.::anti-abuse.com::.
Security Revealed
Archive for November, 2008
Managing OpenVZ With The Vtonf Control Panel On CentOS 5.2
 |
Managing OpenVZ With The Vtonf Control Panel On CentOS 5.2
Vtonf is a free
web-based control panel (released under the GPL license) for managing
virtual private servers (VPS) based on OpenVZ. It makes it very easy to
create and manage OpenVZ VMs even for people with little technical
knowledge. Right now, Vtonf is available only for RedHat, Fedora, and
CentOS (support for Debian is planned), therefore I describe its installation and usage on a CentOS 5.2 server.
Back Up/Restore Hard Drives And Partitions With CloneZilla Live
This tutorial shows how you can back up and restore hard drives and partitions with CloneZilla Live. CloneZilla Live is a Linux Live-CD that you insert into your computer; it contains hard disk and partition imaging and cloning tools similar to Norton Ghost. The created images are compressed and can be transferred to a Samba-, SSH-, or NFS server or to a local hard drive or USB drive.
Neocons, Republicans and War Criminals Rave About Obama’s ‘Team of Rivals’
Obama is getting praise from all the wrong people.
Right-Wingers and Neocons Love Obama’s Cabinet Appointments
A collection of praise for Obama’s White House team from Karl Rove, David Brooks, Henry Kissinger and more.
Upgrade an electric lock keypad
[OldGrover] bought a Weiser electronic lock. Only 6 months after installing it, the keypad stopped working. Instead of just accepting this, [OldGrover] built a better button pad for his lock. He decided to go with big push buttons instead of a similar to stock membrane system. After tracing out where the original buttons connected, he [...]
Steam Client For Linux Confirmed: Linux Libraries Appear In Left 4 Dead Demo
Earlier this year we shared that Valve’s Source Engine is coming to Linux after receiving some information that pointed in this direction. In addition, a year ago Valve Software was publicly looking for a senior software engineer to port Windows-based games to Linux platform. There have long been rumors and hopes among Linux users that Steam games would become natively available for Linux, but we have additional confirmation that Valve Software has ported their Steam game client to Linux. In Valve’s most recent title, Left 4 Dead, there are shared Linux libraries shipping alongside this Windows game client.
[2/5] Ubuntu update for samba
Ubuntu has issued an update for samba. This fixes a vulnerability, which potentially can be exploited by malicious people to disclose sensitive information.
http://secunia.com/Advisories/32919/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] Ubuntu update for kernel
Ubuntu has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users to bypass certain security restrictions and gain escalated privileges, and by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
http://secunia.com/Advisories/32918/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] Ocean12 Contact Manager Pro SQL Injection and Cross-Site Scripting
Pouya_Server has reported some vulnerabilities in Ocean12 Contact Manager Pro, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks.
http://secunia.com/Advisories/32903/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] Ocean12 Membership Manager Pro Multiple SQL Injection Vulnerabilities
Some vulnerabilities have been reported in Ocean12 Membership Manager Pro, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/Advisories/32893/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] FamilyProject “index.php” SQL Injection Vulnerability
The_5p3ctrum has discovered a vulnerability in FamilyProject, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/Advisories/32900/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] i.Scribe Format String Vulnerability
A vulnerability has been discovered in i.Scribe, which potentially can be exploited by malicious people to compromise a user’s system.
http://secunia.com/Advisories/32906/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[2/5] RSA EnVision Password Hash Disclosure Vulnerability
Nicolas Viot has reported a vulnerability in RSA EnVision, which can be exploited by malicious people to disclose sensitive information.
http://secunia.com/Advisories/32883/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] Subtext Comments Anchor Tag Script Insertion Vulnerability
A vulnerability has been reported in subtext, which can be exploited by malicious people to conduct script insertion attacks.
http://secunia.com/Advisories/32914/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] Turnkey Arcade Script “id” SQL injection Vulnerability
The_5p3ctrum has reported a vulnerability in Turnkey Arcade Script, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/Advisories/32890/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[2/5] MailScanner “Clean()” Infinite Loop Vulnerability
A vulnerability has been reported in MailScanner, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).
http://secunia.com/Advisories/32915/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[2/5] Chipmunk Guestbook Limited SQL Injection Vulnerability
A vulnerability has been discovered in Chipmunk Guestbook, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/Advisories/32907/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[2/5] CMS Ortus “city” SQL Injection Vulnerability
otmorozok428 has reported a vulnerability in CMS Ortus, which can be exploited by malicious users to conduct SQL injection attacks.
http://secunia.com/Advisories/32899/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[3/5] RakhiSoftware Shopping Cart “subcategory_id” SQL Injection
XaDoS has reported a vulnerability in RakhiSoftware Shopping Cart, which can be exploited by malicious people to conduct SQL injection attacks.
http://secunia.com/Advisories/32897/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[4/5] BlackBerry Desktop Software FlexNET Connect ActiveX Control Vulnerability
A vulnerability has been reported in BlackBerry Desktop Software, which can be exploited by malicious people to compromise a vulnerable system.
http://secunia.com/Advisories/32842/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
[1/5] Linux Kernel “sendmsg()” Garbage Collector Denial of Service
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
http://secunia.com/Advisories/32913/
NOTE: This RSS feed does not include information about updated Secunia advisories. You should note that Secunia on average issues more than 20 updated advisories per day, containing information about exploit and patch availability, new and in depth research, and all other details that are relevant. Learn more about receiving complete and customised Secunia advisory information:
http://secunia.com/advisories/business_solutions/
Open Source ‘Fundamentally Superior’: Red Hat CEO James Whitehurst
James Whitehurst was considered an unlikely pick when he was chosen in January to be the next CEO of Red Hat. Since taking the helm, he has introduced a project that has Red Hat and IBM developing Microsoft-free PCs.
