Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:45:47 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2276302639&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0901-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2276302639.1338183947.1338183947.1338183947.1%3B%2B__utmz%3D32867617.1338183947.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) ProCheckUp Security Advisory 2008.23 http://packetstormsecurity.org/files/74501/PR08-23.txt http://packetstormsecurity.org/files/74501/PR08-23.txt http://packetstormsecurity.org/files/74501/ProCheckUp-Security-Advisory-2008.23.html Fri, 30 Jan 2009 22:00:44 GMT Novell GroupWise WebAccess suffers from a cross site scripting vulnerability. Version 7.0.3 is affected. ProCheckUp Security Advisory 2008.22 http://packetstormsecurity.org/files/74500/PR08-22.txt http://packetstormsecurity.org/files/74500/PR08-22.txt http://packetstormsecurity.org/files/74500/ProCheckUp-Security-Advisory-2008.22.html Fri, 30 Jan 2009 21:56:42 GMT Novell GroupWise WebAccess suffers from a cross site scripting vulnerability. Version 7.0.3 is affected. ProCheckUp Security Advisory 2008.21 http://packetstormsecurity.org/files/74499/PR08-21.txt http://packetstormsecurity.org/files/74499/PR08-21.txt http://packetstormsecurity.org/files/74499/ProCheckUp-Security-Advisory-2008.21.html Fri, 30 Jan 2009 21:54:18 GMT Novell GroupWise WebAccess suffers from a cross site request forgery vulnerability. Version 7.0.3 is affected. OpenX Security Advisory - XSS / SQL Injection / Directory Traversal http://packetstormsecurity.org/files/74491/OPENX-SA-2009-001.txt http://packetstormsecurity.org/files/74491/OPENX-SA-2009-001.txt http://packetstormsecurity.org/files/74491/OpenX-Security-Advisory-XSS-SQL-Injection-Directory-Traversal.html Fri, 30 Jan 2009 20:08:00 GMT OpenX versions 2.4.9 and below and versions 2.6.3 and below suffer from cross site scripting, SQL injection, and directory traversal vulnerabilities. Ubuntu Security Notice 716-1 http://packetstormsecurity.org/files/74490/USN-716-1.txt http://packetstormsecurity.org/files/74490/USN-716-1.txt http://packetstormsecurity.org/files/74490/Ubuntu-Security-Notice-716-1.html Fri, 30 Jan 2009 20:01:57 GMT Ubuntu Security Notice USN-716-1 - Fernando Quintero discovered than MoinMoin did not properly sanitize its input when processing login requests, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. Fernando Quintero discovered that MoinMoin did not properly sanitize its input when attaching files, resulting in cross-site scripting vulnerabilities. It was discovered that MoinMoin did not properly sanitize its input when processing user forms, editing pages, relaying error messages, or when attaching files. Ubuntu Security Notice 715-1 http://packetstormsecurity.org/files/74488/USN-715-1.txt http://packetstormsecurity.org/files/74488/USN-715-1.txt http://packetstormsecurity.org/files/74488/Ubuntu-Security-Notice-715-1.html Fri, 30 Jan 2009 19:58:41 GMT Ubuntu Security Notice USN-715-1 - Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. It was discovered that the inotify subsystem contained watch removal race conditions. Dann Frazier discovered that in certain situations sendmsg did not correctly release allocated memory. Helge Deller discovered that PA-RISC stack unwinding was not handled correctly. It was discovered that the ATA subsystem did not correctly set timeouts. It was discovered that the ib700 watchdog timer did not correctly check buffer sizes. Debian Linux Security Advisory 1704-2 http://packetstormsecurity.org/files/74487/dsa-1704-2.txt http://packetstormsecurity.org/files/74487/dsa-1704-2.txt http://packetstormsecurity.org/files/74487/Debian-Linux-Security-Advisory-1704-2.html Fri, 30 Jan 2009 19:56:23 GMT Debian Security Advisory DSA 1704-2 - The update in DSA 1704-1 was incomplete as it missed to escape a few important characters which enabled an attacker to overwrite arbitrary files. Secunia Security Advisory 33704 http://packetstormsecurity.org/files/74518/sa33704.txt http://packetstormsecurity.org/files/74518/sa33704.txt http://packetstormsecurity.org/files/74518/Secunia-Security-Advisory-33704.html Fri, 30 Jan 2009 16:19:04 GMT Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS or to potentially compromise a vulnerable system. Secunia Security Advisory 33769 http://packetstormsecurity.org/files/74517/sa33769.txt http://packetstormsecurity.org/files/74517/sa33769.txt http://packetstormsecurity.org/files/74517/Secunia-Security-Advisory-33769.html Fri, 30 Jan 2009 16:19:01 GMT Secunia Security Advisory - Fedora has issued an update for gedit. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. Secunia Security Advisory 33759 http://packetstormsecurity.org/files/74516/sa33759.txt http://packetstormsecurity.org/files/74516/sa33759.txt http://packetstormsecurity.org/files/74516/Secunia-Security-Advisory-33759.html Fri, 30 Jan 2009 16:18:58 GMT Secunia Security Advisory - A vulnerability has been reported in gedit, which can be exploited by malicious, local users to gain escalated privileges. Secunia Security Advisory 33748 http://packetstormsecurity.org/files/74515/sa33748.txt http://packetstormsecurity.org/files/74515/sa33748.txt http://packetstormsecurity.org/files/74515/Secunia-Security-Advisory-33748.html Fri, 30 Jan 2009 16:18:55 GMT Secunia Security Advisory - Michael Brooks has discovered a vulnerability in Coppermine Photo Gallery, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system. Secunia Security Advisory 33740 http://packetstormsecurity.org/files/74514/sa33740.txt http://packetstormsecurity.org/files/74514/sa33740.txt