Packet Storm's last 50 added files.
Last Updated: Fri Jul 18 20:43:11 EDT 2008


[ john-1.7.3.1.tar.gz ] 6a2e174e71b2a220d5f8a34f1d2ce540 John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, and BeOS. Its primary purpose is to detect weak Unix passwords, but a number of other hash types are supported as well. 
[ prelude-manager-0.9.14.tar.gz ] ca47665fcf299732509459956297320b Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis. 
[ Software.Distribution.Malware.Infection.Vector.pdf ] f0295501b1659600e2481f6a2cb082cb This paper presents an efficient mechanism as well as the corresponding reference implementation for on-the-fly infecting of executable code with malicious software. Their algorithm deploys virus infection routines and network redirection attacks, without requiring the modification of the application itself. This allows infection of executables with an embedded signature when the signature is not automatically verified before execution. They briefly discuss countermeasures such as secure channels, code authentication as well as trusted virtualization that enables the isolation of untrusted downloads from other applications running in trusted domains or compartments.  
[ HomeSecurityMethodologyVacationGuide.1.2.pdf ] 346bf0939e1448e386c2e17f4862ea61 This is the Home Security Methodology Vacation Guide, written to help secure your home before you go on holiday.  
[ DSECRG-08-030.txt ] a1d98b6503e897b1b91cf0455730d9b4 Claroline eLearning and eWorking Platform version 1.8.9 suffers from cross site scripting, unsigned redirect, and cross site request forgery vulnerabilities.  
[ lateral-sql-followup.txt ] 18e62d117823ca0a5a0b55a02c6b4c8f Follow up information regarding a whitepaper about lateral SQL injection and how ALTER SESSION privileges are not needed.  
[ smbclientparser-exec.txt ] 435e611466edb69599f8c7790d08fce3 The SmbClientParser perl module suffers from a vulnerability that allows for remote command execution.  
[ defblog-sql.txt ] ba98e87788fb1251c1b9a4c5c9e1c82f Def Blog version 1.0.3 suffers from multiple SQL injection vulnerabilities.  
[ MDVSA-2008-148.txt ] ab9dcc763cd53eb00f2102db6b1ca667 Mandriva Linux Security Advisory - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.16. This update provides the latest Firefox to correct these issues.  
[ vim-filecreation.txt ] e0aafe45a3a0e558f53b941ce10d137f Vim version 5.0 through the current version suffer from an arbitrary code execution vulnerability via an insecure temporary file creation flaw.  
[ communitycms-rfi.txt ] 5df55fa6abc5ce6204ab218070e100d8 Community CMS version 0.1 remote file inclusion exploit.  
[ artic-sql.txt ] 0a4064e074188391a95718b0872a3b80 Artic Issue Tracker version 2.0.0 suffers from a remote SQL injection vulnerability in index.php.  
[ precms-sql.txt ] 894dcd4216ceaff99c1e3e1c96dbc5af preCMS version 1 suffers from a remote SQL injection vulnerability in index.php.  
[ ZDI-08-044.txt ] 58c97cd821304abdbc467ae1ad85e405 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the browser's handling reference counters to the nsCSSValue:Array class. Creating more then 65,535 references will overflow a 16-bit reference counter and therefore result in an erroneous free() while the object still exists. Properly manipulated this can result in arbitrary code execution under the context of the current user.  
[ ZDI-08-043.txt ] cf0518925fb29057bec90deed667e775 A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the GetVMArgsOption() function used while parsing the java-vm-args attribute of the j2se tag in xml based JNLP files. When a user downloads a malicious JNLP file, the vulnerable attribute is read into a static buffer. If an overly long value is defined by the java-vm-args attribute, a stack based buffer overflow occurs, resulting in an exploitable condition.  
[ ZDI-08-042.txt ] 40bc93865482ae2445c34853dcd2207d A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the writeManifest() method of the CacheEntry class. A directory traversal flaw in this method allows the creation of arbitrary files on the target system. After the file has been created, a call to Runtime.getRuntime.exec() can be used to execute the file.  
