DEBIAN-CVE-2011-1922

daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via a crafted DNS request that triggers improper error handling...

systemtap: does not guard against DWARF operations div-by-zero errors, which can cause a kernel panic

SystemTap 1.4 and earlier, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access...

PT-2011-1123 · Red Hat · Systemtap +1

Name of the Vulnerable Software and Affected Versions: SystemTap versions 1.4 and earlier Description: The issue allows local users to cause a denial of service via a crafted ELF program with DWARF expressions that are not properly handled by a stap script, leading to a divide-by-zero error and...

KeyFax Response Management System 3.2.2.6 XSS / Information Disclosure

PR10-17: Various XSS and information disclosure flaws within KeyFax response management system http://www.omfax.co.uk Vulnerability found: 25th August 2010 Vendor informed: Vulnerability fixed: Severity: Medium/High Description: KeyFax response management system provides professional management o...

Fiddler v2.3.3.3 New version released !

Fiddler is a Web Debugging Proxy which logs all HTTPS traffic between your computer and the Internet. Fiddler allows you to inspect all HTTPS traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended usi...

PHP 5.3.6 closes five security holes !

The PHP developers have released PHP 5.3.6, a maintenance update to the PHP interpreter. Among over 60 bug fixes are a number of fixes for security related problems. A format string vulnerability in the phar extension of PHP 5.3.5, CVE-2011-1153, may allow attackers to view memory, cause a denial...

FreeBSD 6.4 - Netgraph Privilege Escalation

FreeBSD 6.4 - Netgraph Privilege Escalation / FreeBSD include include include...

Apple iPhone information leakage

Information about Wi-Fi keys for Personal Hotspot feature is logged to debugging console...

Code injection

The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote attackers to gain privileges as that user...

Only modification code [ASM KEYGENME#1]

Решил выложить продолжение своей первой статьи, которая находить тут. В прошлой статье «Реверсинг ASM KEYGENME1 «, в самом начале пропустил момент, с само-модификацией кода тогда мы просто нажали F9, и программа все сделала сама. Сейчас подробней разберем тот фрагмент кода, а лучше напишем...

NetLink Shell Upload

====================================== NetLink Remote Arbitrary File Upload Vulnerability Download: http://sourceforge.net/projects/kp-netlink/ by lumut-- Homepage: lumutcherenza.biz ====================================== upload.php "; echo ""; echo "Filename: ".$filename; echo "File Type:...

Automated Solutions Modbus/TCP OPC Server Heap Corruption

!/usr/bin/python asmb-heap.py Automated Solutions Modbus/TCP OPC Server Remote Heap Corruption PoC Jeremy Brown 0xjbrown41-gmail-com Jan 2011 A specially crafted length field in a MODBUS packet header can trigger heap corruption. 00408312 | 8B5424 3C MOV EDX,DWORD PTR SS:ESP+3C - move length into...

Automated Solutions ModbusTCP OPC Server - Remote Heap Corruption (PoC)

Automated Solutions ModbusTCP OPC Server - Remote Heap Corruption PoC !/usr/bin/python asmb-heap.py Automated Solutions Modbus/TCP OPC Server Remote Heap Corruption PoC Jeremy Brown 0xjbrown41-gmail-com Jan 2011 A specially crafted length field in a MODBUS packet header can trigger heap corruptio...

Code injection

Cisco IOS before 15.01XA1, when certain TFTP debugging is enabled, allows remote attackers to cause a denial of service device crash via a TFTP copy over IPv6, aka Bug ID CSCtb28877...

CVE-2010-4684

Cisco IOS before 15.0(1)XA1 is affected. When certain TFTP debugging is enabled, a remote attacker can trigger a denial of service (device crash) via a TFTP copy over IPv6 (Bug ID CSCtb28877). The concrete vulnerability details across connected documents confirm the affected software and the atta...

Fedora 14 : openconnect-2.26-4.fc14 (2010-18055)

This update implements DTLS rekeying, elides the session cookie from debugging output by default, and fixes a potential crash on relative HTTP redirect during authentication. It also fixes a problem which occurs when changing VPN hosts in the NetworkManager auth-dialog, after the connection to th...

Fiddler v2.3.1.0 ( Web Debugging Proxy tool ) - Latest Version Download

"Fiddler is a Web Debugging Proxy which logs all HTTPS traffic between your computer and the Internet. Fiddler allows you to inspect all HTTPS traffic, set breakpoints, and "fiddle" with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem, and can be extended...

Image of the Day: Dissecting The ZeroAccess Crimeware

We know a lot about the effects of malicious programs like rootkits and Trojan downloaders. The job of finding out exactly how the programs work, however, is painstaking. That’s because most malware authors worth their salt take steps to make their creations hard to understand. Code obfuscation a...

Adobe Shockwave Player Memory Corruption Vulnerability - CVE-2010-4088

Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team VDT http://www.checkpoint.com/defense/ Memory corruption when Adobe Shockwave Player parses .dir media file...

CVE-2010-3902

OpenConnect before 2.26 places the webvpn cookie value in the debugging output, which might allow remote attackers to obtain sensitive information by reading this output, as demonstrated by output posted to the public openconnect-devel mailing list...