Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:27:09 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1495874926&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0609-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1495874926.1338182829.1338182829.1338182829.1%3B%2B__utmz%3D32867617.1338182829.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/50383/SSRT5973-1.txt http://packetstormsecurity.org/files/50383/SSRT5973-1.txt http://packetstormsecurity.org/files/50383/SSRT5973-1.txt.html Tue, 03 Oct 2006 00:07:06 GMT HPSBUX02152 SSRT5973 rev.1 - HP-UX Kerberos Client Remote Unauthenticated Execution of Arbitrary Code http://packetstormsecurity.org/files/50382/SSRT061235-1.txt http://packetstormsecurity.org/files/50382/SSRT061235-1.txt http://packetstormsecurity.org/files/50382/HP-Security-Bulletin-2006-12.35.html Tue, 03 Oct 2006 00:06:43 GMT HPSBUX02155 SSRT061235 rev.1 HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges http://packetstormsecurity.org/files/50376/wwwthreads-5.4.2.txt http://packetstormsecurity.org/files/50376/wwwthreads-5.4.2.txt http://packetstormsecurity.org/files/50376/wwwthreads-5.4.2.txt.html Mon, 02 Oct 2006 23:57:00 GMT wwwthreads 5.4.2 and prior suffer from multiple cross site scripting vulnerabilities. http://packetstormsecurity.org/files/50374/PhotoStore.txt http://packetstormsecurity.org/files/50374/PhotoStore.txt http://packetstormsecurity.org/files/50374/PhotoStore.txt.html Mon, 02 Oct 2006 23:54:13 GMT PhotoStore suffers from multiple cross site scripting vulnerabilities. http://packetstormsecurity.org/files/50373/Opial-1.0.txt http://packetstormsecurity.org/files/50373/Opial-1.0.txt http://packetstormsecurity.org/files/50373/Opial-1.0.txt.html Mon, 02 Oct 2006 23:52:36 GMT Opial Audio/Video Download Management suffers from cross site scripting in index.php http://packetstormsecurity.org/files/50372/toendaCMS..txt http://packetstormsecurity.org/files/50372/toendaCMS..txt http://packetstormsecurity.org/files/50372/toendaCMS..txt.html Mon, 02 Oct 2006 23:50:51 GMT toendaCMS suffers from a local file inclusion vulnerability. http://packetstormsecurity.org/files/50369/RISE-2006002.txt http://packetstormsecurity.org/files/50369/RISE-2006002.txt http://packetstormsecurity.org/files/50369/RISE-2006002.txt.html Mon, 02 Oct 2006 23:46:36 GMT RISE-2006002: There exists a vulnerability within a architecture dependent function of the FreeBSD kernel (FreeBSD 5.2-RELEASE through FreeBSD 5.5-RELEASE), which when properly exploited can lead to local compromise of the vulnerable system. This vulnerability was fixed in FreeBSD 6.0-RELEASE, but production (legacy) releases 5.2 through 5.5 are still vulnerable. http://packetstormsecurity.org/files/50366/MDKSA-2006-169.txt http://packetstormsecurity.org/files/50366/MDKSA-2006-169.txt http://packetstormsecurity.org/files/50366/Mandriva-Linux-Security-Advisory-2006.169.html Mon, 02 Oct 2006 23:40:01 GMT Mandriva Linux Security Advisory MDKSA-2006:169: A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.7. http://packetstormsecurity.org/files/50365/MDKSA-2006-170.txt http://packetstormsecurity.org/files/50365/MDKSA-2006-170.txt http://packetstormsecurity.org/files/50365/Mandriva-Linux-Security-Advisory-2006.170.html Mon, 02 Oct 2006 23:39:15 GMT Mandriva Linux Security Advisory MDKSA-2006-170: Webmin before 1.296 and Usermin before 1.226 does not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS), read CGI program source code, list directories, and possibly execute programs. http://packetstormsecurity.org/files/50364/SUSE-SA-2006-055.txt http://packetstormsecurity.org/files/50364/SUSE-SA-2006-055.txt http://packetstormsecurity.org/files/50364/SUSE-SA-2006-055.txt.html Mon, 02 Oct 2006 23:36:50 GMT SUSE Security Announcement SUSE-SA:2006:055: If an RSA key with exponent 3 is used it may be possible to forge a PKCS verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature. http://packetstormsecurity.org/files/50363/jevoncms-inc.txt http://packetstormsecurity.org/files/50363/jevoncms-inc.txt http://packetstormsecurity.org/files/50363/jevoncms-inc.txt.html Mon, 02 Oct 2006 23:35:19 GMT jevoncms (.inc) suffers from a path disclosure vulnerability. http://packetstormsecurity.org/files/50362/PLESK7.5-7.6.txt http://packetstormsecurity.org/files/50362/PLESK7.5-7.6.txt http://packetstormsecurity.org/files/50362/PLESK7.5-7.6.txt.html Mon, 02 Oct 2006 23:34:05 GMT Plesk 7.5 and prior and 7.6 for windows suffer from an information disclosure vulnerability in the file manager. http://packetstormsecurity.org/files/50359/MySourceMatrix3.8.txt http://packetstormsecurity.org/files/50359/MySourceMatrix3.8.txt http://packetstormsecurity.org/files/50359/MySourceMatrix3.8.txt.html Mon, 02 Oct 2006 23:24:08 GMT MySource Matrix versions 3.8 and below and MySource 2.x may be used as an unauthorized HTTP