«
Expand/Collapse
241 items tagged "beta"
Related tags:
web [+],
exponent [+],
beta 3 [+],
webapps [+],
upload [+],
org [+],
openoffice [+],
joomla [+],
forgery [+],
vulnerability [+],
web application developers [+],
source [+],
shell [+],
penetration testers [+],
owasp [+],
open source tools [+],
mantra [+],
denial of service [+],
xss [+],
memory [+],
beta local [+],
vbulletin [+],
ticket system [+],
remote [+],
php [+],
exploits [+],
exploit [+],
database [+],
continuum [+],
beta xss [+],
beta cross [+],
apache [+],
ticket [+],
swfupload [+],
sonique [+],
pdf [+],
overflow [+],
opensite [+],
ollydbg [+],
office [+],
local buffer overflow [+],
local [+],
lfi [+],
firefox [+],
elgg [+],
dos [+],
directory traversal [+],
component version [+],
beta asp [+],
ydframework [+],
xt commerce [+],
xml components [+],
xml [+],
weaknesses [+],
tempest security [+],
system [+],
snort [+],
smb service [+],
smb [+],
sipdroid [+],
simple [+],
service vulnerability [+],
security intelligence [+],
security design [+],
revou [+],
privilege [+],
powerpoint graphics [+],
pligg [+],
phxeventmanager [+],
phpmyadmin [+],
php shell [+],
photoblog [+],
org versions [+],
minify [+],
memory allocations [+],
information leakage [+],
information disclosure [+],
host [+],
hijacking [+],
hacks [+],
gravity board [+],
gravity [+],
framework [+],
filmis [+],
feng [+],
ezpx [+],
external entities [+],
dompdf [+],
domain information [+],
design implementation [+],
denial of service attack [+],
dce rpc [+],
data leakage [+],
comsndftp [+],
command execution [+],
command [+],
buffer overflow [+],
board [+],
beta sql [+],
beta implementation [+],
beta 5 [+],
based buffer overflow [+],
alamfifa [+],
airdroid [+],
agent [+],
admin control panel [+],
acp [+],
BackTrack [+],
txt [+],
zlib [+],
zip [+],
version beta [+],
usbsploit [+],
tmac [+],
tar [+],
string [+],
stack buffer [+],
shopsystem [+],
shellzip [+],
shellcode [+],
service [+],
saskia [+],
ruubikcms [+],
revs [+],
revoutwitter [+],
resurrection [+],
request [+],
pragyan [+],
powerpoint [+],
percha [+],
payload [+],
panel [+],
numeric character references [+],
nkc [+],
network interface card nic [+],
network interface card [+],
nat [+],
multiple file [+],
multiple [+],
mops [+],
month [+],
microsoft [+],
metasploit framework [+],
metasploit [+],
memory corruption [+],
memory consumption [+],
master c [+],
mandriva linux [+],
mac [+],
lnk files [+],
kraken [+],
jtm [+],
iphone [+],
information [+],
gravityboard [+],
golfcourseguide [+],
globe [+],
generator [+],
function [+],
force [+],
extcalendar [+],
dom [+],
denial [+],
dcp portal [+],
crossdomain [+],
crash [+],
component versions [+],
cascading style sheets [+],
build [+],
boff [+],
beta1 [+],
beta master c [+],
beta format [+],
beta dll [+],
bash script [+],
bash program [+],
arbitrary html [+],
apple safari [+],
apple mac os [+],
apache http server [+],
anket [+],
administrator account [+],
adaptcms [+],
Release [+],
Public [+],
Newbie [+],
Area [+],
inclusion [+],
cms [+],
script [+],
ruby [+],
port scanning [+],
port [+],
badass [+],
zsl [+],
yourarcadescript [+],
xaraya [+],
writeup [+],
wireless 2200bg [+],
webportal [+],
web applications [+],
web application security assessment [+],
web application security [+],
vulnerabilities [+],
vmx [+],
vlc [+],
virtualbox [+],
versions [+],
vega [+],
upgraded [+],
twitter [+],
turkey [+],
trusteer [+],
that takes advantage [+],
teamspeak [+],
target network [+],
synaptic [+],
sun [+],
steam [+],
software eagle [+],
snowflake [+],
sitex [+],
sip [+],
server [+],
security essentials [+],
security [+],
runlevel [+],
rseau [+],
remote shell [+],
releases [+],
read [+],
pyxis [+],
pwnat [+],
port forwarding [+],
poe [+],
poc [+],
phpprofiles [+],
phpmybackup [+],
php calendar [+],
pepsi [+],
pentbox [+],
pcb layout software [+],
path [+],
pass [+],
ordinateur hp [+],
operating system [+],
openmairie [+],
opendns [+],
opencourrier [+],
open source web [+],
null [+],
nats [+],
mozilla [+],
misc [+],
minibloq [+],
mini pci card [+],
microsoft office [+],
microcontrollers [+],
media players [+],
main courante [+],
main [+],
magycms [+],
macs [+],
mac os x [+],
mac os [+],
linux [+],
kernal [+],
jour [+],
iwconfig [+],
irmin [+],
internet [+],
interface [+],
init [+],
ing database [+],
iett [+],
ide [+],
hi folks [+],
havecms [+],
hackintosh [+],
hacking [+],
graphical programming [+],
generales [+],
gadgetos [+],
flaming hoops [+],
filezilla server [+],
file upload [+],
fifth beta [+],
fennec [+],
fckeditor [+],
extentions [+],
escher [+],
eagle [+],
dos cpu [+],
dll [+],
directory [+],
digital postcards [+],
desktoponnet [+],
debutant [+],
darknet [+],
da silva [+],
cxx [+],
crypto [+],
creat [+],
connection [+],
company [+],
clne [+],
chomping at the bit [+],
carte [+],
cannot [+],
camiro [+],
calendar versions [+],
cadsoft [+],
c99shell v [+],
buffer [+],
bt4 [+],
bridge connection [+],
bonjour [+],
better solution [+],
beta6 [+],
beta version [+],
beta v1 [+],
beta key [+],
beta blind [+],
beta arbitrary [+],
battlefield bad company [+],
battlefield [+],
bad company [+],
autoit3 [+],
audit framework [+],
atheros communications inc [+],
arduino [+],
application [+],
amit klein [+],
alegrocart [+],
aircrack [+],
Tools [+],
Software [+],
Latest [+],
Howto [+],
Espace [+],
Discussions [+],
BackTrack4 [+],
cross [+],
version [+],
sql injection [+],
file [+],
day [+],
sql [+],
proof of concept [+],
site [+],
rfi [+],
disclosure [+],
cross site scripting [+],
injection [+]
-
11:09
»
Packet Storm Security Exploits
phpProfiles version 4.5.4 Beta suffers from cross site scripting, remote file inclusion, and remote SQL injection vulnerabilities.
-
-
17:16
»
Packet Storm Security Advisories
A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.
-
17:16
»
Packet Storm Security Recent Files
A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.
-
17:16
»
Packet Storm Security Misc. Files
A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.
-
-
8:43
»
Packet Storm Security Recent Files
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals, etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the source code release.
-
-
18:32
»
Packet Storm Security Exploits
This Metasploit module allows remote attackers to execute arbitrary code by exploiting the Snort service via crafted SMB traffic. The vulnerability is due to a boundary error within the DCE/RPC preprocessor when reassembling SMB Write AndX requests, which may result a stack-based buffer overflow with a specially crafted packet sent on a network that is monitored by Snort. Vulnerable versions include Snort 2.6.1, 2.7 Beta 1 and SourceFire IDS 4.1, 4.5 and 4.6. Any host on the Snort network may be used as the remote host. The remote host does not need to be running the SMB service for the exploit to be successful.
