Packet Storm new exploits for July, 2005.
ab545a8283c253b65bc2b58960d3e3e79415097ff6ceb8e59e6732fda91c568a
A buffer overflow in BusinessMail email server system 4.60.00 allows for a denial of service attack. Proof of concept exploit included.
e61c8d30334ddbd9c69cb79a6029b70f85e075638ce1f5ff51725124201c4044
A SQL injection flaw exists in phpList. Proper exploitation requires that a user be authenticated.
458fc9000f820a935ba9ad27ff4eb00f11f2f4489a319a93892a0c24a662dcf8
MySQL AB Eventum versions 1.5.5 and below proof of concept SQL injection exploit.
98ae37828a224b42ec7704aa466387c415edefa346151814689409183ced0496
MySQL AB Eventum versions 1.5.5 and below suffer from cross site scripting and SQL injection attacks.
486b62670eba7e416965890cfa7d6c70e4ce802a5432ee1a9a47b3799b7d5e9d
Phpeasynews version 1.13 RC2 is susceptible to cross site scripting, path disclosure, and user check bypass vulnerabilities.
1bcd3c76f6565004ab00f136803cee930fa5730fb78ad311913b6ad2b14f5279
Kayako liveResponse versions 2.x suffer from cross site scripting, SQL injection, script insertion, and other vulnerabilities.
467ff6e05fcb9f7bcfe64a7911a6f281382e754685facee0e1c93532010dc5fa
Easyxp41 suffers from multiple cross site scripting and data disclosure flaws. An excessive amount of detailed exploitation is provided.
b11be99fc0ea0ceadd4afffe67998e76b1846a48d50741151bb21bbbc661d62d
Plugged-Blog 0.4.8 suffers from multiple cross site scripting, SQL injection, and other flaws. Detailed exploitation provided.
ebbca1ecec9d8e1ddadf735c12f8d774717fd83bf4c04b5d8fc5c63731f562aa
Kshout versions 2.x and 3.x allow for direct file access to their configuration files.
8c0896bc4a509cbcf7c2ba24fcda2dd282d65861445774e2bdc42115d9afe375
qliteNews arbitrary database manipulation and cross site scripting proof of concept exploit.
0911f2087e68909788f45768c21f628ad4f585c71f70c83b55698558c1e09049
Kent's Guestbook allows for direct database file access.
7a0072e44f664675328ec01972f50ab5b7af9865f32e2374959b9585e577c2f2
Web Content Management News System administrative account creation and cross site scripting proof of concept exploit.
990585c9faa9ac51c6b4dd39f13e1d67f108d8e566f736c1f8c9b202660e7f88
PHPFreeNews versions 1.32 and below are susceptible to SQL injection, login bypass, and cross site scripting attacks.
6e4950591016029b7b9fdf3825bfbb4a41f8b7f1496b92f39e7a67fd1fef0b1e
PHP News Manager versions 1.45 through 1.47 are susceptible to login bypass, SQL injection, cross site scripting and path disclosure flaws.
edb052d5269e388cf5c485860a0cc421bbd1ed352263228f6557414c8eb3e5c5
PHPList is susceptible to SQL injection and path disclosure flaws.
c3a7ccc54549b284b9d57082be0f2413a70a7f00bb0916f970ce3da8decd3753
GForge version 4.5 is susceptible to multiple cross site scripting vulnerabilities.
6987e8c48a8ad981bda89e0d53df9752dac35da750af19821ff0c0234304f477
Product Cart 2.6 is susceptible to a SQL injection attack.
1a7a0193f797f2414538f0d22427694af75bdc11429f381d7e35ea32387f411c
@Mail 4.03 WebMail for Windows and 4.11 for Unix variants suffers from multiple cross site scripting flaws. Detailed exploitation provided.
e7d45ee0b78d0b31102938dd2bfec6cb78c5dc938ca19586df1e1abc829b6175
NGSSoftware Insight Security Research Advisory - HP OpenView Radia Management Portal versions 2.x and 1.x running the Radia Management Agent suffer from a remote command execution flaw via a directory traversal. By connecting to the TCP port and sending a crafted packet, it is possible to traverse out of C:\Program Files\Novadigm and run any executable that is located on the same logical disk partition.
7cb720055d0a9def2c53bdea7b3ee97ae5cad852628a3a71f3790a7d689c41d5
GNU Mailutils imap4d version 0.6 remote format string exploit. Tested on Slackware Linux versions 9.0, 10.0, and 10.1.
401bc6296bf7e0cad8ec471e000d36ed641cd07f6b35a73673bd4b9fb17f3e30
Clever Copy suffers from multiple cross site scripting and path disclosure flaws. Versions 2.0 and 2.0a are affected.
f8361167214508e7b7908f034dc5d4028f06638ffdf5ed43ac11e033d97286fb
BMForum Datium! 3.0 RC1-4, Plus! 3.0 RC1-4, Plus! 2.6.1, and PlusMX 3.0.0.5 all suffer from multiple cross site scripting flaws.
d3b2143c60bb09f3023734011cae42cd0b588014515e61c578f8f0df1bd2bcdc
CartWIZ suffers from a cross site scripting vulnerability.
55b39a11e65c04e115b346660460d185b1c7b5902fce31c6167047ef8a26773e
Simplicity OF Upload 1.3 allows for remote code execution and cross site scripting attacks.
5aed3185aef2e54a81a96802e0d2aa259d7c0541c1281310f0132032e012c832