Section: .. / Last 20 Files /
| /// File Name: | fwknop-1.9.6.tar.gz | Description:
| fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap. | | Author: | Michael Rash | | Homepage: | http://www.cipherdyne.org/fwknop/ | | Changes: | Added the ability to explicitly run major classes of tests 46 with two new command line arguments to the fwknop_test.pl script. Updated the fwknop client to randomize the UDP source port for default SPA packet generation. Various other updates and additions. | | File Size: | 566465 | | Last Modified: | Jul 24 12:23:37 2008 | | MD5 Checksum: | 9734c99a1c0b28b1522ce50396405d54 |
|
| /// File Name: | wordpressdm-upload.txt | Description:
| WordPress Download Manager plugin version 0.2 arbitrary file upload exploit. | | Author: | SaO | | Homepage: | http://www.saohackstyle.com/ | | File Size: | 886 | | Last Modified: | Jul 24 12:20:02 2008 | | MD5 Checksum: | ab5a1c03a0efe55d5896dd7fcf629eec |
|
| /// File Name: | ibase-disclose.txt | Description:
| ibase versions 2.03 and below suffer from a remote file disclosure vulnerability in download.php. | | Author: | Dyshoo | | File Size: | 254 | | Last Modified: | Jul 24 12:18:51 2008 | | MD5 Checksum: | fe43ec1fa0a052b7535851f9cb69cd63 |
|
| /// File Name: | atomphotoblog-sql.txt | Description:
| Atom PhotoBlog version 1.1.5b1 suffers from a remote SQL injection vulnerability. | | Author: | Mr.SQL | | Homepage: | http://www.pal-hacker.com/ | | File Size: | 1488 | | Last Modified: | Jul 24 12:17:57 2008 | | MD5 Checksum: | 69a36f18579002640832d44da0a6de28 |
|
| /// File Name: | dsa-1616-1.txt | Description:
| Debian Security Advisory 1616-1 - Damian Put discovered a vulnerability in the ClamAV anti-virus toolkit's parsing of Petite-packed Win32 executables. The weakness leads to an invalid memory access, and could enable an attacker to crash clamav by supplying a maliciously crafted Petite-compressed binary for scanning. In some configurations, such as when clamav is used in combination with mail servers, this could cause a system to "fail open," facilitating a follow-on viral attack. | | Homepage: | http://www.debian.org/security | | File Size: | 16558 | | Related CVE(s): | CVE-2008-2713 | | Last Modified: | Jul 24 12:14:46 2008 | | MD5 Checksum: | aedebbf953275b7079e71948199d5566 |
|
| /// File Name: | bailiwicked_domain.rb.txt | Description:
| This exploit targets a fairly ubiquitous flaw in DNS implementations which allow the insertion of malicious DNS records into the cache of the target nameserver. This exploit caches a single malicious nameserver entry into the target nameserver which replaces the legitimate nameservers for the target domain. By causing the target nameserver to query for random hostnames at the target domain, the attacker can spoof a response to the target server including an answer for the query, an authority server record, and an additional record for that server, causing target nameserver to insert the additional record into the cache. This insertion completely replaces the original nameserver records for the target domain. | | Author: | I)ruid, H D Moore | | Homepage: | http://www.caughq.org/ | | File Size: | 15954 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 24 12:14:00 2008 | | MD5 Checksum: | 5882e859718d26d63b3bc1167eacb0fd |
|
| /// File Name: | pkd-1.1.tgz | Description:
| ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent. | | Author: | eric | | Changes: | Removed source port from hash. | | File Size: | 75401 | | Last Modified: | Jul 23 23:03:22 2008 | | MD5 Checksum: | 7ff6ab126922499e670b12c1882d5e7d |
|
| /// File Name: | bailiwicked_host.rb.txt | Description:
| This exploit targets a fairly ubiquitous flaw in DNS implementations which allow the insertion of malicious DNS records into the cache of the target nameserver. This exploit caches a single malicious host entry into the target nameserver. By causing the target nameserver to query for random hostnames at the target domain, the attacker can spoof a response to the target server including an answer for the query, an authority server record, and an additional record for that server, causing target nameserver to insert the additional record into the cache. | | Author: | I)ruid, H D Moore | | Homepage: | http://www.caughq.org/ | | File Size: | 16025 | | Related CVE(s): | CVE-2008-1447 | | Last Modified: | Jul 23 20:05:48 2008 | | MD5 Checksum: | 4def3738d35dc00d760fa023d0106a29 |
|
| /// File Name: | SDTCleaner-v1.0.zip | Description:
| SDT Cleaner is a small laboratory tool that attempts to restore the pointers installed by Anti-Virus and Firewalls in the SSDT (System Service Descriptor Table). | | Author: | Nahuel Riva | | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 243769 | | Last Modified: | Jul 23 19:57:13 2008 | | MD5 Checksum: | 9123411f2b13fc9ec9a831f7e8a6514d |
|
| /// File Name: | dsa-1615-1.txt | Description:
| Debian Security Advisory 1615-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. | | Homepage: | http://www.debian.org/security | | File Size: | 31926 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2798, CVE-2008-2799, CVE-2008-2800, CVE-2008-2801, CVE-2008-2802, CVE-2008-2803, CVE-2008-2805, CVE-2008-2807, CVE-2008-2808, CVE-2008-2809, CVE-2008-2811, CVE-2008-2933 | | Last Modified: | Jul 23 19:50:15 2008 | | MD5 Checksum: | 814da2c25fb7c7e932ae2c2849d21d29 |
|
| /// File Name: | dsa-1614-1.txt | Description:
| Debian Security Advisory 1614-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. It was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code. Billy Rios discovered that passing an URL containing a pipe symbol to Iceweasel can lead to Chrome privilege escalation. | | Homepage: | http://www.debian.org/security | | File Size: | 8712 | | Related CVE(s): | CVE-2008-2785, CVE-2008-2933 | | Last Modified: | Jul 23 19:49:36 2008 | | MD5 Checksum: | 357a585f8c33728c1e761bc85d365a57 |
|
| /// File Name: | dsa-1540-3.txt | Description:
| Debian Security Advisory 1540-3 - This update fixes a regression in lighttpd introduced in DSA-1540, causing SSL failures. | | Homepage: | http://www.debian.org/security | | File Size: | 14614 | | Related CVE(s): | CVE-2008-1531 | | Last Modified: | Jul 23 19:48:43 2008 | | MD5 Checksum: | cccf48a06495b899a26c83ab12130eb3 |
|
| /// File Name: | USN-628-1.txt | Description:
| Ubuntu Security Notice 628-1 - Over a dozen vulnerabilities in php5 have been addressed in Ubuntu. | | Homepage: | http://security.ubuntu.com/ | | File Size: | 62408 | | Related CVE(s): | CVE-2007-4782, CVE-2007-4850, CVE-2007-5898, CVE-2007-5899, CVE-2008-0599, CVE-2008-1384, CVE-2008-2050, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108, CVE-2008-2371, CVE-2008-2829 | | Last Modified: | Jul 23 19:47:53 2008 | | MD5 Checksum: | 6cd6d0407e8f8ffd96589e18817d582e |
|
| /// File Name: | vimfiletype-exec.txt | Description:
| This advisory discusses the filetype.vim vulnerability in Vim version 7.2b.10 that allows for arbitrary code execution and also notes that the Vim patch 7.1.300 did not fix the vulnerability. | | Author: | Jan Minar | | File Size: | 6106 | | Last Modified: | Jul 23 19:46:43 2008 | | MD5 Checksum: | 525775816c2441f36c404a28644bb87a |
|
| /// File Name: | emc-sql.txt | Description:
| EMC's Centera Universal Access product version CUA4.0_4735.p4 suffers from a SQL injection vulnerability. | | Author: | Aaron Brown, Lars Heidelberg | | File Size: | 4007 | | Last Modified: | Jul 23 19:44:55 2008 | | MD5 Checksum: | 535213a9fae7b8708f9e219a84119c62 |
|
| /// File Name: | AST-2008-011.txt | Description:
| Asterisk Project Security Advisory - An attacker may request an Asterisk server to send part of a firmware image. However, as this firmware download protocol does not initiate a handshake, the source address may be spoofed. Therefore, an IAX2 FWDOWNL request for a firmware file may consume as little as 40 bytes, yet produces a 1040 byte response. Coupled with multiple geographically diverse Asterisk servers, an attacker may flood an victim site with unwanted firmware packets. | | Author: | Tilghman Lesher | | Homepage: | http://www.asterisk.org/security | | File Size: | 10634 | | Related CVE(s): | CVE-2008-3264 | | Last Modified: | Jul 23 19:43:03 2008 | | MD5 Checksum: | 2185fd4b6b919de751e6fe7c8aab32a1 |
|
| /// File Name: | AST-2008-010.txt | Description:
| Asterisk Project Security Advisory - By flooding an Asterisk server with IAX2 'POKE' requests, an attacker may eat up all call numbers associated with the IAX2 protocol on an Asterisk server and prevent other IAX2 calls from getting through. Due to the nature of the protocol, IAX2 POKE calls will expect an ACK packet in response to the PONG packet sent in response to the POKE. While waiting for this ACK packet, this dialog consumes an IAX2 call number, as the ACK packet must contain the same call number as was allocated and sent in the PONG. | | Author: | Jeremy McNamara | | Homepage: | http://www.asterisk.org/security | | File Size: | 10633 | | Related CVE(s): | CVE-2008-3263 | | Last Modified: | Jul 23 19:41:47 2008 | | MD5 Checksum: | c3e6feb71c399d84d8dc74877ffc992c |
|
| /// File Name: | MDVSA-2008-154.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability in xemacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by xemacs. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 3385 | | Related CVE(s): | CVE-2008-2142 | | Last Modified: | Jul 23 19:39:45 2008 | | MD5 Checksum: | 02de82850dc988def1ef4ff9e0c8f68e |
|
| /// File Name: | MDVSA-2008-153.txt | Description:
| Mandriva Linux Security Advisory - A vulnerability in emacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by emacs. The updated packages have been patched to correct this issue. | | Homepage: | http://www.mandriva.com/security/ | | File Size: | 8619 | | Related CVE(s): | CVE-2008-2142 | | Last Modified: | Jul 23 19:26:54 2008 | | MD5 Checksum: | 317520423f82ed3a15b919a528d64ba9 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
