Hello Bugtraq,
I disclosed this bug to the BSDs and no one is interested in fixing it
so here you go. The two files attached are as follows:
* scapy-carp.patch - A patch against the latest Scapy (currently
2.1.0) so it understands the CARP protocol. The PoC won't work without
the patch
* carp-poc
==
Secunia Research 14/12/2010
- SAP Crystal Reports Print ActiveX Control Buffer Overflow -
==
Table of Contents
Affected Software..
==
Secunia Research 10/12/2010
- RealPlayer "cook" Arbitrary Free Vulnerability -
==
Table of Contents
Affected Software...
Elcom CommunityManager.NET Auth Bypass Vulnerability - Security Advisory -
SOS-10-004
Release Date. 20-Dec-2010
Last Update. -
Vendor Notification Date. 22-Jan-2010
Product. Elcom Technology's
CommunityMan
==
Secunia Research 10/12/2010
- RealPlayer AAC Spectral Data Parsing Vulnerability -
==
Table of Contents
Affected Software.
www.eVuln.com advisory:
"postid" SQL Injection in Social Share
Summary: http://evuln.com/vulns/166/summary.html
Details: http://evuln.com/vulns/166/description.html
---Summary---
eVuln ID: EV0166
Software: Social Share
Vendor: n/a
Version: 2010-06-05
Critical Level: medium
Type:
Many routers that provide an HTTPS administrative interface use default or
hard-coded SSL keys that can be recovered by extracting the file system from
the device's firmware.
The LittleBlackBox project contains a database of over 2,000 (and growing)
private SSL keys that are correlated with the
==
Secunia Research 10/12/2010
- RealPlayer "cook" Uninitialised Memory Vulnerability -
==
Table of Contents
Affected Software
MyBB 1.6 <= Cross Site Scripting (XSS) Vulnerability
1. OVERVIEW
MyBB was vulnerable to Cross Site Scripting Vulnerability.
2. APPLICATION DESCRIPTION
MyBB is a free bulletin board system software packa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-
Debian Security Advisory DSA-2134-1 secur...@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
December 18th, 2010
10 matches
Mail list logo