http://packetstormsecurity.org/files/74514/Secunia-Security-Advisory-33740.html Fri, 30 Jan 2009 16:18:52 GMT Secunia Security Advisory - A vulnerability has been discovered in ManageEngine Firewall Analyzer, which can be exploited by malicious people to conduct cross-site request forgery attacks. Secunia Security Advisory 33755 http://packetstormsecurity.org/files/74513/sa33755.txt http://packetstormsecurity.org/files/74513/sa33755.txt http://packetstormsecurity.org/files/74513/Secunia-Security-Advisory-33755.html Fri, 30 Jan 2009 16:18:49 GMT Secunia Security Advisory - Ubuntu has issued an update for moinmoin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass security restrictions, manipulate certain data, or potentially compromise a vulnerable system. Secunia Security Advisory 33760 http://packetstormsecurity.org/files/74512/sa33760.txt http://packetstormsecurity.org/files/74512/sa33760.txt http://packetstormsecurity.org/files/74512/Secunia-Security-Advisory-33760.html Fri, 30 Jan 2009 16:18:46 GMT Secunia Security Advisory - Fedora has issued an update for glpi. This fixes some vulnerabilities, which can be exploited by malicious users to conduct SQL injection attacks. Secunia Security Advisory 33756 http://packetstormsecurity.org/files/74495/sa33756.txt http://packetstormsecurity.org/files/74495/sa33756.txt http://packetstormsecurity.org/files/74495/Secunia-Security-Advisory-33756.html Fri, 30 Jan 2009 13:48:11 GMT Secunia Security Advisory - Ubuntu has issued an update for linux. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service). Secunia Security Advisory 33765 http://packetstormsecurity.org/files/74494/sa33765.txt http://packetstormsecurity.org/files/74494/sa33765.txt http://packetstormsecurity.org/files/74494/Secunia-Security-Advisory-33765.html Fri, 30 Jan 2009 13:48:09 GMT Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to conduct spoofing attacks. Secunia Security Advisory 33773 http://packetstormsecurity.org/files/74493/sa33773.txt http://packetstormsecurity.org/files/74493/sa33773.txt http://packetstormsecurity.org/files/74493/Secunia-Security-Advisory-33773.html Fri, 30 Jan 2009 13:48:06 GMT Secunia Security Advisory - IBM has acknowledged a security issue in IBM AIX, which can be exploited by malicious, local users to perform certain actions with escalated privileges. Secunia Security Advisory 33739 http://packetstormsecurity.org/files/74477/sa33739.txt http://packetstormsecurity.org/files/74477/sa33739.txt http://packetstormsecurity.org/files/74477/Secunia-Security-Advisory-33739.html Fri, 30 Jan 2009 11:11:49 GMT Secunia Security Advisory - Michael Brooks has discovered some vulnerabilities in Profense Web Application Firewall, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks. Secunia Security Advisory 33729 http://packetstormsecurity.org/files/74476/sa33729.txt http://packetstormsecurity.org/files/74476/sa33729.txt http://packetstormsecurity.org/files/74476/Secunia-Security-Advisory-33729.html Fri, 30 Jan 2009 11:11:46 GMT Secunia Security Advisory - A vulnerability has been reported in WebSphere Application Server, which can potentially be exploited by malicious people to disclose sensitive information. Secunia Security Advisory 33699 http://packetstormsecurity.org/files/74475/sa33699.txt http://packetstormsecurity.org/files/74475/sa33699.txt http://packetstormsecurity.org/files/74475/Secunia-Security-Advisory-33699.html Fri, 30 Jan 2009 11:11:43 GMT Secunia Security Advisory - Debian has issued an update for rt2400, rt2500, and rt2570. This fixes a vulnerability, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system. Secunia Security Advisory 33709 http://packetstormsecurity.org/files/74474/sa33709.txt http://packetstormsecurity.org/files/74474/sa33709.txt http://packetstormsecurity.org/files/74474/Secunia-Security-Advisory-33709.html Fri, 30 Jan 2009 11:11:40 GMT Secunia Security Advisory - Ubuntu has issued an update for openjdk-6. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, cause a DoS (Denial of service), or compromise a vulnerable system. Secunia Security Advisory 33687 http://packetstormsecurity.org/files/74473/sa33687.txt http://packetstormsecurity.org/files/74473/sa33687.txt http://packetstormsecurity.org/files/74473/Secunia-Security-Advisory-33687.html Fri, 30 Jan 2009 11:11:37 GMT Secunia Security Advisory - A security issue has been reported in No-IP Dynamic Update Client, which can be exploited by malicious people to disclose sensitive information. Secunia Security Advisory 33706 http://packetstormsecurity.org/files/74472/sa33706.txt http://packetstormsecurity.org/files/74472/sa33706.txt http://packetstormsecurity.org/files/74472/Secunia-Security-Advisory-33706.html Fri, 30 Jan 2009 11:11:34 GMT Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 33714 http://packetstormsecurity.org/files/74471/sa33714.txt http://packetstormsecurity.org/files/74471/sa33714.txt http://packetstormsecurity.org/files/74471/Secunia-Security-Advisory-33714.html Fri, 30 Jan 2009 11:11:31 GMT Secunia Security Advisory - HP has acknowledged a vulnerability in MPE/iX, which can be exploited by malicious people to poison the DNS cache. Secunia Security Advisory 33713 http://packetstormsecurity.org/files/74470/sa33713.txt http://packetstormsecurity.org/files/74470/sa33713.txt http://packetstormsecurity.org/files/74470/Secunia-Security-Advisory-33713.html Fri, 30 Jan 2009 11:11:28 GMT Secunia Security Advisory - A vulnerability has been reported in HP Select Access, which can be exploited by malicious people to conduct cross-site scripting attacks.