Packet Storm new exploits for August, 2007.
7c4f884b28fcc7043d2276dbaeb51bc3bc13ca18c132d17735a43f04078bb663
A SQL injection vulnerability exists in the Log On page of the web interface for Cisco CallManager AKA Unified Communications Manager. An unauthenticated attacker who is able to access the Log On page could exploit this vulnerability to run arbitrary SQL commands as the logged in database user, usually cm_publisher. By running SQL commands, the attacker could gain information about the CallManager configuration, including call records. Exploitation details provided.
bdf4519eaae63fb7371ea2a51f7e95369b5b21611901b65877146460074a3edf
The Telemark.com search engine is susceptible to a cross site scripting vulnerability.
065f4b939700f4b7fb9d590db44e796637aa21cc3fb8406a0a8cfd29487a123f
The ChaCha.com search functionality suffers from a cross site scripting vulnerability.
96ff97ef2ffceb4d5d77a8122900f48e3a0907da45e93270552d8ed9ba0b8af1
PPStream ActiveX remote overflow exploit that makes use of PowerPlayer.dll version 2.0.1.3829.
f52ec5c7f133f22b6993eb48de5996ccee1cd17a4c901596e3a93bb709715f15
Norman Virus Control local exploit that makes use of nvcoaft51.sys.
b12b06dc51562223f827800af12ca8909a53b821b648a6ce7537838aa2f2da7c
phpBB Links MOD versions 1.2.2 and below remote SQL injection exploit.
552d03ee54d5f071ecf277b9ea0bd0995a6c680eed0bfd651fc21d24dd69ea6d
Ourspace version 2.0.9 suffers from an upload vulnerability in uploadmedia.cgi.
36c1af1e1992562541c39430813a1164577aec948a0daa0d05b0b092d125b291
NMDeluxe version 2.0.0 suffers from a remote SQL injection vulnerability.
f218fd0ccacebefda9aa7e8d676c95c8b798d59965c1f726d810ab44be98d9fc
Wireshark versions below 0.99.5 DNP3 dissector infinite loop denial of service exploit.
cde9d97a0c0f44ccd0bf659e4f35424c5eae09318226f38bb657e22dddf7292d
Hexamail Server version 3.0.0.001 pop3 pre-auth remote overflow denial of service exploit.
6ecc71a7cc6a2be2b79f037aa2d625facdb9ea17f3884c323f20ebdbe363722d
Proof of concept exploit for Doomsday versions 1.9.0-beta5.1 and below which suffer from buffer overflow and format string vulnerabilities.
540586ef80480715169575fdef1387b665923b0654d8df90e0786eee899364c3
Blizzard StarCraft Brood War version 1.15.1 suffers from a remote denial of service vulnerability.
32a78f48606c7a8339245472c40865d4197517ce3a37de6dcb1e758a0288ee14
Yahoo! Messenger version 8.1.0.413 webcam remote crash denial of service exploit.
32de211035f6458d2a00dfe2984d39fc12c90a66af5afd9370e90ac28abc405b
MSN Messenger 7.x VIDEO remote heap overflow exploit.
e7591e5b020fdc229d344b0d91c9c90fd1e912c85e046c6c5783f789597a5c17
Pakupaku CMS versions 0.4 and below remote file upload exploit.
5544b6c235e5c5c0070b899c451009e9baff0098dfbf36c2b71fdfe9c327a72f
phpBG version 0.9.1 suffers from remote file inclusion vulnerabilities.
f392e5ff932142d4de2b29586ca05360726f600729e2edc902390b19b7779a4f
PHPNS version 1.1 suffers from a remote SQL injection vulnerability in shownews.php.
dbc3353c955a4b6a49f2bca34cbff7a623b6a6cc22e708e67e9043c04f29d907
ABC estore version 3.0 remote blind SQL injection exploit.
d8ed12a63916f6aa1eb19d14645b32b8a44dfaa53f28735d0f12e8378777158c
xGB version 2.0 suffers from a remote permission bypass vulnerability.
38193aa67d5dfae2b76f29234d2c0a35c1a9e89948528f496b63608eecde2f05
Microsoft Windows denial of service exploit that makes use of GDI32.DLL. This vulnerability is related to MS07-046.
48362ccb419829e0f7d27c62f96776b605c96eb510c7efa90cd54f8be993982d
PHPNuke-Clan versions 4.2.0 and below suffer from a remote file inclusion vulnerability in mvcw_conver.php.
d902c7d6f4d26a071f434fa42d3846f7e2b0c228356933296a24626c68f374fb
VWar versions 1.5.0 R15 and below suffer from a remote file inclusion vulnerability in mvcw.php.
6193e784ed80e4a150ca5d9f0ef5e6d49d9e4c5e6e90fb5ed6b9bcf095b4e515
DL PayCart version 1.01 blind SQL injection exploit that makes use of viewitem.php.
31cf9749fded416a6d81aa454484de67f9c53701f4ce9a565d07b556f11bb403
Postcast Server Pro version 3.0.61 and Quiksoft EasyMail emsmtp.dll version 6.0.1 buffer overflow exploit.
f12f44542d5b9709753549c601a5b50b87a129fd6937e95d3680f3629394c1e8