|
|
Colapse all |
Post message
FreeBSD 6.4 pipeclose()/knlist_cleardel() race condition exploit 2009-10-08 Przemyslaw Frasunek (venglin freebsd lublin pl) [USN-845-1] Pan vulnerability 2009-10-08 Marc Deslauriers (marc deslauriers canonical com) =========================================================== Ubuntu Security Notice USN-845-1 October 08, 2009 pan vulnerability CVE-2008-2363 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS This advisory [ more ] [ reply ] [USN-844-1] mimeTeX vulnerabilities 2009-10-08 Marc Deslauriers (marc deslauriers canonical com) =========================================================== Ubuntu Security Notice USN-844-1 October 08, 2009 mimetex vulnerabilities CVE-2009-1382, CVE-2009-2459 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8. [ more ] [ reply ] Remote buffer overflow in httpdx 2009-10-08 pankaj208 gmail com httpdx web server 1.4 is vulnerable to a remote buffer overflow using long GET requests such as http://www.example.com/aaa=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA... The vulnerability lies in httpdx_src/http.cpp in h_handlepeer() : strcpy(index,client->filereq); Other versions may also be vulnera [ more ] [ reply ] DreamPoll 3.1 Vulnerabilities 2009-10-08 mark infosecstuff com During a recent security audit of the DreamPoll 3.1 software by Dreamlevels, I discovered a number of XSS and SQL Injection vulnerabilities in the application. These vulnerabilities could be exploited to make unauthorized changes to a web site or compromise a client accessing a site that utilizes t [ more ] [ reply ] [DSECRG-09-048] HP LaserJet printers - Multiple Stored XSS vulnerabilities 2009-10-07 DSecRG (research dsecrg com) [DSECRG-09-017] SAP GUI vsflexGrid ActiveX - Buffer Overflow vulnerability 2009-10-07 DSecRG (research dsecrg com) iDefense Security Advisory 10.07.09: IBM AIX rpc.cmsd Stack Buffer Overflow Vulnerability 2009-10-07 iDefense Labs (labs-no-reply idefense com) iDefense Security Advisory 10.07.09 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 07, 2009 I. BACKGROUND IBM's AIX is a Unix operating system based on System V, which runs on the PowerPC (PPC) architecture. For more information, visit the product web site at the following URL. http:/ [ more ] [ reply ] [SECURITY] [DSA 1903-1] New graphicsmagick packages fix several vulnerabilities 2009-10-07 Giuseppe Iuculano (giuseppe iuculano it) [security bulletin] HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS) 2009-10-07 security-alert hp com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01841397 Version: 1 HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS) NOTICE: The information in this Security Bulletin should be [ more ] [ reply ] BulletProof FTP Client Buffer Overflow (SEH) 2009-10-07 rafa de sousa hotmail com /* BulletProof FTP Client suffer a buffer overflow (SEH). Tested on BullerProof FTP Client v. 2.63 build 56 (The last one) but may work with older releases as well Registers: EAX 00000000 ECX 65646362 EDX 7C9032BC ntdll.7C9032BC EBX 00000000 ESP 0012F1E0 EBP 0012F200 ESI 00000000 ED [ more ] [ reply ] CORE-2009-0922: Jetty Persistent XSS in Sample Cookies Application 2009-10-06 CORE Security Technologies Advisories (advisories coresecurity com) Dopewars 1.5.12 Server Denial of Service 2009-10-06 dougtko gmail com ## Description ## The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation. ## POC ## ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902 ## Fix ## This issue is resolved in the SVN version of the application. # [ more ] [ reply ] [USN-843-1] BackupPC vulnerability 2009-10-06 Marc Deslauriers (marc deslauriers canonical com) =========================================================== Ubuntu Security Notice USN-843-1 October 06, 2009 backuppc vulnerability CVE-2009-3369 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8. [ more ] [ reply ] [USN-842-1] Wget vulnerability 2009-10-06 Marc Deslauriers (marc deslauriers canonical com) =========================================================== Ubuntu Security Notice USN-842-1 October 06, 2009 wget vulnerability CVE-2009-3490 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 L [ more ] [ reply ] [Advisory]PBBoard <=2.0.2 Full Path Disclosure 2009-10-06 admin sec-area com Advisory]PBBoard <=2.0.2 - Full Path Disclosure Details ======= Product: PHP <= PBBoard Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.pbboard.com Credits ============ Discovered by: rUnViRuS site: http://www.sec-area.com Affected Products: ---------------------------- test on [ more ] [ reply ] [Sec-Area Advisory]PBBoard <=2.0.2 - XSS in Topic 2009-10-06 admin sec-area com [Sec-Area Advisory]pbboard <=2.0.2 - XSS in Topic Details ======= Product: PHP <= PBBoard Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.pbboard.com Credits ============ Discovered by: rUnViRuS site: http://www.sec-area.com Affected Products: ---------------------------- test [ more ] [ reply ] AlleyCode SEH overflow POC 2009-10-05 rafa de sousa hotmail com What is AlleyCode? AlleyCode is a free html editor. Alleycode was chosen as one of the best freebies on the Net. The entire list of the ' 101 Fabulous Freebies' was featured in the May 2006 issue of PCWorld Magazine. Thanks PCWorld... Alleycode is a fast, sleek and highly productive award w [ more ] [ reply ] |
|
Privacy Statement |
knlist_cleardel() resulting in NULL pointer dereference. The following code
exploits vulnerability to run code in kernel mode, giving root shell and
escaping from jail.
http://www.frasunek.com/pipe.txt
The bug was fixed
[ more ] [ reply ]