proxy. http://packetstormsecurity.org/files/50358/ContentKeeper-123.25.txt http://packetstormsecurity.org/files/50358/ContentKeeper-123.25.txt http://packetstormsecurity.org/files/50358/ContentKeeper-123.25.txt.html Mon, 02 Oct 2006 23:22:01 GMT ContentKeeper 123.25 and below suffers from a design flaw in the user administration interface which reveals account passwords inside the HTML source code. Any authenticated user with appropriate access to the user administration page may use this information to compromise the accounts on other systems. http://packetstormsecurity.org/files/50355/SS28S-WiFi.txt http://packetstormsecurity.org/files/50355/SS28S-WiFi.txt http://packetstormsecurity.org/files/50355/SS28S-WiFi.txt.html Mon, 02 Oct 2006 23:16:43 GMT Zachary McGrew has discovered and reported that the FiWin SS28S WiFi VoIP SIP/Skype Phone with firmware version 01_02_07 has VxWorks Telnet open with a hardcoded user/pass of 1/1. Various debug commands enable viewing SIP credentials, WEP keys, etc. on the phone. http://packetstormsecurity.org/files/50354/Woltlab-2.3.x.txt http://packetstormsecurity.org/files/50354/Woltlab-2.3.x.txt http://packetstormsecurity.org/files/50354/Woltlab-2.3.x.txt.html Mon, 02 Oct 2006 23:15:30 GMT Woltlab Burning Board 2.3.X SQL Injection Vulnerability http://packetstormsecurity.org/files/50353/APPLE-SA-2006-09-21.txt http://packetstormsecurity.org/files/50353/APPLE-SA-2006-09-21.txt http://packetstormsecurity.org/files/50353/Apple-Security-Advisory-2006-09-21.html Mon, 02 Oct 2006 23:14:13 GMT APPLE-SA-2006-09-21 AirPort Update 2006-001 and Security Update 2006-005: The security fixes described below are available in AirPort Update 2006-001 and Security Update 2006-005. AirPort Update 2006-001 contains an additional non-security fix to address a reliability issue that occurs on a limited number of MacBook Pro systems. http://packetstormsecurity.org/files/50346/CAID-34616.txt http://packetstormsecurity.org/files/50346/CAID-34616.txt http://packetstormsecurity.org/files/50346/CA-Security-Advisory-34616.html Mon, 02 Oct 2006 22:59:10 GMT CAID 34616, 34617, 34618: CA eTrust Security Command Center and eTrust Audit vulnerabilities http://packetstormsecurity.org/files/50343/RSAKeonManager.txt http://packetstormsecurity.org/files/50343/RSAKeonManager.txt http://packetstormsecurity.org/files/50343/RSAKeonManager.txt.html Mon, 02 Oct 2006 22:12:56 GMT During the analysis of RSA Keon Certificate Authority Manager, Arhont Ltd consultants have discovered several vulnerabilities in the Log Verification function. A rogue CA (Certificate Authority) administrator or any local administrative user with the access to the CA server could manipulate the secure logging process to disguise his/her activities. Versions 6.6 and 6.5.1 are vulnerable. http://packetstormsecurity.org/files/50342/scip-2555.txt http://packetstormsecurity.org/files/50342/scip-2555.txt http://packetstormsecurity.org/files/50342/scip-2555.txt.html Mon, 02 Oct 2006 22:11:03 GMT scip AG Vulnerability ID 2555 (09/21/2006) Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities http://packetstormsecurity.org/files/50339/commercexss.txt http://packetstormsecurity.org/files/50339/commercexss.txt http://packetstormsecurity.org/files/50339/commercexss.txt.html Mon, 02 Oct 2006 21:53:02 GMT Commerce Bank's website is susceptible to cross site scripting. http://packetstormsecurity.org/files/50327/greekbanks.txt http://packetstormsecurity.org/files/50327/greekbanks.txt http://packetstormsecurity.org/files/50327/greekbanks.txt.html Mon, 02 Oct 2006 21:38:13 GMT Several greek banks suffer from cross site scripting vulnerabilities. http://packetstormsecurity.org/files/50326/SUSE-SA-2006-056.txt http://packetstormsecurity.org/files/50326/SUSE-SA-2006-056.txt http://packetstormsecurity.org/files/50326/SUSE-SA-2006-056.txt.html Wed, 27 Sep 2006 22:22:53 GMT SUSE-SA:2006:056 - The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops. http://packetstormsecurity.org/files/50325/ZDI-06-029.txt http://packetstormsecurity.org/files/50325/ZDI-06-029.txt http://packetstormsecurity.org/files/50325/Zero-Day-Initiative-Advisory-06-029.html Wed, 27 Sep 2006 22:21:01 GMT ZDI-06-029: Ipswitch WS_FTP Server Checksum Command Parsing Buffer Overflow Vulnerabilities http://packetstormsecurity.org/files/50324/rPSA-2006-0170-1.txt http://packetstormsecurity.org/files/50324/rPSA-2006-0170-1.txt http://packetstormsecurity.org/files/50324/rPSA-2006-0170-1.txt.html Wed, 27 Sep 2006 22:14:37 GMT rPath Security Advisory: 2006-0170-1 - Previous versions of the gzip package contain multiple vulnerabilities that enable user-complicit unauthorized access when a user attempts to gunzip intentionally malformed gzip files. Some network services will automatically run the gunzip program in some contexts, which may then enable direct unauthorized access to the user account that provides the network service.