|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 1247 CVE : CVE-2006-3696 SecurityRisk : Medium  (About) Remote Exploit : No Local Exploit : Yes Exploit Available : Yes Credit : Bipin Gautam Published : 24.07.2006
Advisory Content : hello, To my knowledge Outpost Firewall Pro 3.5.631 had a security issue (say: 0-day) that An exception can be passed & then triggered by a local system user to the firewall resulting in a SYSTEM CRASH due to a overflow flaw in filtnt.sys (firewall driver) I was testing it on winxpsp2 (patchlevel latest) & other possibilities of remote exploitation. try experimenting with: cmd.exe c:> mshta.exe longggggggggg string After upgrading to Outpost Firewall Pro ver. 3.51.759.6511 (462) the issue seems fixed. so secret fix huh ? --- Bipin Gautam http://bipin.tk Zeroth law of security: The possibility of poking a system from lower privilege is zero unless & until there is possibility of direct, indirect or consequential communication between the two...  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |