Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:09:15 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1218822111&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Fadvisories%2Fcert%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1218822111.1338178155.1338178155.1338178155.1%3B%2B__utmz%3D32867617.1338178155.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/31375/CA-2003-14.mswin.txt http://packetstormsecurity.org/files/31375/CA-2003-14.mswin.txt http://packetstormsecurity.org/files/31375/CA-2003-14.mswin.txt.html Thu, 17 Jul 2003 23:54:32 GMT CERT Advisory CA-2003-14 - A buffer overflow vulnerability exists in a shared HTML conversion library included in Microsoft Windows. An attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service. http://packetstormsecurity.org/files/31029/CA-2003-13.snort http://packetstormsecurity.org/files/31029/CA-2003-13.snort http://packetstormsecurity.org/files/31029/CA-2003-13.snort.html Fri, 18 Apr 2003 08:06:53 GMT CERT Advisory CA-2003-13 - Two remote vulnerabilities in the Snort IDS, versions 1.8 through 2.0 RC allow remote execution of code as root. It is not necessary for the attacker to know the IP address of the Snort device they wish to attack; merely sending malicious traffic where it can be observed by an affected Snort sensor is sufficient to exploit these vulnerabilities. Fix available here. http://packetstormsecurity.org/files/30946/CA-2003-12.sendmail http://packetstormsecurity.org/files/30946/CA-2003-12.sendmail http://packetstormsecurity.org/files/30946/CA-2003-12.sendmail.html Tue, 01 Apr 2003 05:51:51 GMT CERT Advisory CA-2003-12 - A remote stack overflow in Sendmail 8.12.8 and below was discovered by Michal Zalewski which allows remote code execution as root. This bug is in the prescan code and is different than the recent sendmail bug described in CA-2003-07. Patch available here. http://packetstormsecurity.org/files/30930/CA-2003-11.lotus.domino http://packetstormsecurity.org/files/30930/CA-2003-11.lotus.domino http://packetstormsecurity.org/files/30930/CA-2003-11.lotus.domino.html Thu, 27 Mar 2003 08:29:44 GMT CERT Advisory CA-2003-11 - Multiple vulnerabilities have been reported to affect Lotus Notes clients and Domino servers v5.0.12 through 6.0.1 including six exploitable buffer overflows. TCP port 1352 is a likely conduit for attack, however Lotus Notes often listens to Netbios, SPX, or XPC ports. http://packetstormsecurity.org/files/30927/CA-2003-10.rpcxdr http://packetstormsecurity.org/files/30927/CA-2003-10.rpcxdr http://packetstormsecurity.org/files/30927/CA-2003-10.rpcxdr.html Tue, 25 Mar 2003 04:47:53 GMT CERT Advisory CA-2003-10 - A buffer overflow vulnerability in SunRPC-derived XDR libraries causes several applications which use the rpcbind service to allow execution of arbitrary code or disclosure of sensitive information. In addition, intruders may be able to crash the MIT KRB5 kadmind or cause it to leak sensitive information, such as secret keys. Vulnerable code includes GNU Glibc 2.3.1 and below, Solaris 2.6, 7, 8 and 9, AIX 4.3.3 through 5.2.0, and MIT Kerberos vulnerabilities. http://packetstormsecurity.org/files/30923/CA-2003-09.iis-webdav http://packetstormsecurity.org/files/30923/CA-2003-09.iis-webdav http://packetstormsecurity.org/files/30923/CA-2003-09.iis-webdav.html Tue, 18 Mar 2003 13:39:13 GMT CERT Advisory CA-2003-09 - A buffer overflow vulnerability exists in Microsoft IIS 5.0 running on Microsoft Windows 2000. An overflow in ntdll.dll of WebDAV allows remote users to execute code in the local system context. See also ms03-007. http://packetstormsecurity.org/files/30922/CA-2003-08.winshares http://packetstormsecurity.org/files/30922/CA-2003-08.winshares http://packetstormsecurity.org/files/30922/CA-2003-08.winshares.html Tue, 18 Mar 2003 13:36:16 GMT CERT Advisory CA-2003-08 - There is increased activity targeting Windows shares over ports 137, 138, 139, and 445. http://packetstormsecurity.org/files/30866/CA-2003-07.sendmail http://packetstormsecurity.org/files/30866/CA-2003-07.sendmail http://packetstormsecurity.org/files/30866/CA-2003-07.sendmail.html Tue, 04 Mar 2003 05:06:00 GMT CERT Advisory CA-2003-07 - Sendmail prior to 8.12.8 has a remote root vulnerability which can be exploited by a malicious mail message, allowing non-vulnerable MTA's to relay the exploit message to unpatched