O:9:"magpierss":25:{s:6:"parser";i:0;s:12:"current_item";a:0:{}s:5:"items";a:20:{i:0;a:4:{s:5:"title";s:11:"pc26sql.txt";s:4:"link";s:56:"http://packetstormsecurity.org/0507-exploits/pc26sql.txt";s:11:"description";s:59:"Product Cart 2.6 is susceptible to a SQL injection attack. ";s:7:"summary";s:59:"Product Cart 2.6 is susceptible to a SQL injection attack. ";}i:1;a:4:{s:5:"title";s:13:"atmailXSS.txt";s:4:"link";s:58:"http://packetstormsecurity.org/0507-exploits/atmailXSS.txt";s:11:"description";s:140:"@Mail 4.03 WebMail for Windows and 4.11 for Unix variants suffers from multiple cross site scripting flaws. Detailed exploitation provided. ";s:7:"summary";s:140:"@Mail 4.03 WebMail for Windows and 4.11 for Unix variants suffers from multiple cross site scripting flaws. Detailed exploitation provided. ";}i:2;a:4:{s:5:"title";s:21:"HPRadiaManagement.txt";s:4:"link";s:66:"http://packetstormsecurity.org/0507-exploits/HPRadiaManagement.txt";s:11:"description";s:407:"NGSSoftware Insight Security Research Advisory - HP OpenView Radia Management Portal versions 2.x and 1.x running the Radia Management Agent suffer from a remote command execution flaw via a directory traversal. By connecting to the TCP port and sending a crafted packet, it is possible to traverse out of C:\Program Files\Novadigm and run any executable that is located on the same logical disk partition. ";s:7:"summary";s:407:"NGSSoftware Insight Security Research Advisory - HP OpenView Radia Management Portal versions 2.x and 1.x running the Radia Management Agent suffer from a remote command execution flaw via a directory traversal. By connecting to the TCP port and sending a crafted packet, it is possible to traverse out of C:\Program Files\Novadigm and run any executable that is located on the same logical disk partition. ";}i:3;a:4:{s:5:"title";s:13:"NRVA05-03.txt";s:4:"link";s:60:"http://packetstormsecurity.org/0507-advisories/NRVA05-03.txt";s:11:"description";s:83:"HAURI live update suffers from remote file download and execution vulnerabilities. ";s:7:"summary";s:83:"HAURI live update suffers from remote file download and execution vulnerabilities. ";}i:4;a:4:{s:5:"title";s:18:"glsa-200507-27.txt";s:4:"link";s:65:"http://packetstormsecurity.org/0507-advisories/glsa-200507-27.txt";s:11:"description";s:222:"Gentoo Linux Security Advisory GLSA 200507-27 - Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.12 are affected. ";s:7:"summary";s:222:"Gentoo Linux Security Advisory GLSA 200507-27 - Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.12 are affected. ";}i:5;a:4:{s:5:"title";s:19:"devsec-3.0.0.tar.gz";s:4:"link";s:65:"http://packetstormsecurity.org/linux/security/devsec-3.0.0.tar.gz";s:11:"description";s:356:"Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk). ";s:7:"summary";s:356:"Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk). ";}i:6;a:4:{s:5:"title";s:23:"sinister-0.1beta.tar.gz";s:4:"link";s:64:"http://packetstormsecurity.org/UNIX/misc/sinister-0.1beta.tar.gz";s:11:"description";s:100:"Sinister is a reverse engineering utility that allows you to manipulate executables' memory images. ";s:7:"summary";s:100:"Sinister is a reverse engineering utility that allows you to manipulate executables' memory images. ";}i:7;a:4:{s:5:"title";s:18:"nufw-1.0.11.tar.gz";s:4:"link";s:63:"http://packetstormsecurity.org/UNIX/firewall/nufw-1.0.11.tar.gz";s:11:"description";s:475:"NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.";s:7:"summary";s:475:"NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.";}i:8;a:4:{s:5:"title";s:20:"clamav-0.86.2.tar.gz";s:4:"link";s:61:"http://packetstormsecurity.org/UNIX/mail/clamav-0.86.2.tar.gz";s:11:"description";s:411:"Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software. ";s:7:"summary";s:411:"Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software. ";}i:9;a:4:{s:5:"title";s:24:"kismet-2005-07-R1.tar.gz";s:4:"link";s:64:"http://packetstormsecurity.org/wireless/kismet-2005-07-R1.tar.gz";s:11:"description";s:961:"Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible  interesting  (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data. Full changelog here.";s:7:"summary";s:961:"Kismet is an 802.11 layer 2 wireless network sniffer. It can sniff 802.11b, 802.11a, and 802.11g traffic. It is capable of sniffing using almost any wireless card supported in Linux, which currently divide into cards handled by libpcap and the Linux-Wireless extensions (such as Cisco Aironet), and cards supported by the Wlan-NG project which use the Prism/2 chipset (such as Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD, OpenBSD and Mac OS X systems. Features Multiple packet capture sources, Runtime network sorting by AP MAC address (bssid), IP block detection via ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal and tcpdump compatible file logging, Airsnort-compatible  interesting  (cryptographically weak) logging, Secure SUID behavior, GPS devices and wireless devices fingerprinting. Kismet also includes a tool called gpsmap that can be used to create maps from logged GPS data. Full changelog here.";}i:10;a:4:{s:5:"title";s:17:"mu-imap4d_fsexp.c";s:4:"link";s:62:"http://packetstormsecurity.org/0507-exploits/mu-imap4d_fsexp.c";s:11:"description";s:119:"GNU Mailutils imap4d version 0.6 remote format string exploit. Tested on Slackware Linux versions 9.0, 10.0, and 10.1. ";s:7:"summary";s:119:"GNU Mailutils imap4d version 0.6 remote format string exploit. Tested on Slackware Linux versions 9.0, 10.0, and 10.1. ";}i:11;a:4:{s:5:"title";s:13:"dsa-768-1.txt";s:4:"link";s:60:"http://packetstormsecurity.org/0507-advisories/dsa-768-1.txt";s:11:"description";s:187:"Debian Security Advisory DSA 768-1 - A cross-site scripting vulnerability has been detected in phpBB2 that allows remote attackers to inject arbitrary web script or HTML via nested tags. ";s:7:"summary";s:187:"Debian Security Advisory DSA 768-1 - A cross-site scripting vulnerability has been detected in phpBB2 that allows remote attackers to inject arbitrary web script or HTML via nested tags. ";}i:12;a:4:{s:5:"title";s:13:"dsa-767-1.txt";s:4:"link";s:60:"http://packetstormsecurity.org/0507-advisories/dsa-767-1.txt";s:11:"description";s:258:"Debian Security Advisory DSA 767-1 - Marcin Slusarz discovered two integer overflow vulnerabilities in libgadu, a library provided and used by ekg, a console Gadu Gadu client, an instant messaging program, that could lead to the execution of arbitrary code. ";s:7:"summary";s:258:"Debian Security Advisory DSA 767-1 - Marcin Slusarz discovered two integer overflow vulnerabilities in libgadu, a library provided and used by ekg, a console Gadu Gadu client, an instant messaging program, that could lead to the execution of arbitrary code. ";}i:13;a:4:{s:5:"title";s:16:"cleverAccess.txt";s:4:"link";s:63:"http://packetstormsecurity.org/0507-advisories/cleverAccess.txt";s:11:"description";s:151:"Clever Copy contains a flaw that allows for unauthorized reading and deletion of private message from other users. Versions 2.0 and 2.0a are affected. ";s:7:"summary";s:151:"Clever Copy contains a flaw that allows for unauthorized reading and deletion of private message from other users. Versions 2.0 and 2.0a are affected. ";}i:14;a:4:{s:5:"title";s:26:"FreeBSD-SA-05-19.ipsec.txt";s:4:"link";s:73:"http://packetstormsecurity.org/0507-advisories/FreeBSD-SA-05-19.ipsec.txt";s:11:"description";s:429:"FreeBSD Security Advisory FreeBSD-SA-05:19.ipsec - IPsec is a security protocol for the Internet Protocol networking layer. It provides a combination of encryption and authentication of system, using several possible cryptography algorithms. A programming error in the implementation of the AES-XCBC-MAC algorithm for authentication resulted in a constant key being used instead of the key specified by the system administrator. ";s:7:"summary";s:429:"FreeBSD Security Advisory FreeBSD-SA-05:19.ipsec - IPsec is a security protocol for the Internet Protocol networking