Files ≈ Packet Storm

Files ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:10:11 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1858908066&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1008-advisories%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1858908066.1338192611.1338192611.1338192611.1%3B%2B__utmz%3D32867617.1338192611.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) Debian Linux Security Advisory 2101-1 http://packetstormsecurity.org/files/93362/dsa-2101-1.txt http://packetstormsecurity.org/files/93362/dsa-2101-1.txt http://packetstormsecurity.org/files/93362/Debian-Linux-Security-Advisory-2101-1.html Tue, 31 Aug 2010 23:55:01 GMT Debian Linux Security Advisory 2101-1 - Several implementation errors in the dissector of the Wireshark network traffic analyzer for the ASN.1 BER protocol and in the SigComp Universal Decompressor Virtual Machine may lead to the execution of arbitrary code. ApPHP Cross Site Request Forgery / Cross Site Scripting http://packetstormsecurity.org/files/93360/apphp-xssxsrf.txt http://packetstormsecurity.org/files/93360/apphp-xssxsrf.txt http://packetstormsecurity.org/files/93360/ApPHP-Cross-Site-Request-Forgery-Cross-Site-Scripting.html Tue, 31 Aug 2010 23:50:07 GMT ApPHP suffers from cross site request forgery and cross site scripting vulnerabilities. HP Security Bulletin HPSBMA02571 SSRT100034 http://packetstormsecurity.org/files/93347/HPSBMA02571-SSRT100034.txt http://packetstormsecurity.org/files/93347/HPSBMA02571-SSRT100034.txt http://packetstormsecurity.org/files/93347/HP-Security-Bulletin-HPSBMA02571-SSRT100034.html Tue, 31 Aug 2010 18:49:21 GMT HP Security Bulletin - A potential security vulnerability has been identified with HP Insight Diagnostics Online Edition running on Linux. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). Tortoise SVN DLL Hijacking http://packetstormsecurity.org/files/93346/tortoisesvn-dllhijack.txt http://packetstormsecurity.org/files/93346/tortoisesvn-dllhijack.txt http://packetstormsecurity.org/files/93346/Tortoise-SVN-DLL-Hijacking.html Tue, 31 Aug 2010 18:48:05 GMT Tortoise SVN version 1.6.10 build 19898 suffers from the Windows DLL hijacking vulnerability. Zero Day Initiative Advisory 10-168 http://packetstormsecurity.org/files/93345/ZDI-10-168.txt http://packetstormsecurity.org/files/93345/ZDI-10-168.txt http://packetstormsecurity.org/files/93345/Zero-Day-Initiative-Advisory-10-168.html Tue, 31 Aug 2010 18:47:29 GMT Zero Day Initiative Advisory 10-168 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the QTPlugin.ocx ActiveX control. The plugin accepts a parameter named _Marshaled_pUnk that it uses as a valid pointer. By specifying invalid values an attacker can force the application to jump to a controlled location in memory. This can be exploited to execute remote code under the context of the user running the web browser. Mandriva Linux Security Advisory 2010-166 http://packetstormsecurity.org/files/93344/MDVSA-2010-166.txt http://packetstormsecurity.org/files/93344/MDVSA-2010-166.txt http://packetstormsecurity.org/files/93344/Mandriva-Linux-Security-Advisory-2010-166.html Tue, 31 Aug 2010 18:47:03 GMT Mandriva Linux Security Advisory 2010-166 - Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; a crafted JPEG file, related to the gdip_load_jpeg_image_internal function in jpegcodec.c; or a crafted BMP file, related to the gdip_read_bmp_image function in bmpcodec.c, leading to heap-based buffer overflows. The updated packages have been patched to correct this issue. Ubuntu Security Notice 981-1 http://packetstormsecurity.org/files/93341/USN-981-1.txt http://packetstormsecurity.org/files/93341/USN-981-1.txt http://packetstormsecurity.org/files/93341/Ubuntu-Security-Notice-981-1.html Tue, 31 Aug 2010 18:40:21 GMT Ubuntu Security Notice 981-1 - It was discovered that libwww-perl incorrectly filtered filenames suggested by