Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and two bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, th...

CVE-2009-2208

FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFOIN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU...

MDVA-2009:045 : dhcp

dhclient-script, in dhcp-client package as released with Mandriva Linux 2009, would put the network interface down on some circumstances, as part of it's workings. Coupled with a bug in the kernel wireless stack, when done on wireless interfaces this could cause the wireless association to be los...

rtipsniff.rb.txt

$Id: rtipsniff.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ MacbookPro:metasploit...

GE Proficy Real Time Information Portal Credentials Leak Sniffer (meta)

No description provided by source. $Id: rtipsniff.rb This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

DD-WRT - Site Survey SSID Script Injection

source: https://www.securityfocus.com/bid/30573/info DD-WRT is prone to a script-injection vulnerability because it fails to adequately sanitize user-supplied data to the 'Site Survey' section of the administrative web interface. Attackers can exploit this issue to execute arbitrary script code i...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Debian Security Advisory DSA 336-1 (kernel-source-2.2.20, kernel-image-2.2.20-i386)

The remote host is missing an update to kernel-source-2.2.20, kernel-image-2.2.20-i386 announced via advisory DSA 336-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

MS Windows Vista forged ARP packet Network Stack DoS Exploit

Exploit for unknown platform in category dos / poc ============================================================ MS Windows Vista forged ARP packet Network Stack DoS Exploit ============================================================ !/usr/bin/env python :: Kristian Hermansen :: Date: 20070514...

VMWare guest system weak permissions

Unprivileged user of guest system with VMWare tools installed can perform some privileged operations, such enabling/disabling network interface...

Yamaha MusicCAST MCX-1000 wireless network interface operates in Access Point mode by default

Overview The Yamaha MusicCAST MCX-1000 server wireless networking interface is enabled by default, cannot be disabled, and operates in Access Point mode. A remote attacker could access the MusicCAST wireless network and potentially any other network connected to the MusicCAST. Description The...

CVE-2005-1099

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon GLD 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code...

DEBIAN-CVE-2005-1099

Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon GLD 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code...

CVE-2004-1502

The Telnet proxy in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service socket exhaustion via a Telnet request to an IP address of the proxy's network interface, which causes a loop...

UML_Utilities User-Mode Linux - uml_utilities 20030903 UML_Net Slip Network Interface Denial of Service

source: https://www.securityfocus.com/bid/12016/info The umlutilites umlnet application may permit unprivileged malicious local users to shut down the slip network interface. This is due to the program being installed setuid root by default. This vulnerability could be exploited to deny network...

Debian DSA-442-1 : linux-kernel-2.4.17-s390 - several vulnerabilities

Several security related problems have been fixed in the Linux kernel 2.4.17 used for the S/390 architecture, mostly by backporting fixes from 2.4.18 and incorporating recent security fixes. The corrections are listed below with the identification from the Common Vulnerabilities and Exposures CVE...

TCP Connection Reset Remote Exploit

No description provided by source. / By: Paul A. Watson Build a TCP packet - based on tcp1.c sample code from libnet-1.1.1 COMPILE: gcc reset-tcp.c -o reset-tcp /usr/lib/libnet.a or gcc -o reset-tcp reset-tcp.c -lnet be sure to modify the MAC addresses enetsrc/enetdst in the code, or you WILL hav...

TCP Connection Reset - Remote Denial of Service

/ By: Paul A. Watson Build a TCP packet - based on tcp1.c sample code from libnet-1.1.1 COMPILE: gcc reset-tcp.c -o reset-tcp /usr/lib/libnet.a or gcc -o reset-tcp reset-tcp.c -lnet be sure to modify the MAC addresses enetsrc/enetdst in the code, or you WILL have problems! EXECUTE: reset-tcp...

Microsoft Windows Vista - ARP Table Entries Denial of Service

source: https://www.securityfocus.com/bid/23266/info Microsoft Windows Vista is prone to a denial-of-service vulnerability. Remote attackers may exploit this issue by submitting malicious ARP requests to the vulnerable computer. To exploit this issue, attackers must have access to the local netwo...

jailed processes can manipulate host routing tables

A programming error resulting in a failure to verify that an attempt to manipulate routing tables originated from a non-jailed process. Jailed processes running with superuser privileges could modify host routing tables. This could result in a variety of consequences including packets being sent...