RE: [Full-disclosure] Checkpoint VPN DoS woes

2005-09-25 Thread Ray P
Hi J., I guess I'm missing something. If the spoofed source address was 10.10.10.10 and it originated from the internal network, then it would have had to get to the Check Point firewall via some route you have set up or the default route. When a packet hits a Check Point interface and it's so

Re: [Full-disclosure] It's time for some warez - Qpopper poppassd local r00t exploit

2005-09-25 Thread kcope
lol, yeah you're missing something :-) just give a try on some real box... best regards, kcope Harry Hoffman wrote: Umm, am I missing something here? It looks like you need to be root to run this "program"? In the fbsd one you are trying to write to /etc which has perms: drwxr-xr-x 17 root

[Full-disclosure] Server crash and motd deletion in MultiTheftAuto 0.5 patch 1

2005-09-25 Thread Luigi Auriemma
### Luigi Auriemma Application: MultiTheftAuto http://www.multitheftauto.com Versions: <= 0.5 patch 1 Platforms:Windows, Linux, FreeBSD and OpenBSD Bugs: A] anyone can

[Full-disclosure] [USN-187-1] Linux kernel vulnerabilities

2005-09-25 Thread Martin Pitt
=== Ubuntu Security Notice USN-187-1 September 25, 2005 linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities CAN-2005-1767, CAN-2005-3044 === A security issue affects the fo

[Full-disclosure] [USN-186-2] Ubuntu 4.10 packages for USN-186-1 Firefox security update

2005-09-25 Thread Martin Pitt
=== Ubuntu Security Notice USN-186-2 September 25, 2005 mozilla-firefox vulnerabilities === A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog)

Re: [Full-disclosure] It's time for some warez - Qpopper poppassd local r00t exploit

2005-09-25 Thread Harry Hoffman
Umm, am I missing something here? It looks like you need to be root to run this "program"? In the fbsd one you are trying to write to /etc which has perms: drwxr-xr-x 17 root wheel 2560 Sep 9 13:49 etc and in the linux one you do a set{gid,uid} to 0. both of these actions will fail without

[Full-disclosure] ContentServ features remote file disclosure

2005-09-25 Thread qobaiashi
-- --[ ContentServ (still) features remote reading of arbitrary files ]-- -[ [EMAIL PROTECTED] ] /* Boring PHP bug warning: * "" * By reading boring

[Full-disclosure] Mac OS X - malloc() local privilege escalation vulnerability.

2005-09-25 Thread [ Suresec Advisories ]
Suresec Security Advisory - #7 25/09/2005Mac OS X - malloc() insecure use of environment variable. Advisory: http://www.suresec.org/advisories/adv7.pdf Description: The malloc() function on Mac OS X insecurely trusts a debug variable, regardless of the fact that the calling application may be s

[Full-disclosure] GeSHi Local PHP file inclusion 1.0.7.2

2005-09-25 Thread Maksymilian Arciemowicz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 [GeSHi Local PHP file inclusion 1.0.7.2] Author: Maksymilian Arciemowicz ( cXIb8O3 ).17 Date: 21.9.2005 from SECURITYREASON.COM - --- 0.Description --- GeSHi started as a mod for the phpBB forum system, to enable highlighting of more languages than