CVE-2008-4109

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service connection sl...

PhpWebGallery 1.3.4 Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x ka0x01 at gmail dot com D.O.M Labs - Security...

DEBIAN-CVE-2008-3067

sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits...

SmartPPC Pay Per Click Script - idDirectory Blind SQL Injection (2)

SmartPPC Pay Per Click Script - idDirectory Blind SQL Injection 2 !/usr/bin/perl -W SmartPPC Pay Per Click Script Blind SQL Injection Exploit File affected: directory.php $idDirectory Vulnerability: Hamtaro Exploit: ka0x ka0x@domlabs:$ ./smartppc.pl -u...

Different IE browser windows have different sessions and different session timeout timing

One of our user reported the following: ---- I discovered the reason why JIRA sometimes closes my IE session, it depends on the way you login: 1 When you login via navigation to your home page http://support/jira/secure/Dashboard.jspa all is ok, multiple JIRA sessions never expire. 2 When you log...

Different IE browser windows have different sessions and different session timeout timing

One of our user reported the following: ---- I discovered the reason why JIRA sometimes closes my IE session, it depends on the way you login: 1 When you login via navigation to your home page http://support/jira/secure/Dashboard.jspa all is ok, multiple JIRA sessions never expire. 2 When you log...

Debian: Security Advisory (DSA-662-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2007-5966

Integer overflow in the hrtimerstart function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service panic via a large relative timeout value. NOTE: some of these details are obtained from third party information...

Important: kernel security and bug fix update

2.6.9-67.0.1.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 2.6.9-67.0.1 -kernel ieee80211 off-by-two integer underflow...

PT-2007-6895 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.23.10 Description: The issue is related to an integer overflow in the hrtimer start function, which can be exploited by local users to execute arbitrary code or cause a denial of service, resulting in a syst...

dlink.txt

!/bin/bash Coded Bt Ph3mt Of K-Security Team This Code is private, pls do not redistribute Release Date 25/11/2007 Code function dow echo 'POST /cgi-bin/firmwarecfg HTTP/1.1' richiesta echo 'Host: $IP' richiesta echo 'User-Agent: veryprivateacsor' richiesta echo 'Accept:...

SuSE 10 Security Update : clamav (ZYPP Patch Number 2243)

The virus scan engine ClamAV was update to version 0.88.6. Following issues are fixed by this update : - freshclam: apply timeout patch from Everton da Silva Marques new options: ConnectTimeout and ReceiveTimeout - clamd: change stack size at the right place closes clamav bug103 -...

runcms-overwrite.txt

RunCmss Bug Yahoo! Crawler body font-size: 10px; font-family: verdana; INPUT BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 10px; BORDER-LEFT-COLOR: D50428; BACKGROUND: 590009; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: D50428; COLOR: 00ff00; BORDER-TOP-COLOR:...

Important: openldap security and enhancement update

2.3.27-8.1 - fix security issue CVE-2007-5707 360001 - fix manual bind timeout 368231 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://oss.oracle.com/pipermail/el-errata/attachments/20071123/279499e3/attachment-0001.html...

RHEL 4 : openldap (RHSA-2007:1038)

Updated openldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and...

compat, openldap security update

CentOS Errata and Security Advisory CESA-2007:1038 Updated openldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of LDAP...

Moderate: Red Hat Security Advisory: openldap security and enhancement update

Updated openldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and...

RHEL 5 : openldap (RHSA-2007:1037)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2007:1037 advisory. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. A flaw was found in the way...

Important: Red Hat Security Advisory: openldap security and enhancement update

Updated openldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications an...

New Feature for the Block FTP Brute Force Attacks Protection: Block the Attacker for a Configurable Period of Time

The File Transfer Protocol FTP is used to connect computers over the Internet enabling file transferring between their users. FTP Brute Force Attacks are a common threat on vulnerable systems. Brute Force Attacks are a significant threat on users? privacy. Using Brute Force, remote attackers...