Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 06:16:13 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1334010438&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0803-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1334010438.1338185773.1338185773.1338185773.1%3B%2B__utmz%3D32867617.1338185773.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/65054/03.31.08-1.txt http://packetstormsecurity.org/files/65054/03.31.08-1.txt http://packetstormsecurity.org/files/65054/iDEFENSE-Security-Advisory-2008-03-31.1.html Tue, 01 Apr 2008 02:43:14 GMT iDefense Security Advisory 03.31.08 - Remote exploitation of an untrusted library loading vulnerability in Macrovision's InstallShield InstallScript One-Click Install ActiveX control allows remote attackers to execute code with the privileges of the currently logged in user. iDefense confirmed this vulnerability exists in version 12.0 of the Macrovision InstallShield InstallScript One-Click Install ActiveX Control. Previous versions of the control are reported to be vulnerable to variations of this attack. Previous versions are known to use different CLSIDs. http://packetstormsecurity.org/files/65047/TKADV2008-002.txt http://packetstormsecurity.org/files/65047/TKADV2008-002.txt http://packetstormsecurity.org/files/65047/TKADV2008-002.txt.html Tue, 01 Apr 2008 02:11:49 GMT The kernel driver aavmker4.sys as shipped with avast! version 4.7 contains a vulnerability in the code that handles IOCTL requests. Exploitation of this vulnerability can result in denial of service or arbitrary code execution. http://packetstormsecurity.org/files/65026/sa29545.txt http://packetstormsecurity.org/files/65026/sa29545.txt http://packetstormsecurity.org/files/65026/Secunia-Security-Advisory-29545.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Some security issues with unknown impact have been reported in Mondo Rescue. http://packetstormsecurity.org/files/65037/sa29571.txt http://packetstormsecurity.org/files/65037/sa29571.txt http://packetstormsecurity.org/files/65037/Secunia-Security-Advisory-29571.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - S@BUN has reported a vulnerability in Smoothflash, which can be exploited by malicious people to conduct SQL injection attacks. http://packetstormsecurity.org/files/65034/sa29578.txt http://packetstormsecurity.org/files/65034/sa29578.txt http://packetstormsecurity.org/files/65034/Secunia-Security-Advisory-29578.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Slackware has issued an update for xine-lib. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system. http://packetstormsecurity.org/files/65027/sa29584.txt http://packetstormsecurity.org/files/65027/sa29584.txt http://packetstormsecurity.org/files/65027/Secunia-Security-Advisory-29584.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Amit Klein has reported a vulnerability in PowerDNS Recursor, which can be exploited by malicious people to poison the DNS cache. http://packetstormsecurity.org/files/65031/sa29586.txt http://packetstormsecurity.org/files/65031/sa29586.txt http://packetstormsecurity.org/files/65031/Secunia-Security-Advisory-29586.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - A security issue has been discovered in Nik Sharpener Pro, which potentially can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/65038/sa29590.txt http://packetstormsecurity.org/files/65038/sa29590.txt http://packetstormsecurity.org/files/65038/Secunia-Security-Advisory-29590.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in 2X ThinClientServer, which can be exploited by malicious people to disclose potentially sensitive information. http://packetstormsecurity.org/files/65032/sa29594.txt http://packetstormsecurity.org/files/65032/sa29594.txt http://packetstormsecurity.org/files/65032/Secunia-Security-Advisory-29594.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Slackware has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. http://packetstormsecurity.org/files/65033/sa29596.txt http://packetstormsecurity.org/files/65033/sa29596.txt http://packetstormsecurity.org/files/65033/Secunia-Security-Advisory-29596.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Slackware has issued an update for seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct cross-site scripting and phishing attacks, and potentially compromise a user's system. http://packetstormsecurity.org/files/65028/sa29598.txt http://packetstormsecurity.org/files/65028/sa29598.txt http://packetstormsecurity.org/files/65028/Secunia-Security-Advisory-29598.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Russ McRee has discovered a vulnerability in JV2 Quick Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks. http://packetstormsecurity.org/files/65040/sa29610.txt http://packetstormsecurity.org/files/65040/sa29610.txt http://packetstormsecurity.org/files/65040/Secunia-Security-Advisory-29610.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - A vulnerability with unknown impact has been reported in InspIRCd. http://packetstormsecurity.org/files/65036/sa29612.txt http://packetstormsecurity.org/files/65036/sa29612.txt http://packetstormsecurity.org/files/65036/Secunia-Security-Advisory-29612.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Some vulnerabilities have been discovered in CuteFlow, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting and SQL injection attacks. http://packetstormsecurity.org/files/65029/sa29613.txt http://packetstormsecurity.org/files/65029/sa29613.txt http://packetstormsecurity.org/files/65029/Secunia-Security-Advisory-29613.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Jim Hermann has discovered a vulnerability in phpMyAdmin, which can potentially be exploited by malicious users to disclose sensitive information. http://packetstormsecurity.org/files/65039/sa29614.txt http://packetstormsecurity.org/files/65039/sa29614.txt http://packetstormsecurity.org/files/65039/Secunia-Security-Advisory-29614.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Luigi Auriemma has discovered some vulnerabilities in SLMail Pro, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. http://packetstormsecurity.org/files/65035/sa29617.txt http://packetstormsecurity.org/files/65035/sa29617.txt http://packetstormsecurity.org/files/65035/Secunia-Security-Advisory-29617.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - A vulnerability has been reported in Linux Audit, which potentially can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/65030/sa29619.txt http://packetstormsecurity.org/files/65030/sa29619.txt http://packetstormsecurity.org/files/65030/Secunia-Security-Advisory-29619.html Tue, 01 Apr 2008 00:47:53 GMT Secunia Security Advisory - Fedora has issued an update for Perlbal. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/65022/dsa-1535-1.txt http://packetstormsecurity.org/files/65022/dsa-1535-1.txt http://packetstormsecurity.org/files/65022/Debian-Linux-Security-Advisory-1535-1.html Mon, 31 Mar 2008 20:57:37 GMT Debian Security Advisory 1535-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. http://packetstormsecurity.org/files/65020/dsa-1531-2.txt http://packetstormsecurity.org/files/65020/dsa-1531-2.txt http://packetstormsecurity.org/files/65020/Debian-Linux-Security-Advisory-1531-2.html Mon, 31 Mar 2008 20:55:43 GMT Debian Security Advisory 1531-2 - The previous update for policyd-weight was unfortunately not complete. Chris Howells discovered that policyd-weight, a policy daemon for the Postfix mail transport agent, created its socket in an insecure way, which may be exploited to overwrite or remove arbitrary files from the local system. http://packetstormsecurity.org/files/65012/sa29576.txt http://packetstormsecurity.org/files/65012/sa29576.txt http://packetstormsecurity.org/files/65012/Secunia-Security-Advisory-29576.html Mon, 31 Mar 2008 20:47:11 GMT Secunia Security Advisory - Bernhard R. Link has reported a security issue in rxvt, which can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/65011/sa29577.txt http://packetstormsecurity.org/files/65011/sa29577.txt http://packetstormsecurity.org/files/65011/Secunia-Security-Advisory-29577.html Mon, 31 Mar 2008 20:47:11 GMT Secunia Security Advisory - A security issue has been reported in Eterm, which can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/65010/sa29579.txt http://packetstormsecurity.org/files/65010/sa29579.txt http://packetstormsecurity.org/files/65010/Secunia-Security-Advisory-29579.html Mon, 31 Mar 2008 20:47:11 GMT Secunia Security Advisory - A vulnerability has been reported in PHPkrm, which can be exploited by malicious people to conduct script insertion attacks. http://packetstormsecurity.org/files/65014/sa29599.txt http://packetstormsecurity.org/files/65014/sa29599.txt http://packetstormsecurity.org/files/65014/Secunia-Security-Advisory-29599.html Mon, 31 Mar 2008 20:47:11 GMT Secunia Security Advisory - Russ McRee has discovered a vulnerability in JV2 Folder Gallery, which can be exploited by malicious people to conduct cross-site scripting attacks. http://packetstormsecurity.org/files/65013/sa29620.txt http://packetstormsecurity.org/files/65013/sa29620.txt http://packetstormsecurity.org/files/65013/Secunia-Security-Advisory-29620.html Mon, 31 Mar 2008 20:47:11 GMT Secunia Security Advisory - Secunia Research has discovered a vulnerability in XnView, which can be exploited by malicious people to compromise a user's system. http://packetstormsecurity.org/files/65008/VMSA-2008-0006.txt http://packetstormsecurity.org/files/65008/VMSA-2008-0006.txt http://packetstormsecurity.org/files/65008/VMware-Security-Advisory-2008-0006.html Sat, 29 Mar 2008 19:50:19 GMT VMware Security Advisory - VMware has released an updated libxml2 package that addresses a security issue.