Microsoft offers US $20 billion for Yahoo: report
Did anyone really believe Ballmer when he said that he wasn’t still interested in buying Yahoo? Well, truth be told, Ballmer always said he’d be interested in doing a deal for Yahoo’s search business. Looks like the money dancer is firing his latest shot!
Keeping Linux Safe Since 1994
Typeanalyzer says Linux Journal is one of The Guardians. That is,
The organizing and efficient type. They are especially attuned to setting goals and managing available resources to get the job done.
Cain & Abel 4.9.23 (rdp file) Buffer Overflow PoC
# exploit.py
##########################################################
# Cain & Abel v4.9.23 (rdp file) Buffer Overfl…
Itunes 8.0.2.20/Quicktime 7.5.5 (.mov File) Multiple Off By Overflow PoC
————————————————————————————————————————…
Advertisments
Popular Tags
Recent Entries
- Ubuntu more “commercial”, but always free …
- The Story Behind Payment Disruptor Stripe.com And Its Founder Patrick Collison
- Lightspark For Open Flash Inches Forward
- Silicon Valley Can Do Better Than Facebook
- The pi pad
- Labor Struggles, Then and Now: Workers in One Iowa Town Epitomize the Past and Present of the Labor Movement
- The Perfect Desktop – Ubuntu Studio 12.04
- Introducing Our 2012 Disrupt NYC Hackathon Winners: Thingscription, PoachBase, And Practikhan!
- iPhone charger teardown shows astounding miniaturization.
- Vuln: Oracle Java SE CVE-2012-0502 Remote Information Disclosure Vulnerability
Recent Comments
- Keine Kommentare vorhanden.
Social Network
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Oct | Dec » | |||||
| 1 | 2 | |||||
| 3 | 4 | 5 | 6 | 7 | 8 | 9 |
| 10 | 11 | 12 | 13 | 14 | 15 | 16 |
| 17 | 18 | 19 | 20 | 21 | 22 | 23 |
| 24 | 25 | 26 | 27 | 28 | 29 | 30 |
Subscribes
Meta
Archives
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- November 2010
- October 2010
- September 2010
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- August 2005
- July 2005
- June 2005
- May 2005
- January 2005
- November 2004
- October 2004
- September 2004
- October 2002
- December 2001
- January 1970
- December 1969
Also
rss
- SANS Internet Storm Center, InfoCON: green
- SANS Internet Storm Center, InfoCON: green
- (IN)SECURE Magazine Notifications RSS
- 0DayCar
- A Day in the Life of an Information Security Investigator
- Advisory Files ≈ Packet Storm
- Advisory Files ≈ Packet Storm
- All about Linux
- All about Linux
- AlterNet.org
- AlterNet.org
- Astalavista.net – Directory
- Astalavista.net – Exploits
- cmw.me blogs
- Confessions of a Penetration Tester
- Darknet – The Darkside
- Darknet – The Darkside
- Debian GNU/Linux System Administration Resources
- Debian GNU/Linux System Administration Resources
- DesktopLinux.com
- DesktopLinux.com
- Exploit Files ≈ Packet Storm
- Exploit Files ≈ Packet Storm
- F-Secure Antivirus Research Weblog
- F-Secure Antivirus Research Weblog
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Files ≈ Packet Storm
- Got Root Articles
- Got Root Articles
- Got Root Blogs
- Got Root Blogs
- Got Root Library and Wiki
- Got Root Library and Wiki
- Hack a Day
- Hack a Day
- HowtoForge – Linux Howtos and Tutorials –
- HowtoForge – Linux Howtos and Tutorials –
- izik
- izik
- Joomla! powered Site
- kaos.theory: fractal blog
- kaos.theory: fractal blog
- Latest Secunia Advisories
- Librenix.com | Linux Sysadmin Central
- Librenix.com | Linux Sysadmin Central
- Linux Gazette
- Linux Gazette
- Linux Journal – The Original Magazine of the Linux Community
- Linux Journal – The Original Magazine of the Linux Community
- Linux.com :: Feature
- Linux.com :: Feature
- LXer Linux News
- LXer Linux News
- milw0rm.com
- milw0rm.com
- News ≈ Packet Storm
- News ≈ Packet Storm
- nixCraft Linux Sys Admin Blog
- nixCraft Linux Sys Admin Blog
- Open Source Networking
- Open Source Networking
- Own-the.net – Web application security and SEO
- RootPrompt — Nothing but Unix
- RootPrompt — Nothing but Unix
- Rootsecure.net
- Rootsecure.net
- SecuriTeam
- SecuriTeam
- Security Tool Files ≈ Packet Storm
- Security Tool Files ≈ Packet Storm
- SecurityDocs
- SecurityDOT Articles
- SecurityDOT Articles
- SecurityDOT Exploits
- SecurityDOT Exploits
- SecurityDot News
- SecurityDot News
- SecurityDot Vulnerabilities
- SecurityDot Vulnerabilities
- SecurityFocus News
- SecurityFocus News
- SecurityFocus Vulnerabilities
- SecurityFocus Vulnerabilities
- SpiderLabs Anterior
- SpiderLabs Anterior
- Spyware Warrior
- Spyware Warrior
- TaoSecurity
- TaoSecurity
- TechCrunch
- The Ethical Hacker Network RSS News Feed
- The Ethical Hacker Network RSS News Feed
- The most recent articles from vnunet.com
- The most recent articles from vnunet.com
- US-CERT Bulletins
- US-CERT Bulletins
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Technical Cyber Security Alerts
- US-CERT Tips
- US-CERT Tips
- VulnWatch
- VulnWatch
- XSSed syndication
- XSSed syndication
- XSSed syndication
- XSSed syndication