Content-Disposition headers. If a user were tricked into downloading a file from a malicious site, a remote attacker could overwrite hidden files in the user's directory. Ubuntu Security Notice 980-1 http://packetstormsecurity.org/files/93339/USN-980-1.txt http://packetstormsecurity.org/files/93339/USN-980-1.txt http://packetstormsecurity.org/files/93339/Ubuntu-Security-Notice-980-1.html Tue, 31 Aug 2010 18:38:55 GMT Ubuntu Security Notice 980-1 - Julius Plenz discovered that bogofilter incorrectly handled certain malformed encodings. By sending a specially crafted email, a remote attacker could exploit this and cause bogofilter to crash, resulting in a denial of service. HP Security Bulletin HPSBUX02552 SSRT100062 http://packetstormsecurity.org/files/93336/HPSBUX02552-SSRT100062.txt http://packetstormsecurity.org/files/93336/HPSBUX02552-SSRT100062.txt http://packetstormsecurity.org/files/93336/HP-Security-Bulletin-HPSBUX02552-SSRT100062.html Tue, 31 Aug 2010 18:32:17 GMT HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Software Distributor (sd). The vulnerability could be exploited locally to grant an increase in privilege, or to permit unauthorized access. Secunia Security Advisory 41243 http://packetstormsecurity.org/files/93357/sa41243.txt http://packetstormsecurity.org/files/93357/sa41243.txt http://packetstormsecurity.org/files/93357/Secunia-Security-Advisory-41243.html Tue, 31 Aug 2010 15:43:25 GMT Secunia Security Advisory - A vulnerability has been discovered in IsoBuster, which can be exploited by malicious people to compromise a user's system. Secunia Security Advisory 41251 http://packetstormsecurity.org/files/93356/sa41251.txt http://packetstormsecurity.org/files/93356/sa41251.txt http://packetstormsecurity.org/files/93356/Secunia-Security-Advisory-41251.html Tue, 31 Aug 2010 15:43:22 GMT Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/ServerConductor/Control Manager, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41209 http://packetstormsecurity.org/files/93355/sa41209.txt http://packetstormsecurity.org/files/93355/sa41209.txt http://packetstormsecurity.org/files/93355/Secunia-Security-Advisory-41209.html Tue, 31 Aug 2010 15:43:19 GMT Secunia Security Advisory - A vulnerability has been discovered in Sophos Free Encryption, which can be exploited by malicious people to compromise a user's system. Secunia Security Advisory 41252 http://packetstormsecurity.org/files/93354/sa41252.txt http://packetstormsecurity.org/files/93354/sa41252.txt http://packetstormsecurity.org/files/93354/Secunia-Security-Advisory-41252.html Tue, 31 Aug 2010 15:43:17 GMT Secunia Security Advisory - A vulnerability has been reported in Hitachi Cosminexus products, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41250 http://packetstormsecurity.org/files/93353/sa41250.txt http://packetstormsecurity.org/files/93353/sa41250.txt http://packetstormsecurity.org/files/93353/Secunia-Security-Advisory-41250.html Tue, 31 Aug 2010 15:43:14 GMT Secunia Security Advisory - A vulnerability has been reported in JP1/Automatic Job Management System, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41248 http://packetstormsecurity.org/files/93352/sa41248.txt http://packetstormsecurity.org/files/93352/sa41248.txt http://packetstormsecurity.org/files/93352/Secunia-Security-Advisory-41248.html Tue, 31 Aug 2010 15:43:12 GMT Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/Integrated Management, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41249 http://packetstormsecurity.org/files/93351/sa41249.txt http://packetstormsecurity.org/files/93351/sa41249.txt http://packetstormsecurity.org/files/93351/Secunia-Security-Advisory-41249.html Tue, 31 Aug 2010 15:43:09 GMT Secunia Security Advisory - A vulnerability has been reported in Hitachi JP1/Performance Management, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41182 