The Dune Webserver v0.6.7 has remotely exploitable buffer overflows. This code is a proof of concept exploit for linux/x86.
959582ca4a5d776e191b1bf9c713d5e8b9a9f1b81e495b3b70a6368fbe9afa9fTomcat v3.1 from the Apache Software Foundation displays the full path of the web server.
5db9188e04c6196fa5da09380ae76d6c9cd1be4273d6f1aaeb04095b15504e03On July 18th, details of a high-risk remote buffer overflow vulnerability were made public. This vulnerability has the potential to expose millions of email users to malicious attack and compromise. All current versions of Microsoft Outlook and Microsoft Outlook Express are vulnerable.
3f47095b21cc976d9a3e6f8b8281dae78538c0a86f2a7910eb933c1511a6b1b4XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. It is also more stable than xlock.
47693caee2ceae1d822ec08f5060574217f4d110c178ad2438892dcd950190c5Vigilante Advisory #4 - HP Jetdirect FTP service has a remote denial of service vulnerability affecting versions 8.20 and below. A long quote command causes the printer to crash, requiring a power cycle.
1760e48ed7729a901d201f966befad75e524963895c62e5c4145172f6c551d13Microsoft Outlook Advisory and Remote Exploit - A bug in a shared component of Microsoft Outlook and Outlook Express mail clients can allow a remote user to write arbitrary data to the stack. This bug has been found to exist in all versions of MS Outlook and Outlook Express on both Windows 95/98 and Windows NT 4. Includes in depth discussion and proof-of-point exploit that, when placed in the header field of a message or MIME attached message, will download and execute an executable from the web.
924dc94a7e9e122649116ef845008adf1d26be73434d2b03a7a0aebee8190822Advisory #50 - An exploitable buffer overflow has been found in all versions of Microsoft Outlook. The vulnerability could enable a malicious sender of an e-mail message with a malformed header to cause and exploit a buffer overrun on a user's machine. The buffer overrun could crash Outlook Express, Outlook e-mail client, or cause arbitrary code to run on the user's machine. The danger in this vulnerability is that the buffer overrun would occur even if the user does not open or preview the e-mail message.
3ac1c77969b0584ae303da959fdb8a320f93d58dd3415315da364ebff37b560fMicrosoft Outlook remote exploit - Tested on Outlook Express 5.0, Outlook 2000, Outlook 97.0, and Outlook 98. Includes Unix Perl version and windows source / binary. The included shellcode causes the victim computer to visit http://www.ussrback.com.
085dddfa2bd4ab473d84d0b82e4c65819d4e26e0cd1c0a68942ef5f759e74c63IP Filter is a TCP/IP packet filter suitable for use in a firewall environment. To use, it can either be run as a loadable kernel module (recommended) or incorporated into your UNIX kernel. Scripts are provided to install and patch system files as required.
01365d6ccef85bdc33799b5b0784e8dfefcd84217b0ecc5ac0a1e23c7e491057syslog-ng as the name shows is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pair, syslog-ng adds the possibility to filter based on message contents using regular expressions. The new configuration scheme is intuitive and powerful.
f5d009993e6e8c9f192198f1bef41d0252364f3c2312671091188b4649437a5aLinux Security Week July 17 - In this issue: Advisories were released on cvsweb, FreeBSD ip-options, popper, canna, wu-ftpd, dump, dhclient, tnef, Big Brother, ftpd setproctitle, and Apache::ASP. The feature article this week is "Jay Beale and the Bastille Linux Project". Also contains articles on Buffer Overflows, Securing Sendmail on four types of systems, Tripwire / AIDE, Installing djbdns (DNScache) for Name Service, SSH Tutorial, OpenSSH, Making an Unbreakable Code, E-signatures can be easily forged, and more.
3d9e8653af3e06043bbc68e1407563828783838c308899fc17267a6998ad378dnmap-web is a nifty web interface to nmap. It's some simple Perl/CGI script(s) you install on your web server which allows you to submit nmap commands (and receive the responses) through a web interface.
8f7d22280a31f6940efb7d06c368256b208945f7d9ff869ef772f13c22a4756dDie Sicherheit von ICQ - This document explains ICQ security problems, in German.
