all things security
Showing 1 - 25 of 251 RSS Feed

Files

Packet Storm New Exploits For May, 2012
Posted Jun 1, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 251 exploits added to Packet Storm in May, 2012.

tags | exploit
systems | linux
MD5 | 5cef692673340c4f85df1f5dcc2de1f7
GIMP 2.6 script-fu Buffer Overflow
Posted May 31, 2012
Authored by Joseph Sheridan | Site reactionpenetrationtesting.co.uk

There is a buffer overflow in the script-fu server component of GIMP (the GNU Image Manipulation Program) in all 2.6 versions (Windows and Linux versions) affecting both the script-fu console and the script-fu network server. A crafted msg to the script-fu server overflows a buffer and overwrites several function pointers allowing the attacker to gain control of EIP and potentially execute arbitrary code. Proof of concept code included.

tags | exploit, overflow, arbitrary, proof of concept
systems | linux, windows
advisories | CVE-2012-2763
MD5 | 077ecb06351110ff77d49757a2a02531
PHP Volunteer Management System v1.0.2 Arbitrary File Upload
Posted May 31, 2012
Authored by sinn3r, Ashoo | Site metasploit.com

This Metasploit module exploits a vulnerability found in PHP Volunteer Management System, versions 1.0.2 and prior. This application has an upload feature that allows an authenticated user to upload anything to the 'uploads' directory, which is actually reachable by anyone without a credential. An attacker can easily abuse this upload functionality first by logging in with the default credential (admin:volunteer), upload a malicious payload, and then execute it by sending another GET request.

tags | exploit, php
MD5 | aff90db42846d99a60899234fad9eed2
StyleDesign SQL Injection
Posted May 31, 2012
Authored by the_cyber_nuxbie

StyleDesign suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 067b4f31629cce3ab1f0b6e555dab3e5
Snapdeal.com Cross Site Scripting / Redirection
Posted May 31, 2012
Authored by Karthik R

Snapdeal.com suffers from cross site scripting and URL redirection vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 452c9d0c9a633dd88b55f7b5ccd4145e
Browser Navigation Download Trick
Posted May 31, 2012
Authored by Michal Zalewski | Site lcamtuf.coredump.cx

It is an important and little-known property of web browsers that one document can always navigate other, non-same-origin windows to arbitrary URLs. Perhaps more interestingly, you can also navigate third-party documents to resources served with Content-Disposition: attachment, in which case, you get the original contents of the address bar, plus a rogue download prompt attached to an unsuspecting page that never wanted you to download that file. Proof of concept code included.

tags | exploit, web, arbitrary, proof of concept
systems | windows
MD5 | b7f9bc36728ff78b7ddc61970f1e20a5
Ganesha Digital Library 4.0 Cross Site Scripting / SQL Injection
Posted May 30, 2012
Authored by X-Cisadane

Ganesha Digital Library version 4.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | c2045f4a38e1f4e2ee6c062ea6595d1c
Wireless Manager Sony VAIO 4.0.0.0 Buffer Overflows
Posted May 30, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

Wireless Manager Sony VAIO version 4.0.0.0 suffers from multiple buffer overflow vulnerabilities.

tags | exploit, overflow, vulnerability
advisories | CVE-2012-0985
MD5 | b730119a05ce6bec3a773c4db2c5b46f
Ibaguenet SQL Injection
Posted May 30, 2012
Authored by the_cyber_nuxbie

Ibaguenet suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 79007404345326b2662c99d67f76e300
NewsAdd 1.0 SQL Injection
Posted May 30, 2012
Authored by WhiteCollarGroup

NewsAdd versions 1.0 and below suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 9fb245df67e3d6b2acc07ec4f988f442
WHMCS 5 Cross Site Request Forgery / Cross Site Scripting
Posted May 30, 2012
Authored by Shadman Tanjim

WHMCS version5 suffers from cross site request forgery, HTTP parameter pollution, and cross site scripting vulnerabilities.

tags | exploit, web, vulnerability, xss, csrf
MD5 | 2872ea8a1a3ad234439140a1fa613b38
VAMCart-InternetShop 0.9 File Upload Code Execution
Posted May 29, 2012
Authored by KedAns-Dz | Site metasploit.com

This Metasploit module exploits a vulnerability in the TinyMCE/tinybrowser plugin. This plugin is not secured in version 0.9 of VAMCart and allows the upload of files on the remote server. By renaming the uploaded file this vulnerability can be used to upload/execute code on the affected system.

tags | exploit, remote
MD5 | 712471955c8549eb8b347b1f11910b35
VAMCart-InternetShop 0.9 Cross Site Request Forgery / Shell Upload
Posted May 29, 2012
Authored by KedAns-Dz

VANCart-InternetShop version 0.9 suffers from cross site request forgery and shell upload vulnerabilities.

tags | exploit, shell, vulnerability, csrf
MD5 | 44d0afad4e124cd8d4727d10945f04b9
PBBoard 2.1.4 Cross Site Request Forgery
Posted May 29, 2012
Authored by KedAns-Dz | Site metasploit.com

This Metasploit module exploits multiple cross site request forgery (CSRF) vulnerabilities in admin.php in PBBoard 2.1.4 to allow for arbitrary file upload / command execution.

