Packet Storm new exploits for May, 2005.
f3c0d5ae921007ba927af2f6dbfa4b1e64ad1b117a02b45d5d416979b4e2e745
MyBB versions 1.00 RC4 and below remote password hash extraction exploit.
0a44b8750c3688167b9319916306537a9a6485d3249e01d686dda2e59be4f2c7
Calendarix Advanced is susceptible to SQL injection attacks. Exploitation provided.
f4a4f4fd748fe46767e80cf8950047f6933d09349a530d95b1956e257c4c6aee
Multiple SQL injection and cross site scripting bugs have been discovered in MyBB 1.00 RC4.
1a88cd902008b46e3b8e263d846464c7659ed8471f0507f7db50c50886d61a0e
x-cart Gold version 4.0.8 suffer from many SQL injection and cross site scripting vulnerabilities.
d4d664d9d9404c7c78c5741a9e5c3c4d47c9621f5eb381053090bd2d24e0ca50
Exploit for the COM structured storage vulnerability as described in MS05-012. Work on Win2k SP4, WinXP SP2, and Win2k3 SP0.
b0254015a10b6594140ffe50bc4155344c5a36122f3f931e66aab2e4ea94425e
PowerDownload versions 3.0.2 and 3.0.3 suffer from remote file inclusion and arbitrary code execution flaws.
ecfdb2a2835afad64dff3411356907948374c5ba676dc42f4b98bc9be3f02d7c
Stronghold 2 versions 1.2 and below remote denial of service exploit.
7995ef684ccec869dfa4649cf8e84a5c51abc99845e552c496ecf4d8a1d5f481
Paypal suffers from a price manipulation flaw via buttons.
211444247900f329944ae021c4d844567452d60e0caf32e802160f31bad4fd83
Jaws Glossary version 0.4 through 0.5.1 suffer from cross site scripting flaws.
e991bfb30f2a1a7245f48d2e163c87e0ac4bb872253d33e7407bbdf4b33c4c0b
PostNuke versions 0.750 and below suffer from SQL injection and cross site scripting flaws.
8fc3d61af2f62298fa9053aa283fdf4a3d664c16d3dc97510075482c7e0df365
SQL injection exploit for myBloggie versions 2.1.1 through 2.1.2.
6a807f834589098b7b520fb2dc93027fd334223bfa683846fa07a2150c6a229f
BEA WebLogic Server versions 7.0 and 8.1 suffer from a cross site scripting vulnerability in their error page.
73927fc23663cbc4dccf3dd111e9b4e9da9e01ab4db88f32a6aff8a785e1dbec
BEA WebLogic Server versions 7.0 and 8.1 suffer from a cross site scripting vulnerability in their login page.
2a58e30cd9efeff84e3f7bf89e1182fa641264f9c16bf6b78f4f68588b00649d
Serverscheck Monitoring Software versions 5.9.0 through 5.10.0 suffer from directory traversal bugs.
1ea007b216e98fbd3e1508e2060b0803088f952042305438c0633c4950d5a79e
PHP Stat administrative user authentication bypass exploit. Written in PHP.
5e7417137cc7825439b9bf7fb8163fcc8faaf064ad7d4b61d07fe6f09a972767
The DSL-504T D-Link router allows for user authentication bypass.
2e54668ee83c5e4a4d241aeef719d3ece3b852a454b2eb13abcdef7fb4fdbabb
C'Nedra versions 0.4.0 and below remote buffer overflow exploit.
b07928afefd1bd833e617d7eb5d343f1ab8382f4633315b5a2629247cd789e9e
Terminator 3: War of the Machines versions 1.16 and below remote proof of concept exploit.
9c83b07c87b070924924298b43bc31030ddad76802a9f36fba5f17b2f838abaf
SQL injection exploit for Invision Power Board versions 1.x and 2.x that allows for valid cookie retrieval.
8a5fafcb30a4f2061640bc573f51cb97edef121c57a5e5b983569e4131aa5e9b
BookReview 1.0 is susceptible to multiple cross site scripting flaws.
18b1301ed5452fdb6ef81f18d76a51f4d9525dfc0f5a7e56dfda44f95f976cf7
PHP Poll Creator version 1.01 is susceptible to a remote file inclusion vulnerability.
5c581ce9d2cf8550744e983f08d2abe424320521a65513d2ece38d043791b222
JavaMail API versions 1.13, 1.2, and 1.3 are susceptible to multiple information disclosure vulnerabilities.
c3cb47c8dc22584e271b8f68818d84e69de37fd589266e971b46fb4442a3a31d
iDEFENSE Security Advisory 05.24.05-4 - Remote exploitation of a directory traversal vulnerability in Ipswitch Inc.'s Imail Web Calendaring server allows attackers to read arbitrary files with System privileges. Version 8.13 is confirmed vulnerable. Earlier versions may be susceptible as well.
c2412685d9447765878e88f041d94055c3ae9b7b48aaecf6311d4da8eea532c7
Local exploit for Exim 4.40.
3adad43468cfdfd5ed6651714bdec7ccbbcdfc0f919cf2bda7401afbde47c960