Exploit the possiblities
Showing 1 - 25 of 567 RSS Feed

Files

SSRT5973-1.txt
Posted Oct 3, 2006
Site hp.com

HPSBUX02152 SSRT5973 rev.1 - HP-UX Kerberos Client Remote Unauthenticated Execution of Arbitrary Code

tags | advisory, remote, arbitrary
systems | hpux
MD5 | f4b2126a3aa24d1d1d3e1aed624c576a
HP Security Bulletin 2006-12.35
Posted Oct 3, 2006
Authored by Hewlett Packard | Site hp.com

HPSBUX02155 SSRT061235 rev.1 HP-UX CIFS Server (Samba) Local Unauthorized Access, Elevated Privileges

tags | advisory, local
systems | hpux
MD5 | aba1a7a1445785ee13adb1de9d17224c
wwwthreads-5.4.2.txt
Posted Oct 2, 2006
Authored by Root3r_H3ll | Site Www.PersainFox.com

wwwthreads 5.4.2 and prior suffer from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 7aed22b7819d49ae37e0beb0d1f9331e
PhotoStore.txt
Posted Oct 2, 2006
Authored by meto5757

PhotoStore suffers from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 9084b2681380764b26cc434db91fa37e
Opial-1.0.txt
Posted Oct 2, 2006
Authored by meto5757

Opial Audio/Video Download Management suffers from cross site scripting in index.php

tags | advisory, php, xss
MD5 | 4102a3a0ee3136f47315374f6b7ba61e
toendaCMS..txt
Posted Oct 2, 2006
Authored by MoHaJaLi

toendaCMS suffers from a local file inclusion vulnerability.

tags | advisory, local, file inclusion
MD5 | 71fb4a31475c2f9320336ac582e8548f
RISE-2006002.txt
Posted Oct 2, 2006
Authored by Ramon de C Valle, RISE Security | Site risesecurity.org

RISE-2006002: There exists a vulnerability within a architecture dependent function of the FreeBSD kernel (FreeBSD 5.2-RELEASE through FreeBSD 5.5-RELEASE), which when properly exploited can lead to local compromise of the vulnerable system. This vulnerability was fixed in FreeBSD 6.0-RELEASE, but production (legacy) releases 5.2 through 5.5 are still vulnerable.

tags | advisory, kernel, local
systems | freebsd
MD5 | f2780f72b89096adff1c6779d3cc1a1f
Mandriva Linux Security Advisory 2006.169
Posted Oct 2, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006:169: A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 1.5.0.7.

tags | advisory, vulnerability
systems | linux, mandriva
MD5 | 14810ae4b53934fd3c275f5000861790
Mandriva Linux Security Advisory 2006.170
Posted Oct 2, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-170: Webmin before 1.296 and Usermin before 1.226 does not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS), read CGI program source code, list directories, and possibly execute programs.

tags | advisory, remote, cgi, xss
systems | linux, mandriva
MD5 | 04b553f5d6581240b9004ff9cdb976a0
SUSE-SA-2006-055.txt
Posted Oct 2, 2006
Site suse.com

SUSE Security Announcement SUSE-SA:2006:055: If an RSA key with exponent 3 is used it may be possible to forge a PKCS verify the certificate if they are not checking for excess data in the RSA exponentiation result of the signature.

tags | advisory
systems | linux, suse
MD5 | 0a1792226cc68525898acf2df0016294
jevoncms-inc.txt
Posted Oct 2, 2006
Authored by CvIr.System

jevoncms (.inc) suffers from a path disclosure vulnerability.

tags | advisory
MD5 | bb8866aa171e0f86762140220e6b31e7
PLESK7.5-7.6.txt
Posted Oct 2, 2006
Authored by GuanYu | Site vnhacker.org

Plesk 7.5 and prior and 7.6 for windows suffer from an information disclosure vulnerability in the file manager.

tags | advisory, info disclosure
systems | windows
MD5 | 1046960464b77bb56826f884e0e0d616
MySourceMatrix3.8.txt
Posted Oct 2, 2006
Authored by Patrick Webster | Site aushack.com

MySource Matrix versions 3.8 and below and MySource 2.x may be used as an unauthorized HTTP proxy.

tags | advisory, web
MD5 | 8272cae4c9dc5ce26e290541e1a3926d
ContentKeeper-123.25.txt
Posted Oct 2, 2006
Authored by Patrick Webster | Site aushack.com

ContentKeeper 123.25 and below suffers from a design flaw in the user administration interface which reveals account passwords inside the HTML source code. Any authenticated user with appropriate access to the user administration page may use this information to compromise the accounts on other systems.

tags | advisory
MD5 | 8d21025d439de1c8b81c2f2abe5480a9
SS28S-WiFi.txt
Posted Oct 2, 2006
Site osnews.com

Zachary McGrew has discovered and reported that the FiWin SS28S WiFi VoIP SIP/Skype Phone with firmware version 01_02_07 has VxWorks Telnet open with a hardcoded user/pass of 1/1. Various debug commands enable viewing SIP credentials, WEP keys, etc. on the phone.

tags | advisory
MD5 | 9e64e6051a1993ab8b3ae5b7969f1364
Woltlab-2.3.x.txt
Posted Oct 2, 2006
Authored by Snake_23

