Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt2

May 16, 2007 Konstantin Lepikhov 1.3.0rel-alt2 - 1.3.0a stable release. - rollback alt-ltdl patch use alternate variant. - don't delete .la files due ltdlopenext breakage in this case. - remove previous CVE-2006-5815 fixes, use variant from Debian. - change packager. - cleanup obsoleted Conflicts...

Debian DSA-1247-1 : libapache-mod-auth-kerb - heap overflow

An off-by-one error leading to a heap-based buffer overflow has been identified in libapache-mod-auth-kerb, an Apache module for Kerberos authentication. The error could allow an attacker to trigger an application crash or potentially execute arbitrary code by sending a specially crafted kerberos...

CVE-2007-2165

The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as...

CVE-2007-2165

The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as...

CVE-2007-2165

The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as...

CVE-2007-2165

CVE-2007-2165 affects ProFTPD prior to 20070417. When multiple authentication modules are configured, the authentication-check module need not be the same as the module that retrieves authentication data, potentially allowing remote attackers to bypass authentication (e.g., using SQLAuthTypes Pla...

ProFTPD AUTH多个验证模块安全绕过漏洞

proftpd是一款流行的开放源代码的FTP服务程序。 proftpd在AUTH API上存在一个错误，远程攻击者可以利用漏洞可以绕过安全限制，未授权访问。 由于FTP协议需要分开USER和PASS命令，ProFTPD独立的通过USER对用户数据进行检查，而当PASS接收到时对用户的验证进行校验。因此这些组合使ProFTPD允许多个同步Auth模块存在如modauthunix, modsql, modldap，可能导致某个验证模块提供用户数据modauthunix而另一个模块验证用户数据如modsql. 当验证模块modsql配置成使用底限制的验证策略，如： SQLAuthTypes...

GLSA-200704-15 : MadWifi: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200704-15 MadWifi: Multiple vulnerabilities The driver does not properly process Channel Switch Announcement Information Elements, allowing for an abnormal channel change. The ieee80211input function does not properly handle AUTH...

Remote file inclusion

PHP remote file inclusion vulnerability in MobilePublisherphp 1.1.2 allows remote attackers to execute arbitrary PHP code via a URL in the authmethod parameter to 1 index.php, 2 list.php, 3 postreview.php, 4 reindex.php, 5 sections.php, 6 templates.php, 7 userinfo.php, 8 users.php, and 9 view.php...

PT-2007-3426 · Mobilepublisher · Mobilepublisherphp

Name of the Vulnerable Software and Affected Versions: MobilePublisherphp version 1.1.2 Description: A remote file inclusion issue allows remote attackers to execute arbitrary PHP code via a URL in the auth method parameter to various PHP files in the admin directory, including "index.php",...

MadWifi: Multiple vulnerabilities

Background The MadWifi driver provides support for Atheros based IEEE 802.11 Wireless Lan cards. Description The driver does not properly process Channel Switch Announcement Information Elements, allowing for an abnormal channel change. The ieee80211input function does not properly handle AUTH...

Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:082)

The athratesample function in the athrate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service failed KASSERT and system crash by moving a connected system to a location with low signal strength, and possibly other vectors related to a race...

frontbase427v2-remote.txt

/ Dreatica-FXP crew ---------------------------------------- Target : Frontbase = 4.2.7 for Windows Site : http://www.frontbase.com Found by : Netragard, L.L.C Advisory ---------------------------------------- Exploit : Frontbase = 4.2.7 POST-AUTH remote buffer overflow Exploit date : 02.04.2007...

IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit

No description provided by source. !/usr/bin/python IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit Tested on windows 2003 server SP0. Coded by Mati Aharoni [email protected] http://www.offensive-security.com Notes: Not the the faint of heart. Iris, I love you...

IBM Lotus Domino Server 6.5 - Remote Overflow

!/usr/bin/python IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit Tested on windows 2003 server SP0. Coded by Mati Aharoni [email protected] http://www.offensive-security.com Notes: Not the the faint of heart. Iris, I love you Skeleton exploit shamelessly ripped off Winny Thomas bt...

CVE-2006-7178

MadWifi before 0.9.3 does not properly handle reception of an AUTH frame by an IBSS node, which allows remote attackers to cause a denial of service system crash via a certain AUTH frame...

CVE-2006-7178

CVE-2006-7178 affects the MadWifi driver prior to 0.9.3. The issue arises from improper handling of an AUTH frame by an IBSS node, allowing remote attackers within wireless range to cause a denial-of-service (system crash/hang). Publicly documented in various advisories (SUSE GLSA 200704-15, Gent...

Net Portal Dynamic System (NPDS) <= 5.10 Remote Code Execution

No description provided by source. !/usr/bin/php ?php errorreportingEALL ^ ENOTICE; Advisory soon if$argc 3 print" TITLE | Net Portal Dynamic System NPDS = 5.10 Remote Code Execution 0day AUTHOR | DarkFig / http://www.acid-root.new.fr / [email protected] NOTE | Works regardless of php settings...

Novell NetMail HTTP基本认证超长用户名远程缓冲区溢出漏洞

Novell NetMail是基于Internet标准消息和安全协议的邮件和日历系统。 Novell NetMail中默认绑定在TCP/89端口上的webadmin.exe进程处理用户认证请求存在栈溢出漏洞，远程攻击者可能利用此漏洞控制服务器s。 由于不安全的sprintf调用，如果在HTTP基本认证阶段发送了超过213字节的超长用户名，就会触发这个缓冲区溢出，导致执行任意指令。 Novell NetMail 3.52 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Asterisk <= 1.2.15 / 1.4.0 pre-auth Remote Denial of Service Exploit

No description provided by source. / this will cause asterisk to segfault, the bug that this exploits has been patched in release 1.2.16 & 1.4.1 CLI Program received signal SIGSEGV, Segmentation fault. Switching to Thread 1082719152 LWP 2510 registerverify p=0x81cf600, sin=0x4088e750,...