Linux Kernel mq_open系统调用拒绝服务漏洞

BUGTRAQ ID: 16283 CVECAN ID: CVE-2005-335 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel对目录操作的实现上存在漏洞，本地攻击者可能利用此漏洞对系统进行拒绝服务攻击。 如果dentryopen函数调用失败的话，就会多次调用mntput函数。Linux Kernel的mqopen系统调用在这种情况下就可能两次递减计数器，这就允许本地攻击者导致系统忙碌，造成拒绝服务。 Linux kernel 2.6.9 RedHat Linux WS 4 RedHat Linux ES 4 RedHat Linux...

Oracle DBMS绕过登录访问控制漏洞

BUGTRAQ ID: 16287 CVECAN ID: CVE-2006-0256 Oracle Database是一款大型商业数据库系统。 Oracle Database的登录过程实现存在漏洞，远程攻击者可能在登录过程中对服务器进行SQL注入攻击。...

Linux Kernel auto-reap ptraced子进程本地拒绝服务漏洞

BUGTRAQ ID: 15625 CVECAN ID: CVE-2005-3784 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel对系统进程的处理上存在问题，本地攻击者可能利用此漏洞进行拒绝服务攻击。 漏洞存在于signal.c文件中，内核对子进程执行auto-reap操作时，操作对象包含了已经被ptrace附着的进程，这可能导致ptrace引用混乱，允许本地攻击者触发拒绝服务问题。 Linux kernel = 2.6.15-rc2 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux...

Linux Kernel Sysctl接口注销本地拒绝服务漏洞

BUGTRAQ ID: 15365 CVECAN ID: CVE-2005-2709 Linux kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的"sysctl.c"在"/proc/sys/net/ipv4/conf/"中处理接口注销时存在拒绝服务漏洞。恶意用户可以利用这个漏洞导致系统忙碌，造成服务不可用。 Linux kernel 2.6.14.1 Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： Linux Upgrade linux-2.6.14.1.tar.bz2...

CORE-2006-0714: Microsoft SRV.SYS SMB_COM_TRANSACTION Denial of Service

Core Security Technologies Advisory http://www.coresecurity.com Microsoft SRV.SYS SMBCOMTRANSACTION Denial of Service Date Published: 2006-08-14 Last Update: 2006-08-14 Advisory ID: CORE-2006-0714 Bugtraq ID: 19215 CVE Name: CVE-2006-3942 Title: Microsoft SRV.SYS SMBCOMTRANSACTION Denial of Servi...

[SECURITY] [DSA 1142-1] New freeciv packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1142-1 [email protected] http://www.debian.org/security/ Martin Schulze August 4th, 2006 http://www.debian.org/security/faq -...

SiteBuilder-FX top.php admindir Parameter Remote File Inclusion

The remote host is running SiteBuilder-FX, a web-based design system written in PHP. The version of SiteBuilder-FX installed on the remote host fails to sanitize input to the 'admindir' parameter of the 'admin/top.php' script before using it to include PHP code. Regardless of the setting of PHP's...

RE: Cisco Secure ACS Cross Site Scripting Vulnerability.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, This is Cisco PSIRT response to the statements made by Thomas Liam Romanis of Fujitsu Services Limited in their posting to BugTraq on the 15th June 2006, regarding Cisco Secure ACS LoginProxy.CGI Cross-Site Scripting Vulnerability, located at...

New Snort Bypass - Patch - Bypass of Patch

There was a Snort evasion bug posted on BugTraq today http://www.securityfocus.com/archive/1/435600/30/0/threaded This attack will not show up in alert file at all perl -e 'print "GET x90x90x0d http/1.0rnrn"'|nc 192.168.1.3 80 Notice the x0d CR character r above. The following will show up in ale...

Geeklog auth.inc.php loginname Parameter SQL Injection

The version of Geeklog installed on the remote fails to sanitize input to the 'loginname' and 'passwd' parameters before using it in the script 'admin/auth.inc.php' to construct database queries. Provided PHP's 'magicquotesgpc' setting is enabled, an unauthenticated attacker can exploit this flaw...

[SECURITY] [DSA 1079-1] New MySQL 4.0 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1079-1 [email protected] http://www.debian.org/security/ Martin Schulze May 29th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1077-1] New lynx-ssl packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1077-1 [email protected] http://www.debian.org/security/ Martin Schulze May 26th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1076-1] New lynx packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1076-1 [email protected] http://www.debian.org/security/ Martin Schulze May 26th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1073-1] New MySQL 4.1 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1073-1 [email protected] http://www.debian.org/security/ Martin Schulze May 22nd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1071-1] New MySQL 3.23 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1071-1 [email protected] http://www.debian.org/security/ Martin Schulze May 22nd, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1071-1] New MySQL 3.23 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1071-1 [email protected] http://www.debian.org/security/ Martin Schulze May 22nd, 2006 http://www.debian.org/security/faq -...

FreeBSD : firefox -- denial of service vulnerability (e2476979-da74-11da-a67b-0013d4a4a40e)

A Mozilla Foundation Security Advisory reports for deleted object reference when designMode='on' Martijn Wargers and Nick Mott each described crashes that were discovered to ultimately stem from the same root cause : attempting to use a deleted controller context when designMode was turned on. Th...

FreeBSD : unzip -- permission race vulnerability (9750cf22-216d-11da-bc01-000e0c2e438a)

Imran Ghory reports a vulnerability within unzip. The vulnerability is caused by a race condition between extracting an archive and changing the permissions of the extracted files. This would give an attacker enough time to remove a file and hardlink it to another file owned by the user running...

[SECURITY] [DSA 1055-1] New Mozilla Firefox packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 1055-1 [email protected] http://www.debian.org/security/ Martin Schulze May 11th, 2006 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1049-1] New Ethereal packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1049-1 [email protected] http://www.debian.org/security/ Martin Schulze May 2nd, 2006 http://www.debian.org/security/faq -...