MTA's on an internal network. A successful attack against an unpatched sendmail system will not leave any messages in the logs. All Sendmail Pro, Sendmail Switch, and Sendmail for NT are also vulnerable. Fix available here. http://packetstormsecurity.org/files/30838/CA-2003-06.sip http://packetstormsecurity.org/files/30838/CA-2003-06.sip http://packetstormsecurity.org/files/30838/CA-2003-06.sip.html Fri, 21 Feb 2003 17:04:53 GMT CERT Advisory CA-2003-06 - Numerous vulnerabilities have been reported in multiple vendor implementations of the Session Initiation Protocol, or SIP, which may allow an attacker to gain unauthorized privileged access, cause denial-of-service attacks, or cause unstable system behavior. http://packetstormsecurity.org/files/30837/CA-2003-05.oracle http://packetstormsecurity.org/files/30837/CA-2003-05.oracle http://packetstormsecurity.org/files/30837/CA-2003-05.oracle.html Thu, 20 Feb 2003 09:20:39 GMT CERT Advisory CA-2003-05 - Systems running Oracle8 Database v 8.0.6, 8.1.7, Oracle9i Database (Release 1 and 2), and Oracle9i Application Server (Release 9.0.2 and 9.0.3) contain multiple remote vulnerabilities which can lead to the execution of arbitrary code, allow users to modify database records, or cause a denial of service, breaking the database. http://packetstormsecurity.org/files/30753/CA-2003-04.mssql.worm http://packetstormsecurity.org/files/30753/CA-2003-04.mssql.worm http://packetstormsecurity.org/files/30753/CA-2003-04.mssql.worm.html Sun, 26 Jan 2003 18:38:07 GMT CERT Advisory CA-2003-04 - A quickly spreading Microsoft SQL worm exploits two vulnerabilities in Microsoft SQL Server 2000 over udp port 1434. http://packetstormsecurity.org/files/30746/CA-2003-03.windows.locator http://packetstormsecurity.org/files/30746/CA-2003-03.windows.locator http://packetstormsecurity.org/files/30746/CA-2003-03.windows.locator.html Fri, 24 Jan 2003 07:07:05 GMT CERT Advisory CA-2003-03 - Windows NT, 2000, and XP contains a buffer overflow in the Windows Locator service that allows remote attackers to execute arbitrary code via the netbios ports. More information available ms03-001. http://packetstormsecurity.org/files/30743/CA-2003-02.cvs http://packetstormsecurity.org/files/30743/CA-2003-02.cvs http://packetstormsecurity.org/files/30743/CA-2003-02.cvs.html Thu, 23 Jan 2003 08:25:39 GMT CERT Advisory CA-2003-02 - Systems running CVS Home project versions of CVS prior to 1.11.5 allow non-authenticated remote attackers with read only access to execute arbitrary code. Vendor status information available here. http://packetstormsecurity.org/files/30735/CA-2003-01.dhcpd http://packetstormsecurity.org/files/30735/CA-2003-01.dhcpd http://packetstormsecurity.org/files/30735/CA-2003-01.dhcpd.html Fri, 17 Jan 2003 08:24:05 GMT CERT Advisory CA-2003-01 - There are multiple stack-based buffer overflows in ISC DHCP that are exploitable by sending a DHCP message containing a large hostname value allowing remote attackers to execute code with the privileges of the user running dhcpd. http://packetstormsecurity.org/files/30626/CA-2002-37.windows.shell http://packetstormsecurity.org/files/30626/CA-2002-37.windows.shell http://packetstormsecurity.org/files/30626/CA-2002-37.windows.shell.html Sat, 21 Dec 2002 10:28:18 GMT CERT Advisory CA-2002-37 - A buffer overflow vulnerability in the Microsoft Windows Shell allows remote attackers to execute arbitrary code via malicious email message, malicious web page, or browsing through a folder containing a malicious .MP3 or .WMA file. More information available here. http://packetstormsecurity.org/files/30625/CA-2002-36.ssh http://packetstormsecurity.org/files/30625/CA-2002-36.ssh http://packetstormsecurity.org/files/30625/CA-2002-36.ssh.html Sat, 21 Dec 2002 10:23:09 GMT CERT Advisory CA-2002-36 - Multiple vendors' implementations of the secure shell (SSH) transport layer protocol contain vulnerabilities that could allow a remote attacker to execute arbitrary code with the privileges of the SSH process or cause a denial of service. The vulnerabilities affect SSH clients and servers, and they occur before user authentication takes place. OpenSSH is not vulnerable. More information available here. http://packetstormsecurity.org/files/30587/CA-2002-35.raq4 http://packetstormsecurity.org/files/30587/CA-2002-35.raq4 http://packetstormsecurity.org/files/30587/CA-2002-35.raq4.html Thu, 12 Dec 2002 15:49:28 GMT CERT Advisory CA-2002-35 - Cobalt Raq4 systems with the Security Hardening Package installed allow remote attackers to execute code as root because overflow.cgi does not adequately filter input destined for the email variable. http://packetstormsecurity.org/files/30532/CS-2002-04 http://packetstormsecurity.org/files/30532/CS-2002-04 http://packetstormsecurity.org/files/30532/CS-2002-04.html Sat, 30 Nov 2002 11:13:52 GMT CERT Quarterly Summary CS-2002-04 - Popular vulnerabilities being exploited by attackers these days include an Apache/mod_ssl worm, OpenSSL bugs, Trojan horse sendmail, libpcap, and tcpdump, multiple BIND bugs, and a heap overflow in Microsoft MDAC. http://packetstormsecurity.org/files/30531/CA-2002-34.xfs http://packetstormsecurity.org/files/30531/CA-2002-34.xfs http://packetstormsecurity.org/files/30531/CA-2002-34.xfs.html Sat, 30 Nov 2002 11:08:28 GMT CERT Advisory CA-2002-34 - The Solaris X Window Font Service (XFS) daemon (fs.auto) on Solaris 2.5.1 - 9 contains a remotely exploitable user nobody buffer overflow on Sparc and X86. More information available here. http://packetstormsecurity.org/files/30514/CA-2002-33.MDAC http://packetstormsecurity.org/files/30514/CA-2002-33.MDAC http://packetstormsecurity.org/files/30514/CA-2002-33.MDAC.html Sun, 24 Nov 2002 01:18:56 GMT CERT Advisory CA-2002-33 - Heap Overflow Vulnerability in Microsoft Data. A routine in the RDS component, specifically the RDS Data Stub function, contains an unchecked buffer. The RDS Data Stub function's purpose is to parse incoming HTTP requests and generate RDS commands. This unchecked buffer could be exploited to cause a heap overflow. http://packetstormsecurity.org/files/30513/CA-2002-32.alcatel http://packetstormsecurity.org/files/30513/CA-2002-32.alcatel http://packetstormsecurity.org/files/30513/CA-2002-32.alcatel.html Sun, 24 Nov 2002 01:16:00 GMT CERT Advisory CA-2002-32 - Backdoor in Alcatel OmniSwitch 7700 and 7800 AOS version 5.1.1. A telnet server listens on TCP port number 6778, a backdoor that was originally used during development to access the Wind River Vx-Works operating system. Due to an oversight, this access was not removed prior to product release. http://packetstormsecurity.org/files/30018/CA-2002-31.bind http://packetstormsecurity.org/files/30018/CA-2002-31.bind http://packetstormsecurity.org/files/30018/CA-2002-31.bind.html Fri, 15 Nov 2002 08:21:15 GMT CERT Advisory CA-2002-31 - BIND 8 has vulnerabilities that may allow remote attackers to execute arbitrary code with the privileges of the user running named which is usually root, or with the privileges of vulnerable client applications. The other vulnerabilities will allow remote attackers to disrupt the normal operation of DNS name service running on victim servers. http://packetstormsecurity.org/files/30014/CA-2002-30.trojan http://packetstormsecurity.org/files/30014/CA-2002-30.trojan http://packetstormsecurity.org/files/30014/CA-2002-30.trojan.html Fri, 15 Nov 2002 08:02:19 GMT CERT Advisory CA-2002-30 - Released source code distributions of the libpcap and tcpdump packages were modified by an intruder and contain a trojan horse which, upon compile time, remote grabs a file from a fixed IP address which it then compiles and runs. The binary then goes to a fixed IP address and gets a one character response which enables the remote machine to trigger the spawning of a shell to the remote machine. The backdoor also explicitly ignores all traffic on port 1963. http://packetstormsecurity.org/files/29949/CA-2002-29.kerberos http://packetstormsecurity.org/files/29949/CA-2002-29.kerberos http://packetstormsecurity.org/files/29949/CA-2002-29.kerberos.html Wed, 30 Oct 2002 07:56:09 GMT CERT Advisory CA-2002-29 - Multiple Kerberos distributions contain a remotely exploitable buffer overflow in the Kerberos administration daemon. A remote attacker could exploit this vulnerability to gain root privileges. http://packetstormsecurity.org/files/29836/CA-2002-28.sendmail http://packetstormsecurity.org/files/29836/CA-2002-28.sendmail http://packetstormsecurity.org/files/29836/CA-2002-28.sendmail.html Thu, 10 Oct 2002 00:21:03 GMT CERT Advisory CA-2002-28 - Sendmail 8.12.6 was backdoored on September 28, 2002 to include a trojan which executes commands via outbound port 6667 connections.