FreeBSD-SA-09:11.ntpd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:11.ntpd Security Advisory The FreeBSD Project Topic: ntpd stack-based buffer-overflow vulnerability Category: contrib Module: ntpd Announced: 2009-06-10...

Mandriva Linux Security Advisory : koffice (MDVSA-2008:197-1)

Kees Cook of Ubuntu security found a flaw in how poppler prior to version 0.6 displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause applications using poppler to crash, or possibly execute arbitrary code when opened CVE-2008-1693. This...

Mandriva Linux Security Advisory : mysql (MDVSA-2008:017)

MySQL 5.0.x did not update the DEFINER value of a view when the view is altered, which allows remote authenticated users to gain privileges via a sequence of statements including a CREATE SQL SECURITY DEFINER VIEW statement and an ALTER VIEW statement CVE-2007-6303. The federated engine in MySQL...

AIX 530008 : U819193

The remote host is missing AIX PTF U819193 which is related to the security of the package bos.rte.console You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

1 in 5 Windows PCs still hackable by Conficker

From Computerworld Gregg Keizer Although the media blitz about the Conficker worm prompted a significant number of enterprise users to finally fix a six-month-old Windows bug, about one in five business computers still lack the patch computerworld.com, a security company said today. Scans of more...

Mandriva Update for php MDKSA-2007:090 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDKSA-2007:090 php Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

RPC Portmapper Service Detection (TCP)

TCP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RPC Portmapper Service Detection (UDP)

UDP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Partial disclosure, complete disagreement

The two most highly publicized vulnerability disclosures last year also were the most highly criticized disclosures: Dan Kaminsky’s DNS bug and the SSL flaw discovered by a group of independent and academic researchers. The two events played out in similar fashions, with some details coming out i...

Six months later, DNS still taking a hit

It’s been more than six months since Dan Kaminksy detailed the problems he had found lurking in the DNS system, and the coordinated patching effort that followed his discovery was nothing short of extraordinary. A huge percentage of the vulnerable servers were patched before the details of the fl...

Is your Java up to date?

For a long time, the experience of patching Sun’s Java software has been less than pleasant. The updates were huge and time consuming, the patching instructions were a mess and, even worse, Sun never removed older, vulnerable versions from the patched machine. Now it appears that things have been...

Ruby resolv.rb可预测事件ID和源端口DNS欺骗漏洞

BUGTRAQ ID: 31699 CVECAN ID: CVE-2008-3905 Ruby是一种功能强大的面向对象的脚本语言。 Ruby的resolv.rb对DNS请求使用了固定的源端口和顺序排列的事件ID，这允许远程攻击者相对容易的伪造DNS响应，扮演成中间人执行网络钓鱼等各种攻击。 Yukihiro Matsumoto Ruby 1.8.x 厂商补丁： RedHat ------ RedHat已经为此发布了一个安全公告（RHSA-2008:0897-01）以及相应补丁: RHSA-2008:0897-01：Moderate: ruby security update...

Secunia Research: Trend Micro OfficeScan Directory Traversal Vulnerability

====================================================================== Secunia Research 02/10/2008 - Trend Micro OfficeScan Directory Traversal Vulnerability - ====================================================================== Table of Contents Affected...

[DSECRG-08-030] Claroline 1.8.9 Multiple Security Vulnerabilities

Digital Security Research Group DSecRG Advisory DSECRG-08-030 Application: Claroline eLearning and eWorking platform Versions Affected: 1.8.9 Vendor URL: http://www.claroline.net/ Bug: Multiple XSS, Phishing Through URL Redirection, Change User Password XSRF Vulnerability Exploits: YES Reported:...

TFTP Server for Windows 1.4 ST Remote BSS Overflow Exploit

No description provided by source. !/usr/bin/perl TFTPServer SP v1.4 for Windows remote .bss overflow exploit The Service or the RunStandAlone version. URL: http://sourceforge.net/projects/tftp-server/ Author: tix or tixxDZ [email protected] Date: 07/05/2008...

Prozilla Gaming Directory 1.0 - SQL Injection

source: https://www.securityfocus.com/bid/28676/info Prozilla Gaming Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, acce...

XSS vulnerability in pagepicker.action and spacepagepicker.action

The following URL's are vulnerable: - /users/pagepicker.action - /users/spacepagepicker.action on formname, fieldname and currentspace panel:bgColor=99ff99 h4. Patch instructions for 2.6.x and 2.7.x 1. Shut down Confluence 2. Copy attached pagepicker.vm to confluence/users/ 3. Start up Confluence...

MailEnable SMTP Service VRFY/EXPN Command Buffer Overflow DoS

Exploit for unknown platform in category dos / poc ============================================================= MailEnable SMTP Service VRFY/EXPN Command Buffer Overflow DoS ============================================================= !/usr/bin/python MailEnable SMTP Service VRFY/EXPN Command...

AIX 610000 : U815169

The remote host is missing AIX PTF U815169 which is related to the security of the package bos.rte.control You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

LightBlog Remote File Upload Vulnerability

LightBlog 9.5 - REMOTE FILE UPLOAD VULNERABILITY by Omni 1 Infos --------- Date : 2008-01-30 Product : LightBlog Version : v 9.5 Vendor : http://www.publicwarehouse.co.uk/ Vendor Status : 2008-01-31 Informed! 2008-01-31 Patch received from vendor! 2008-02-01 Published! Description : Lightblog...