1661 matches found
OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool
OpenSSHPAM 3.6.1p1 - Remote Users Discovery Tool / SSHBRUTE - OpenSSH/PAM Proof of concept code by Maurizio Agazzini Tested against Red Hat, Mandrake, and Debian GNU/Linux. Reference: http://lab.mediaservice.net/advisory/2003-01-openssh.txt $ tar xvfz openssh-3.6.1p1.tar.gz $ patch -p0 include...
[SECURITY] [DSA 292-1] New mime-support packages fix temporary file race conditions
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 292-1 [email protected] http://www.debian.org/security/ Martin Schulze April 22nd, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 261-1] New tcpdump packages fix denial of service vulnerability
-------------------------------------------------------------------------- Debian Security Advisory DSA 261-1 [email protected] http://www.debian.org/security/ Martin Schulze March 14th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 256-1] New mhc-utils packages fix predictable temporary file
-------------------------------------------------------------------------- Debian Security Advisory DSA 256-1 [email protected] http://www.debian.org/security/ Martin Schulze February 28th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 249-1] New w3mmee packages fix cookie information leak
-------------------------------------------------------------------------- Debian Security Advisory DSA 249-1 [email protected] http://www.debian.org/security/ Martin Schulze February 11th, 2003 http://www.debian.org/security/faq -...
[SECURITY] [DSA 217-1] New typespeed packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 217-1 [email protected] http://www.debian.org/security/ Martin Schulze December 27th, 2002 http://www.debian.org/security/faq -...
DSA-210 lynx - CRLF injection
Bulletin has no description...
[SECURITY] [DSA-210-1] lynx CRLF injection
------------------------------------------------------------------------ Debian Security Advisory DSA-210-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 13, 2002 - ------------------------------------------------------------------------ Package : lynx, lynx-ssl...
DSA-209 wget - directory traversal
Bulletin has no description...
[SECURITY] [DSA-205-1] gtetrinet buffer overflows
------------------------------------------------------------------------ Debian Security Advisory DSA-205-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 10, 2002 - ------------------------------------------------------------------------ Package : gtetrinet Problem...
DSA-205 gtetrinet - buffer overflow
Bulletin has no description...
[SECURITY] [DSA 198-1] New nullmailer packages fix local denial of service
-------------------------------------------------------------------------- Debian Security Advisory DSA 198-1 [email protected] http://www.debian.org/security/ Martin Schulze November 18th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA-190-1] buffer overflow in Window Maker
Package : wmaker Problem type : buffer overflow Debian-specific: no Al Viro found a problem in the image handling code use in Window Maker, a popular NEXTSTEP like window manager. When creating an image it would allocate a buffer by multiplying the image width and height, but did not check for an...
[SECURITY] [DSA 189-1] New luxman packages fix local root exploit
-------------------------------------------------------------------------- Debian Security Advisory DSA 189-1 [email protected] http://www.debian.org/security/ Martin Schulze November 6th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 183-1] New krb5 packages fix buffer overflow
-------------------------------------------------------------------------- Debian Security Advisory DSA 183-1 [email protected] http://www.debian.org/security/ Martin Schulze October 29th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 173-1] New bugzilla packages fix privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 173-1 [email protected] http://www.debian.org/security/ Martin Schulze October 9th, 2002 http://www.debian.org/security/faq -...
CVE-2002-0912
in.uucpd UUCP server in Debian GNU/Linux 2.2, and possibly other operating systems, does not properly terminate long strings, which allows remote attackers to cause a denial of service, possibly due to a buffer overflow...
[SECURITY] [DSA 166-1] New purity packages fix potential buffer overflows
-------------------------------------------------------------------------- Debian Security Advisory DSA 166-1 [email protected] http://www.debian.org/security/ Martin Schulze September 13th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 161-1] New Mantis package fixes privilege escalation
-------------------------------------------------------------------------- Debian Security Advisory DSA 161-1 [email protected] http://www.debian.org/security/ Martin Schulze September 4th, 2002 http://www.debian.org/security/faq -...
CVE-2002-0912
CVE-2002-0912 affects in.uucpd (UUCP server) in Debian GNU/Linux 2.2; long input strings were not terminated properly, enabling remote denial of service (likely via buffer overflow). Debian DSA-129-1 fixes uucp with updated versions 1.06.1-11potato3 (potato) and 1.06.1-18 (woody); OpenVAS notes t...