Woltlab Burning Board 2.3.X SQL Injection Vulnerability

tags | advisory, sql injection
MD5 | 0ff0518c371aaab5c13ca0ea8485d36e
Apple Security Advisory 2006-09-21
Posted Oct 2, 2006
Authored by Apple | Site apple.com

APPLE-SA-2006-09-21 AirPort Update 2006-001 and Security Update 2006-005: The security fixes described below are available in AirPort Update 2006-001 and Security Update 2006-005. AirPort Update 2006-001 contains an additional non-security fix to address a reliability issue that occurs on a limited number of MacBook Pro systems.

tags | advisory
systems | apple
MD5 | 67d50ca1637b01d9ea6d85d2f9486f2d
CA Security Advisory 34616
Posted Oct 2, 2006
Authored by Computer Associates | Site www3.ca.com

CAID 34616, 34617, 34618: CA eTrust Security Command Center and eTrust Audit vulnerabilities

tags | advisory, vulnerability
MD5 | 31c8181be157b2538ea7ecf9e3c526d5
RSAKeonManager.txt
Posted Oct 2, 2006
Authored by Arhont Ltd - Information Security

During the analysis of RSA Keon Certificate Authority Manager, Arhont Ltd consultants have discovered several vulnerabilities in the Log Verification function. A rogue CA (Certificate Authority) administrator or any local administrative user with the access to the CA server could manipulate the secure logging process to disguise his/her activities. Versions 6.6 and 6.5.1 are vulnerable.

tags | advisory, local, vulnerability
MD5 | 80d3dba089214b06a42a1765eeb39e12
scip-2555.txt
Posted Oct 2, 2006
Site sgddemo.sun.com

scip AG Vulnerability ID 2555 (09/21/2006) Sun Secure Global Desktop prior 4.3 multiple remote vulnerabilities

tags | advisory, remote, vulnerability
MD5 | 7098aa6085d0290daa91bcffb066fc80
commercexss.txt
Posted Oct 2, 2006
Authored by Matthew Benenati

Commerce Bank's website is susceptible to cross site scripting.

tags | advisory, xss
MD5 | 85fb4030c30d2aa005d11d56f87100be
greekbanks.txt
Posted Oct 2, 2006
Authored by Sentinel Co | Site sentinel.gr

Several greek banks suffer from cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 304e9d8091083adf73b2103cd91f19fe
SUSE-SA-2006-056.txt
Posted Sep 27, 2006
Site suse.com

SUSE-SA:2006:056 - The gzip tool does not handle some specific values correctly when unpacking archives. This leads to vulnerabilities like buffer overflows or infinite loops.

tags | advisory, overflow, vulnerability
systems | linux, suse
MD5 | c3080e7b37844e76782d8539c5a7a834
Zero Day Initiative Advisory 06-029
Posted Sep 27, 2006
Authored by Tipping Point | Site zerodayinitiative.com

ZDI-06-029: Ipswitch WS_FTP Server Checksum Command Parsing Buffer Overflow Vulnerabilities

tags | advisory, overflow, vulnerability
MD5 | a18aecd4e964c420fbf86eaf5a01542e
rPSA-2006-0170-1.txt
Posted Sep 27, 2006
Site security.rpath.com

rPath Security Advisory: 2006-0170-1 - Previous versions of the gzip package contain multiple vulnerabilities that enable user-complicit unauthorized access when a user attempts to gunzip intentionally malformed gzip files. Some network services will automatically run the gunzip program in some contexts, which may then enable direct unauthorized access to the user account that provides the network service.

tags | advisory, vulnerability
MD5 | bc9030050a66cde7562425954c30e607
Page 1 of 23
Back12345Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Recent News

News RSS Feed
Lebanese Government Hackers Hit Thousands Of Victims With Incredibly Simple Campaign
Posted Jan 19, 2018

tags | headline, government, malware, fraud, cyberwar, phish
Dridex Banking Trojan Compromises FTP Sites In New Campaign
Posted Jan 19, 2018

tags | headline, malware, bank, trojan, cybercrime, fraud
Triton Exploited Zero-Day Flaw To Target Industrial Systems
Posted Jan 19, 2018

tags | headline, hacker, malware, cyberwar, scada
Apple Sued Over Being Susceptible To Meltdown / Spectre
Posted Jan 19, 2018

tags | headline, flaw, apple, intel
Intel Fix Causes Reboots And Slowdowns
Posted Jan 18, 2018

tags | headline, flaw, intel
Text Bomb Is Latest Apple Bug
Posted Jan 18, 2018

tags | headline, phone, denial of service, flaw, apple
Industrial Systems Scrambling To Catch Up With Meltdown, Spectre
Posted Jan 18, 2018

tags | headline, flaw, scada, intel
German Hacker Offers Rare Look Inside Secretive World Of Julian Assange, WikiLeaks
Posted Jan 18, 2018

tags | headline, hacker, government, britain, data loss, germany
Google Intros Security Center Tool For G Suite
Posted Jan 18, 2018

tags | headline, google
Hackers Can't Dig Into Latest Xiaomi Phone Due To GPL Violations
Posted Jan 18, 2018

tags | headline, hacker, phone, google
View More News →
packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close