[SECURITY] [DSA 277-1] New apcupsd packages fix remote root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 277-1 [email protected] http://www.debian.org/security/ Martin Schulze April 3rd, 2003 http://www.debian.org/security/faq -...

Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Expl

Exploit for macOS platform in category remote exploits ======================================================================= Darwin Streaming Server 'filename'; $templatefile = $query-'template'; Based on http://wbyte.ath.cx/wbyte/researches/qtss-core.txt use IO::Socket; use LWP::Simple; use LW...

Darwin Streaming Server 4.1.2 - &#039;parse_xml.cgi&#039; Code Execution

!/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote root compromise: $filename = $query-'filename'; $templatefil...

SuSE Security Announcement: Heartbeat &#40;SuSE-SA:2002:037&#41;

-----BEGIN PGP SIGNED MESSAGE----- SuSE Security Announcement Package: heartbeat Announcement-ID: SuSE-SA:2002:037 Date: Monday, Oct 14, 12:00 UTC Affected products: 8.0, 8.1 Vulnerability Type: remote root Severity 1-10: 7 SuSE default package: yes Cross References:...

GLSA: OpenSSL

-------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT - -------------------------------------------------------------------- PACKAGE :openssl SUMMARY :denial of service / remote root exploit DATE :2002-07-30 16:15:00 -...

IRIX xfsmd vulnerability

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title: xfsmd vulnerability Number: 20020605-01-I Date: June 20, 2002 Reference: CAN-2002-0359 - ----------------------- - --- Issue Specifics --- - ----------------------- It's been reported that the /usr/etc/xfsmd daemon has security...

wu-ftpd &lt;= 2.6.1 Remote Root Exploit

No description provided by source. / 7350wurm - x86/linux wuftpd remote root exploit TESO CONFIDENTIAL - SOURCE MATERIALS This is unpublished proprietary source code of TESO Security. The contents of these coded instructions, statements and computer programs may not be disclosed to third parties,...

Solaris /bin/login Remote Root Exploit (SPARC/x86)

Exploit for linux platform in category remote exploits ================================================== Solaris /bin/login Remote Root Exploit SPARC/x86 ================================================== / 7350963 - /bin/login remote root explot SPARC/x86 TESO CONFIDENTIAL - SOURCE MATERIALS Th...

[SECURITY] [DSA 086-1] New versions of ssh-nonfree &amp; ssh-socks fix buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------------- Debian Security Advisory DSA 086-1 [email protected] http://www.debian.org/security/ Michael Stone November 13, 2001 -...

[SECURITY] [DSA 086-1] New versions of ssh-nonfree & ssh-socks fix buffer overflow

Package: ssh-nonfree, ssh-socks Vulnerability: remote root exploit Debian-specific: no We have received reports that the "SSH CRC-32 compensation attack detector vulnerability" is being actively exploited. This is the same integer type error previously corrected for OpenSSH in DSA-027-1. OpenSSH...

URGENT SECURITY ADVISORY FOR SSH SECURE SHELL 3.0.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dear Secure Shell Community, A potential remote root exploit has been discovered in SSH Secure Shell 3.0.0, for Unix only, concerning accounts with password fields consisting of two or fewer characters. Unauthorized users could potentially log in to...

[DSA-045-2] New version of ntp released

---------------------------------------------------------------------------- Debian Security Advisory DSA-045-2 [email protected] http://www.debian.org/security/ Michael Stone April 9, 2001 - ---------------------------------------------------------------------------- Package: ntp...

LPRng (RedHat 7.0) - &#039;lpd&#039; Format String

/ Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the represented code in your programs,...

INND/NNRP < 1.6.X Remote Root Overflow Exploit

Exploit for linux platform in category remote exploits ============================================== INND/NNRP include include include define DEFAULTOFFSET 792 define BUFFERSIZE 796 define ADDRS 80 define RET 0xefbf95e4 define NOP "\x08\x21\x02\x80" int mainargc, argv int argc; char argv; char...

BFTPd - vsprintf() Format Strings

BFTPd - vsprintf Format Strings / Copyright c 2000 - Security.is The following material may be freely redistributed, provided that the code or the disclaimer have not been partly removed, altered or modified in any way. The material is the property of security.is. You are allowed to adopt the...

[SECURITY] New version of libpam-smb released

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Michael Stone September 11, 2000 - ------------------------------------------------------------------------ Package: libpam-smb Vulnerability:...

Redhat Linux 6.x remote root exploit

Hi, Included below is an exploit for the recently exposed linux rpc.statd format string vulnerability0. I have tailored it towards current Redhat Linux 6.x installations. It can easily be incorporated into attacks against the other vulnerable Linux distributions. I am not a security expert, but...

[SECURITY] New verion of dhcp released (updated)

------------------------------------------------------------------------ Debian Security Advisory [email protected] http://www.debian.org/security/ Michael Stone July 28, 2000 - ------------------------------------------------------------------------ Package: dhcp-client-beta dhcp-client...

[SECURITY] New Debian nfs-common packages released

---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz July 15, 2000 - ---------------------------------------------------------------------------- Package: nfs-common from...

[SECURITY] New verion of dhcp released

Package: dhcp-client-beta dhcp-client Vulnerability type: remote root exploit Debian-specific: no The versions of the ISC DHCP client in debian 2.1 slink and debian 2.2 potato are vulnerable to a root exploit. The OpenBSD team reports that the client inappropriately executes commands embedded in...