USBsploit v0.5 BETA Version Out !

"USBsploit is a PoC to generate Reverse TCP backdoors, malicious PDF or LNK files. But also running Autorun|play infections and dumping all USB files remotely on multiple targets at the same time, a set of extensions to dump can be specified. All EXE, PDF and LNK on the USB targets can also be...

How ZeuS Trojan Infects and Steals Money: What You Need to Know

You can get a ZeuS infection through a drive-by download from a malicious website or a hacked legitimate site. Clicking a link in an innocent-looking email can also open your system to attack. This past week, there was a surge of fake LinkedIn connection requests linked to ZeuS. While savvy users...

Active! mail 6 vulnerable to HTTP header injection

Overview Active! mail 6 from TransWARE Co. contains a HTTP header injection vulnerability. Active! mail 6 from TransWARE Co. is a web-based email software. Active! mail 6 contains a HTTP header injection vulnerability. Taketo Ikeuchi of Hitachi Solutions, Ltd. reported this vulnerability to IPA...

Immunity Canvas: FIREFOX_APPENDCHILD

Name| firefoxappendchild ---|--- CVE| CVE-2010-3765 Exploit Pack| CANVAS Description| firefoxappendchild Notes| CVE Name: CVE-2010-3765 VENDOR: Mozilla Notes: Interleaving document.write and appendChild can lead to duplicate text frames and overrunning of text run buffers. This exploit can only b...

CVE-2010-3192

CVE-2010-3192 affects the GNU C Library (glibc) and concerns runtime memory protection that prints argv[0] and backtrace data, potentially allowing a context-dependent attacker to read sensitive process memory. The description references a setuid program with a stack-based overflow (fortify_fail/...

AIX 530012 : U837585

The remote host is missing AIX PTF U837585 which is related to the security of the package devices.pciex.2514310025140100.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

FreeBSD -- Integer overflow in bzip2 decompression

Problem Description: When decompressing data, the run-length encoded values are not adequately sanity-checked, allowing for an integer overflow...

Apple Safari Webkit Runin Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2010-1806

Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via run-in styling in an element, related to object pointers...

Design/Logic Flaw

Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via run-in styling in an element, related to object pointers...

CVE-2010-1806

Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via run-in styling in an element, related to object pointers...

CVE-2010-1806

Removed by vendor...

CVE-2010-1806

Apple Safari WebKit Use-After-Free in run-in styling (CVE-2010-1806): affected are Safari 4.x before 4.1.2 and Safari 5.x before 5.0.2. Root cause is a use-after-free related to object pointers when processing run-in elements, allowing remote code execution or a denial of service (application cra...

Heap overflow

Heap-based buffer overflow in the nsTextFrameUtils::TransformText function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a bidirectional text run...

CVE-2010-3166

Heap-based buffer overflow in the nsTextFrameUtils::TransformText function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 might allow remote attackers to execute arbitrary code via a bidirectional text run...

Unexpected changes in tab focus can be used to run programs from the Internet – Opera Security Advisories

Unexpected changes in tab focus can be used to run programs from the Internet – Opera Security Advisories OPCOM Team | August 12, 2010 Severity Moderate Description Tabs may be used to obscure a download dialog that is visible in another tab. The dialog will allow the user to choose to run...

MDVA-2009:114 : logcheck

The logcheck package shipped in mandriva 2009.1 had two issues, preventing it to run properly: - its configuration directory /etc/logcheck is not readable with the identity used for running logcheck - it uses run-parts utility with unsupported --list option %NASLMINLEVEL 70300 @DEPRECATED@ This...

Design/Logic Flaw

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to the Cascading Style Sheets CSS run-...

ZDI-10-101: Apple Webkit SVG RadialGradiant Run-in Remote Code Execution Vulnerability

ZDI-10-101: Apple Webkit SVG RadialGradiant Run-in Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-101 June 8, 2010 -- CVE ID: CVE-2010-1749 -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- TippingPointTM IPS Customer Protection: TippingPoint...

Apple Webkit SVG RadialGradiant Run-in Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...