Counter Strike game server DoS

Protocol is not protected against blind command injection, making it's possible to e.g. terminate any client's game by spoofing "quit" packet blindly...

Уязвимость в работе протокола Counter-Strike

Используя небезопасный транспорт, который обеспечивает UDP протокол при игре в Counter-Strike, а так же сам протокол взаимодействия между клиентом и сервером Counter-Strike, можно без труда выбрасывать игроков с сервера без каких либо прав. Для демонстрации я буду использовать nemesis и wireshark...

openSUSE Security Update : libopenssl-devel (libopenssl-devel-1554)

The TLS/SSLv3 protocol as implemented in openssl prior to this update was not able to associate data to a renegotiated connection. This allowed man-in-the-middle attackers to inject HTTP requests in a HTTPS session without being noticed. For example Apache's modssl was vulnerable to this kind of...

[SECURITY] [DSA-1934-1] New apache2 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-1934-1 [email protected] http://www.debian.org/security/ Stefan Fritsch November 16, 2009 http://www.debian.org/security/faq -...

SSL Flaw Opens Up Twitter MiTM Attack

The vulnerability in the design of the SSL/TLS protocol revealed earlier this month can apparently be used to carry out attacks in practice. On his blog, student Anil Kurmus reports that he was able to steal a Twitter password by using a man-in-the-middle attack. Until now it had been assumed tha...

DSA-1934-1 apache2 - several issues

Bulletin has no description...

WordPress CAPTCHA Fuctweb CapCC Plugin 1.0 - Security Bypass Vulnerability

This security-bypass vulnerability occurs in the audio CAPTCHA protocol. It allows attackers to bypass security restrictions and perform unauthorized actions. Solution Update the plugin...

MySQL Login Handshake Information Disclosure (CVE-2006-1516)

MySQL is an open-source implementation of a relational database management system. MySQL supports the SQL Structured Query Language database query language. The database product allows remote network connections from client applications over the proprietary MySQL network protocol. In addition to...

New System Preserves Right To Privacy In Web Searches

A team of Catalan researchers has developed a protocol to distort the user profile generated by Internet search engines, in such a way that they cannot save the searches undertaken by Internet users and thus preserve their privacy. Read the full story Science Daily...

smbv2-enabled NSE Script

Checks whether or not a server is running the SMBv2 protocol. Script Arguments randomseed, smbbasic, smbport, smbsign See the documentation for the smb library. smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername See the documentation for the smbauth library. Example Usage nmap...

SMB NTLMv1 Login Request Corruption

This module sends a series of SMB login requests using the NTLMv1 protocol with corrupted bytes. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB NTLMv1 Login Request Corruption',...

Nullsoft Winamp Ultravox Streaming Metadata Parsing Stack Buffer Overflow (CVE-2008-0065)

NullSoft Winamp is a multimedia player that is capable of playing back many audio/video formats and streaming protocols. Winamp supports the Ultravox media streaming format, a proprietary streaming media protocol developed by AOL. There exists a buffer overflow vulnerability in Nullsoft Winamp...

finch, libpurple, pidgin security update

CentOS Errata and Security Advisory CESA-2009:1453 Updated pidgin packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pidgin is an instant messaging...

CVE-2009-2346

CVE-2009-2346 affects the IAX2 protocol implementation in Asterisk (multiple releases across 1.2.x/1.4.x/1.6.x lines and Business/C.x branches; s800i) and allows a remote attacker to exhaust the call-number space by issuing a high volume of IAX2 messages, causing a denial of service. Connected ad...

CVE-2009-2346

The IAX2 protocol implementation in Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.2, 1.6.0.x before 1.6.0.15, and 1.6.1.x before 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1.1; and s800i 1.3.x before 1.3.0.3 allows remote attackers ...

New Remote Flaw Found in SMB2 in Windows Vista and Windows 7

Researchers have found a new vulnerability in the SMB2 protocol in Windows Vista and Windows 7 that enables an attacker to remotely crash vulnerable machines. There is proof-of-concept exploit available for the vulnerability, as well. There is no patch available for the vulnerability, which affec...

RedHat Security Advisory RHSA-2009:1218

The remote host is missing updates announced in advisory RHSA-2009:1218. Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. Federico Muttis of Core Security Technologies discovered a flaw in Pidgin...

Ubuntu 8.04 LTS / 8.10 / 9.04 : pidgin vulnerability (USN-820-1)

Federico Muttis discovered that Pidgin did not properly handle certain malformed messages in the MSN protocol handler. A remote attacker could send a specially crafted message and possibly execute arbitrary code with user privileges. Note that Tenable Network Security has extracted the preceding...

OpenH323 Opal SIP Protocol - Remote Denial of Service

OpenH323 Opal SIP Protocol - Remote Denial of Service !/usr/bin/env python OpenH323 Opal SIP Protocol Remote Denial of Service Vulnerability CVE-2007-4924 opal228dos.py by Jose Miguel Esparza 2007-10-08 S21sec labs import sys,socket if lensys.argv != 3: sys.exit"Usage: " + sys.argv0 + " targethos...

[USN-796-1] Pidgin vulnerability

=========================================================== Ubuntu Security Notice USN-796-1 July 06, 2009 pidgin vulnerability CVE-2009-1889 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04...