Full Disclosure (fulldisclosure) Mailing List

Iceman.Ro - new botnet to come

Fri, 3 Jul 2009 18:26:01 +0200

Posted by John Doe on Jul 3

18:13 -!- IceMan` [~bb_at_IceMan.ro] has joined #root
18:13 < pink_panther> Hello, friend
18:13 < IceMan`> uh :)))))
18:13 < pink_panther> We were just talking about you
18:13 < L> hi there
18:13 < IceMan`> eh i must close this ircd 2
18:13 < IceMan`>...

[SECURITY] [DSA 1825-1] New nagios2nagios3 packages fix arbitrary code execution

Fri, 3 Jul 2009 17:46:14 +0200

Posted by Nico Golde on Jul 3

--------------------------------------------------------------------------
Debian Security Advisory DSA-1825-1 security_at_debian.org
http://www.debian.org/security/ Nico Golde
July 3rd, 2009 ...

Re: radware AppWall Web Application Firewall: Source code disclosure on management interface

Fri, 3 Jul 2009 16:58:13 +0400

Posted by Vladimir 3APA3A Dubrovin on Jul 3

Dear Shaked Vax,

Are you sure Radware Team have analysed reflected attack via user's
browser (AppWall administrator visits malcrafted page, page redirects
his request to AppWall) before excluding remote vector?

--Thursday, July 2, 2009, 3:23:16 PM, you wrote to...

a simple race condition and how youd solve it

Fri, 03 Jul 2009 03:25:23 +0300

Posted by Gadi Evron on Jul 03

A friend recently demonstrated on his blog a simple race condition he
encountered. He also challenged folks to solve the problem.

http://www.algorithm.co.il/blogs/index.php/programming/a-simple-race-condition/

There's an interesting discussion in the comments which is worth a quick
read.

...

CVE-2008-3531

Thu, 2 Jul 2009 23:51:42 +0300

Posted by Patroklos Argyroudis on Jul 2

/*
* cve-2008-3531.c -- Patroklos Argyroudis, argp at domain census-labs.com
*
* Privilege escalation exploit for the FreeBSD-SA-08:08.nmount
* (CVE-2008-3531) vulnerability:
*
* http://security.freebsd.org/advisories/FreeBSD-SA-08:08.nmount.asc
...

phpMyAdmin exploited in masses

Fri, 3 Jul 2009 13:49:52 +0200

Posted by John Doe on Jul 3

Hi.

Disclosing out of boredom and for the crawlers to archive.

Keywords: phpmyadmin, web, exploit, zavod, devitalia, mwstudio, szervernet,
infotel, oodrive, iceman, romania, scriptkiddie.

An example of the phpmyadmin exploit used in masses without thinking.

IRC server: irc10.iceman.ro has...

One Click Ownage [White Paper and Scripts]

Fri, 3 Jul 2009 11:50:50 +0100

Posted by Ferruh Mavituna on Jul 3

This is a different and more practical approach to get a reverse shell
or code execution in SQL Injections (particularly in MSSQL). The idea
is simple. Getting a reverse shell from an SQL Injection with one HTTP
request without using an extra channel such as TFTP, FTP to upload the
initial...

Re: [Code-Crunchers] a simple race condition and how youd solve it

Fri, 3 Jul 2009 09:34:37 +0530

Posted by Phani on Jul 3

I may be seriously wrong here; But how about implementing a simple bool
cache as a check for cache result computation.

result = cache.select(input)
if result:
return result
resultcompute = cache.select(resultcompute)
if (resultcompute == true) {
...

Re: [Code-Crunchers] a simple race condition and how youd solve it

Thu, 02 Jul 2009 22:04:26 -0400

Posted by Valdis.Kletnieks_at_vt.edu on Jul 02

On Fri, 03 Jul 2009 11:01:34 +1000, silky said:

> Basically, you just need to check if you should still be computing,
> and, at the end of computation, if your data is still "wanted".

All that does is push the race condition around. You *still* need to
do some sort of locking...

Re: [Code-Crunchers] a simple race condition and how youd solve it

Fri, 3 Jul 2009 11:01:34 +1000

Posted by silky on Jul 3

On Fri, Jul 3, 2009 at 10:25 AM, Gadi Evron<ge_at_linuxbox.org> wrote:
> A friend recently demonstrated on his blog a simple race condition he
> encountered. He also challenged folks to solve the problem.
>
> ...

Soulseek 157 NS lt 13e amp 156.* Remote Direct Peer Search Code Execution

Thu, 2 Jul 2009 20:27:59 -0400

Posted by laurent gaffie on Jul 2

Soulseek 157 NS < 13e & 156.* Remote Peer Search Code Execution
=============================================
- Release date: July 02, 2009
- Discovered by: Laurent Gaffié ; http://g-laurent.blogspot.com/
- Severity: critical
=============================================

I....

[ GLSA 200907-01 ] libwmf: User-assisted execution of arbitrary code

Thu, 02 Jul 2009 21:36:57 +0200

Posted by Alex Legler on Jul 02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200907-01
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
...

[ GLSA 200907-02 ] ModSecurity: Denial of Service

Thu, 02 Jul 2009 21:38:32 +0200

Posted by Alex Legler on Jul 02

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200907-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
...

[USN-795-1] Nagios vulnerability

Thu, 02 Jul 2009 14:29:06 -0400

Posted by Marc Deslauriers on Jul 02

===========================================================
Ubuntu Security Notice USN-795-1 July 02, 2009
nagios2, nagios3 vulnerability
CVE-2009-2288
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu...

[USN-794-1] Perl vulnerability

Thu, 02 Jul 2009 14:27:30 -0400

Posted by Marc Deslauriers on Jul 02

===========================================================
Ubuntu Security Notice USN-794-1 July 02, 2009
libcompress-raw-zlib-perl, perl vulnerability
CVE-2009-1391
===========================================================

A security issue affects the following Ubuntu...