tags | exploit, arbitrary, php, vulnerability, file upload, csrf
advisories | CVE-2012-1216, OSVDB-79218
MD5 | 624b2eb3fa1a5923ea797f192a74fe87
MPlayer SAMI Subtitle File Buffer Overflow
Posted May 29, 2012
Authored by juan vazquez, Jacques Louw | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow found in the handling of SAMI subtitles files in MPlayer SVN Versions before 33471. It currently targets SMPlayer 0.6.8, which is distributed with a vulnerable version of mplayer. The overflow is triggered when an unsuspecting victim opens a movie file first, followed by loading the malicious SAMI subtitles file from the GUI. Or, it can also be done from the console with the mplayer "-sub" option.

tags | exploit, overflow
advisories | OSVDB-74604
MD5 | f0b1098a17d77ade6837c0e5682add3f
PBBoard 2.1.4 SQL Injection
Posted May 29, 2012
Authored by loneferret

PBBoard version 2.1.4 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | a261dac4ff07c081764718b12cfb45fc
Symantec Web Gateway 5.0.2.8 Command Execution
Posted May 28, 2012
Authored by unknown, muts, sinn3r | Site metasploit.com

This Metasploit module exploits a vulnerability found in Symantec Web Gateway's HTTP service. By injecting PHP code in the access log, it is possible to load it with a directory traversal flaw, which allows remote code execution under the context of 'apache'. Please note that it may take up to several minutes to retrieve access_log, which is about the amount of time required to see a shell back.

tags | exploit, remote, web, shell, php, code execution
advisories | CVE-2012-0297
MD5 | 23de61f5a2711a069a0ccdd35f1b4230
ispVM System XCF File Handling Overflow
Posted May 28, 2012
Authored by unknown, juan vazquez | Site metasploit.com

This Metasploit module exploits a vulnerability found in ispVM System 18.0.2. Due to the way ispVM handles .xcf files, it is possible to cause a buffer overflow with a specially crafted file, when a long value is supplied for the version attribute of the ispXCF tag. It results in arbitrary code execution under the context of the user.

tags | exploit, overflow, arbitrary, code execution
advisories | OSVDB-82000
MD5 | f76b8039394745e61239e72fd991de2f
PBBoard 2.1.4 Local File Inclusion
Posted May 28, 2012
Authored by n4ss1m

PBBoard version 2.1.4 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | c61431053f19a2ec8cc0799028d28692
Topics Viewer 2.3 Local File Inclusion / SQL Injection
Posted May 28, 2012
Authored by n4ss1m

Topics Viewer version 2.3 suffers from local file inclusion and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, sql injection, file inclusion
MD5 | e3cb67f6722c2461b54f54e15a298b8e
LibreOffice 3.5.3 FileOpen Crash
Posted May 28, 2012
Authored by shinnai | Site shinnai.altervista.org

LibreOffice version 3.5.3 suffers from a FileOpen crash denial of service condition when handling rtf files.

tags | exploit, denial of service
MD5 | 6e2a43b86334292c772715be0771a584
PHP Volunteer Management System 1.0.2 Cross Site Scripting / Shell Upload
Posted May 28, 2012
Authored by Ashoo

PHP Volunteer Management System version 1.0.2 suffers from cross site scripting and shell upload vulnerabilities.

tags | exploit, shell, php, vulnerability, xss
MD5 | c200d0a80dad0e5d976510b3230b9c0b
PHP Volunteer Management System 1.0.2 SQL Injection
Posted May 28, 2012
Authored by loneferret

PHP Volunteer Management System 1.0.2 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, php, vulnerability, sql injection
MD5 | 08251ce315a9826234b7b649c49a1e4a
Yamamah 1.1.0 Database Disclosure
Posted May 28, 2012
Authored by L3b-r1'z

Yamamah version 1.1.0 suffers from a database backup download vulnerability.

tags | exploit, info disclosure
MD5 | 90959ad781101332cb0866970e06e645
WinRadius 2009 Denial Of Service
Posted May 28, 2012
Authored by demonalex

WinRadius 2009 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 93716ccfa8d70d2a2b0cf7f382f659f8
Page 1 of 11
Back12345Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Phishers Getting Smarter By Making Use Of User Location
Posted Oct 20, 2017

tags | headline, malware, cybercrime, fraud, phish
OSX Malware Spread Via Compromised Software Downloads
Posted Oct 20, 2017

tags | headline, malware, apple
Canadian Spooks Release Their Own Malware Detection Tool
Posted Oct 20, 2017

tags | headline, government, malware, canada, spyware
Judge: MalwareTech Is No Longer Under Curfew, GPS Monitoring
Posted Oct 20, 2017

tags | headline, hacker, government, malware, usa, conference
Microsoft Mocks Google For Failed Security Fix Deployment Methodology
Posted Oct 19, 2017

tags | headline, microsoft, flaw, google, chrome
Malicious Mineraft Apps In Google Play Enslave Your Device To A Botnet
Posted Oct 19, 2017

tags | headline, malware, microsoft, phone, botnet, google
OAIC Received 114 Voluntary Data Breach Notifications In Two Years
Posted Oct 19, 2017

tags | headline, hacker, privacy, australia, data loss
US-CERT Predicts Machine Learning To Become Security Risk
Posted Oct 19, 2017

tags | headline, flaw
ATM Malware Available Online For Online $5,000
Posted Oct 18, 2017

tags | headline, malware, bank, cybercrime, fraud
Oracle Swats 252 Bugs In Patch Update
Posted Oct 18, 2017

tags | headline, flaw, patch, oracle
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close