8ceea704b4e028b03aa776a13d90a6f18d352741f933ea5b1b1a837d369c7b2eThe goal of FireStarter is to provide an easy to use, yet powerful, GUI tool for setting up, administrating and monitoring firewalls for Linux machines. FireStarter is made for the GNOME desktop. It can actively monitor your firewall and list any unauthorized connection attempts made to your machine in a readable table format.
cec2e9db32f95c21911f4cc05761a1994101882ecdb4addb14f812dc479a15b2The Anomy mail sanitizer is a filter designed to block email-based attacks such as trojans and viruses. It reads an RFC822 or MIME message and removes or renames attachments, truncate unusually long MIME header fields and sanitizes HTML by disabling Javascript and Java. It uses a single-pass pure Perl MIME parser, which can make it both more efficient and more precise than other similar programs and has built-in support for third-party virus scanners.
97fb0c161fd83ee285ca3a6e100aca84682d0452e7d57add92eefa88624ed967Alibaba is a http server for Windows 95/98/NT which contains buffer overflows and allow remote users to execute commands remotely.
b99bb1a99ff7c7b7a142a18a90997c406e9cfb78dc1e3847ae576d5ecfc3d442Remote root exploit for Wu-ftpd 2.6.0 from the ports collection running on FreeBSD v3.3, 3.4 and 4.0.
b33a52130ecae7c08a7f0c4dcb7e6ef28378351b56b083cae7ad55d2438dc515This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
fcb9fbd5c09bc4255d43422c629f5ab6a44e3cbd21d8d0ff47741191605eadedWeekly Newsletter from Help Net Security Issue 22 - 17.07.2000 - Covers weekly roundups of security related events. In this issue: Excel 2000 vulnerability, Apache::ASP hole fixed, Big Brother vulnerability, Netscape administration server password disclosure, Feartech FTP browser problem, IIS vulnerabilities, Microsoft Office 2000 (Excel and PowerPoint) and in PowerPoint 97 IE Script vulnerability, Cvsweb vulnerability, Armoring linux, Armoring Solaris, Armoring NT, The US may announce new encryption rules, Introduction to PGP, New Excel bug, Kevin Mitnick allowed back online, Win95 Smash virus, NmapNT, and more.
ab6ee8fd4f90b938aa24a81a207029831725ac88b08dea86613b6e5c4ea75712SuSE Security Announcement - A security hole was discovered in the FTP server in nkitb version less than 2000.7.11-0 contains a remote root vulnerability. The standard ftp server does directly pass untrusted data from a DNS server to the setproctitle() function in a unsecure manner, allowing an attacker to modify his/her DNS record to execute abitrary machine code as root while connecting to the standard ftp daemon.
736fef8cf6af36ad331b57ed0ef2b54ea785d6ef402650a95644b54305ef2a9cDebian Security Advisory - The version of nfs-common distributed in Debian GNU/Linux 2.2 is vulnerable to a remote root compromise involving rpc.statd.
5b12e7f0218b416192ef89b0230faf8815a97e17df1ef3c4ee6d162b145fbf14GAMSoft's TelSrv 1.4/1.5 contains a remote denial of service vulnerability. If supplied with a very large login name, the service will crash.
d31d36019b70a0193ce995c7d0dfaa0d973ba38791905be7948fcc5321627aabchkrootkit V. 0.16 locally checks for signs of a rootkit. Includes ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions. Tested on Linux 2.0.x, 2.2.x and FreeBSD 2.2.x, 3.x and 4.0.
dce1bb35a3eae94ae776ffa1b6b40a4695555ca9c51dec2103f00d0a70dce590WipeOut v1.0 is a log cleaner which uses temporary files to remove the entry not just zeroing the entry out. All other cleaners only look for the login name and doesn't check the hostname, so it is possible to cloak the wrong user. This tool does check if the hostname is the correct one.
ede3c9c209f66b8fdbb5b4903f5fb8f97f467aaf7062dc46c018197b0e345a69Debian Security Advisory - The versions of cvsweb distributed in Debian GNU/Linux 2.1, are vulnerable to a remote shell exploit. An attacker with write access to the cvs repository can execute arbitrary code on the server, as the www-data user.
bde093ff911197907af689c349320d1215735f41782f40c7e69166fcde98e03c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed