
Authored by Martin Pitt | Site security.ubuntu.com

Ubuntu Security Notice USN-210-1 - A buffer overflow was found in the "pnmtopng" conversion program. By tricking an user (or automated system) to process a specially crafted PNM image with pnmtopng, this could be exploited to execute arbitrary code with the privileges of the user running pnmtopng.

tags | advisory, overflow, arbitrary
systems | linux, ubuntu
SHA-256 | e8c7ce7d86f898ba4ab2ed0d8d231d930fc18255b947d73a0f13e9fe292e29c2
usn-208-1.txt
Posted Oct 18, 2005
Authored by Martin Pitt | Site security.ubuntu.com

Ubuntu Security Notice USN-208-1 - An information disclosure vulnerability has been found in the SSH server. When the GSSAPIAuthentication option was enabled, the SSH server could send GSSAPI credentials even to users who attempted to log in with a method other than GSSAPI. This could inadvertently expose these credentials to an untrusted user.

tags | advisory, info disclosure
systems | linux, ubuntu
advisories | CVE-2005-2798
SHA-256 | b24947e48e021abe6262e9d8879719d4f81e60d88671e9c6d9843103b15efe52
usn-207-1.txt
Posted Oct 18, 2005
Authored by Martin Pitt | Site security.ubuntu.com

Ubuntu Security Notice USN-207-1 - A bug has been found in the handling of the open_basedir directive handling. Contrary to the specification, the value of open_basedir was handled as a prefix instead of a proper directory name even if it was terminated by a slash ('/'). For example, this allowed PHP scripts to access the directory /home/user10 when open_basedir was configured to '/home/user1/'.

tags | advisory, php
systems | linux, ubuntu
advisories | CVE-2005-3054
SHA-256 | c852c01ceef1f4598383b83e3061e4f73f06ed53f1c9dbf279fb79d5d0054245
usn-206-1.txt
Posted Oct 18, 2005
Authored by Martin Pitt | Site security.ubuntu.com

Ubuntu Security Notice USN-206-1 - Ulf Harnhammar discovered a remote vulnerability in Lynx when connecting to a news server (NNTP). The function that added missing escape chararacters to article headers did not check the size of the target buffer. Specially crafted news entries could trigger a buffer overflow, which could be exploited to execute arbitrary code with the privileges of the user running lynx. In order to exploit this, the user is not even required to actively visit a news site with Lynx since a malicious HTML page could automatically redirect to an nntp:// URL with malicious news items.

tags | advisory, remote, overflow, arbitrary
systems | linux, ubuntu
advisories | CVE-2005-3120
SHA-256 | 4b6361b06b6efcaf52522e3904afc75117232a9f7bf5c7fb14936353de5f181d
usn-204-1.txt
Posted Oct 18, 2005
Authored by Martin Pitt | Site security.ubuntu.com

Ubuntu Security Notice USN-204-1 - Yutaka Oiwa discovered a possible cryptographic weakness in OpenSSL applications. Applications using the OpenSSL library can use the SSL_OP_MSIE_SSLV2_RSA_PADDING option (or SSL_OP_ALL, which implies the former) to maintain compatibility with third party products, which is achieved by working around known bugs in them.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2005-2969
SHA-256 | 33d74febe976b92e71fbcce56756131cfefa799708b336adad778a3b248b3a90
Mandriva Linux Security Advisory 2005.186
Posted Oct 18, 2005
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Update Advisory - Ulf Harnhammar discovered a remote buffer overflow in lynx versions 2.8.2 through 2.8.5

tags | advisory, remote, overflow
systems | linux, mandriva
advisories | CVE-2005-3120
SHA-256 | 48154abcdff3ecaa89fc76b7d19a1d5210df7e297fbbe99f9d51d9641259ff78
Mandriva Linux Security Advisory 2005.185
Posted Oct 18, 2005
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Update Advisory - Chris Evans reported a heap based buffer overflow in the RTF importer of KWord. An attacker could provide a specially crafted RTF file, which when opened in KWord can cause execution of arbitrary code

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2005-2971
SHA-256 | 7a3183c390645fecb2cac0f42f9b73b4f054919dbc1eb75ea65cc15ca3e7262d
Mandriva Linux Security Advisory 2005.184
Posted Oct 18, 2005
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Update Advisory - Javier Fern

tags | advisory, arbitrary, local
systems | linux, mandriva
advisories | CVE-2005-2960
SHA-256 | a472be172d6fc469059b32dbc8d04e92cd576537b8caa4a88e1e5ba9d613c3d2
Gentoo Linux Security Advisory 200510-16
Posted Oct 18, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200510-16 - Maksymilian Arciemowicz reported that in libraries/grab_globals.lib.php, the $__redirect parameter was not correctly validated. Systems running PHP in safe mode are not affected. Versions less than 2.6.4_p2 are affected.

tags | advisory, php
systems | linux, gentoo
SHA-256 | 66a323473db99d345d87b5284f3d354bfe715d7716a78173566caa395b50ba98
Gentoo Linux Security Advisory 200510-15
Posted Oct 18, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200510-15 - When accessing a NNTP URL, Lynx connects to a NNTP server and retrieves information about the available articles in the target newsgroup. Ulf Harnhammar discovered a buffer overflow in a function that handles the escaping of special characters. Versions less than 2.8.5-r1 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2005-3120
SHA-256 | 96ff7abb18de7be6479057dae7e292abc783d595f4362e1a32011d9530ef2b88
Gentoo Linux Security Advisory 200510-14
Posted Oct 18, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200510-14 - Some packages may introduce insecure paths into the list of directories that are searched for libraries at runtime. Furthermore, packages depending on the MakeMaker Perl module for build configuration may have incorrectly copied the LD_RUN_PATH into the DT_RPATH. Versions less than 5.8.7-r1 are affected.

tags | advisory, perl
systems | linux, gentoo
SHA-256 | a9bd91ef80d18ad1875134941d9177edbe0235c6471cf08fa37570a4c01e027f
Gentoo Linux Security Advisory 200510-13
Posted Oct 18, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200510-13 - It was reported that due to an oversight all SPE's files are set as world-writeable. Versions less than 0.7.5c-r1 are affected.

tags | advisory
systems | linux, gentoo
SHA-256 | 02ffcdffe15e546465f149a2aec88a549b0b029876a1b4601146fa7b8e56da06
Gentoo Linux Security Advisory 200510-12
Posted Oct 18, 2005
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200510-12 - Chris Evans discovered that the KWord RTF importer was vulnerable to a heap-based buffer overflow. Versions less than 1.4.1-r1 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2005-2971
SHA-256 | 43aa5977d57f188c2ea992007cfc6328fca1d1164de0d60cb67f9293f0e5bb14
Secunia Security Advisory 17031
Posted Oct 18, 2005
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in DB2, which potentially can be exploited by malicious users to cause a DoS (Denial of Service) or to bypass certain security restrictions.

tags | advisory, denial of service, vulnerability
SHA-256 | 142d91e59ee787316e326b5b4a00787ff244ae1db6dfd9e87c0bd66980d53470
Secunia Security Advisory 17176
Posted Oct 18, 2005
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in OpenWBEM, which potentially can be exploited by malicious people to compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | f1f204798e59aad92531350143ffdbabd250b84f3d5b949e506145124f18f5a1
Secunia Security Advisory 17201
Posted Oct 18, 2005
Authored by Secunia | Site secunia.com

Secunia Security Advisory - rgod has discovered some vulnerabilities in W-Agora, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | 6a4d66d6c0584dd08f99bbbc0dbeeb1c74d5ec3908aed50fbabda96fc9163eeb
Secunia Security Advisory 17204
Posted Oct 18, 2005
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Seth Fogie has reported a security issue in iTunes, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | ee9fe3b91babcf212ea0fd270c17e7a05fdb62c1b3005b2d723e25205fabfa17
Secunia Security Advisory 17205
Posted Oct 18, 2005
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Gallery, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
SHA-256 | 4997bdc71277a9b662beb55030265659e9f16c479165438c9a7347ec3324a9a0
Page 1 of 3
Back123Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    0 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close