[ USN-623-1.txt ] 134f5257fe6d05be8b868a8de33caf4f Ubuntu Security Notice 623-1 - A flaw was discovered in the browser engine. A variable could be made to overflow causing the browser to crash. If a user were tricked into opening a malicious web page, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Billy Rios discovered that Firefox did not properly perform URI splitting with pipe symbols when passed a command-line URI. If Firefox were passed a malicious URL, an attacker may be able to execute local content with chrome privileges.  
[ SSRT080097-2.txt ] 16bcd9b00ec4628549a66a8a61cc3f8c HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access.  
[ beaweblogic-exec.txt ] b89a6b3557f431c1bc3869e6de7751ab Bea Weblogic Apache Connector code execution and denial of service exploit.  
[ debopenssh-auth.txt ] 227a31a0b1018513db637838fb8a6b39 It appears that there may be a privilege escalation vulnerability in OpenSSH under Debian due to how SELinux hands out roles.  
[ alstrasoftarticle-sql.txt ] d9765f592b561b9ec388eeec697ab728 AlstraSoft Article Manager Pro version 1.6 blind SQL injection exploit.  
[ DSECRG-08-029.txt ] 3e23f9ac98e5358667ca3e96dc1d5df6 Dokeos E-Learning System version 1.8.5 suffers from a local file inclusion vulnerability.  
[ SSRT080058.txt ] 81ca5324ef291a1e31b9850373d3dca6 HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running BIND. The vulnerability could be exploited remotely to cause DNS cache poisoning.  
[ alstrasoftvideo-sql.txt ] a4b1f490f900ac79a6103d69caabf1c8 AlstraSoft Video Share Enterprise version 4.5.1 suffers from a remote SQL injection vulnerability.  
[ ppmate-dospoc.txt ] 4d9ad3253238356563e1b7be4ea643d7 PPMate PPMedia Class ActiveX control buffer overflow proof of concept exploit.  
[ phphoo3526-sql.txt ] f12f4a4064162aecbff34b0314ae571a phpHoo3 versions 5.2.6 and below suffer from a SQL injection vulnerability in phpHoo3.php.  
[ draft-ietf-tsvwg-port-randomization-01.txt ] 3169ae2876e24bcbe919b97c4fecdeb4 This document describes a simple and efficient method for random selection of a client port number, such that the possibility of an attacker guessing the exact value is reduced. While this is not a replacement for cryptographic methods, the described port number randomization algorithms provide improved security/obfuscation with very little effort and without any key management overhead. The mechanisms described in this document are a local modification that may be incrementally deployed, and that does not violate the specifications of any of the transport protocols that may benefit from it, such as TCP, UDP, SCTP, DCCP, and RTP.  
[ openpro-rfi.txt ] 96d1323e7b6dbe45bc3aca9452b00112 openPro version 1.3.1 suffers from a remote file inclusion vulnerability.  
[ AntiPhishing.pdf ] 02b0ce244ae22a137a30a54990265547 Anti-Phishing Security Strategy - A lecture presented at BlackHat 2008.  
[ dsa-1611-1.txt ] 667d150cda2558de83b99a4350f259eb Debian Security Advisory 1611-1 - Anders Kaseorg discovered that afuse, an automounting file system in user-space, did not properly escape meta characters in paths. This allowed a local attacker with read access to the filesystem to execute commands as the owner of the filesystem.  
[ DSECRG-08-028.txt ] f7d76bff58337cf6b2b130888c9f4320 Velocity Web Server version 1.0 suffers from a directory traversal / arbitrary file download vulnerability.  
[ securing_a_webserver.txt ] c48568dcf8bbd3abcdfa1033ce6b1f2c Whitepaper discussing a lockdown methodology for a Cent OS 5 server with Apache and Cpanel installed.  
[ n.runs-SA-2008.003.txt ] 86cef345102da7283cb680756f7c7847 Apple QuickTime versions prior to 7.5 suffer from a heap overflow vulnerability when handling PICT images.  
