Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 06:33:49 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1910085363&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0910-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1910085363.1338186829.1338186829.1338186829.1%3B%2B__utmz%3D32867617.1338186829.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/82383/mrfs-escalate.txt http://packetstormsecurity.org/files/82383/mrfs-escalate.txt http://packetstormsecurity.org/files/82383/My-Remote-File-Server-Privilege-Escalation.html Fri, 30 Oct 2009 20:16:38 GMT My Remote File Server suffers from a local privilege escalation vulnerability. http://packetstormsecurity.org/files/82381/wmp-lfd.txt http://packetstormsecurity.org/files/82381/wmp-lfd.txt http://packetstormsecurity.org/files/82381/Windows-Media-Player-Local-File-Detection.html Fri, 30 Oct 2009 20:13:59 GMT Windows Media Player version 11 suffers from a local file detection vulnerability. http://packetstormsecurity.org/files/82376/joomlajumi-backdoored.txt http://packetstormsecurity.org/files/82376/joomlajumi-backdoored.txt http://packetstormsecurity.org/files/82376/Joomla-Jumi-Is-Backdoored.html Fri, 30 Oct 2009 19:28:35 GMT The Joomla Jumi component is backdoored and apparently sends user passwords to another site. http://packetstormsecurity.org/files/82375/SOS-09-008.txt http://packetstormsecurity.org/files/82375/SOS-09-008.txt http://packetstormsecurity.org/files/82375/SafeNet-SoftRemote-Local-Buffer-Overflow.html Fri, 30 Oct 2009 19:26:40 GMT SafeNet SoftRemote is vulnerable to a local stack based buffer overflow which can lead to the compromise of a vulnerable system. Versions 10.8.5 Build 2 and 10.3.5 Build 6 are verified vulnerable. http://packetstormsecurity.org/files/82374/dsa-1923-1.txt http://packetstormsecurity.org/files/82374/dsa-1923-1.txt http://packetstormsecurity.org/files/82374/Debian-Linux-Security-Advisory-1923-1.html Fri, 30 Oct 2009 19:24:15 GMT Debian Linux Security Advisory 1923-1 - A denial of service vulnerability has been found in libhtml-parser-perl, a collection of modules to parse HTML in text documents which is used by several other projects like e.g. SpamAssassin. http://packetstormsecurity.org/files/82372/1-003.full.txt http://packetstormsecurity.org/files/82372/1-003.full.txt http://packetstormsecurity.org/files/82372/2WIRE-Remote-Denial-Of-Service.html Fri, 30 Oct 2009 19:18:39 GMT The remote management interface on tcp/50001 of various 2WIRE devices suffers from a remote denial of service vulnerability. http://packetstormsecurity.org/files/82349/MDVSA-2009-291.txt http://packetstormsecurity.org/files/82349/MDVSA-2009-291.txt http://packetstormsecurity.org/files/82349/Mandriva-Linux-Security-Advisory-2009-291.html Thu, 29 Oct 2009 22:45:57 GMT Mandriva Linux Security Advisory 2009-291 - Directory traversal vulnerability in the HTTP server in Mort Bay Jetty before 6.1.17, and 7.0.0.M2 and earlier 7.x versions, allows remote attackers to access arbitrary files via directory traversal sequences in the URI. This update fixes this vulnerability. http://packetstormsecurity.org/files/82348/MDVSA-2009-290.txt http://packetstormsecurity.org/files/82348/MDVSA-2009-290.txt http://packetstormsecurity.org/files/82348/Mandriva-Linux-Security-Advisory-2009-290.html Thu, 29 Oct 2009 22:38:20 GMT Mandriva Linux Security Advisory 2009-290 - Security issues were identified and fixed in Firefox 3.0.x. This update provides the latest Mozilla Firefox 3.0.x to correct these issues. Additionally, some packages which require so, have been rebuilt and are being provided as updates. http://packetstormsecurity.org/files/82345/ZDI-09-074.txt http://packetstormsecurity.org/files/82345/ZDI-09-074.txt http://packetstormsecurity.org/files/82345/Zero-Day-Initiative-Advisory-09-074.html Thu, 29 Oct 2009 22:29:35 GMT Zero Day Initiative Advisory 09-074 - This vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of EMC Documentum eRoom, OpenText Hummingbird and OpenText Search Server. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Hummingbird STR service (STRsvc.exe) which listens by default on TCP port 10500. The STRlib.dll module receives network packet data into a static stack buffer. By providing a large enough packet, this buffer can overflow. Exploitation allows remote attackers to execute arbitrary code under the context of the SYSTEM user. http://packetstormsecurity.org/files/82344/sa37175.txt http://packetstormsecurity.org/files/82344/sa37175.txt http://packetstormsecurity.org/files/82344/Secunia-Security-Advisory-37175.html Thu, 29 Oct 2009 13:56:44 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/82343/sa36711.txt http://packetstormsecurity.org/files/82343/sa36711.txt http://packetstormsecurity.org/files/82343/Secunia-Security-Advisory-36711.html Thu, 29 Oct 2009 13:56:42 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, manipulate certain data, or compromise a user's system. http://packetstormsecurity.org/files/82342/sa37173.txt http://packetstormsecurity.org/files/82342/sa37173.txt http://packetstormsecurity.org/files/82342/Secunia-Security-Advisory-37173.html Thu, 29 Oct 2009 13:56:39 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to manipulate certain data or compromise a user's system. http://packetstormsecurity.org/files/82341/sa37143.txt http://packetstormsecurity.org/files/82341/sa37143.txt http://packetstormsecurity.org/files/82341/Secunia-Security-Advisory-37143.html Thu, 29 Oct 2009 13:56:36 GMT Secunia Security Advisory - Two vulnerabilities have been reported in AOL AIM, which can be exploited by malicious people to compromise a user's system. http://packetstormsecurity.org/files/82324/dsa-1922-1.txt http://packetstormsecurity.org/files/82324/dsa-1922-1.txt http://packetstormsecurity.org/files/82324/Debian-Linux-Security-Advisory-1922-1.html Wed, 28 Oct 2009 22:12:32 GMT Debian Linux Security Advisory 1922-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. http://packetstormsecurity.org/files/82320/10.28.09-1.txt http://packetstormsecurity.org/files/82320/10.28.09-1.txt http://packetstormsecurity.org/files/82320/iDEFENSE-Security-Advisory-2009-10-28.1.html Wed, 28 Oct 2009 20:19:27 GMT Remote exploitation of a buffer overflow in the Mozilla Foundation's libpr0n image processing library allows attackers to execute arbitrary code. The libpr0n GIF parser was designed using a state machine which is represented as a series of switch/case statements. One particularly interesting state, 'gif_image_header', is responsible for interpreting a single image/frame description record. A single GIF file may contain many images, each with a different color map associated. The problem lies in the handling of changes to the color map of subsequent images in a multiple-image GIF file. Memory reallocation is not managed correctly and can result in an exploitable heap overflow condition. iDefense confirmed the existence of this vulnerability using Mozilla Firefox versions 3.0.13 and 3.5.2 on 32-bit Windows XP SP3. Other versions, and potentially other applications using libpr0n, are suspected to be vulnerable. http://packetstormsecurity.org/files/82317/operarss-hijack.txt http://packetstormsecurity.org/files/82317/operarss-hijack.txt http://packetstormsecurity.org/files/82317/Opera-RSS-Hijacking.html Wed, 28 Oct 2009 20:12:43 GMT Small write up called Hijacking Opera's Native Page Using Malicious RSS Payloads. http://packetstormsecurity.org/files/82340/sa37187.txt http://packetstormsecurity.org/files/82340/sa37187.txt http://packetstormsecurity.org/files/82340/Secunia-Security-Advisory-37187.html Wed, 28 Oct 2009 16:00:09 GMT Secunia Security Advisory - Red Hat has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/82339/sa37186.txt http://packetstormsecurity.org/files/82339/sa37186.txt http://packetstormsecurity.org/files/82339/Secunia-Security-Advisory-37186.html Wed, 28 Oct 2009 16:00:06 GMT Secunia Security Advisory - A vulnerability has been reported in VMware Server, VMware ESX, and VMware ESXi, which can be exploited by malicious people to disclose sensitive information. http://packetstormsecurity.org/files/82338/sa37177.txt http://packetstormsecurity.org/files/82338/sa37177.txt http://packetstormsecurity.org/files/82338/Secunia-Security-Advisory-37177.html Wed, 28 Oct 2009 16:00:03 GMT Secunia Security Advisory - Red Hat has issued an update for samba. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, and by malicious users to bypass certain security restrictions, disclose sensitive information and cause a DoS (Denial of Service). http://packetstormsecurity.org/files/82337/sa37184.txt http://packetstormsecurity.org/files/82337/sa37184.txt http://packetstormsecurity.org/files/82337/Secunia-Security-Advisory-37184.html Wed, 28 Oct 2009 16:00:00 GMT Secunia Security Advisory - A security issue has been reported in Sun Solaris, which can be exploited by malicious, local users to bypass certain security restrictions. http://packetstormsecurity.org/files/82336/sa37172.txt http://packetstormsecurity.org/files/82336/sa37172.txt http://packetstormsecurity.org/files/82336/Secunia-Security-Advisory-37172.html Wed, 28 Oct 2009 15:59:58 GMT Secunia Security Advisory - A vulnerability has been reported in various VMware products, which can be exploited by malicious, local users in a guest virtual machine to gain escalated privileges. http://packetstormsecurity.org/files/82335/sa37181.txt http://packetstormsecurity.org/files/82335/sa37181.txt http://packetstormsecurity.org/files/82335/Secunia-Security-Advisory-37181.html Wed, 28 Oct 2009 15:59:55 GMT Secunia Security Advisory - Maxim A. Kulakov has discovered a security issue in multiple Rising products, which can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/82334/sa37179.txt http://packetstormsecurity.org/files/82334/sa37179.txt http://packetstormsecurity.org/files/82334/Secunia-Security-Advisory-37179.html Wed, 28 Oct 2009 15:59:53 GMT Secunia Security Advisory - Some weaknesses have been reported in various McAfee products, which can be exploited by malware to bypass the scanning functionality. http://packetstormsecurity.org/files/82298/oCERT-2009-015.txt http://packetstormsecurity.org/files/82298/oCERT-2009-015.txt http://packetstormsecurity.org/files/82298/Open-Source-CERT-Security-Advisory-2009.15.html Wed, 28 Oct 2009 14:31:54 GMT KDE suffers from multiple insufficient validation vulnerabilities that can result in the execution of active content. Versions below 4.3.2 are affected. http://packetstormsecurity.org/files/82294/secunia-mozff.txt http://packetstormsecurity.org/files/82294/secunia-mozff.txt http://packetstormsecurity.org/files/82294/Mozilla-Firefox-Floating-Point-Memory-Allocation.html Wed, 28 Oct 2009 14:29:09 GMT Secunia Research has discovered a vulnerability in Mozilla Firefox, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an array indexing error while allocating space for floating point numbers. This can be exploited to trigger a memory corruption when a specially crafted floating point number is processed. Successful exploitation allows execution of arbitrary code.