RedHat Security Advisory RHSA-2009:1671

The remote host is missing updates announced in advisory RHSA-2009:1671. The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: a flaw was found in the Realtek r8169 Ethernet driver in the Linux kernel. pciunmapsingle...

HP OpenView Network Node Manager CGI programs HTTP Request Buffer Overflow (CVE-2007-6204; CVE-2008-0067)

HP OpenView product consists of a suite of network and system management software applications developed by HP. It includes hundreds of optional modules and components, such as OpenView Quality Manager, OpenView Performance Insight, OpenView Network Node Manager, etc. A buffer overflow...

linux/x86 killall5 polymorphic shellcode 61 bytes

Exploit for linux/x86 platform in category shellcode ================================================= linux/x86 killall5 polymorphic shellcode 61 bytes ================================================= / Title: Linux x86 | Polymorphic Shellcode killall5 - 61 bytes Author: Jonathan Salwan killall...

Rootkit techniques the main principle of explanation-vulnerability warning-the black bar safety net

Article author: hackisle rootkit main categories: Application-level-kernel-the hardware level Early rootkits mainly for application-level rootkits application-level rootkits mainly by replacing the login, ps, ls, netstat and other system tools, or modify. rhosts etc system configuration files, et...

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : linux, linux-source-2.6.15 vulnerabilities (USN-807-1)

Michael Tokarev discovered that the RTL8169 network driver did not correctly validate buffer sizes. A remote attacker on the local network could send specially crafted traffic that would crash the system or potentially grant elevated privileges. CVE-2009-1389 Julien Tinnes and Tavis Ormandy...

USN-807-1: Linux kernel vulnerabilities

Michael Tokarev discovered that the RTL8169 network driver did not correctly validate buffer sizes. A remote attacker on the local network could send specially crafted traffic that would crash the system or potentially grant elevated privileges. CVE-2009-1389 Julien Tinnes and Tavis Ormandy...

HP DDMI on Windows Unspecified Remote Agent Access

The remote host is running an HP Discovery & Dependency Mapping Inventory DDMI agent to facilitate communications between a central DDMI server and workstations that are part of the deployed inventory process. The version of the agent on the remote host fails to check for a valid SSL certificate...

Multiple HTTP Server Low Bandwidth Denial of Service #2

No description provided by source. ?php / DOS for the vulnerbility at http://isc.sans.org/diary.html?storyid=6601 I wrote it in PHP because I find it funny to make PHP attack apache... I set it at 200 processes and it kill my test servers pretty quick. have fun kiddiez... greetz: m1m1, t4dp0le,...

netbsd/x86 kill all processes shellcode 23 bytes

No description provided by source. / netbsd/x86 kill all processes shellcode this shellcode is using syscall number 37 or 0x25 37 STD int syskillint pid, int signum; here is assembler code using intel syntaxe and NASM --------------begin----------- section .note.netbsd.ident dd 0x07,0x04,0x01 db...

netbsd/x86 kill all processes shellcode 23 bytes

netbsd/x86 kill all processes shellcode 23 bytes. Shellcode exploit for netbsdx86 platform / netbsd/x86 kill all processes shellcode author Anonymous this shellcode is using syscall number 37 or 0x25 37 STD int syskillint pid, int signum; here is assembler code using intel syntaxe and NASM...

netbsd/x86 kill all processes shellcode 23 bytes

Exploit for netbsd/x86 platform in category shellcode ================================================ netbsd/x86 kill all processes shellcode 23 bytes ================================================ / netbsd/x86 kill all processes shellcode this shellcode is using syscall number 37 or 0x25 37 S...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in index.aas in Application Access Server A-A-S 2.0.48 allow remote attackers to hijack the authentication of administrators for requests that 1 execute arbitrary programs via a command job, 2 stop services via a setservice job, or 3...

CVE-2009-1464

Multiple cross-site request forgery CSRF vulnerabilities in index.aas in Application Access Server A-A-S 2.0.48 allow remote attackers to hijack the authentication of administrators for requests that 1 execute arbitrary programs via a command job, 2 stop services via a setservice job, or 3...

Solaris 5.3 (sparc) : 104075-01

Firewall-1 2.1: Unix FW-1 VPN manager module creates zombie proces. Date this patch was last updated by Sun : Oct/03/96 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...

CentOS 4 : kernel (CESA-2007:0939)

Updated kernel packages that fix various security issues in the Red Hat Enterprise Linux 4 kernel are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel is the core of the operating system. These updated kernel...

Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-752-1)

NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a...

Ubuntu 7.10 / 8.04 LTS / 8.10 : linux, linux-source-2.6.22 vulnerabilities (USN-751-1)

NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. Ubuntu 8.10 was not affected. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a...

New attack sneaks rootkits into Linux kernel

From DarkReading Kelly Jackson Higgins Kernel rootkits are tough enough to detect, but now a researcher has demonstrated an even sneakier method of hacking Linux. The attack exploits dtors.org PDF an oft-forgotten function in Linux versions 2.4 and above in order to quietly insert a rootkit into...

Mandriva Update for apache-conf MDVA-2008:129 (apache-conf)

Check for the Version of apache-conf OpenVAS Vulnerability Test Mandriva Update for apache-conf MDVA-2008:129 apache-conf Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

USN-752-1: Linux kernel vulnerabilities

NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a...