GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
83039b8c243ebaa4c31c96c823c88c8c1576de4a7d0d04e10d93527a535e5e7fosTicket version 1.7 DPR3 suffers from cross site scripting, path disclosure, open redirection, and remote blind SQL injection vulnerabilities.
f41bccaa0226cbecc381d721ba9315fcf74a7847d74a106ef0094c82852aedceosTicket version 1.6 stable suffers from cross site request forgery and remote blind SQL injection vulnerabilities.
cd698e414cb67a7c234b27341925e285901d58be5a6e0ad8d597914224f8757dosTicket version 1.7 RC2 suffers from cross site request forgery, cross site scripting, path disclosure, and open redirection vulnerabilities.
d49668d8ebd530b36b21f1defe4f01ce2d5e639b0faa1112f39129e21422710bThis Metasploit module exploits a vulnerability found in Microsoft Internet Explorer. A use-after-free condition occurs when a CButton object is freed, but a reference is kept and used again during a page reload, an invalid memory that's controllable is used, and allows arbitrary code execution under the context of the user. Please note: This vulnerability has been exploited in the wild targeting mainly China/Taiwan/and US-based computers.
533129f761cf4d8924232d6abdcf16e58a9823d5ff768d51fa0cc0628e64d91bRSOI, or Remote System over IRC, is a whitepaper about a feature adopted by the MpTcp software. This tool executes this action in order to delegate partial use (or total) of resources of a system to a remote entity. In this document, the action of using RSOI is dependently associated with the use of MpTcp. Therefore, manipulating RSOI here means to use MpTcp directly to implement this action, and nothing more.
1c7de768e087c16a1feb539e02b5a6f65eac779f4ea5ce1d061f33e2934fa78eComplete comprehensive archive of all 3,418 exploits added to Packet Storm in 2012.
fff9bb87076aec51b411ee266d2877f3b5e72a7aae421e84e40d00b53e62f4c7This archive contains all of the 190 exploits added to Packet Storm in December, 2012.
f6b6e6c0bb0390c643fc832f2abb167da1ff357502914ef37159e4ff829ebafdAstium VoIP PBX versions 2.1 build 25399 and below remote crash proof of concept exploit that causes astiumd to crash when sent a large buffer.
e4acc58c36708f878375e2b46efebab2ae7b0ffc17d0d60f690a35ea16535fe7Astium is prone to multiple vulnerabilities. This exploit uses SQL injection to bypass authentication on the login page and get access as an administrator. After that it uploads and executes a PHP script that will modify the "/usr/local/astium/web/php/config.php" script with a reverse shell and run a "sudo /sbin/service astcfgd reload". Version 2.1 build 25399 is affected.
a8bfed2b6a0488de9a6ded9c5bfe3e6d3e1e35ff053af72f599d8824a3f99a99Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the Xerte Online plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
57727f55f9976073f36c8991f2653a19009c64d72209fdf0be3a99fdfd35f0e6Secunia Security Advisory - Sammy Forgit has discovered a vulnerability in the ReFlex Gallery plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
4022d1dea80e743512b4c5b8953f8571a40e963f60e20ba4252a4fdb8666f130Secunia Security Advisory - A vulnerability has been reported in IBM SPSS Modeler, which can be exploited by malicious people to disclose potentially sensitive information and cause a DoS (Denial of Service).
e963b81de75c97e9992fda6c79caa29badded30dcf549af64bb2be4bb90929b8Secunia Security Advisory - Debian has issued an update for ghostscript. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system.
1aa5e0935460785094b36d1616acf335b27a23684e3b0ea75fbef4f815ef0bb8Secunia Security Advisory - Debian has issued an update for mediawiki-extensions. This fixes a vulnerability, which can be exploited by malicious users to conduct script insertion attacks.
421fb24e6b533fef0ac17db3a7669f252e82e6d4029c3cb429175916452104a2Secunia Security Advisory - A vulnerability with an unknown impact has been reported in the IP.Board.
0b00166072e3dd4a3becc330468e699e8e465632396051d8a9f5cab53afedab7Secunia Security Advisory - Debian has issued an update for virtualbox-ose. This fixes a vulnerability, which can be exploited by malicious, local users to cause a Denial of Service (DoS).
50af35e35b87badb111dcde2aa27a9ca642d168f57b3c239ed19f4070dcaf1d1Secunia Security Advisory - Debian has issued an update for moin. This fixes two vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to manipulate certain data.
794ee666d0d0d1283930da197a8e28bb5c09b0623bffec37b2787f4ee022b909Secunia Security Advisory - A vulnerability has been reported in Symfony, which can be exploited by malicious people to bypass certain security restrictions.
93e7ea3dfa62a4ffe595b8b3f48305ef711487b12a75132d22bc4a8cb0845da3Secunia Security Advisory - Multiple vulnerabilities have been reported in MoinMoin, which can be exploited by malicious users to conduct script insertion attacks and compromise a vulnerable system and by malicious people to manipulate certain data.
33b317728eeb4b0ae641d80390e10ab7e29dc7b4245d61f46d3759361ceb15edSecunia Security Advisory - A vulnerability has been reported in Symfony, which can be exploited by malicious people to bypass certain security restrictions.
0101184022edcdf83d23dd62c316d42c96999af049f348b4f9dc61987b21d0a4Secunia Security Advisory - Ubuntu has issued an update for moin. This fixes two vulnerabilities, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to manipulate certain data.
f1ebc8991b40ece931eb0159ff2b69a47118eca697090fce6296bb8bbf300896This is a whitepaper that discusses how to use Railgun, the extension for Meterpreter Ruby, in order to further exploitation.
128a697ff3970e82db7a11f12271fbff60f21d1c2bdb3216f631fed631acd673Drupal versions 6.x through 7.18 suffer from getimagesize() path and information disclosure vulnerabilities.
34d3057e774046cc520c1382be17b13f86fced4961308ef915eed34cc0f4d906This whitepaper discusses NFC, or Near Field Communication, and explains the related security implications.
78900f87153de6166ba2ee5624d5c39dd5850681f6372282ca3274f7bda7d808
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed