Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:29:35 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2055411197&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1003-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2055411197.1338179375.1338179375.1338179375.1%3B%2B__utmz%3D32867617.1338179375.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/87895/secunia-jdkjresrn.txt http://packetstormsecurity.org/files/87895/secunia-jdkjresrn.txt http://packetstormsecurity.org/files/87895/Sun-Java-JDK-JRE-Soundbank-Resource-Name-Buffer-Overflow.html Thu, 01 Apr 2010 03:47:54 GMT Secunia Research has discovered a vulnerability in Sun Java JDK/JRE, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a sign-extension error when parsing the length of a resource name in a Soundbank file and can be exploited to cause a stack-based buffer overflow. Successful exploitation may allow execution of arbitrary code. Sun Java JDK/JRE 1.6 Update 17 is affected. http://packetstormsecurity.org/files/87894/secunia-jdkjresr.txt http://packetstormsecurity.org/files/87894/secunia-jdkjresr.txt http://packetstormsecurity.org/files/87894/Sun-Java-JDK-JRE-Soundbank-Resource-Parsing-Buffer-Overflow.html Thu, 01 Apr 2010 03:46:21 GMT Secunia Research has discovered a vulnerability in Sun Java JDK/JRE, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a sign-extension error when parsing the length of a resource in a Soundbank file and can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code. Sun Java JDK/JRE 1.6 Update 17 is affected. http://packetstormsecurity.org/files/87893/itunes-escalate.txt http://packetstormsecurity.org/files/87893/itunes-escalate.txt http://packetstormsecurity.org/files/87893/Apple-iTunes-Privilege-Escalation.html Thu, 01 Apr 2010 03:45:04 GMT This paper discusses how an unprivileged local attacker can elevate their privileges during an initial installation or update of iTunes for Windows. This vulnerability was responsibly disclosed to Apple Inc. and this advisory was not released until a fixed build of iTunes was released. http://packetstormsecurity.org/files/87886/dsa-2025-1.txt http://packetstormsecurity.org/files/87886/dsa-2025-1.txt http://packetstormsecurity.org/files/87886/Debian-Linux-Security-Advisory-2025-1.html Thu, 01 Apr 2010 03:25:53 GMT Debian Linux Security Advisory 2025-1 - Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. http://packetstormsecurity.org/files/87885/dsa-2024-1.txt http://packetstormsecurity.org/files/87885/dsa-2024-1.txt http://packetstormsecurity.org/files/87885/Debian-Linux-Security-Advisory-2024-1.html Thu, 01 Apr 2010 03:24:44 GMT Debian Linux Security Advisory 2024-1 - Jamie Strandboge discovered that moin, a python clone of WikiWiki, does not sufficiently sanitize the page name in "Despam" action, allowing remote attackers to perform cross-site scripting (XSS) attacks. http://packetstormsecurity.org/files/87878/CVE-2010-0684.txt http://packetstormsecurity.org/files/87878/CVE-2010-0684.txt http://packetstormsecurity.org/files/87878/Apache-ActiveMQ-Persistent-Cross-Site-Scripting.html Thu, 01 Apr 2010 03:09:49 GMT Remote unauthenticated exploitation of an input validation vulnerability in Apache Software Foundation's ActiveMQ server could allow an attacker to perform a stored or persistent cross-site scripting (XSS) attack. http://packetstormsecurity.org/files/87876/03.30.10-2.txt http://packetstormsecurity.org/files/87876/03.30.10-2.txt http://packetstormsecurity.org/files/87876/iDEFENSE-Security-Advisory-2010-03-30.2.html Thu, 01 Apr 2010 02:49:35 GMT iDefense Security Advisory 03.30.10 - Remote exploitation of a buffer overflow vulnerability in Oracle Corp.'s (formerly Sun Microsystems Inc.) Java Runtime Environment (JRE) could allow an attacker to execute arbitrary code with the privileges of the current user. The JRE is a platform that supports the execution of programs that are developed using the Java programming language. It is available for multiple platforms, including Windows, Linux and MacOS. The JRE platform also supports Java Applets, which can be loaded from Web pages. During the processing of an image file, user-controlled data is trusted and can result in an undersized allocation of a heap buffer. A copy operation into the heap buffer can lead to a heap overflow condition within the JRE. This condition may allow a remote attacker to subvert execution control and execute arbitrary code. http://packetstormsecurity.org/files/87875/TWSL2010-002.txt http://packetstormsecurity.org/files/87875/TWSL2010-002.txt http://packetstormsecurity.org/files/87875/Web-Service-Hijacking-In-VMWare-WebAccess.html Thu, 01 Apr 2010 02:46:38 GMT The Struts-based web application uses the server-side session sattribute "context_vmdirect" to store various settings, including the URL to the XML web service backend. By default, the URL is http://localhost/sdk, but the web service URL can be manually set from a client browser in several locations. If wsUrl is changed to point at an external server, all SOAP calls for that session are sent to the specified server. This includes plaintext authentication credentials. An attacker could exploit this by tricking a user into following a link to /ui/vmDirect.do, with an attacker-controlled server passed in the "view" parameter. http://packetstormsecurity.org/files/87841/TA10-089A.txt http://packetstormsecurity.org/files/87841/TA10-089A.txt http://packetstormsecurity.org/files/87841/Technical-Cyber-Security-Alert-2010-89A.html Wed, 31 Mar 2010 15:52:35 GMT Technical Cyber Security Alert 2010-89A - Microsoft has released out-of-band updates to address critical vulnerabilities in Internet Explorer. http://packetstormsecurity.org/files/87840/03.30.10-1.txt http://packetstormsecurity.org/files/87840/03.30.10-1.txt http://packetstormsecurity.org/files/87840/iDEFENSE-Security-Advisory-2010-03-30.1.html Wed, 31 Mar 2010 15:50:33 GMT iDefense Security Advisory 03.30.10 - Remote exploitation of a use after free vulnerability in Microsoft Corp.'s Internet Explorer could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs when an HTML object with an 'onreadystatechange' event handler is not properly freed. This event is used to perform actions when the state of some HTML object changes; for example, when a form has data input. Specifically, when certain properties of the object are changed, the event handler function object is freed, but a reference to it remains. When the object is later accessed, this invalid memory is treated as an object pointer, and one of its members is used to make an indirect function call. This results in the execution of arbitrary code. http://packetstormsecurity.org/files/87839/HPSBOV02506-SSRT090244.txt http://packetstormsecurity.org/files/87839/HPSBOV02506-SSRT090244.txt http://packetstormsecurity.org/files/87839/HP-Security-Bulletin-HPSBOV02506-SSRT090244.html Wed, 31 Mar 2010 15:49:00 GMT HP Security Bulletin - Multiple security vulnerabilities have been identified with the HP Secure Web Server for OpenVMS (based on Apache) CSWS. The vulnerabilities could be remotely exploited resulting in a Denial of Service (DoS), unauthorized disclosure of information, or unauthorized modification of information. http://packetstormsecurity.org/files/87834/secunia-viewvc.txt http://packetstormsecurity.org/files/87834/secunia-viewvc.txt http://packetstormsecurity.org/files/87834/ViewVC-Regular-Expression-Search-Cross-Site-Scripting.html Wed, 31 Mar 2010 15:42:17 GMT Secunia Research has discovered a vulnerability in ViewVC, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the regular expression search functionality is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Successful exploitation requires that the regular expression search functionality is enabled (disabled by default). http://packetstormsecurity.org/files/87891/sa39223.txt http://packetstormsecurity.org/files/87891/sa39223.txt http://packetstormsecurity.org/files/87891/Secunia-Security-Advisory-39223.html Wed, 31 Mar 2010 07:42:18 GMT Secunia Security Advisory - Two vulnerabilities have been reported in Apache ActiveMQ, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks. http://packetstormsecurity.org/files/87890/sa39227.txt http://packetstormsecurity.org/files/87890/sa39227.txt http://packetstormsecurity.org/files/87890/Secunia-Security-Advisory-39227.html Wed, 31 Mar 2010 07:42:16 GMT Secunia Security Advisory - HP has acknowledged two vulnerabilities in HP Insight Control Suite For Linux, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to bypass certain security restrictions. http://packetstormsecurity.org/files/87889/sa37255.txt http://packetstormsecurity.org/files/87889/sa37255.txt http://packetstormsecurity.org/files/87889/Secunia-Security-Advisory-37255.html Wed, 31 Mar 2010 07:42:13 GMT Secunia Security Advisory - Multiple vulnerabilities have been reported in Sun Java, where some have an unknown impact and others can be exploited by malicious people to manipulate certain data, disclose potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system. http://packetstormsecurity.org/files/87888/sa39222.txt http://packetstormsecurity.org/files/87888/sa39222.txt http://packetstormsecurity.org/files/87888/Secunia-Security-Advisory-39222.html Wed, 31 Mar 2010 07:42:10 GMT Secunia Security Advisory - Avaya has acknowledged a vulnerability in some Avaya products, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system. http://packetstormsecurity.org/files/87887/sa39228.txt http://packetstormsecurity.org/files/87887/sa39228.txt http://packetstormsecurity.org/files/87887/Secunia-Security-Advisory-39228.html Wed, 31 Mar 2010 07:42:08 GMT Secunia Security Advisory - A vulnerability has been reported in HP-UX, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/87866/sa39148.txt http://packetstormsecurity.org/files/87866/sa39148.txt http://packetstormsecurity.org/files/87866/Secunia-Security-Advisory-39148.html Wed, 31 Mar 2010 06:28:06 GMT Secunia Security Advisory - Two vulnerabilities have been discovered in huroncms, which can be exploited by malicious people to conduct SQL injection attacks. http://packetstormsecurity.org/files/87865/sa39188.txt http://packetstormsecurity.org/files/87865/sa39188.txt http://packetstormsecurity.org/files/87865/Secunia-Security-Advisory-39188.html Wed, 31 Mar 2010 06:28:04 GMT Secunia Security Advisory - A vulnerability has been reported in MoinMoin, which can be exploited by malicious people to conduct script insertion attacks. http://packetstormsecurity.org/files/87864/sa39243.txt http://packetstormsecurity.org/files/87864/sa39243.txt http://packetstormsecurity.org/files/87864/Secunia-Security-Advisory-39243.html Wed, 31 Mar 2010 06:28:01 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla SeaMonkey, which can be exploited by malicious people to manipulate certain data, bypass certain security restrictions, and potentially compromise a user's system. http://packetstormsecurity.org/files/87863/sa39136.txt http://packetstormsecurity.org/files/87863/sa39136.txt http://packetstormsecurity.org/files/87863/Secunia-Security-Advisory-39136.html Wed, 31 Mar 2010 06:27:59 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to manipulate certain data, bypass certain security restrictions, and potentially compromise a user's system. http://packetstormsecurity.org/files/87862/sa39190.txt http://packetstormsecurity.org/files/87862/sa39190.txt http://packetstormsecurity.org/files/87862/Secunia-Security-Advisory-39190.html Wed, 31 Mar 2010 06:27:56 GMT Secunia Security Advisory - Debian has issued an update for moin. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks. http://packetstormsecurity.org/files/87861/sa39168.txt http://packetstormsecurity.org/files/87861/sa39168.txt http://packetstormsecurity.org/files/87861/Secunia-Security-Advisory-39168.html Wed, 31 Mar 2010 06:27:54 GMT Secunia Security Advisory - A security issue has been discovered in P30vel Hosting Script, which can be exploited by malicious people to bypass certain security restrictions. http://packetstormsecurity.org/files/87860/sa39240.txt http://packetstormsecurity.org/files/87860/sa39240.txt http://packetstormsecurity.org/files/87860/Secunia-Security-Advisory-39240.html Wed, 31 Mar 2010 06:27:51 GMT Secunia Security Advisory - Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to manipulate certain data, bypass certain security restrictions, and potentially compromise a user's system. http://packetstormsecurity.org/files/87859/sa39230.txt http://packetstormsecurity.org/files/87859/sa39230.txt http://packetstormsecurity.org/files/87859/Secunia-Security-Advisory-39230.html Wed, 31 Mar 2010 06:27:49 GMT Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to cause a DoS (Denial of Service).