Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 6 Feb 2012 07:56:33 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1036834629&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1036834629.1328514993.1328514993.1328514993.1%3B%2B__utmz%3D32867617.1328514993.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/109454/dns-dos.pdf http://packetstormsecurity.org/files/109454/dns-dos.pdf http://packetstormsecurity.org/files/109454/DNS-Service-Oriented-DoS-DDoS-Attacks.html Sun, 05 Feb 2012 04:54:47 GMT Whitepaper called DNS Service Oriented Denial of Service / Distributed Denial of Service Attacks. Written in Turkish. http://packetstormsecurity.org/files/109453/CVE-2012-0003.pdf http://packetstormsecurity.org/files/109453/CVE-2012-0003.pdf http://packetstormsecurity.org/files/109453/Analysis-Of-A-MIDI-Remote-Code-Execution-Vulnerability.html Sun, 05 Feb 2012 04:48:34 GMT This whitepaper analyzes the MIDI remote code execution vulnerability found in the Windows Multimedia Library. Written in Turkish. http://packetstormsecurity.org/files/109450/php540rc6-dos.txt http://packetstormsecurity.org/files/109450/php540rc6-dos.txt http://packetstormsecurity.org/files/109450/PHP-5.4.0RC6-Denial-Of-Service.html Sun, 05 Feb 2012 00:58:03 GMT PHP version 5.4.0RC6 64-bit denial of service proof of concept exploit. http://packetstormsecurity.org/files/109449/edrawdiagram-overflow.txt http://packetstormsecurity.org/files/109449/edrawdiagram-overflow.txt http://packetstormsecurity.org/files/109449/Edraw-Diagram-Component-5-Active-X-Buffer-Overflow.html Sun, 05 Feb 2012 00:56:55 GMT Edraw Diagram Component 5 active-x buffer overflow proof of concept denial of service exploit. http://packetstormsecurity.org/files/109451/Mobile_Based_MiTM_Attack.pdf http://packetstormsecurity.org/files/109451/Mobile_Based_MiTM_Attack.pdf http://packetstormsecurity.org/files/109451/Mobile-Based-MITM-Attack.html Sun, 05 Feb 2012 00:53:31 GMT This is a brief whitepaper discussing how to set up QT Mobile Hotspot and YAMAS applications to man in the middle connections using your phone. http://packetstormsecurity.org/files/109448/objectlabsforum-sql.txt http://packetstormsecurity.org/files/109448/objectlabsforum-sql.txt http://packetstormsecurity.org/files/109448/ObjectLabs-Forum-Systems-SQL-Injection.html Sun, 05 Feb 2012 00:52:49 GMT ObjectLabs Forum System suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109452/conduit-xss.pdf http://packetstormsecurity.org/files/109452/conduit-xss.pdf http://packetstormsecurity.org/files/109452/Conduit-Wibiya-Toolbar-Persistent-Cross-Site-Scripting.html Sun, 05 Feb 2012 00:48:20 GMT Conduit Wibiya Toolbar suffers from a persistent cross site scripting vulnerability. http://packetstormsecurity.org/files/109447/xwiki-xss.txt http://packetstormsecurity.org/files/109447/xwiki-xss.txt http://packetstormsecurity.org/files/109447/XWiki-Enterprise-3.4-Cross-Site-Scripting.html Sun, 05 Feb 2012 00:47:20 GMT XWiki Enterprise version 3.4 suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109446/insidechannel-sql.txt http://packetstormsecurity.org/files/109446/insidechannel-sql.txt http://packetstormsecurity.org/files/109446/InsideChannel-Web-Design-SQL-Injection.html Sun, 05 Feb 2012 00:46:46 GMT InsideChannel Web Design suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109445/vns.zip http://packetstormsecurity.org/files/109445/vns.zip http://packetstormsecurity.org/files/109445/Viper-Network-Sniffer-Script.html Sun, 05 Feb 2012 00:44:22 GMT This is a bash script to use in conjunction with Backtrack that simplifies the spawning of various sniffers. http://packetstormsecurity.org/files/109444/zanjanazad-sql.txt http://packetstormsecurity.org/files/109444/zanjanazad-sql.txt http://packetstormsecurity.org/files/109444/Zanjan-Azad-University-SQL-Injection.html Sun, 05 Feb 2012 00:43:19 GMT Zanjan Azad University suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109443/dsa-2384-2.txt http://packetstormsecurity.org/files/109443/dsa-2384-2.txt http://packetstormsecurity.org/files/109443/Debian-Security-Advisory-2384-2.html Sun, 05 Feb 2012 00:42:20 GMT Debian Linux Security Advisory 2384-2 - It was discovered that the last security update for cacti, DSA-2384-1, introduced a regression in lenny. http://packetstormsecurity.org/files/109427/MDVSA-2012-013.txt http://packetstormsecurity.org/files/109427/MDVSA-2012-013.txt http://packetstormsecurity.org/files/109427/Mandriva-Linux-Security-Advisory-2012-013.html Sat, 04 Feb 2012 00:20:53 GMT Mandriva Linux Security Advisory 2012-013 - Security issues were identified and fixed in mozilla firefox and thunderbird. Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 might allow remote attackers to execute arbitrary code via vectors related to incorrect AttributeChildRemoved notifications that affect access to removed nsDOMAttribute child nodes. Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before 3.1.18 and 5.0 through 6.0, and SeaMonkey before 2.4 do not properly enforce the IPv6 literal address syntax, which allows remote attackers to obtain sensitive information by making XMLHttpRequest calls through a proxy and reading the error messages. Various other issues were also addressed. http://packetstormsecurity.org/files/109426/USN-1355-1.txt http://packetstormsecurity.org/files/109426/USN-1355-1.txt http://packetstormsecurity.org/files/109426/Ubuntu-Security-Notice-USN-1355-1.html Sat, 04 Feb 2012 00:18:57 GMT Ubuntu Security Notice 1355-1 - It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed. http://packetstormsecurity.org/files/109425/USN-1355-2.txt http://packetstormsecurity.org/files/109425/USN-1355-2.txt http://packetstormsecurity.org/files/109425/Ubuntu-Security-Notice-USN-1355-2.html Sat, 04 Feb 2012 00:17:48 GMT Ubuntu Security Notice 1355-2 - USN-1355-1 fixed vulnerabilities in Firefox. This update provides an updated Mozvoikko package for use with the latest Firefox. It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed. http://packetstormsecurity.org/files/109424/USN-1355-3.txt http://packetstormsecurity.org/files/109424/USN-1355-3.txt http://packetstormsecurity.org/files/109424/Ubuntu-Security-Notice-USN-1355-3.html Sat, 04 Feb 2012 00:12:10 GMT Ubuntu Security Notice 1355-3 - USN-1355-1 fixed vulnerabilities in Firefox. This update provides updated ubufox and webfav packages for use with the latest Firefox. It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. Various other issues were also addressed. http://packetstormsecurity.org/files/109418/conduitwlt-xss.txt http://packetstormsecurity.org/files/109418/conduitwlt-xss.txt http://packetstormsecurity.org/files/109418/Conduit-Wibiya-Login-Toolbar-Cross-Site-Scripting.html Sat, 04 Feb 2012 00:08:28 GMT Conduit Wibiya Login Toolbar suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109417/conduitwibiyaprt-xss.txt http://packetstormsecurity.org/files/109417/conduitwibiyaprt-xss.txt http://packetstormsecurity.org/files/109417/Conduit-Wibiya-Password-Recovery-Toolbar-Cross-Site-Scripting.html Sat, 04 Feb 2012 00:07:19 GMT Conduit Wibiya Password Recovery Toolbar suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109416/conduitimagesearch-xss.txt http://packetstormsecurity.org/files/109416/conduitimagesearch-xss.txt http://packetstormsecurity.org/files/109416/Conduit-Image-Search-Engine-Cross-Site-Scripting.html Sat, 04 Feb 2012 00:06:44 GMT Conduit Image Search Engine suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109415/ESA-2012-010.txt http://packetstormsecurity.org/files/109415/ESA-2012-010.txt http://packetstormsecurity.org/files/109415/EMC-Documentum-xPlore-Information-Disclosure.html Sat, 04 Feb 2012 00:04:13 GMT EMC Documentum xPlore contains an information disclosure vulnerability that may allow unauthorized users, under certain circumstances, to see certain information on protected objects in an xPlore search result. They will not, however, be allowed to view the objects themselves, or any associated content. Versions 1.0, 1.1 and 1.2 are affected. http://packetstormsecurity.org/files/109414/simkom-xss.txt http://packetstormsecurity.org/files/109414/simkom-xss.txt http://packetstormsecurity.org/files/109414/Simkom-Cross-Site-Scripting.html Sat, 04 Feb 2012 00:03:42 GMT Simkom suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109413/douglassmedia-sql.txt http://packetstormsecurity.org/files/109413/douglassmedia-sql.txt http://packetstormsecurity.org/files/109413/Douglass-Media-SQL-Injection.html Sat, 04 Feb 2012 00:03:01 GMT Douglass Media suffers from a remote SQL injection vulnerability. http://packetstormsecurity.org/files/109412/anfibia-exec.txt http://packetstormsecurity.org/files/109412/anfibia-exec.txt http://packetstormsecurity.org/files/109412/Anfibia-Remote-Command-Execution.html Sat, 04 Feb 2012 00:02:19 GMT Anfibia suffers from a remote command execution vulnerability. http://packetstormsecurity.org/files/109411/raw-xss.txt http://packetstormsecurity.org/files/109411/raw-xss.txt http://packetstormsecurity.org/files/109411/Raw-CMS-Cross-Site-Scripting.html Sat, 04 Feb 2012 00:00:20 GMT Raw CMS suffers from a cross site scripting vulnerability. http://packetstormsecurity.org/files/109410/phpfusion7-sql.txt http://packetstormsecurity.org/files/109410/phpfusion7-sql.txt http://packetstormsecurity.org/files/109410/PHP-Fusion-7.02.04-SQL-Injection.html Fri, 03 Feb 2012 23:58:58 GMT PHP-Fusion version 7.02.04 suffers from a remote SQL injection vulnerability in weblinks.php.