http://packetstormsecurity.org/files/93350/sa41182.txt http://packetstormsecurity.org/files/93350/sa41182.txt http://packetstormsecurity.org/files/93350/Secunia-Security-Advisory-41182.html Tue, 31 Aug 2010 15:43:06 GMT Secunia Security Advisory - A vulnerability has been reported in Hitachi Storage Command Suite, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41227 http://packetstormsecurity.org/files/93349/sa41227.txt http://packetstormsecurity.org/files/93349/sa41227.txt http://packetstormsecurity.org/files/93349/Secunia-Security-Advisory-41227.html Tue, 31 Aug 2010 12:58:20 GMT Secunia Security Advisory - A vulnerability has been discovered in UltraISO, which can be exploited by malicious people to compromise a user's system. Secunia Security Advisory 41178 http://packetstormsecurity.org/files/93348/sa41178.txt http://packetstormsecurity.org/files/93348/sa41178.txt http://packetstormsecurity.org/files/93348/Secunia-Security-Advisory-41178.html Tue, 31 Aug 2010 12:58:17 GMT Secunia Security Advisory - A vulnerability has been discovered in SiSoftware Sandra, which can be exploited by malicious people to compromise a user's system. Secunia Security Advisory 41201 http://packetstormsecurity.org/files/93335/sa41201.txt http://packetstormsecurity.org/files/93335/sa41201.txt http://packetstormsecurity.org/files/93335/Secunia-Security-Advisory-41201.html Tue, 31 Aug 2010 10:27:42 GMT Secunia Security Advisory - A vulnerability has been discovered in QtWeb Browser, which can be exploited by malicious people to compromise a user's system. Secunia Security Advisory 41247 http://packetstormsecurity.org/files/93334/sa41247.txt http://packetstormsecurity.org/files/93334/sa41247.txt http://packetstormsecurity.org/files/93334/Secunia-Security-Advisory-41247.html Tue, 31 Aug 2010 10:27:39 GMT Secunia Security Advisory - A vulnerability has been reported in various Hitachi JP1 products, which can be exploited by malicious people to cause a DoS (Denial of Service). Secunia Security Advisory 41186 http://packetstormsecurity.org/files/93333/sa41186.txt http://packetstormsecurity.org/files/93333/sa41186.txt http://packetstormsecurity.org/files/93333/Secunia-Security-Advisory-41186.html Tue, 31 Aug 2010 10:27:37 GMT Secunia Security Advisory - Debian has issued an update for typo3-src. This fixes multiple vulnerabilities and security issues, which can be exploited by malicious users to conduct SQL injection attacks, manipulate certain data, and compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks, HTTP redirect attacks, HTTP response splitting attacks, session fixation attacks, bypass certain security restrictions, and disclose potentially sensitive information. Secunia Security Advisory 41217 http://packetstormsecurity.org/files/93332/sa41217.txt http://packetstormsecurity.org/files/93332/sa41217.txt http://packetstormsecurity.org/files/93332/Secunia-Security-Advisory-41217.html Tue, 31 Aug 2010 10:27:34 GMT Secunia Security Advisory - Slackware has issued an update for php. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise a vulnerable system. Secunia Security Advisory 41185 http://packetstormsecurity.org/files/93331/sa41185.txt http://packetstormsecurity.org/files/93331/sa41185.txt http://packetstormsecurity.org/files/93331/Secunia-Security-Advisory-41185.html Tue, 31 Aug 2010 10:27:32 GMT Secunia Security Advisory - Debian has issued an update for phpmyadmin. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a vulnerable system. Secunia Security Advisory 41194 http://packetstormsecurity.org/files/93330/sa41194.txt http://packetstormsecurity.org/files/93330/sa41194.txt http://packetstormsecurity.org/files/93330/Secunia-Security-Advisory-41194.html Tue, 31 Aug 2010 10:27:29 GMT Secunia Security Advisory - A security issue has been reported in Novell Identity Manager, which can be exploited by malicious, local users to disclose sensitive information.