-
18:32
»
Packet Storm Security Recent Files
This Metasploit module allows remote attackers to execute arbitrary code by exploiting the Snort service via crafted SMB traffic. The vulnerability is due to a boundary error within the DCE/RPC preprocessor when reassembling SMB Write AndX requests, which may result a stack-based buffer overflow with a specially crafted packet sent on a network that is monitored by Snort. Vulnerable versions include Snort 2.6.1, 2.7 Beta 1 and SourceFire IDS 4.1, 4.5 and 4.6. Any host on the Snort network may be used as the remote host. The remote host does not need to be running the SMB service for the exploit to be successful.
-
18:32
»
Packet Storm Security Misc. Files
This Metasploit module allows remote attackers to execute arbitrary code by exploiting the Snort service via crafted SMB traffic. The vulnerability is due to a boundary error within the DCE/RPC preprocessor when reassembling SMB Write AndX requests, which may result a stack-based buffer overflow with a specially crafted packet sent on a network that is monitored by Snort. Vulnerable versions include Snort 2.6.1, 2.7 Beta 1 and SourceFire IDS 4.1, 4.5 and 4.6. Any host on the Snort network may be used as the remote host. The remote host does not need to be running the SMB service for the exploit to be successful.
-
-
20:27
»
Packet Storm Security Advisories
An XML External Entity (XXE) attack is possible in OpenOffice.org versions 3.3 and 3.4 Beta. This vulnerability exploits the way in which external entities are processed in certain XML components of ODF documents.
-
20:27
»
Packet Storm Security Recent Files
An XML External Entity (XXE) attack is possible in OpenOffice.org versions 3.3 and 3.4 Beta. This vulnerability exploits the way in which external entities are processed in certain XML components of ODF documents.
-
20:27
»
Packet Storm Security Misc. Files
An XML External Entity (XXE) attack is possible in OpenOffice.org versions 3.3 and 3.4 Beta. This vulnerability exploits the way in which external entities are processed in certain XML components of ODF documents.
-
-
6:22
»
Packet Storm Security Recent Files
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
6:22
»
Packet Storm Security Tools
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
6:22
»
Packet Storm Security Misc. Files
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
-
11:01
»
Hack a Day
The beta version of Pyxis 3 is now available. Skewworks continues to develop the ARM operating system, and with the transition to version 3 they’ve given it a new name: Gadgetos. One big difference from Pyxis 2 is that the new kernal is closed source. But they’ve taken steps to ensure that the OS is [...]
-
-
13:01
»
Hack a Day
Version 6 of the popular schematic and PCB layout software EAGLE is now in beta testing. The most notable change is the migration to XML file formats that we looked at last month. [PT] didn’t waste any time getting his hands on the software and giving it a thorough test drive. The image seen above [...]
-
-
5:11
»
Packet Storm Security Recent Files
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
5:11
»
Packet Storm Security Tools
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
5:11
»
Packet Storm Security Misc. Files
OWASP Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. This is the platform independent release.
-
-
7:02
»
Hack a Day
If you have been chomping at the bit to give drag and drop Arduino programming a try, Minibloq is finally in Beta and ready for you to test! We mentioned the application back in April of this year, when [Julián da Silva] was still in the early stages of developing the software. His graphical programming [...]
-
-
8:50
»
Packet Storm Security Exploits
Tempest Security Intelligence Advisory 01/2011 - SIPDroid Agent versions 1.6.1 beta, 2.0.1 beta, and 2.2 beta suffer from a remote user enumeration vulnerability. Proof of concept code is included.
-
8:50
»
Packet Storm Security Recent Files
Tempest Security Intelligence Advisory 01/2011 - SIPDroid Agent versions 1.6.1 beta, 2.0.1 beta, and 2.2 beta suffer from a remote user enumeration vulnerability. Proof of concept code is included.
-
8:50
»
Packet Storm Security Misc. Files
Tempest Security Intelligence Advisory 01/2011 - SIPDroid Agent versions 1.6.1 beta, 2.0.1 beta, and 2.2 beta suffer from a remote user enumeration vulnerability. Proof of concept code is included.
-
-
10:22
»
Packet Storm Security Advisories
Apache Continuum versions 1.3.6 and 1.4.0 Beta suffer from a cross site request forgery vulnerability. Earlier unsupported versions are also vulnerable.
-
10:22
»
Packet Storm Security Recent Files
Apache Continuum versions 1.3.6 and 1.4.0 Beta suffer from a cross site request forgery vulnerability. Earlier unsupported versions are also vulnerable.
-
10:22
»
Packet Storm Security Misc. Files
Apache Continuum versions 1.3.6 and 1.4.0 Beta suffer from a cross site request forgery vulnerability. Earlier unsupported versions are also vulnerable.
-
8:22
»
Packet Storm Security Advisories
A request that included a specially crafted request parameter could be used to inject arbitrary HTML or Javascript into Continuum project pages. Versions 1.3.6 and 1.4.0 Beta are affected along with unsupported, older revs.
-
8:22
»
Packet Storm Security Misc. Files
A request that included a specially crafted request parameter could be used to inject arbitrary HTML or Javascript into Continuum project pages. Versions 1.3.6 and 1.4.0 Beta are affected along with unsupported, older revs.
-
-
1:01
»
Packet Storm Security Tools
USBsploit is a proof of concept that will generate Reverse TCP backdoors (x86, x64, all ports) and malicious LNK files. USBsploit works through Meterpreter sessions with a light (27MB) modified version of Metasploit. The interface is a mod of SET. The Meterscript script usbsploit.rb of the USBsploit Framework can otherwise be used with the original Metasploit Framework.
-
-
22:01
»
Packet Storm Security Tools
USBsploit is a proof of concept that will generate Reverse TCP backdoors (x86, x64, all ports) and malicious LNK files. USBsploit works through Meterpreter sessions with a light (27MB) modified version of Metasploit. The interface is a mod of SET. The Meterscript script usbsploit.rb of the USBsploit Framework can otherwise be used with the original Metasploit Framework.
-
13:00
»
SecurityFocus Vulnerabilities
New writeup by Amit Klein (Trusteer): "Cross-domain information leakage in Firefox 3.6.4-3.6.8, Firefox 3.5.10-3.5.11 and Firefox 4.0 Beta1"
-
-
10:42
»
Hack a Day
A new beta build of VirtualBox, Sun’s Oracle’s free x86 virtualization software, makes it possible to run Mac OS X as a guest operating system…no shenanigans or flaming hoops to jump through, just pop in the $30 retail Snow Leopard upgrade disc and go. This had previously only been possible with some awkward Hackintosh-style maneuvering, or [...]
-
-
19:52
»
Packet Storm Security Tools
pwnat, pronounced poe-nat , is a tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with no port forwarding and no DMZ setup on any routers in order to directly communicate with each other. The server does not need to know anything about the clients trying to connect.
-
-
1:00
»
0day.today (was: 1337day, Inj3ct0r, 1337db)
Pepsi CMS (Irmin cms) pepsi-0.6-BETA2 Multiple Local File Vulnerability
-
-
8:34
»
0day.today (was: 1337day, Inj3ct0r, 1337db)
SiteX CMS 0.7.4 beta (photo.php) SQL-Injection exploit
-
-
10:14
»
0day.today (was: 1337day, Inj3ct0r, 1337db)
Fw-BofF (oolime-resurrection) 1.5.3beta Multiple Remote Include Vuln
-
-
15:00
»
0day.today (was: 1337day, Inj3ct0r, 1337db)
Fw-BofF (oolime-resurrection) 1.5.3beta Multiple Remote Include Vuln
-
-
11:00
»
0day.today (was: 1337day, Inj3ct0r, 1337db)
DesktopOnNet 3 Beta9 Local File Include Vulnerability
-
-
11:09
»
remote-exploit & backtrack
Bonjour à tous.
Je ne sais pas si je suis dans la bonne section, mais bon, c'est celle qui m'a parue la plus appropriée.
Je me suis inscrit sur le forum parce qu'il s'avère que j'ai un petit problème.
