Whitepaper called Introduction To Hacking Basics. Written in Indonesian.
a54033f1d15f089131b735c5506d79c7555c8272d18984925b7b1b022bc0c3c6Sri Source Solutions suffers from a remote SQL injection vulnerability.
eab8d6f60cd6bab3b14cbe713dc925ab40b68153ffe1c3330a044d11cf12bbbdFreefloat FTP server version 1.0 suffers from multiple buffer overflow vulnerabilities. Proof of concept exploit is attached to the bottom of this advisory.
4e6acc80e048e44fedd23cff173f1820cdf3d05c9a7ddb5986f6acdceaa74c2fSoftbiz Recipes Portal suffers from multiple cross site scripting vulnerabilities.
db168e489b86d9c901fd51560cc56d5e00394d831bb03bee7650433517d93122CiscoKits TFTP server suffers from a directory traversal vulnerability. Proof of concept exploit is attached to the bottom of this advisory.
161191def09b6edbb36740f1d85f6955252011a6a6ee190d223c5da1d0349b48Unrar versions 3.9.3 and below suffer from a local stack buffer overflow vulnerability.
19a7cb784477ac76a62100c3ffd444b95ced3a580b93db84c38564e221f247f2CiscoKits CCNA TFTP server suffers from a denial of service vulnerability.
3a6a47dc0dec8ac1cb2475d20029ff4c47f9540492fb87c1373301db3c3e16a3ProPlayer plugin versions 4.7.7 and below suffer from a remote SQL injection vulnerability.
4962f6e103f28cda0e5520f9a06e9d82f243d18a4912cc5ebd8d3669ac718e36Social Slider versions 5.6.5 and below suffer from a remote SQL injection vulnerability.
4b75f188b9cf81f76519676ff040e0ce495038144a000ab9cd289cbe30da0b66This Metasploit module exploits an use after free vulnerability in Mozilla Firefox 3.6.16. An OBJECT Element mChannel can be freed via the OnChannelRedirect method of the nsIChannelEventSink Interface. mChannel becomes a dangling pointer and can be reused when setting the OBJECTs data attribute. This Metasploit module uses heapspray with a minimal ROP chain to bypass DEP on Windows XP SP3.
ef3c210a23b0931c66277ed381e60454ce4fd75aaa512a25b6fab13362a9a96fHP Data Protector remote shell for HP-UX that leverages improper filtering of arguments to the EXEC_CMD command.
6138083e044eab7159ad69d78d1317b09b2c2cab7f6ff4f168534e4b35537ed8EasyContent CMS suffers from a remote SQL injection vulnerability.
05e2503476df877c5cc80d20d1068c06dc05356651f26c8a914a93702754400eArte Dude suffers from a remote SQL injection vulnerability.
d188008bdb2881be92ea780b5813be3df2844bde30c1ef41f10cd3b19509b0e2Secunia Security Advisory - Multiple vulnerabilities have been reported in Bugzilla, which can be exploited by malicious, local users to gain access to potentially sensitive information and by malicious users to disclose potentially sensitive information, conduct script insertion and spoofing attacks.
325355a0ff6de300c61fc3d5e894fa57a718c9dba6d98919e76f996171ddc661Secunia Security Advisory - Levent Kayan has reported a vulnerability in Adium, which can be exploited by malicious users to conduct script insertion attacks.
2c1307c79afbad014de8d6695342d5e53fab5d54e4fa1a8dee8a485dd6b95276Secunia Security Advisory - Some vulnerabilities have been reported in the Mail Logger module for Drupal, which can be exploited by malicious people to conduct script insertion attacks.
86f1acce2f0e39cb9565557a2c369a4dbb6a8f6d84c9e6ff8bf9dae7e1f02274Secunia Security Advisory - High-Tech Bridge SA has discovered multiple vulnerabilities in HESK, which can be exploited by malicious people to conduct cross-site scripting attacks.
2a404c7cafbf3f1f1dc9f5e16df7cb0b263ea1b5459cb238819bd2800af8fa08Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in the WP e-Commerce plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
f5c42801f5b631d3951bd26c5ed51e8c04067963a2cc8e8f137f02240c228b18
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed