http://www.seclists.org/lists/fulldisclosure/2009/Jul/date.html Latest posts to fulldisclosure with detailed descriptions fyodor@NOSPAMinsecure.org (fyodor) djeaux@NOSPAMdjeaux.com (djeaux) Scythe 2.10 Fri, 3 Jul 2009 21:02:30 PDT http://www.djeaux.com/images/scraped_88x31.png http://www.seclists.org/lists/fulldisclosure/2009/Jul FullDisclosure scraped from insecure.org en-us http://www.seclists.org/lists/fulldisclosure/2009/Jul/0026.html johndo.jd@NOSPAMgmail.com (John Doe) Fri, 3 Jul 2009 18:26:01 +0200 18:13 -!- IceMan [bbatIceMan.ro] has joined #root 18:13 < pinkpanther> Hello, friend 18:13 < IceMan> uh :))))) 18:13 < pinkpanther> We were just talking about you 18:13 < L> hi there 18:13 < IceMan> eh i must close this ircd 2 18:13 < IceMan> uf uf uf ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0025.html nion@NOSPAMdebian.org (Nico Golde) Fri, 3 Jul 2009 17:46:14 +0200 - Debian Security Advisory DSA-1825-1 securityatdebian.org Nico Golde July 3rd, 2009 - Package : nagios2, nagios3 Vulnerability : insufficient input validation Problem type : remote Debian-specific: no CVE ID : CVE-2009-2288 It was discovered that the statuswml.cgi script of nagios, a monitoring ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0024.html 3APA3A@NOSPAMSECURITY.NNOV.RU (Vladimir '3APA3A' Dubrovin) Fri, 3 Jul 2009 16:58:13 +0400 Dear Shaked Vax, Are you sure Radware Team have analysed reflected attack via user's browser (AppWall administrator visits malcrafted page, page redirects his request to AppWall) before excluding remote vector? --Thursday, July 2, 2009, 3:23:16 PM, you wrote to full-disclosureatlists.grok.org.uk: ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0023.html ge@NOSPAMlinuxbox.org (Gadi Evron) Fri, 03 Jul 2009 03:25:23 +0300 A friend recently demonstrated on his blog a simple race condition he encountered. He also challenged folks to solve the problem. There's an interesting discussion in the comments which is worth a quick read. Also, maybe someone here will come up with a cuter idea? Gadi. -- ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0022.html argp@NOSPAMcensus-labs.com (Patroklos Argyroudis) Thu, 2 Jul 2009 23:51:42 +0300 /* * cve-2008-3531.c -- Patroklos Argyroudis, argp at domain census-labs.com * * Privilege escalation exploit for the FreeBSD-SA-08:08.nmount * (CVE-2008-3531) vulnerability: * * * * * For a detailed analysis see: * * * * Sample run: ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0021.html johndo.jd@NOSPAMgmail.com (John Doe) Fri, 3 Jul 2009 13:49:52 +0200 Hi. Disclosing out of boredom and for the crawlers to archive. Keywords: phpmyadmin, web, exploit, zavod, devitalia, mwstudio, szervernet, infotel, oodrive, iceman, romania, scriptkiddie. An example of the phpmyadmin exploit used in masses without thinking. IRC server: irc10.iceman.ro has address 85.214.36.2 ( h747052.serverkompetenz.net) IRC port: 9999 ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0020.html ferruh@NOSPAMmavituna.com (Ferruh Mavituna) Fri, 3 Jul 2009 11:50:50 +0100 This is a different and more practical approach to get a reverse shell or code execution in SQL Injections (particularly in MSSQL). The idea is simple. Getting a reverse shell from an SQL Injection with one HTTP request without using an extra channel such as TFTP, FTP to upload the ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0019.html pklanka@NOSPAMgmail.com (Phani) Fri, 3 Jul 2009 09:34:37 +0530 I may be seriously wrong here; But how about implementing a simple bool cache as a check for cache result computation. result = cache.select(input) if result: return result resultcompute = cache.select(resultcompute) if (resultcompute == true) { while(!cache.select(resultcompute)) { } return cache.select(result) } ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0018.html Valdis.Kletnieks@NOSPAMvt.edu (Valdis.Kletnieks_at_vt.edu) Thu, 02 Jul 2009 22:04:26 -0400 On Fri, 03 Jul 2009 11:01:34 1000, silky said: > Basically, you just need to check if you should still be computing, > and, at the end of computation, if your data is still "wanted". All that does is push the race condition around. You *still* need to ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0017.html michaelslists@NOSPAMgmail.com (silky) Fri, 3 Jul 2009 11:01:34 +1000 On Fri, Jul 3, 2009 at 10:25 AM, Gadi Evron<geatlinuxbox.org> wrote: > A friend recently demonstrated on his blog a simple race condition he > encountered. He also challenged folks to solve the problem. > > > There's an interesting discussion in the comments which is worth a quick ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0016.html laurent.gaffie@NOSPAMgmail.com (laurent gaffie) Thu, 2 Jul 2009 20:27:59 -0400 Soulseek 157 NS < 13e & 156.* Remote Peer Search Code Execution - Release date: July 02, 2009 - Discovered by: Laurent Gaffié ; - Severity: critical I. VULNERABILITY Soulseek 157 NS < 13e & 156.* Remote Peer Search Code Execution II. BACKGROUND ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0015.html a3li@NOSPAMgentoo.org (Alex Legler) Thu, 02 Jul 2009 21:36:57 +0200 - - Gentoo Linux Security Advisory GLSA 200907-01 - - - - Severity: Normal Title: libwmf: User-assisted execution of arbitrary code Date: July 02, 2009 Bugs: #268161 ID: 200907-01 - - Synopsis libwmf bundles an old GD version which contains a "use-after-free" ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0014.html a3li@NOSPAMgentoo.org (Alex Legler) Thu, 02 Jul 2009 21:38:32 +0200 - - Gentoo Linux Security Advisory GLSA 200907-02 - - - - Severity: Normal Title: ModSecurity: Denial of Service Date: July 02, 2009 Bugs: #262302 ID: 200907-02 - - Synopsis Two vulnerabilities in ModSecurity might lead to a Denial of Service. ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0013.html marc.deslauriers@NOSPAMcanonical.com (Marc Deslauriers) Thu, 02 Jul 2009 14:29:06 -0400 Ubuntu Security Notice USN-795-1 July 02, 2009 nagios2, nagios3 vulnerability CVE-2009-2288 A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ... http://www.seclists.org/lists/fulldisclosure/2009/Jul/0012.html marc.deslauriers@NOSPAMcanonical.com (Marc Deslauriers) Thu, 02 Jul 2009 14:27:30 -0400 Ubuntu Security Notice USN-794-1 July 02, 2009 libcompress-raw-zlib-perl, perl vulnerability CVE-2009-1391 A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. ...