Packet Storm new exploits for April, 2007.
030b7e36fd98531f9cad24d1bf0eac0112a71a39579b1aac96fbf848e7095768
RealPlayer 10 remote denial of service exploit that makes use of the .ra file flaw.
b015c7246d0f8bd3218fee4e99022278955d21ba08a1ad2e37b0d2f853274020
3proxy version 0.5.3g proxy.c logurl() remote buffer overflow exploit for win32. Binds a shell to tcp port 7979.
c01927dc7bdc5ec6906d1be1b4604e4dbc614e0b115fb9d2ad8570e7a9c45c3c
3proxy version 0.5.3g proxy.c logurl() remote buffer overflow exploit for Linux. Can spawn a bind shell or launch connect-back code.
6c88fda037ba960a678b91b49e36f8dc08ef0d1a5e49878c3b716503bd53e1ff
Fenice OMS server version 1.10 remote root buffer overflow exploit.
ccb2a8ac8990e9209800f79b19078b6c4c6acc738a98dd5da1d2b538125e0ad6
IPIX Image Well ActiveX buffer overflow exploit that executes calc.exe.
614b9564487a5d27fae85a73c7a78cfac6266335efd6e94a45174369c9f7e7f3
Internet Explorer NCTAudioFile2.AudioFile ActiveX remote stack overflow exploit.
914fc70b543cb35369e5c7ae913f0280df476b63f568ad21e0a7a26edc8238b1
Winamp versions 5.34 and below .MP4 file code execution exploit that spawns calc.exe or binds a shell to tcp port 4444.
5231fc6957b90c9479fe8b2675abd7027a9483ca6a35b26a845bb39958c17d7f
Photoshop CS2/CS3 and Paint Shop Pro version 11.20 .PNG buffer overflow exploit that spawns calc.exe or binds a shell to tcp port 4444.
44dfeaf4cd5e5e9633631a043b2bcbf875c49f7860b82da7d501e1c99f1a7394
IrfanView versions 4.00 and below .IFF buffer overflow exploit that spawns calc.exe or binds a shell to tcp port 4444.
6dd650ea32e397aafa576e1e2350950671e7fa1936dbf73cabd78835ee545190
Gimp version 2.2.14 buffer overflow exploit that spawns calc.exe or binds a shell to tcp port 4444.
920de2d6270d6f063230cc1042f5b4c5c4afce6664223b66ff088c65444ed826
FreshView version 7.15 buffer overflow exploit that spawns calc.exe or binds a shell to tcp port 4444.
d363d37ae4cbcebf4bef5e49037bd2c4997d8b55cc6b25dbda893dc98db046b5
ABC-View Manager version 1.42 buffer overflow exploit that spawns calc.exe or binds a shell to tcp port 4444.
c27a2328ef3eb2897dc9f237418ce988f19608c649c51a49249c7a9c3fabab4d
WordPress plugin wordTube versions 1.43 and below suffer from a remote file inclusion vulnerability.
6ac9da7c2f8362a497d41804c945c501d557a8a4ed6a172fc143124a13fc48b7
WordPress plugin wp-Table versions 1.43 and below suffer from a remote file inclusion vulnerability.
0ea74d43b55c62e4d5868bdada16a523c40e62eefb040e127c88eb04f9b337c1
psipuss version 1.0 remote change admin password exploit that makes use of editusers.php.
429c41c406f995ee7fc18b0186e3a298aa8de9e5116947255a407c5a78518278
The Merchant versions 2.2.0 and below suffer from a remote file inclusion vulnerability in index.php.
1b2bc0d5f9c586da4ae5d9797bf5349eb0aa320b4a12801348e027a592e4b7c0
Imageview version 5.3 suffers from a local file inclusion vulnerability in fileview.php.
4e2f50d87fa5899eeeafd5f2109a9cfb889df0b2b97119619e14439a41c5be11
VP-ASP suffers from a SQL injection vulnerability. Details provided.
688110bd3b6796180b031f9d3cd1dc83a93d1a47dc937364764b82c320563468
Remote heap smash exploit for mydns versions 1.1.0 and below.
383a86d6237fe7faea74e4c4c213c937a4a013765674bbfca4a5f4d139f8f3c7
TCExam versions 4.0.011 and below SessionUserLang shell injection exploit.
e80e54ee231afe843f9a37d63844b49e7d56f73bb7f8072ba4cbad01a8ea5f8c
The WordPress myGallery plugin versions 1.4b4 and below suffer from a remote file inclusion vulnerability.
77fa6b4cc771a30adfcaf9bf5ba09cd01885bb182183e15f7aa5ca0524705213
The PostNuke pnFlashGames module version 1.5 suffers from a remote SQL injection vulnerability.
c429385e18686abc5905b1c5eed1ccfdfbeb3f0d4f0cd4b5cadff1628ed33135
burnCMS versions 0.2 and below suffer from remote file inclusion vulnerabilities.
c9221f4f63a28865907642eeb30c489b9a1ec6fd2a3fc22173bb63efc9292902
Firefly version 1.1.01 suffers from a remote file inclusion vulnerability.
63854dc1d907b475ff0b9c188a2e6b1cd1734671904949622778c9fbabcf1b76