83 matches found
ArchStrike - Security Layer for Arch Linux
An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x8664, ARMv6, and ARMv7. ArchStrike is a penetration testing and security layer on top of Arch Linux. We follow the Arch Linux standards very closely in order to keep our packages clean,...
Microsoft Office CVE-2015-6177 Memory Corruption Vulnerability
Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected...
USN-2755-1: Cyrus SASL vulnerability
It was discovered that Cyrus SASL incorrectly handled certain invalid password salts. An attacker could use this issue to cause Cyrus SASL to crash, resulting in a denial of service...
openssl: DTLS memory exhaustion
A flaw was discovered in the way OpenSSL handled DTLS packets. A remote attacker could use this flaw to cause a DTLS server or client using OpenSSL to crash or use excessive amounts of memory...
Sun SunPCi II VNC Software 2.3 Password Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5146/info The SunPCi II card is a co-processor for a number of Solaris based systems, and provides PC software compatibility, including the ability to run Microsoft Windows. Driver software is available for the SunPCi car...
[Rootkit Hunter] Scanning tool to ensure you for about 99.9%* you're clean of nasty tools
Rootkit scanner is scanning tool to ensure you for about 99.9% you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests like: - MD5 hash compare - Look for default files used by rootkits - Wrong file permissions for binaries - Look for suspected...
Oracle Linux 3 : cyrus-sasl (ELSA-2007-0878)
From Red Hat Security Advisory 2007:0878 : Updated cyrus-sasl packages that correct a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus...
Oracle Linux 4 : cyrus-sasl (ELSA-2007-0795)
From Red Hat Security Advisory 2007:0795 : An updated cyrus-sasl package that addresses a security issue and fixes various other bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sas...
rdp-enum-encryption NSE Script
Determines which Security layer and Encryption level is supported by the RDP service. It does so by cycling through all existing protocols and ciphers. When run in debug mode, the script also returns the protocols and ciphers that fail and any errors that were reported. The script was inspired by...
Postfix SMTP Server SASL Authentication Memory Corruption (CVE-2011-1720)
A memory corruption vulnerability has been reported in Postfix SMTP server. Postfix is a popular mail server for Unix-like platforms. The vulnerability is specific to Postfix servers that use Cyrus Simple Authentication and Security Layer SASL library. SASL is a framework for providing...
(smtpd): Crash due to improper management of SASL handlers for SMTP sessions
The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service...
IBM Tivoli Directory Server SASL - Bind Request Remote Code Execution
Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=26&Itemid=26 Application: IBM Tivoli Directory Server SASL Bind Request Remote Code Execution Vulnerability Platforms: Windows Exploitation: Remote code execution CVE Number: CVE-2011-1206 ZDI number: ZDI-11-136...
Fedora Update for gnutls FEDORA-2010-9518
Check for the Version of gnutls OpenVAS Vulnerability Test Fedora Update for gnutls FEDORA-2010-9518 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
qpid: large messaages cause crash when using digest-md5 and security layer
qpid-cpp 1.0 crashes when a large message is sent and the Digest-MD5 mechanism with a security layer is in use...
DSA-1807-1 cyrus-sasl2 cyrus-sasl2-heimdal - arbitrary code execution
Bulletin has no description...
FreeBSD Ports: cyrus-sasl
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
RHEL 4 : cyrus-sasl (RHSA-2007:0795)
An updated cyrus-sasl package that addresses a security issue and fixes various other bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus implementation...
Moderate: Red Hat Security Advisory: cyrus-sasl security update
Updated cyrus-sasl packages that correct a security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple...
Solaris 5.10 (sparc) : 119345-07
SASL 2.19.20090601: Simple Authentication and Security Layer. Date this patch was last updated by Sun : Jul/21/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Securit...
Solaris 5.8 (sparc) : 115328-08
SASL 2.19.20090601: Simple Authentication and Security Layer. Date this patch was last updated by Sun : Jul/21/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network...