Novell NetWare 6.5 SP2-SP7 - LSASS CIFS.NLM Overflow (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Novell NetWare...

ms ;)

Hello vuln, char bug = "??C:"; forint i = 0; i 10; i ++ ::MessageBox0, bug, bug, MBSERVICENOTIFICATION; На 2-4 итерации - синий экран или ребут from forum kuban.ru; NULL -- Best regards, wins mailto:[email protected]...

Mandrake Linux Security Advisory : kernel (MDKSA-2006:124)

A race condition in the Linux kernel 2.6.17.4 and earlier allows local users to obtain root privileges due to a race condition in the /proc filesystem. The provided packages are patched to fix these vulnerabilities. All users are encouraged to upgrade to these updated kernels immediately and rebo...

Mandrake Linux Security Advisory : kernel (MDKSA-2006:151)

A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : Prior to and including 2.6.16-rc2, when running on x8664 systems with preemption enabled, local users can cause a DoS oops via multiple ptrace tasks that perform single steps CVE-2006-1066. Prior to 2.6.16, a...

Microsoft Plug and Play Service Registry Overflow

This module triggers a stack buffer overflow in the Windows Plug and Play service. This vulnerability can be exploited on Windows 2000 without a valid user account. Since the PnP service runs inside the service.exe process, this module will result in a forced reboot on Windows 2000. Obtaining cod...

Important kernel security update

2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...

CVE-2006-5966

Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to 1 reboot the system using the Reinicializar method in the ActiveScan.1 ActiveX control, or 2 determine arbitrary file existence and size via the ObtenerTamano method in the PAVPZ.SOS.1 ActiveX control...

CVE-2006-5966

CVE-2006-5966 affects Panda ActiveScan 5.53.00 and earlier builds up to 5.54.01. The issue arises from two ActiveX controls: ActiveScan.1 Reinicializar allows remote reboot of the system, and PAVPZ.SOS.1 ObtenerTamano allows an attacker to determine arbitrary file existence and size. This is a re...

CVE-2006-5966

Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to 1 reboot the system using the Reinicializar method in the ActiveScan.1 ActiveX control, or 2 determine arbitrary file existence and size via the ObtenerTamano method in the PAVPZ.SOS.1 ActiveX control...

Microsoft Windows Server Service SMB Rename Code Execution (MS06-063; CVE-2006-4696)

SMB Server Message Block is a file, print, and other network services suite used by Windows operating systems. By sending a specially crafted SMB Rename request, an attacker may cause a remote Windows server to reboot or halt. In combination with successful code injection, this could also lead to...

DSA-1183-1 kernel-source-2.4.27 - several vulnerabilities

Bulletin has no description...

CVE-2006-4833

The CVE-2006-4833 entry concerns Verso NetPerformer FRAD ACT SDM-95xx (R1 and earlier, 7.xx), SDM-93xx (R2 and earlier, 10.x.x), and SDM-92xx (R1 and earlier, 9.x.x). It describes a remote denial of service caused by sending an ICMP packet with the same destination and source address and port (th...

rPSA-2006-0162-1 kernel

rPath Security Advisory: 2006-0162-1 Published: 2006-08-31 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Local Root Deterministic Privilege Escalation Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.17.11-1-0.1 References:...

CentOS 4 : kernel (CESA-2006:0617)

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

USN-330-1: tiff vulnerabilities

Tavis Ormandy discovered that the TIFF library did not sufficiently check handled images for validity. By tricking an user or an automated system into processing a specially crafted TIFF image, an attacker could exploit these weaknesses to execute arbitrary code with the target application's...

[SECURITY] [DSA 1111-1] New Linux kernel 2.6.8 packages fix privilege escalation

-------------------------------------------------------------------------- Debian Security Advisory DSA 1111-1 [email protected] http://www.debian.org/security/ Dann Frazier Jul 16th, 2006 http://www.debian.org/security/faq -...

DSA-1111 kernel-source-2.6.8 - race condition

Bulletin has no description...

trifinite Security Advisory: Buffer Overrun in Toshiba Bluetooth Stack for Windows

trifinite Security Advisory: Buffer Overrun in Toshiba Bluetooth Stack for Windows TRSA00001 http://trifinite.org/trifiniteadvisorytoshiba.html Author: Martin Herfurt martin.herfurt at trifinite.org Organization: trifinite.org Web: http://trifinite.org/ Summary This advisory describes a...

[SA20618] FAST360 Appliance DNS Analysis Denial of Service

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

os-x/ppc sync() reboot() 32 bytes

No description provided by source. / MacOSX/PowerPC Shellcode for: sync, reboot 32 bytes hophet at gmail.com http://www.nlabs.com.br/hophet/ / include stdio.h include string.h char shellcode = "\x7c\x63\x1a\x79" "\x39\x40\x01\x06" "\x38\x0a\xff\x1e" "\x44\xff\xff\x02" "\x60\x60\x60\x60"...