Important: Red Hat Security Advisory: kernel-rt security and bug fix update

Updated kernel-rt packages that fix multiple security issues and three bugs are now available for Red Hat Enterprise MRG 1.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

Fedora Update for udunits2 FEDORA-2010-17819

Check for the Version of udunits2 OpenVAS Vulnerability Test Fedora Update for udunits2 FEDORA-2010-17819 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[SECURITY] Fedora 13 Update: udunits2-2.1.19-1.fc13

The Unidata units utility, udunits2, supports conversion of unit specificat ions between formatted and binary forms, arithmetic manipulation of unit specifications, and conversion of values between compatible scales of measurement. A unit is the amount by which a physical quantity is measured. Fo...

[SECURITY] Fedora 14 Update: udunits2-2.1.19-1.fc14

The Unidata units utility, udunits2, supports conversion of unit specificat ions between formatted and binary forms, arithmetic manipulation of unit specifications, and conversion of values between compatible scales of measurement. A unit is the amount by which a physical quantity is measured. Fo...

RedHat Update for kernel RHSA-2010:0723-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2010:0723-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

PHP Classifieds 7.3 - Remote File Inclusion

================================== PHP Classifieds v7.3 RFI Vulnerability ================================== ==================================================== x ExpL0it TitLe : PHP Classifieds v7.3 RFI Vulnerability x DatE : 09 September 2010 x AutH0r : alsa7r x Contact : [email protected] x...

PHP-Nuke 8.0 Remote Blind SQL Injection

PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print "+ the host must be the complete path to...

T.J. Campana on the Waledac Botnet Takedown

Dennis Fisher and Ryan Naraine talk with Microsoft’s T.J. Campana about the company’s work to disrupt and take down the Waledac botnet and the other work being done by Microsoft’s Digital Crimes Unit. Podcast audio courtesy of sykboy65 Subscribe to the Digital Underground podcast on...

kernel: r8169 issue reported at 26c3

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to 1 cause a denial of service temporary network outage via a packet with a crafted size, in conjunction with...

CVE-2010-0328

Cross-site scripting XSS vulnerability in the Unit Converter cs2unitconv extension 1.0.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Unit Converter cs2unitconv extension 1.0.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2010-0328

Cross-site scripting XSS vulnerability in the Unit Converter cs2unitconv extension 1.0.4 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2010-0328

CVE-2010-0328 affects the TYPO3 Unit Converter extension cs2_unitconv (version 1.0.4). The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary script/HTML via unspecified vectors. Public references indicate a fixed version is 1.0.5 (possible upgrade...

kernel: r8169 issue reported at 26c3

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to 1 cause a denial of service temporary network outage via a packet with a crafted size, in conjunction with...

kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500

The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...

[SECURITY] Fedora 12 Update: rubygem-actionpack-2.3.4-3.fc12

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 11 Update: rubygem-actionpack-2.3.2-4.fc11

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Trango Broadband Wireless Interception

-------------------------------------------------------------------------- Trango Broadband Wireless M5830 Series Rogue SU Authentication Bug Date : 15 December, 2009 By: Blair - [email protected] -------------------------------------------------------------------------- Background ----------...

Trango Broadband Wireless Rogue SU Authentication Bug

-------------------------------------------------------------------------- Trango Broadband Wireless M5830 Series Rogue SU Authentication Bug Date : 15 December, 2009 By: Blair - [email protected] -------------------------------------------------------------------------- Background ----------...

[SECURITY] Fedora 10 Update: rubygem-actionpack-2.1.1-5.fc10

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...