layer. It provides a combination of encryption and authentication of system, using several possible cryptography algorithms. A programming error in the implementation of the AES-XCBC-MAC algorithm for authentication resulted in a constant key being used instead of the key specified by the system administrator. ";}i:15;a:4:{s:5:"title";s:25:"FreeBSD-SA-05-18.zlib.txt";s:4:"link";s:72:"http://packetstormsecurity.org/0507-advisories/FreeBSD-SA-05-18.zlib.txt";s:11:"description";s:282:"FreeBSD Security Advisory FreeBSD-SA-05:18.zlib - A carefully constructed compressed data stream can result in zlib overwriting some data structures. This may cause applications to halt, resulting in a denial of service; or it may result in an attacker gaining elevated privileges. ";s:7:"summary";s:282:"FreeBSD Security Advisory FreeBSD-SA-05:18.zlib - A carefully constructed compressed data stream can result in zlib overwriting some data structures. This may cause applications to halt, resulting in a denial of service; or it may result in an attacker gaining elevated privileges. ";}i:16;a:4:{s:5:"title";s:15:"cleverNotSo.txt";s:4:"link";s:60:"http://packetstormsecurity.org/0507-exploits/cleverNotSo.txt";s:11:"description";s:118:"Clever Copy suffers from multiple cross site scripting and path disclosure flaws. Versions 2.0 and 2.0a are affected. ";s:7:"summary";s:118:"Clever Copy suffers from multiple cross site scripting and path disclosure flaws. Versions 2.0 and 2.0a are affected. ";}i:17;a:4:{s:5:"title";s:14:"bmforumXSS.txt";s:4:"link";s:59:"http://packetstormsecurity.org/0507-exploits/bmforumXSS.txt";s:11:"description";s:129:"BMForum Datium! 3.0 RC1-4, Plus! 3.0 RC1-4, Plus! 2.6.1, and PlusMX 3.0.0.5 all suffer from multiple cross site scripting flaws. ";s:7:"summary";s:129:"BMForum Datium! 3.0 RC1-4, Plus! 3.0 RC1-4, Plus! 2.6.1, and PlusMX 3.0.0.5 all suffer from multiple cross site scripting flaws. ";}i:18;a:4:{s:5:"title";s:18:"glsa-200507-26.txt";s:4:"link";s:65:"http://packetstormsecurity.org/0507-advisories/glsa-200507-26.txt";s:11:"description";s:172:"Gentoo Linux Security Advisory GLSA 200507-26 - GNU Gadu, CenterICQ, Kadu, EKG and libgadu are vulnerable to an integer overflow. Versions less than 2.2.6-r1 are affected. ";s:7:"summary";s:172:"Gentoo Linux Security Advisory GLSA 200507-26 - GNU Gadu, CenterICQ, Kadu, EKG and libgadu are vulnerable to an integer overflow. Versions less than 2.2.6-r1 are affected. ";}i:19;a:4:{s:5:"title";s:13:"dsa-766-1.txt";s:4:"link";s:60:"http://packetstormsecurity.org/0507-advisories/dsa-766-1.txt";s:11:"description";s:204:"Debian Security Advisory DSA 766-1 - A vulnerability has been discovered in webcalendar, a PHP based multi-user calendar, that can lead to the disclosure of sensitive information to unauthorised parties. ";s:7:"summary";s:204:"Debian Security Advisory DSA 766-1 - A vulnerability has been discovered in webcalendar, a PHP based multi-user calendar, that can lead to the disclosure of sensitive information to unauthorised parties. ";}}s:7:"channel";a:5:{s:5:"title";s:29:"Packet Storm Security Last 20";s:4:"link";s:31:"http://packetstormsecurity.org/";s:11:"description";s:22:"20 Most Recent Entries";s:8:"language";s:5:"en-us";s:7:"tagline";s:22:"20 Most Recent Entries";}s:9:"textinput";a:0:{}s:5:"image";a:0:{}s:9:"feed_type";s:3:"RSS";s:12:"feed_version";s:3:"2.0";s:8:"encoding";s:10:"ISO-8859-1";s:16:"_source_encoding";s:0:"";s:5:"ERROR";s:0:"";s:7:"WARNING";s:0:"";s:19:"_CONTENT_CONSTRUCTS";a:6:{i:0;s:7:"content";i:1;s:7:"summary";i:2;s:4:"info";i:3;s:5:"title";i:4;s:7:"tagline";i:5;s:9:"copyright";}s:16:"_KNOWN_ENCODINGS";a:3:{i:0;s:5:"UTF-8";i:1;s:8:"US-ASCII";i:2;s:10:"ISO-8859-1";}s:5:"stack";a:0:{}s:9:"inchannel";b:0;s:6:"initem";b:0;s:9:"incontent";b:0;s:11:"intextinput";b:0;s:7:"inimage";b:0;s:13:"current_field";s:0:"";s:17:"current_namespace";b:0;s:15:"source_encoding";s:10:"ISO-8859-1";s:13:"last_modified";s:31:"Wed, 03 Aug 2005 00:01:23 GMT
";s:4:"etag";s:20:""15-21ce-42f00953"
";}