1822 matches found
MDVA-2009:070 : x11-driver-video-ati
When using the ati Xorg driver with two monitors attached the mouse cursor might be drawn incorrectly. This update fixes this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network...
MDVA-2010:160 : heartbeat
The heartbeat package in the 2010.0 release had wrong permissions and ownership for /usr/bin/clstatus this prevented it from working correctly. Also when peers were outdated heartbeat didn't failover gracefully. This update fixes both these issues. %NASLMINLEVEL 70300 @DEPRECATED@ This script has...
MDVA-2009:085 : mesa
A bug in mesa would cause hardware accelerated yuv conversion to fail, resulting in videos being displayed with wrong colors while using a gl video output driver. This update fixes this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currentl...
MDVA-2010:143 : xine-ui
The LIRC infrared support in xine-ui program didn't work. This update fixes the issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. This script was automatically...
MDVA-2009:202 : java-1.6.0-openjdk
Correct issues with scaled bitmap fonts by properly installing fontconfig.properties and requires a default font bug 55005. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security,...
MDVA-2010:016 : firefox
It was dicovered that the kde4ff theme for firefox 3.5 firefox-theme-kde4ff did not work, to address this problem the kfirefox theme firefox-theme-kfirefox is provided as a drop in replacement. It was discovered that the beagle extension for firefox firefox-ext-beagle had the wrong release number...
MDVA-2010:031 : freeradius
Perl scripts shipped in the freeradius-web sub package use File::Temp perl module incorrectly, preventing to execute them correctly. In these perl scripts, a change was made to replace the line 'use File::Temp ;' by 'use File::Tempqwtempfile tempdir;'. %NASLMINLEVEL 70300 @DEPRECATED@ This script...
MDVA-2010:085 : dhcp
Dhcp-server package shipped with Mandriva Linux 2009.1 and 2010.0 was using incorrect SVLDAP definitions during the build, which resulted in ldap support being non-functional. This update fixes the issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is...
Mandriva Linux Security Advisory : dovecot (MDVSA-2009:306)
A vulnerability was discovered and corrected in dovecot : Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the...
Mandriva Linux Security Advisory : pidgin (MDVSA-2010:002)
A security vulnerability has been identified and fixed in pidgin : Directory traversal vulnerability in slp.c in the MSN protocol plugin in libpurple in Pidgin 2.6.4 and Adium 1.3.8 allows remote attackers to read arbitrary files via a .. dot dot in an application/x-msnmsgrp2p MSN emoticon aka...
Mandriva Linux Security Advisory : openssl (MDVSA-2009:239)
Multiple vulnerabilities was discovered and corrected in openssl : Use-after-free vulnerability in the dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL 1.0.0 Beta 2 allows remote attackers to cause a denial of service openssl sclient crash and possibly have unspecified other impa...
Linux/x86-64 - Disable ASLR Security - 143 bytes
Linux/x86-64 - Disable ASLR Security - 143 bytes. Shellcode exploit for linx86-64 platform / Title: Linux/x86-64 - Disable ASLR Security - 143 bytes Date: 2010-06-17 Tested: Archlinux x8664 k2.6.33 Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan ! Dtabase o...
linux/x86 execve("/usr/bin/wget", "aaaa"); - 42 bytes
Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 execve"/usr/bin/wget", "aaaa"; - 42 bytes ===================================================== / Title: Linux x86 execve"/usr/bin/wget", "aaaa"; - 42 bytes Author: Jonathan Salwan...
Linux back door series of adore-ng-vulnerability warning-the black bar safety net
Long before writing an article, your own back. Odd. strange, when I test is can hide the port, but now I toss and hide can't port, the answer will come out soon :) Find a reason, something or the original good, experience similar problems please use the original version, wanted to know what the...
MDVA-2010:121 : firefox
The xulrunner and firefox packages sent with the MDVSA-2010:070 advisory did not require the version of sqlite3 they were built against which prevented firefox from starting. The fixed packages addresses this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the...
Microworld eScan AntiVirus 3.x - Remote Code Execution
Microworld eScan AntiVirus 3.x - Remote Code Execution !/usr/bin/env python import sys from socket import auther: Mohammed almutairi [email protected] """ MicroWorld eScan Antivirus 1 if $POST'forgot' == "Send Password" $user = $POST"uname"; 2 insecure: vulnerable code in forgotpassword.php a...
MDVA-2010:073 : dhcp
The DHCP client ignores the interface-mtu option set by server. This update fixes the issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. This script was...
[ MDVSA-2010:030 ] kernel
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:030 http://www.mandriva.com/security/ Package : kernel Date : January 1, 2009 Affected: 2010.0 Problem Description: Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel: Array index err...
Detecting and Blocking IPv6 in Linux
This video from the SANS Internet Storm Center explains how to detect and block IPv6 traffic in Linux...
linux/x86 execve(""/bin/ash"" 0 0)
No description provided by source. / 21 byte execve"/bin/ash",0,0; shellcode for linux x86 by zasta zasta at darkircop.org / include unistd.h include stdio.h char shellcode = "\x31\xc9\xf7\xe1\x04\x0b\x52\x68" "\x2f\x61\x73\x68\x68\x2f\x62\x69" "\x6e\x89\xe3\xcd\x80"; void code asm" xor %ecx,%ecx...