Je possède 2 PC portables, et un LiveCD de BackTrack 4 Beta.
Premier PC :
- HP Pavilion dv1139ea - Windows XP/Ubuntu 8.04 en dual boot
- 512 Mo de RAM, 60 Go de disque dur (oui, c'est un vieil ordi lol)
- Carte Wifi : Intel Corporation PRO/Wireless 2200BG Network COnnection (rev 05)
Deuxième PC :
- ASUS X5DAB - Windows 7 Edition Familiale Premium
- 4 Go de RAM, 500 Go de disque dur (oui, c'est un nouvel ordi lol)
- Carte Wifi : Atheros COmmunications Inc. AR9285 Wireless Network Adapter (PCI-Express) (rev 01)
Mon problème apparaît avec le deuxième PC (ASUS).
Je m'explique :
Entrant dans une école d'ingénieur dans la Sécurité des Réseaux en septembre, je me suis mis il y a 4 mois à BackTrack, afin d'avoir quelques bases dans ce domaine. A l'époque, j'avais l'ordinateur HP. Je télécharge BT 4, le grave, et essaye de "pirater" le réseau Wifi de chez moi (Freebox). Ma carte Intel ne supportant pas l'injection, l'attaque a été longue mais s'est déroulée avec succès, et j'ai pu voir la clé WEP de mon réseau (que je connaissais déjà bien-sûr).
Bref, ayant acheté un nouvel ordinateur (ASUS) il y a 2-3 mois, j'ai voulu voir si la carte Wifi de ce dernier supportait l'injection de paquets, ce qui provoquerait une attaque plus rapide. Je lance donc le LiveCD de BT 4, me connecte en tant que root, pas de problème.
Or, en voulant démarrer l'attaque, aucune interface Wifi n'apparaît. Lorsque je tape airmon-ng, il n'y a rien en-dessous de "Interface Chipset Driver".
J'ai tapé iwconfig et j'ai eu cette réponse :
lo no wrieless extensions.
eth0 no wireless extensions.
Et c'est tout, aucune autre interface wifi n'existe pour BT. Cela devient donc très embettant car aucun test sur mon réseau ne sera possible avec mon nouvel ordinateur.
Je fais donc appel à votre aide, car malgré mes recherches qui durent depuis 1 semaine, je n'ai trouvé aucune solution.
De plus, aucune solution ayant besoin d'internet ne peut marcher, puisque comme mon interface wifi n'est pas détectée, il m'est impossible de me connecter sur le Web.
Les solutions par clés USB non plus, car lorsque j'essaye d'afficher le contenu de ma clé, j'ai un message d'erreur.
Voilà, je pense avoir tout dit, en espérant que vous pourrez m'aider.
-
-
9:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-027 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an offset of a NULL pointer. WebKit in Apple Safari before 4.0.2, KHTML in kdelibs in KDE, QtWebKit (aka Qt toolkit), and possibly other products does not properly handle numeric character references, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to recursion in certain DOM event handlers. WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. WebKit, as used in Safari before 3.2.3 and 4 Public Beta, on Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 and Windows allows remote attackers to execute arbitrary code via a crafted SVGList object that triggers memory corruption. The updated packages have been patched to correct these issues.
-
9:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-027 - KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a \\'\\\' (NUL) character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408. The JavaScript garbage collector in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle allocation failures, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document that triggers write access to an offset of a NULL pointer. WebKit in Apple Safari before 4.0.2, KHTML in kdelibs in KDE, QtWebKit (aka Qt toolkit), and possibly other products does not properly handle numeric character references, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Google Chrome 1.0.154.53, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) by setting an unspecified property of an HTML tag that causes child elements to be freed and later accessed when an HTML error occurs, related to recursion in certain DOM event handlers. WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not initialize a pointer during handling of a Cascading Style Sheets (CSS) attr function call with a large numerical argument, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document. KDE Konqueror allows remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692. The gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc in FreeBSD 6.4 and 7.2, NetBSD 5.0, and OpenBSD 4.5 allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a large precision value in the format argument to a printf function, related to an array overrun. WebKit, as used in Safari before 3.2.3 and 4 Public Beta, on Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 and Windows allows remote attackers to execute arbitrary code via a crafted SVGList object that triggers memory corruption. The updated packages have been patched to correct these issues.