[ n.runs-SA-2008.002.txt ] f9e5ad9d51dc0e30c8a0d4478a729c61 The F-Prot Anti-Virus engine versions below 4.4.4 suffer form an out-of-bounds memory access denial of service vulnerability.  
[ dsa-1544-2.txt ] 82e55904d542f28198d9499d43db9a50 Debian Security Advisory 1544-2 - Thomas Biege discovered that the upstream fix for the weak random number randomization did still not use difficult-to-predict random numbers. This is corrected in this security update.  
[ SSRT080097.txt ] a11f1f733768ff70d0e990e3269f40d2 HP Security Bulletin - Potential security vulnerabilities have been identified with HP Select Identity Active Directory Bidirectional LDAP Connector . The vulnerabilities could be exploited to allow remote unauthorized access.  
[ netrw-exec.txt ] 0a45093ff0e3eb716b14884b0b054a39 Lack of sanitization throughout Netrw can lead to arbitrary code execution upon opening a directory with a crafted name.  
[ vim72b-exec.txt ] 9315516bf2b023bbb2f7e8cdfb678067 Vim versions greater than and equal to 7.2.a.013 suffer from an arbitrary code execution vulnerability using the shellescape() function.  
[ alstrasoftaffiliate-sql.txt ] 3d78c40d281413d6d57d051186f49b8c AlstraSoft Affiliate Network Pro suffers from a remote SQL injection vulnerability.  
[ tplsoccersite-sql.txt ] 0f73071b45c84fd3fb1f878a415b03f7 tplSoccerSite version 1.0 suffers from multiple remote SQL injection vulnerabilities.  
[ joomladtr-sql.txt ] 57a66a09fc658028ae35b0c7e0b1c884 The Joomla DT Register component suffers from a remote SQL injection vulnerability.  
[ phpizabi-exec.txt ] 01286ddae876c582059a67aaf053a04c PHPizabi version 0.858b C1 HFP1 remote code execution exploit.  
[ MDVSA-2008-147.txt ] b8e63c1a7fd5d361e566c9cacb751161 Mandriva Linux Security Advisory - Tavis Ormandy of the Google Security Team discovered a heap-based buffer overflow when compiling certain regular expression patterns. This could be used by a malicious attacker by sending a specially crafted regular expression to an application using the PCRE library, resulting in the possible execution of arbitrary code or a denial of service. The updated packages have been patched to correct this issue.  
[ USN-625-1.txt ] 5e9e19eec557961a1d40d8762fd5cff3 Ubuntu Security Notice 625-1 - A massive slew of Linux kernel related vulnerabilities have been addressed for the linux-source-2.6.15/20/22 packages.  
[ photopostvbgal-upload.txt ] 7c5784cef3a3017bb87e79bbfc773e2f vBulletin PhotoPost vBGallery version 2.4.2 suffers from an arbitrary file upload vulnerability.  
[ hockeystats-sql.txt ] e27fc92d3fe7e99f55f9cd1800042ff1 HockeySTATS Online version 2.0 suffers from multiple remote SQL injection vulnerabilities.  
[ galatolo-cookie.txt ] 0470008f89dbd8a59795bbec171faa4b Galatolo Web manager version 1.3a suffers from an insecure cookie handling vulnerability.  
[ documentimaging-overflow.txt ] be9670fad83699888af79499434ba14b Document Imaging SDK version 10.95 ActiveX related buffer overflow proof of concept denial of service exploit.  
[ MDVSA-2008-146.txt ] 37e194777605bac78445c2e820e31d67 Mandriva Linux Security Advisory - A memory management issue was found in libpoppler by Felipe Andres Manzano that could allow for the execution of arbitrary code with the privileges of the user running a poppler-based application, if they opened a specially crafted PDF file. The updated packages have been patched to correct this issue.  
[ srm-1.2.9.tar.gz ] 7c65937cb9a7af75d1ab6d0927c6a2cc secure rm (srm) is a command-line compatible rm(1) which completely destroys file contents before unlinking. The goal is to provide drop in security for users who wish to prevent command line recovery of deleted information, even if the machine is compromised.