fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
fefe71bc82b13c396c9783e78663a1a6faf83cea01138da7c626e451249b8ce2Ubuntu Security Notice 2167-1 - Steve Holme discovered that libcurl incorrectly reused wrong connections when using protocols other than HTTP and FTP. This could lead to the use of unintended credentials, possibly exposing sensitive information. Richard Moore discovered that libcurl incorrectly validated wildcard SSL certificates that contain literal IP addresses. An attacker could possibly exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications. Various other issues were also addressed.
d2b70d65e2f00a87b476048dbbdf46b1ba245dc916bb699db1c4197934f87024Red Hat Security Advisory 2014-0400-03 - Red Hat JBoss Fuse, based on Apache ServiceMix, provides a small-footprint, flexible, open source enterprise service bus and integration platform. Security fixes: A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be applied to the SignedInfo XML fragment. A remote attacker could exploit this to spoof an XML signature via a specially crafted XML signature block.
59fb89a523cbebe70f311b3e2011f6b31d5456d35c7cb4af096d9f8a7b46823eRed Hat Security Advisory 2014-0401-02 - Red Hat JBoss A-MQ, based on Apache ActiveMQ, is a standards-compliant messaging system that is tailored for use in mission critical applications. Red Hat JBoss A-MQ 6.1.0 is a minor product release that updates Red Hat JBoss A-MQ 6.0.0 and includes several bug fixes and enhancements.
884c2290b52cd9e01634db919d477a8981b15a764efe9bb37401b8a31a1d82baUbuntu Security Notice 2166-1 - Ken Farnen discovered that Net-SNMP incorrectly handled AgentX timeouts. A remote attacker could use this issue to cause the server to crash or to hang, resulting in a denial of service. It was discovered that the Net-SNMP ICMP-MIB incorrectly validated input. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service. This issue only affected Ubuntu 13.10. Various other issues were also addressed.
2d862fdbbedba3e69543d118bff35f5b2daedc4accbeba0c55ef27fe30821eeePDF Album version 1.7 for iOS suffers from a local file inclusion vulnerability.
66cdcedbd04920c8a4ed864f320c034c8c3f3060a833ede19baee91c2c19bfadIt has been identified that binaries that are executed with elevated privileges (SetGID and SetUID programs) have been compiled in manner that means they searched for libraries in insecure locations. Version 9.40 of HP Array Configuration Utility, HP Array Diagnostics Utility, HP ProLiant Array Diagnostics, and SmartSSD Wear Gauge Utility running on Linux are affected.
4616ed05d73796339b56863cd74126065f2db7cca61db513f69ee6a4dd874c0fIt has been identified that binaries that are executed with elevated privileges (SetGID and SetUID programs) have been compiled in manner that means they searched for libraries in insecure locations. Version 3.9.00 of BMC Patrol for AIX is affected.
d7bb7e62af377661d9e0fc40ac344b19949122236037b9511fb75a879d085addMicrosoft Internet Explorer CMarkup use-after-free exploit that demonstrates the issue documented in MS14-012.
c372cfa21ed6ed039af78c69c1242e4a591d2b3c923280149f5e686dbcd28be0The Joomla BeaconDecode component suffers from a cross site scripting vulnerability.
246d3ac6ff9bedeeee5714e263d3feeb085e0567311d93dced373fa7355869bcPHP Event Calendar suffers from a remote SQL injection vulnerability in day_view.php.
f2e5f97ec1c421bce7a7e7d28f1d98f1baf6873f75e6a7451aeb4db0d150ce4eCMS Int24 suffers from a remote SQL injection vulnerability.
d12be2741add1e1a5e5b7ab2f2cb8532476008dddec78fc15faa87b5ee7f608bWordPress LineNity theme suffers from a local file inclusion vulnerability.
36f6fffb4654c309248b74d286caf14ff027a0fafa757ba8eff1770f03237d7bWhitepaper called PE Injection Explained. Injecting code into other process memory is generally limited to shellcodes, either to hide the shellcode from Antivirus or to inject a DLL. The method described here is more powerful and enables you to inject and run a complete PE module inside another process' memory, including the possibility to call any system or runtime API with plain C++. It relies only on documented features and C++, no assembly knowledge required.
3f9c36022b09f6b3441e15b7fa94326ee950d204371a442571a58498d27b505cThe Joomla EWriting component suffers from a cross site scripting vulnerability.
b0cbc36bb25288d02b019c76fd7c07d44954053ac3c4c5ec7a9116d986bf13fe
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed