USN-1357-1: OpenSSL vulnerabilities

It was discovered that the elliptic curve cryptography ECC subsystem in OpenSSL, when using the Elliptic Curve Digital Signature Algorithm ECDSA for the ECDHEECDSA cipher suite, did not properly implement curves over binary fields. This could allow an attacker to determine private keys via a timi...

Sunway ForceControl - SNMP 'NetDBServer.exe' Opcode 0x57 (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Sunway Forcecontr...

[SECURITY] Fedora 15 Update: nspr-4.8.9-2.fc15

NSPR provides platform independence for non-GUI operating system facilities. These facilities include threads, thread synchronization, normal file and network I/O, interval timing and calendar time, basic memory management malloc and free and shared library linking...

VLC (libtaglib_plugin.dll) divide by zero DOS

No description provided by source. import binascii print '\n\n' print '' print ' VLC libtaglibplugin.dll divide by zero DOS ' print ' Tested on : Windows 7 and XP sp3 ' print ' VLC verion : 1.2.0 and 1.1.11 possibly lower ' print ' Author : nomnom ' print ' Date : 1/19/2012 ' print ' - shouts to...

[BSA-060] Security Update for openssl

Andres Salomon uploaded new packages for openssl which fixed the following security problems: CVE-2011-3210 Unsafe thread handling in ECDH ciphersuite allow denial of service attack. CVE-2011-1945 Timing attacks against ECDHEECDSA private keys. CVE-2011-0014 Remote denial of service attacks...

Google Chrome PoC, killing thread

No description provided by source. -' pigtail23 -' -' www.remoteshell.de -.OO .- OO.- OO .-/ -. .' \ ,--' ,----'/ '. / ,---. ,--',--. .----. .----. ...--'' | OO' .-OO |'--...| \ /.\ | OO| -',-. |.-, | | |.' | | | | | .-, --. .--''-'|.' | | | | |OO .' .' | | ..'| |/ | | './ | | | .-. || |/| ' |...

Google Chrome - Killing Thread (PoC)

-' pigtail23 -' -' www.remoteshell.de -.OO .- OO.- OO .-/ | '-' | | | | | | | | |'-| |'| |\ -' / --' --' -----' --' --' --' --' -----' ------' ---'' October 22, 2011 Ohh nice! What u doing google? Thx 4 ur bug! 0o Google Chrome PoC, killing thread. Exploitable or only a DOS!? Found no way to...

Google Chrome - Killing Thread (PoC)

Google Chrome - Killing Thread PoC -' pigtail23 -' -' www.remoteshell.de -.OO .- OO.- OO .-/ | '-' | | | | | | | | |'-| |'| |\ -' / --' --' -----' --' --' --' --' -----' ------' ---'' October 22, 2011 Ohh nice! What u doing google? Thx 4 ur bug! 0o Google Chrome PoC, killing thread. Exploitable o...

Google Chrome PoC, killing thread

Exploit for windows platform in category dos / poc -' pigtail23 -' -' www.remoteshell.de -.OO .- OO.- OO .-/ | '-' | | | | | | | | |'-| |'| |\ -' / --' --' -----' --' --' --' --' -----' ------' ---'' October 22, 2011 Ohh nice! What u doing google? Thx 4 ur bug! 0o Google Chrome PoC, killing...

[BSA-052] Security Update for libvirt

Guido Günther uploaded new packages for libvirt which fixed the following security problems: CVE-2011-2511 Integer overflow in VirDomainGetVcpus CVE-2011-1486 Non thread safe error reporting For the squeeze-backports distribution the problems have been fixed in version 0.9.2-7bpo60+1. For the...

CVE-2011-2879

Google Chrome before 14.0.835.202 does not properly consider object lifetimes and thread safety during the handling of audio nodes, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...

CVE-2011-2879

Removed by vendor...

CVE-2011-2879

CVE-2011-2879 affects Google Chrome older than 14.0.835.202. The root cause is improper handling of object lifetimes and thread safety during audio node processing, allowing remote attackers to cause a denial of service or potentially other unspecified impact via unknown vectors. Public reference...

Mandriva Update for openssl MDVSA-2011:137 (openssl)

Check for the Version of openssl OpenVAS Vulnerability Test Mandriva Update for openssl MDVSA-2011:137 openssl Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

Mandriva Update for openssl MDVSA-2011:137 (openssl)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Linux Security Advisory : openssl (MDVSA-2011:137)

Multiple vulnerabilities has been discovered and corrected in openssl : The elliptic curve cryptography ECC subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm ECDSA is used for the ECDHEECDSA cipher suite, does not properly implement curves over binary...

CVE-2011-3210

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service daemon crash via out-of-order messages that violate t...

DEBIAN-CVE-2011-3210

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service daemon crash via out-of-order messages that violate t...

Code injection

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service daemon crash via out-of-order messages that violate t...

CVE-2011-3210

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service daemon crash via out-of-order messages that violate t...