DoS Files ≈ Packet Storm

Secunia Security Advisory 49293

Sat, 26 May 2012 07:07:12 GMT

Secunia Security Advisory - Ubuntu has issued an update for openssl. This fixes two vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service) of the application using the library.

Ubuntu Security Notice USN-1454-1

Fri, 25 May 2012 21:02:04 GMT

Ubuntu Security Notice 1454-1 - A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service.

ResEdit 1.5.11-win32 Buffer Overflow

Fri, 25 May 2012 20:36:33 GMT

ResEdit version 1.5.11-win32 suffers from a buffer overflow. Proof of concept denial of service exploits included.

Ubuntu Security Notice USN-1453-1

Fri, 25 May 2012 20:08:29 GMT

Ubuntu Security Notice 1453-1 - A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed.

Ubuntu Security Notice USN-1452-1

Fri, 25 May 2012 20:08:16 GMT

Ubuntu Security Notice 1452-1 - A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed.

Ubuntu Security Notice USN-1451-1

Fri, 25 May 2012 19:52:12 GMT

Ubuntu Security Notice 1451-1 - Ivan Nestlerode discovered that the Cryptographic Message Syntax (CMS) and PKCS #7 implementations in OpenSSL returned early if RSA decryption failed. This could allow an attacker to expose sensitive information via a Million Message Attack (MMA). It was discovered that an integer underflow was possible when using TLS 1.1, TLS 1.2, or DTLS with CBC encryption. This could allow a remote attacker to cause a denial of service. Various other issues were also addressed.

Secunia Security Advisory 49255

Fri, 25 May 2012 11:51:56 GMT

Secunia Security Advisory - A vulnerability has been reported in Apache Commons Compress, which can be exploited by malicious people to cause a DoS (Denial of Service) in an application using the library.

Secunia Security Advisory 49286

Fri, 25 May 2012 11:51:53 GMT

Secunia Security Advisory - Apache has acknowledged a vulnerability in Ant, which can be exploited by malicious people to cause a DoS (Denial of Service).

Apache Commons Compress / Apache Ant Denial Of Service

Thu, 24 May 2012 15:24:53 GMT

Apache Commons Compress versions 1.0 through 1.4 and Apache Ant versions 1.5 through 1.8.3 suffer from a denial of service vulnerability. The bzip2 compressing streams in Apache Commons Compress and Apache Ant internally use sorting algorithms with unacceptable worst-case performance on very repetitive inputs. A specially crafted input to Compress' BZip2CompressorOutputStream or Ant's task can be used to make the process spend a very long time while using up all available processing time effectively leading to a denial of service.

EMC AutoStart Multiple Buffer Overflows

Thu, 24 May 2012 15:22:39 GMT

EMC AutoStart contains multiple buffer overflow vulnerabilities which can be exploited to potentially cause a denial of service, or possibly, execute arbitrary code within the context of the affected application. Versions 5.3.x and 5.4.x are affected.

Wireshark DIAMETER Denial Of Service

Thu, 24 May 2012 15:15:55 GMT

Wireshark versions 1.4.0 through 1.4.12 and 1.6.0 through 1.6.7 suffer from a DIAMETER dissector denial of service vulnerability.

Wireshark Dissector Denial Of Service

Thu, 24 May 2012 15:12:32 GMT

Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 suffer from multiple dissector related denial of service vulnerabilities.

Wireshark Misaligned Memory Denial Of Service

Thu, 24 May 2012 14:53:13 GMT

Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 suffer from a misaligned memory denial of service vulnerability.

bsnes 0.87 Denial Of Service

Thu, 24 May 2012 12:12:12 GMT

bsnes version 0.87 suffers from a denial of service vulnerability.

Ubuntu Security Notice USN-1450-1

Thu, 24 May 2012 02:21:13 GMT

Ubuntu Security Notice 1450-1 - It was discovered that Net-SNMP incorrectly performed entry lookups in the extension table. A remote attacker could send a specially crafted request and cause the SNMP server to crash, leading to a denial of service.

Secunia Security Advisory 49191

Thu, 24 May 2012 02:20:28 GMT

Secunia Security Advisory - A vulnerability has been reported in Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

Secunia Security Advisory 49279

Thu, 24 May 2012 02:20:19 GMT

Secunia Security Advisory - Ubuntu has issued an update for net-snmp. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 49226

Wed, 23 May 2012 06:21:02 GMT

Secunia Security Advisory - Mutliple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 49254

Wed, 23 May 2012 06:20:59 GMT

Secunia Security Advisory - A vulnerability has been reported in feedparser, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 49245

Wed, 23 May 2012 06:20:43 GMT

Secunia Security Advisory - A vulnerability has been reported in Citrix XenApp, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 49221

Wed, 23 May 2012 06:20:37 GMT

Secunia Security Advisory - A vulnerability has been reported in Symantec Endpoint Protection, which can be exploited by malicious people to cause a DoS (Denial of Service).

Secunia Security Advisory 49256

Wed, 23 May 2012 06:20:27 GMT

Secunia Security Advisory - Ubuntu has issued an update for feedparser. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Tftpd32 DHCP Serve 4.00 Denial Of Service

Wed, 23 May 2012 02:27:39 GMT

Tftpd32 DHCP server version 4.00 suffers from a denial of service vulnerability.

Ubuntu Security Notice USN-1449-1

Tue, 22 May 2012 20:37:23 GMT

Ubuntu Security Notice 1449-1 - It was discovered that feedparser did not properly sanitize ENTITY declarations in encoded fields. A remote attacker could exploit this to cause a denial of service via memory exhaustion.

Secunia Security Advisory 49184

Tue, 22 May 2012 12:36:48 GMT

Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).