Packet Storm's last 20 added files.
Last Updated: Wed Jul 23 23:03:24 EDT 2008


[ pkd-1.1.tgz ] 7ff6ab126922499e670b12c1882d5e7d ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent. 
[ bailiwicked_host.rb.txt ] 4def3738d35dc00d760fa023d0106a29 This exploit targets a fairly ubiquitous flaw in DNS implementations which allow the insertion of malicious DNS records into the cache of the target nameserver. This exploit caches a single malicious host entry into the target nameserver. By causing the target nameserver to query for random hostnames at the target domain, the attacker can spoof a response to the target server including an answer for the query, an authority server record, and an additional record for that server, causing target nameserver to insert the additional record into the cache.  
[ SDTCleaner-v1.0.zip ] 9123411f2b13fc9ec9a831f7e8a6514d SDT Cleaner is a small laboratory tool that attempts to restore the pointers installed by Anti-Virus and Firewalls in the SSDT (System Service Descriptor Table).  
[ dsa-1615-1.txt ] 814da2c25fb7c7e932ae2c2849d21d29 Debian Security Advisory 1615-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.  
[ dsa-1614-1.txt ] 357a585f8c33728c1e761bc85d365a57 Debian Security Advisory 1614-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. It was discovered that missing boundary checks on a reference counter for CSS objects can lead to the execution of arbitrary code. Billy Rios discovered that passing an URL containing a pipe symbol to Iceweasel can lead to Chrome privilege escalation.  
[ dsa-1540-3.txt ] cccf48a06495b899a26c83ab12130eb3 Debian Security Advisory 1540-3 - This update fixes a regression in lighttpd introduced in DSA-1540, causing SSL failures.  
[ USN-628-1.txt ] 6cd6d0407e8f8ffd96589e18817d582e Ubuntu Security Notice 628-1 - Over a dozen vulnerabilities in php5 have been addressed in Ubuntu.  
[ vimfiletype-exec.txt ] 525775816c2441f36c404a28644bb87a This advisory discusses the filetype.vim vulnerability in Vim version 7.2b.10 that allows for arbitrary code execution and also notes that the Vim patch 7.1.300 did not fix the vulnerability.  
[ emc-sql.txt ] 535213a9fae7b8708f9e219a84119c62 EMC's Centera Universal Access product version CUA4.0_4735.p4 suffers from a SQL injection vulnerability.  
[ AST-2008-011.txt ] 2185fd4b6b919de751e6fe7c8aab32a1 Asterisk Project Security Advisory - An attacker may request an Asterisk server to send part of a firmware image. However, as this firmware download protocol does not initiate a handshake, the source address may be spoofed. Therefore, an IAX2 FWDOWNL request for a firmware file may consume as little as 40 bytes, yet produces a 1040 byte response. Coupled with multiple geographically diverse Asterisk servers, an attacker may flood an victim site with unwanted firmware packets.  
[ AST-2008-010.txt ] c3e6feb71c399d84d8dc74877ffc992c Asterisk Project Security Advisory - By flooding an Asterisk server with IAX2 'POKE' requests, an attacker may eat up all call numbers associated with the IAX2 protocol on an Asterisk server and prevent other IAX2 calls from getting through. Due to the nature of the protocol, IAX2 POKE calls will expect an ACK packet in response to the PONG packet sent in response to the POKE. While waiting for this ACK packet, this dialog consumes an IAX2 call number, as the ACK packet must contain the same call number as was allocated and sent in the PONG.  
[ MDVSA-2008-154.txt ] 02de82850dc988def1ef4ff9e0c8f68e Mandriva Linux Security Advisory - A vulnerability in xemacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by xemacs. The updated packages have been patched to correct this issue.  
[ MDVSA-2008-153.txt ] 317520423f82ed3a15b919a528d64ba9 Mandriva Linux Security Advisory - A vulnerability in emacs was found where an attacker could provide a group of files containing local variable definitions and arbitrary Lisp code to be executed when one of the provided files is opened by emacs. The updated packages have been patched to correct this issue.  
[ MDVSA-2008-152.txt ] 9deb077f278a874b21006d319120b3bb Mandriva Linux Security Advisory - A vulnerability was found in Wireshark, that could cause it to crash while processing malicious packets. This update provides Wireshark 1.0.2, which is not vulnerable to that.  
[ joomlamamml-upload.txt ] 0a4d3aebca4602e890770992430bc74c The Joomla Mamml component suffers from a remote file disclosure vulnerability.  
[ mysql_injection.pdf ] bd8ca795f2acde98ec699e5686fdc77f Whitepaper discussing techniques for MySQL related SQL injection. Written in Spanish.  
[ oss-bypass.txt ] 7570d3a72f5096b9588136427c83cebc Outpost Security Suite Pro version 2009 suffers from multiple bypass vulnerabilities when using special characters.  
[ PR08-16.txt ] 3a664b6adfa3d72f4d9f2a8baec3e8ec Moodle versions 1.7.4 and below suffer from a cross site request forgery vulnerability.  
[ PR08-13.txt ] 2c780311bb56dbfd1b088e81afe2297d A cross site scripting vulnerability exists in Moodle versions 1.7.4 and below.  
[ CS-2008-2.txt ] cd06e8756e37818b845ccfa76907f968 SocialEngine versions below 2.83 suffer from an input validation vulnerability that allows for client take over.