Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:58:41 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2250794375&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Local%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Flocal%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2250794375.1338191921.1338191921.1338191921.1%3B%2B__utmz%3D32867617.1338191921.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/113050/symantecwg-lfi.txt http://packetstormsecurity.org/files/113050/symantecwg-lfi.txt http://packetstormsecurity.org/files/113050/Symantec-Web-Gateway-5.0.2-Local-File-Inclusion.html Sat, 26 May 2012 15:04:17 GMT Symantec Web Gateway version 5.0.2 remote local file inclusion root exploit. http://packetstormsecurity.org/files/113049/USN-1454-1.txt http://packetstormsecurity.org/files/113049/USN-1454-1.txt http://packetstormsecurity.org/files/113049/Ubuntu-Security-Notice-USN-1454-1.html Fri, 25 May 2012 21:02:04 GMT Ubuntu Security Notice 1454-1 - A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. http://packetstormsecurity.org/files/113036/pligg121-lfixss.txt http://packetstormsecurity.org/files/113036/pligg121-lfixss.txt http://packetstormsecurity.org/files/113036/Pligg-CMS-1.2.1-Cross-Site-Scripting-Local-File-Inclusion.html Fri, 25 May 2012 20:24:38 GMT Pligg CMS version 1.2.1 suffers from cross site scripting and local file inclusion vulnerabilities. http://packetstormsecurity.org/files/113034/USN-1453-1.txt http://packetstormsecurity.org/files/113034/USN-1453-1.txt http://packetstormsecurity.org/files/113034/Ubuntu-Security-Notice-USN-1453-1.html Fri, 25 May 2012 20:08:29 GMT Ubuntu Security Notice 1453-1 - A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed. http://packetstormsecurity.org/files/113033/USN-1452-1.txt http://packetstormsecurity.org/files/113033/USN-1452-1.txt http://packetstormsecurity.org/files/113033/Ubuntu-Security-Notice-USN-1452-1.html Fri, 25 May 2012 20:08:16 GMT Ubuntu Security Notice 1452-1 - A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed. http://packetstormsecurity.org/files/113019/sa49191.txt http://packetstormsecurity.org/files/113019/sa49191.txt http://packetstormsecurity.org/files/113019/Secunia-Security-Advisory-49191.html Thu, 24 May 2012 02:20:28 GMT Secunia Security Advisory - A vulnerability has been reported in Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112998/ydframework-disclose.txt http://packetstormsecurity.org/files/112998/ydframework-disclose.txt http://packetstormsecurity.org/files/112998/YDFramework-2.0-Beta1-File-Disclosure.html Wed, 23 May 2012 15:22:22 GMT YDFramework version 2.0-Beta1 suffers from a local file disclosure vulnerability. http://packetstormsecurity.org/files/113004/symantecendpoint-exec.txt http://packetstormsecurity.org/files/113004/symantecendpoint-exec.txt http://packetstormsecurity.org/files/113004/Symantec-End-Point-Protection-Network-Access-Control-11.x-Code-Execution.html Wed, 23 May 2012 13:33:33 GMT Symantec End Point Protection version 11.x and Symantec Network Access Control version 11.x local code execution proof of concept exploit. http://packetstormsecurity.org/files/113000/sa49200.txt http://packetstormsecurity.org/files/113000/sa49200.txt http://packetstormsecurity.org/files/113000/Secunia-Security-Advisory-49200.html Wed, 23 May 2012 06:39:56 GMT Secunia Security Advisory - Dmitry Oleksiuk has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to potentially gain escalated privileges. http://packetstormsecurity.org/files/112980/sa49247.txt http://packetstormsecurity.org/files/112980/sa49247.txt http://packetstormsecurity.org/files/112980/Secunia-Security-Advisory-49247.html Wed, 23 May 2012 06:20:53 GMT Secunia Security Advisory - A security issue has been reported in mod_auth_openid, which can be exploited by malicious, local users to disclose sensitive information. http://packetstormsecurity.org/files/112970/ajamintgallery-lfi.txt http://packetstormsecurity.org/files/112970/ajamintgallery-lfi.txt http://packetstormsecurity.org/files/112970/Ajaxmint-Gallery-1.0-Local-File-Inclusion.html Wed, 23 May 2012 02:52:42 GMT Ajaxmint Gallery version 1.0 suffers from a local file inclusion vulnerability. http://packetstormsecurity.org/files/112955/sa49184.txt http://packetstormsecurity.org/files/112955/sa49184.txt http://packetstormsecurity.org/files/112955/Secunia-Security-Advisory-49184.html Tue, 22 May 2012 12:36:48 GMT Secunia Security Advisory - A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112952/sa49270.txt http://packetstormsecurity.org/files/112952/sa49270.txt http://packetstormsecurity.org/files/112952/Secunia-Security-Advisory-49270.html Tue, 22 May 2012 12:36:39 GMT Secunia Security Advisory - Red Hat has issued an update for JBoss Enterprise Web Server. This fixes multiple weakness, two security issues, and multiple vulnerabilities, which can be exploited by malicious, local users and malicious people to disclose sensitive information, bypass certain security restrictions, or cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112950/MDVSA-2012-079.txt http://packetstormsecurity.org/files/112950/MDVSA-2012-079.txt http://packetstormsecurity.org/files/112950/Mandriva-Linux-Security-Advisory-2012-079.html Tue, 22 May 2012 03:54:01 GMT Mandriva Linux Security Advisory 2012-079 - A flaw exists in the IP network matching code in sudo versions 1.6.9p3 through 1.8.4p4 that may result in the local host being matched even though it is not actually part of the network described by the IP address and associated