Advertisement
Home arrow ITsec Advisories
Saturday, 22 November 2008
  
 
Last week attacks
O.S.  Defs.  %
Linux  8778  71.58%
Win 2003  1950  15.90%
Win 2000  722  5.89%
Solaris 9/10  402  3.28%
FreeBSD  226  1.84%
Other  185  1.51%

Total attacks: 12263 of which 4619 single ip and 7644 mass defacements

Main Menu
Home
Digital Warfare
Geopolitics
ITsec News
ITsec Advisories
Test Drive
360°
Digital Attacks Archive
Zone-H events
Publications
Zone-H Friends/Partners
Contact Us
Search
Download Area
Zone-H forum
About this website
Login Form





Lost Password?
No account yet? Register
Visitors' Map
ITsec Advisories


Opera Advisory: A specially crafted JavaScript can make Opera execute arbitrary code PDF Print E-mail
User Rating: / 2
Written by Marcelo Almeida (Vympel)   
Wednesday, 15 August 2007
A specially crafted JavaScript can make Opera execute arbitrary code.
Severity: Highly severe

Problem description
A virtual function call on an invalid pointer that may reference data crafted by the attacker can be used to execute arbitrary code... Write Comment (0 Comments)
Read more...
 
Cisco SA: Local Privilege Escalation Vulnerabilities in Cisco VPN Client PDF Print E-mail
User Rating: / 0
Written by Marcelo Almeida (Vympel)   
Wednesday, 15 August 2007

Document ID: 91923

Advisory ID: cisco-sa-20070815-vpnclient

Two vulnerabilities exist in the Cisco VPN Client for Microsoft Windows that may allow unprivileged users to elevate their privileges to those of the LocalSystem account.

A workaround exists for one of the two vulnerabilities disclosed in this advisory.

Cisco has made free software available to address these vulnerabilities for affected customers...

Write Comment (0 Comments)
Read more...
 
McAfee Virus Scan for Linux and Unix v5.10.0 Local PDF Print E-mail
User Rating: / 0
Written by Staff   
Wednesday, 15 August 2007

Security advisory: McAfee Virus Scan for Linux and Unix v5.10.0 Local
Buffer Overflow

II - SUMMARY

Description: Local buffer overflow vulnerability in McAfee Virus Scan
for Linux and Unix allows arbitrary code execution...

Write Comment (0 Comments)
Read more...
 
NSFOCUS SA2007-01: Microsoft IE5 CSS Parsing Memory Corruption Vulnerability PDF Print E-mail
User Rating: / 0
Written by Marcelo Almeida (Vympel)   
Wednesday, 15 August 2007

Topic: Microsoft IE5 CSS Parsing Memory Corruption Vulnerability

Release Date: 2007-08-15

CVE CAN ID : CVE-2007-0943

Affected system:
==============
Internet Explorer 5.01

Unaffected system:
==============

Impact:
======
NSFocus Security Team discovered a memory corruption vulnerability in IE 5 that allows arbitrary code execution when parsing a malicious CSS file...

Write Comment (0 Comments)
Read more...
 
Fujitsu-Siemens ServerView Remote Command Execution PDF Print E-mail
User Rating: / 1
Written by Marcelo Almeida (Vympel)   
Wednesday, 04 July 2007

RedTeam Pentesting discovered a remote command execution in the Fujitsu-Siemens ServerView during a penetration test. The DBAsciiAccess CGI script is vulnerable to a remote command execution because of a parameter which is not properly sanitized. An attacker may run arbitrary commands on the server with the permissions of the webserver user...

Write Comment (0 Comments)
Read more...
 
More...
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>

Results 76 - 90 of 9522
[ Back ]
 
Top!
© 2008 Zone-H.org - Unrestricted Information
Joomla! is Free Software released under the GNU/GPL License.
 Top!