New Mozilla Plug-N-Hack Tool Integrates Browsers and Security Tools

The Mozilla security team is developing a new proposed standard that will make it easier for researchers to integrate some of their tools with Firefox and other browsers. The standard, known as Plug-n-Hack, is an open project that Mozilla hopes will be adopted by researchers and tool makers. A lo...

USN-1926-1: SPICE vulnerability

David Gibson discovered that SPICE incorrectly handled certain network errors. An attacker could use this issue to cause the SPICE server to crash, resulting in a denial of service...

CVE-2013-4678

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified vectors...

CVE-2013-4678

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified vectors...

Oracle Linux 3 / 4 : net-snmp (ELSA-2007-1045)

From Red Hat Security Advisory 2007:1045 : Updated net-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. Simple Network Management Protocol SNMP is a protocol used for network management. A flaw was discovered in the way net-snmp handled certain...

Oracle Linux 5 : dhcp (ELSA-2012-1140)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-1140 advisory. 12:3.0.5-31.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843124...

Oracle Linux 3 / 4 : openssl (ELSA-2010-0163)

From Red Hat Security Advisory 2010:0163 : Updated openssl packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

CentOS 4 : openssh (CESA-2007:0703)

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

CAPWAP Protocol Client Detection (SSL)

Binary data 6860.prm...

SNMP Version 3 Authentication Bypass Vulnerabilities (cisco-sa-20080610-snmpv3)

Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network Management Protocol version 3 SNMPv3 feature. These vulnerabilities can be exploited when processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of network informati...

Microsoft Windows SMB Client Repeated Negotiation Responses (MS10-006) - High Confidence (CVE-2010-0017)

A remote code execution vulnerability has been reported in the Microsoft Server Message Block SMB Protocol. The vulnerability is due to a race condition in the Microsoft SMB implementation that fails to properly handle specially crafted SMB responses. A remote attacker could exploit this flaw by...

OPC UA Open Secure Channel Response Command

...

CVE-2013-1085

CVE-2013-1085 affects the nim protocol handler in Novell GroupWise Messenger (GroupWise Messenger 2.04 and earlier) and Novell Messenger 2.1.x/2.2.x before 2.2.2. It is a stack-based buffer overflow triggered by an import command with a long filename parameter, allowing remote code execution. Exp...

CVE-2012-6544

The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the 1 L2CAP or 2 HCI implementation...

Novell eDirectory NCP Stack Buffer Overflow (CVE-2012-0432)

A stack buffer overflow exists in Novell eDirectory NetWare Core Protocol NCP stack. The vulnerability is due to lack of bounds checking in the KeyedObjectLogin function. A remote attacker could exploit this vulnerability by sending TCP packets with malicious data...

[SECURITY] Fedora 17 Update: opal-3.10.10-1.fc17

Open Phone Abstraction Library, implementation of the ITU H.323 teleconferencing protocol, and successor of the openh323 library...

Nmap NSE 6.01: ms-sql-info

Attempts to determine configuration and version information for Microsoft SQL Server instances. SQL Server credentials required: No will not benefit from 'mssql.username' & 'mssql.password'. Run criteria: Host script: Will always run. Port script: N/A NOTE: Unlike previous versions, this script...

Nmap NSE 6.01: rpcinfo

Connects to portmapper and fetches a list of all registered programs. It then prints out a table including for each program the RPC program number, supported version numbers, port number and protocol, and program name. SYNTAX: nfs.version: number If set overrides the detected version of nfs...

Nmap NSE 6.01: dns-zone-transfer

Requests a zone transfer AXFR from a DNS server. The script sends an AXFR query to a DNS server. The domain to query is determined by examining the name given on the command line, the DNS server's hostname, or it can be specified with the dns-zone-transfer.domain' script argument. If the query is...

Nmap NSE 6.01: mysql-info

Connects to a MySQL server and prints information such as the protocol and version numbers, thread ID, status, capabilities, and the password salt. If service detection is performed and the server appears to be blocking our host or is blocked because of too many connections, then this script isn'...