Securiteam Exploits/Hacking Tools Newsletter (thread)

[REVS] UPnP Flawed Application, SecuriTeam, 2005/12/28
[EXPL] dBpowerAMP Music Converter Buffer Overflow, SecuriTeam, 2005/12/28
[NEWS] Mac OS X KHTMLParser DoS, SecuriTeam, 2005/12/28
[UNIX] XPDF Multiple Buffer Overflow Vulnerabilities (JPXStream.cc, Stream.cc), SecuriTeam, 2005/12/28
[NEWS] Panda Antivirus ZOO Library Heap Overflow, SecuriTeam, 2005/12/28
[NT] RunAs Allows Bypassing User GPO in Windows XP/2003, SecuriTeam, 2005/12/28
[UNIX] Solaris PC Netlink Insecure File Handling, SecuriTeam, 2005/12/28
[NEWS] BZFlag Server DoS, SecuriTeam, 2005/12/28
[NT] Microsoft Internet Explorer Keyboard Shortcut Processing, SecuriTeam, 2005/12/28
[NT] mIRC Local Buffer Overflow (DDC Filter), SecuriTeam, 2005/12/28
[UNIX] Perl Format String Integer Wrap, SecuriTeam, 2005/12/28
[EXPL] Windows Metafile mtNoObjects (MS05-053, DoS, Exploit), SecuriTeam, 2005/12/28
[NT] Microsoft Internet Explorer Multiple DoS (datasrc, mshtml.dll), SecuriTeam, 2005/12/28
[UNIX] Sudo Perl Local Privileges Escalation, SecuriTeam, 2005/12/28
[NEWS] Symantec Antivirus RAR Library Multiple Heap Overflows, SecuriTeam, 2005/12/28
[UNIX] Kpdf/Koffice Multiple Buffer Overflows (Xpdf), SecuriTeam, 2005/12/28
[NEWS] Portfolio Netpublish Server 'template' Directory Traversal, SecuriTeam, 2005/12/28
[UNIX] PHPGedView Arbitrary Code Execution and Injection, SecuriTeam, 2005/12/28
[UNIX] Fetchmail Multidrop DoS, SecuriTeam, 2005/12/27
[NEWS] httprint DoS and Arbitrary Script Injection Vulnerabilities, SecuriTeam, 2005/12/27
[EXPL] Microsoft IIS Malformed URI DoS (Exploit #2), SecuriTeam, 2005/12/27
[EXPL] PlanetFileServer DoS (Exploit), SecuriTeam, 2005/12/27
[EXPL] Microsoft IIS Malformed URI DoS (Exploit), SecuriTeam, 2005/12/27
[UNIX] QNX DHCP Client Privilege Escalation, SecuriTeam, 2005/12/27
[NT] dtSearch DUNZIP32.dll Buffer Overflow, SecuriTeam, 2005/12/27
[UNIX] libremail Format String (DEBUG, pop.c), SecuriTeam, 2005/12/27
[UNIX] Linux procfs Information Disclosure, SecuriTeam, 2005/12/27
[NEWS] Electric Sheep Screensaver Multiple Vulnerabilities, SecuriTeam, 2005/12/27
[NT] Interaction SIP Proxy Heap Corruption Vulnerability (Long REGISTER), SecuriTeam, 2005/12/27
[NEWS] Electric Sheep Window-Id Local Stack Overflow, SecuriTeam, 2005/12/27
[UNIX] Linux Kernel Socket Buffer Memory Exhaustion DoS, SecuriTeam, 2005/12/26
[NT] McAfee VirusScan Privileges Escalation, SecuriTeam, 2005/12/26
[NEWS] Cisco PIX / CS ACS Downloadable RADIUS ACLs, SecuriTeam, 2005/12/26
[EXPL] GoldenFTPd APPE Stack Overflow (Exploit), SecuriTeam, 2005/12/25
[NT] Interaction SIP Proxy Heap Corruption, SecuriTeam, 2005/12/22
[TOOL] Synner - Spoof-DoS Tool, SecuriTeam, 2005/12/22
[NEWS] Macromedia JRun Web Server URL Parsing Buffer Overflow, SecuriTeam, 2005/12/22
[NT] FTGate Multiple Vulnerabilities (LIST, AUTHENTICATE, USER, PASS, TOP, tzoffset), SecuriTeam, 2005/12/22
[UNIX] elogd mode and cmd Buffer Overflows, SecuriTeam, 2005/12/22
[EXPL] Mailenable Enterprise Examine IMAP Command Buffer Overflow (2 Exploits), SecuriTeam, 2005/12/22
[EXPL] Macromedia Flash Media Server DoS (Exploit, Single Character), SecuriTeam, 2005/12/22
[NT] Trend Micro ServerProtect Multiple Vulnerabilities (EarthAgent), SecuriTeam, 2005/12/22
[NT] Internet Explorer Multiple Download Dialog Vulnerabilities (MS05-054), SecuriTeam, 2005/12/22
[UNIX] Dropbear SSH Server svr_ses.childpidsize Buffer Overflow, SecuriTeam, 2005/12/22
[NEWS] Google.com UTF-7 XSS Vulnerabilities, SecuriTeam, 2005/12/22
[NT] Pegasus Mail Buffer Overflow and Off-by-One (POP3 reply, Email header), SecuriTeam, 2005/12/22
[UNIX] Blender Integer Overflow Vulnerability (BlenLoader, get_bhead), SecuriTeam, 2005/12/22
[NT] McAfee Security Center MCINSCTL.DLL ActiveX Control File Overwrite, SecuriTeam, 2005/12/22
[NT] Qualcomm WorldMail IMAP Server String Literal Processing Overflow, SecuriTeam, 2005/12/22
[TOOL] Hydra - A Parallelized Login Cracker, SecuriTeam, 2005/12/21
[EXPL] Qualcomm WorldMail IMAP Server LIST Buffer Overflow (Exploit), SecuriTeam, 2005/12/21
[NT] Citrix Program Neighborhood Name Heap Corruption, SecuriTeam, 2005/12/20
[NEWS] Making Unidirectional VLAN and PVLAN Become Bidirectional, SecuriTeam, 2005/12/20
[TOOL] Ciscopack Tool, SecuriTeam, 2005/12/20
[TOOL] EIGRP Tools, SecuriTeam, 2005/12/20
[NEWS] Authenticated EIGRP DoS and Information Disclosure, SecuriTeam, 2005/12/20
[UNIX] Acidcat ASP CMS Multiple Vulnerabilities, SecuriTeam, 2005/12/19
[UNIX] Cerberus Helpdesk Vulnerabilities, SecuriTeam, 2005/12/19
[EXPL] Flatnuke Authentication Bypass (Exploit), SecuriTeam, 2005/12/19
[REVS] Database Servers on Windows XP - Unintended Consequences of Simple File Sharing, SecuriTeam, 2005/12/19
[TOOL] BETA - Binary Data Encoding Tool, SecuriTeam, 2005/12/19
[EXPL] Oracle XDB HTTP PASS Overflow (Metasploit exploit), SecuriTeam, 2005/12/19
[NEWS] Cisco Clean Access File Upload Authentication Bypass, SecuriTeam, 2005/12/19
[TOOL] Intestinal Worm - Back Door Tool, SecuriTeam, 2005/12/19
[EXPL] Mercury Mail Transport System Buffer Overflow (Exploit), SecuriTeam, 2005/12/19
[NT] Microsoft IIS Malformed URI DoS (_vti_bin, _sharepoint), SecuriTeam, 2005/12/19
[NT] Watchfire AppScan QA Remote Code Execution, SecuriTeam, 2005/12/18
[NT] Microsoft Office InfoPath 2003 Form Handling DoS, SecuriTeam, 2005/12/15
[NT] Trend Micro PC-Cillin Internet Security Insecure File Permission, SecuriTeam, 2005/12/15
[NEWS] Land Attacks Still Going Strong, SecuriTeam, 2005/12/15
[NT] Windows Kernel APC Data-Free Local Privilege Escalation (MS05-055), SecuriTeam, 2005/12/15
[NT] Vulnerability in Windows Kernel Allows Elevation of Privilege (MS05-055), SecuriTeam, 2005/12/15
[NT] Cumulative Security Update for Internet Explorer (MS05-054), SecuriTeam, 2005/12/15
[EXPL] SimpleBBS Command Execution (Exploit), SecuriTeam, 2005/12/14
[NT] Pocket Controller Professional Unauthorized Access Vulnerability, SecuriTeam, 2005/12/13
[NEWS] Gecko InstallVersion.compareTo Code Execution (Exploit), SecuriTeam, 2005/12/13
[NEWS] NetGear RP114 Flooding DoS, SecuriTeam, 2005/12/13
[UNIX] SCO Unixware Setuid 'uidadmin' Scheme Buffer Overflow, SecuriTeam, 2005/12/13
[EXPL] Lyris ListManager Multiple Vulnerabilities (Exploit), SecuriTeam, 2005/12/13
[NT] Lyris ListManager Multiple SQL Injection, information Disclosure and Authentication Bypassing, SecuriTeam, 2005/12/13
[NT] PGP Desktop Wipe Free Space Flaw, SecuriTeam, 2005/12/13
[TOOL] MS SQL Server Captured Authentication Packets Cracker, SecuriTeam, 2005/12/13
[NEWS] GTK+ gdk-pixbuf XPM Loader Heap Overflow, SecuriTeam, 2005/12/11
[UNIX] Ethereal OSPF Protocol Dissector Buffer Overflow, SecuriTeam, 2005/12/11
[NT] Ipswitch Multiple Vulnerabilities (IMail IMAP LIST Command DoS, Collaboration Suite SMTP Format String), SecuriTeam, 2005/12/11
[NT] Microsoft Windows Wireless Zero Multiple Vulnerabilities (Information Disclosure, Authentication Bypass), SecuriTeam, 2005/12/11
[TOOL] Ssh-Rbrute.rb - Simple SSH Brute Forcer, SecuriTeam, 2005/12/11
[TOOL] Sessionlimit - Rate Session Limiting Capabilities For OpenBSD's PF, SecuriTeam, 2005/12/11
[TOOL] Wesley - DHCP Spoof Tool, SecuriTeam, 2005/12/11
[NT] WinEggDropShell Multiple Remote Stack Overflows, SecuriTeam, 2005/12/11
[EXPL] Counter Strike 2D Denial of Service (Exploit 2), SecuriTeam, 2005/12/11
[TOOL] PUT File Uploader, SecuriTeam, 2005/12/11
[REVS] Host Fingerprinting and Firewalking With hping, SecuriTeam, 2005/12/11
[TOOL] AIX pwd Parser, SecuriTeam, 2005/12/11
[EXPL] FileZilla DoS Exploit (Long USER), SecuriTeam, 2005/12/11
[EXPL] Microsoft Windows CreateRemoteThread DoS (Exploit), SecuriTeam, 2005/12/08
[NEWS] Dell TrueMobile 2300 Wireless Broadband Router Authentication Bypass, SecuriTeam, 2005/12/08
[NT] Total Commander WCX_FTP.INI FTP Account Information Weak Encryption, SecuriTeam, 2005/12/08
[NT] Schneier's PasswordSafe Password Validation Flaw, SecuriTeam, 2005/12/08
[UNIX] sobexsrv Format String Vulnerability, SecuriTeam, 2005/12/08
[UNIX] Webmin Format String Vulnerability (Perl, miniserv.pl), SecuriTeam, 2005/12/08
[EXPL] Remote Linux Access (Exploit), SecuriTeam, 2005/12/08
[UNIX] Appfluent Database IDS Local Buffer Overflow, SecuriTeam, 2005/12/08
[NEWS] Cisco IOS HTTP Server Command Injection, SecuriTeam, 2005/12/08
[NEWS] MultiVOIP Buffer Overflow, SecuriTeam, 2005/12/08
[REVS] Remote Rogue Network Detection, SecuriTeam, 2005/12/08
[REVS] Perl Format String Vulnerabilities, SecuriTeam, 2005/12/08
[UNIX] curl URL Parsing Off by One Buffer Overflow, SecuriTeam, 2005/12/08
[UNIX] SugarSuite Open Source Code Execution (acceptDecline), SecuriTeam, 2005/12/08
[NEWS] Gecko Engine Multiple Vendor DoS (History.dat), SecuriTeam, 2005/12/08
[NT] Zone Labs ShowHTMLDialog Bypassing Vulnerability, SecuriTeam, 2005/12/08
[NT] MailEnable IMAP Rename Command DoS, SecuriTeam, 2005/12/04
[NT] Windows 2000/2003 SYN DoS Attack Protection, SecuriTeam, 2005/12/04
[NT] Opera Java Applet DoS, SecuriTeam, 2005/12/04