Originally discovered in the source code for build 32 of the RedHat OpenSSL rpm, another denial of service vulnerability was recently discovered that would disable an SSLv2 server. Any build after 32 of the RedHat RPM and 0.9.7c of OpenSSL have already addressed and fixed this issue.
00325774735f7cdba433936c32fc5730fe0ffd361e1b8f7dfc2fb8ab13d87a16MOSDEF is a 100% Python retargetable compiler for C->shellcode that has been released to the public under the LGPL.
54e0931a0105789ff6e3a81c696033a19f35fb5cfc10aafb6e9eddb334d14ddfFreeBSD Security Advisory FreeBSD-SA-03:16.filedesc - A programming error in the readv system call can result in the given file descriptor's reference count being erroneously incremented. A local attacker may cause the operating system to crash by repeatedly calling readv on a file descriptor until the reference count wraps to a negative value, and then calling close on that file descriptor. Similarly, it may be possible to cause a file descriptor to reference unallocated kernel memory, but remain valid. If a new file is later opened and the kernel allocates the new file structure at the same memory location, then an attacker may be able to gain read or write access to that file. This may in turn lead to privilege escalation. This affects releases 4.3-RELEASE through 4.8 RELEASE.
d77bc848ba499127eb6972feeba3dbe40a919dde740117b4638758fd937de5daBackdoor for login where the original binary must be renamed and only gets called whenever the remote user's TERM variable is not set to the magic password. If the magic password is set, the user gets the option of a shell with or without logging.
e3fb9f9f65c704ddf3602b2cf854c54524ca1cacb73518276e083cfaff3953dbMetaCoretex is an entirely JAVA based vulnerability scanning framework which puts special emphasis on databases. Probe objects are written in JAVA for the sake of the ability to extend the AbstractProbe class. Additionally, probe generators make the process of writing simple probes a small task for the end user.
0f255567fa1caf70c3334bd61230aa9dde253ce31bff72e0226181ee36f712d9Inside the PostThreadMessage API, any user of any security level can give a WM_QUIT message causing the process to terminate. Sample exploit code included.
dae92371caa61085fff77e818f7e1bd44af495374120d1706c46fb9deee38189Gspoof is a GTK+ program written in C which makes easy and accurate the building and the sending of TCP packets with or without a data payload. It's possible to modify TCP/IP fields or the Ethernet header.
a4311747ff8a38a89d69720d50bd74ace8857b74985661d5b99d7d5e671dcff9SSH Communications Security announced that a vulnerability has been detected in the way that SSH Sentinel handles the decoding of BER/DER encoded packets which may result in a denial of service. The find is derived from the recent ASN.1 parsing problems discovered by NISCC. All versions from 3.0 to 3.2.5 are affected.
9cc69d43825cb7247caee0b7b03f789f52e208df386f3d3bc72f339b70910477SSH Communications Security announced that a vulnerability has been detected in the way it handles the decoding of BER/DER encoded packets which may result in a denial of service. The find is derived from the recent ASN.1 parsing problems discovered by NISCC. All versions from 3.0 to 3.2.5 are affected.
3324ecd2262e4c5dc21e88abef9407a8723e04a8fc0f3d179145198703413202
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed