Kaspersky Anti-Hacker personal firewall unstealthy stealth mode

Kaspersky personal firewall 1.8.180 in "stealth mode" configuration doesnt detect nor block timestamp and network block ICMP request. They still call it a stealth mode feature, yeah sure ; Try: nmap -sP -PE IP namp -sP -PM IP...

CentOS 4 : ruby (CESA-2006:0427)

Updated ruby packages that fix a denial of service issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A bug was found in the way Ruby creates its...

No smoke of war: a network is disabled with the breakthrough limit-vulnerability warning-the black bar safety net

Now, in order to improve work efficiency, many units want to do, including 网禁 stop users use QQ, MSN, lianzhong and other chat software; at the same time, lonely users also find ways to deal with these measures. The two-phase contest, who stands where. it? For QQ, MSN, ourgame such as chat and...

Pretty Guestbook v1

Homepage: http://www.tuttophp.altervista.org/main.php Description: Text-based guestbook with the following features: - Data storing on text file - Paging of messages on screen - Blockage of messages with words too long into - Blockage of messages with both html tags - Validity-checking of email...

GLSA-200605-11 : Ruby: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200605-11 Ruby: Denial of Service Ruby uses blocking sockets for WEBrick and XMLRPC servers. Impact : An attacker could send large amounts of data to an affected server to block the socket and thus deny other connections to the...

RHEL 4 : ruby (RHSA-2006:0427)

Updated ruby packages that fix a denial of service issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A bug was found in the way Ruby creates its...

irb, ruby security update

CentOS Errata and Security Advisory CESA-2006:0427 Updated ruby packages that fix a denial of service issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented...

security flaw

The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service blocked connections via a large amount of data...

CVE-2006-2035

Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL...

CVE-2006-2035

Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL...

Ubuntu 4.10 / 5.04 / 5.10 : ruby1.8 vulnerability (USN-273-1)

Yukihiro Matsumoto reported that Ruby's HTTP module uses blocking sockets. By sending large amounts of data to a server application that uses this module, a remote attacker could exploit this to render this application unusable and not respond any more to other clients Denial of Service. Note tha...

USN-273-1: Ruby vulnerability

Yukihiro Matsumoto reported that Ruby's HTTP module uses blocking sockets. By sending large amounts of data to a server application that uses this module, a remote attacker could exploit this to render this application unusable and not respond any more to other clients Denial of Service...

CVE-2006-1931

The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service blocked connections via a large amount of data...

Design/Logic Flaw

The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service blocked connections via a large amount of data...

Default credentials

Comvigo IM Lock 2006 uses a simple substitution cipher to encrypt a password stored in the msnvs\prc registry value, for which all users have Read permission, which allows local users to bypass the product's blocking functionality by decrypting the password...

Design/Logic Flaw

The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP...

DEBIAN-CVE-2006-1045

The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP...

[NT] Microsoft Internet Explorer Drag-and-Drop Redeux

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Ubuntu 5.04 : mozilla-firefox, mozilla vulnerabilities (USN-124-1)

When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...

Microsoft IIS Remote Denial of Service (DoS) .DLL Url exploit

Inge Henriksen Security Advisory - Full Disclosure Proof of Concept at http://ingehenriksen.blogspot.com/ Advisory Name: Microsoft IIS Remote Denial of Service DoS .DLL Url exploit Release Date: 16. Desember 2005 Vulnerable: Microsoft® Internet Information Server® V5.1 Not vulnerable: Microsoft®...