-
-
8:21
»
remote-exploit & backtrack
Hi folks, i am trying to make BT4 PREf work ona vm player,it does but all it shows in iwconfig is
lo-no wireless extentions
eth0- ni wireless extentions
Networking is up and mozilla opens any page on the internet well, but no wlan0 in iwconfig or any other possibility to start airmon/crack.
Intereasting is with the live cd booted on the laptop it works like charm, JTR,cowpatty aircrack.
I have searched for answers on the forum and turned it upside down but... nothing.
I appreciate your help and wissh you all a nice linux.... i mean night :)
viliam
-
-
17:10
»
remote-exploit & backtrack
Hi all
My question is re: connecting to long distance network (getting internet connection) through BT4 beta on VMware.
My Details:
My usb wifi :
Alfa AWUS036H
Im using V
Mware workstation 7 with
BT4 beta VM ware image. (gettin BT4 final shortly)
My machine is a
Dell 6100 laptop with internal Dell wireless 1370 mini pci card.
Ive read quite a few threads re: getting internet connection through VMware. Im able to connect to internet via my local modem by selecting
'bridged connection' on the VM settings for BT4 beta virtual machine.
After starting (start x) I use the following commands
ifconfig eth0 up
dhclient eth0
...ping Google etc..
My Situation is:
My internal wireless card (1370 mini pci card) does not have good enough signal to bridge the connection of my target network for BT4 virtual machine.
So.
my question is:
Would anyone be able to advise how I can aquire network connection without using my internal wireless as bridge through using VMware and BT4 beta image?
eg. I have disabled my internal card and trying to connect to the AP target I have access on, that is within range using just my AWUS036H.
I have gone through various posts on connecting backtrack to internet/ connecting networks,,mostly they are relating to connecting via a bridge connection.
Would you be able to point me in the direction of any good tutorials or tips? Do I have to change the VM settings to NAT?
-
-
23:00
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2010-022 - Memory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function, as demonstrated by use of SSLv3 and PHP with the Apache HTTP Server, a related issue to CVE-2008-1678. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct thies issue.
-
23:00
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2010-022 - Memory leak in the zlib_stateful_finish function in crypto/comp/c_zlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service (memory consumption) via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function, as demonstrated by use of SSLv3 and PHP with the Apache HTTP Server, a related issue to CVE-2008-1678. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct thies issue.
-
-
15:37
»
remote-exploit & backtrack
So, I followed this instuction building-perfect-backtrack-4-usb-thumb.html from powercram.com to make a bt4 usb stick that keeps stuff I install.
I ended up at the lines before "Install Nessus" where I wanted to boot from the stick (I don't need nessus or crypted stuff, so I'd leave that out) but if I boot I receive the error
init: illegal runlevel (null)
now, I tried to search for files that set the init runlevel to find out what's wrong but I failed D:
what can I do?
Is there a solution for this problem? Is there a better solution to keep installed programs on my usb bt4?
-
-
6:51
»
remote-exploit & backtrack
Bonjour,
J'ai la version backtrack 4 beta d'installée sous VirtualBox et je voulais savoir si il était possible de faire une mise à jours vers la version final car la j'ai ma version qui est propre et surtout bien configurée et j'ai la flême de tout refaire.
merci d'avance pour vos réponse
-
5:22
»
remote-exploit & backtrack
Is there any good media players for bt 4 beta.
i installed vlc via synaptic. but it says it cannot be run as root.
also is there any way of creating a useraccount.
OSVDB Vulnerabilities
Exploit-DB
Bugtraq
XSSed
Sophos security news
Penetration Testing
SecuriTeam
BackTrack Linux Forums
Threatpost
SecDocs
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution
1:00