netmask listed in the sudoers file or in LDAP. As a result, users authorized to run commands on certain IP networks may be able to run commands on hosts that belong to other networks not explicitly listed in sudoers. The updated packages have been patched to correct this issue. http://packetstormsecurity.org/files/112911/USN-1448-1.txt http://packetstormsecurity.org/files/112911/USN-1448-1.txt http://packetstormsecurity.org/files/112911/Ubuntu-Security-Notice-USN-1448-1.html Tue, 22 May 2012 00:25:24 GMT Ubuntu Security Notice 1448-1 - A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed. http://packetstormsecurity.org/files/112929/sa49262.txt http://packetstormsecurity.org/files/112929/sa49262.txt http://packetstormsecurity.org/files/112929/Secunia-Security-Advisory-49262.html Mon, 21 May 2012 05:56:32 GMT Secunia Security Advisory - OpenVZ has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112894/sa49187.txt http://packetstormsecurity.org/files/112894/sa49187.txt http://packetstormsecurity.org/files/112894/Secunia-Security-Advisory-49187.html Mon, 21 May 2012 04:17:49 GMT Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service). http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/QuarksPwDump_v0.1b.rar http://packetstormsecurity.org/files/112926/Quarks-PwDump-0.1b.html Sun, 20 May 2012 18:11:11 GMT Quarks PwDump is a native Win32 tool to extract credentials from Windows operating systems. It currently extracts local accounts NT/LM hashes and history, domain accounts NT/LM hashes and history, cached domain password, and Bitlocker recovery information. http://packetstormsecurity.org/files/112913/vertrigoserv-escalate.txt http://packetstormsecurity.org/files/112913/vertrigoserv-escalate.txt http://packetstormsecurity.org/files/112913/Vertrigoserv-2.27-Privilege-Escalation.html Sat, 19 May 2012 12:12:12 GMT Vertrigoserv version 2.27 local privilege escalation exploit. http://packetstormsecurity.org/files/112846/USN-1445-1.txt http://packetstormsecurity.org/files/112846/USN-1445-1.txt http://packetstormsecurity.org/files/112846/Ubuntu-Security-Notice-USN-1445-1.html Fri, 18 May 2012 14:07:47 GMT Ubuntu Security Notice 1445-1 - A flaw was found in the Linux's kernels ext4 file system when mounted with a journal. A local, unprivileged user could exploit this flaw to cause a denial of service. A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. Steve Grubb reported a flaw with Linux fscaps (file system base capabilities) when used to increase the permissions of a process. For application on which fscaps are in use a local attacker can disable address space randomization to make attacking the process with raised privileges easier. Various other issues were also addressed. http://packetstormsecurity.org/files/112880/sa49228.txt http://packetstormsecurity.org/files/112880/sa49228.txt http://packetstormsecurity.org/files/112880/Secunia-Security-Advisory-49228.html Fri, 18 May 2012 05:25:02 GMT Secunia Security Advisory - A vulnerability has been reported in OpenVMS, which can be exploited by malicious, local users to gain escalated privileges. http://packetstormsecurity.org/files/112875/sa49230.txt http://packetstormsecurity.org/files/112875/sa49230.txt http://packetstormsecurity.org/files/112875/Secunia-Security-Advisory-49230.html Fri, 18 May 2012 05:24:48 GMT Secunia Security Advisory - Ubuntu has issued an update for update-manager. This fixes two security issues, which can potentially be exploited by malicious, local users and malicious people to disclose sensitive information. http://packetstormsecurity.org/files/112859/cryptographp-hrslfi.txt http://packetstormsecurity.org/files/112859/cryptographp-hrslfi.txt http://packetstormsecurity.org/files/112859/Cryptographp-Local-File-Inclusion-HTTP-Response-Splitting.html Fri, 18 May 2012 02:22:22 GMT Cryptographp suffers from local file inclusion and HTTP response splitting vulnerabilities. http://packetstormsecurity.org/files/112854/webvulscan_v0.11.zip http://packetstormsecurity.org/files/112854/webvulscan_v0.11.zip http://packetstormsecurity.org/files/112854/Web-Application-Vulnerability-Scanner-0.11.html Thu, 17 May 2012 21:54:06 GMT WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, web applications for security vulnerabilities. As a scan is running, details of the scan are dynamically updated to the user. These details include the status of the scan, the number of URLs found on the web application, the number of vulnerabilities found and details of the vulnerabilities found. After a scan is complete, a detailed PDF report is emailed to the user. The report includes descriptions of the vulnerabilities found, recommendations and details of where and how each vulnerability was exploited. http://packetstormsecurity.org/files/112825/MDVSA-2012-077.txt http://packetstormsecurity.org/files/112825/MDVSA-2012-077.txt http://packetstormsecurity.org/files/112825/Mandriva-Linux-Security-Advisory-2012-077.html Thu, 17 May 2012 19:29:35 GMT Mandriva Linux Security Advisory 2012-077 - Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory. A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format metadata. An attacker could create a specially-crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code. A denial of service flaw was found in the way ImageMagick processed images with malformed Exif metadata. An attacker could create a specially-crafted image file that, when opened by a victim, could cause ImageMagick to enter an infinite loop. Various other issues have also been addressed.