This archive contains all of the 433 exploits added to Packet Storm in June, 2012.
64ee9d7248a84c9714b50291e971d808e03935f4d5fbeca1f8c00aacbbae222aIBM DeveloperWorks ncp (Nigel's Capacity Planning) version 2.1 suffers from remote information disclosure vulnerabilities.
882d12c7145c7e3a4a8eef2d0d4490895d559af1506b25e96ecd08f8cea839a8IBM Edge Components Caching Proxy suffers from a cross site scripting vulnerability.
68d588eb54e653728e1f9f5cccf167d8113243b81dee38b4e767517c4b58bce8Basilic, the automated bibliography server, suffers from a remote command execution vulnerability.
755040781ca13a6b1edf74b5f503430d6657c3cd7c1127ef1310bb0e2d42433cHadoop version 1.0.3 suffers from a local privilege escalation symlink vulnerability.
7f6cd0d9985fb43e4512064e577e4aab0f6f8459eb7920053453fd5bbb415dd7Code Snippets version 0.9 fails to authenticate access to edit, add, and delete functionality.
5db571f0a1abb0bb012940ff3fdac4128f570d8e02beda7d9463173d793ade83Sun iPlanet suffers from an error page link injection issue.
ad6194bc79a2e24484cf6af82f97e435b3a0c953a49786c9a41f0eb5cdd34518Zoom Player version 4.51 suffers from a denial of service vulnerability.
9eb084c02298d2a21d5a5ee17e773f9ca520fa09ffa32767cfb70e24afc03db4There is a file handling denial of service in GIMP (the GNU Image Manipulation Program) for the 'fit' file format affecting all versions (Windows and Linux) up to 2.8.0. A file in the fit format with a malformed 'XTENSION' header will cause a crash in the GIMP program. The flaw is triggered by opening a crafted 'fit' file or allowing the file explorer dialog to preview the file. Proof of concept included.
0341418c409c2905c278b5539d3f0236be8f96cdfce5f9140782b205443ab209IrfanView Formats PlugIn is prone to an overflow condition. The JLS Plugin (jpeg_ls.dll) library fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted JLS compressed image file, a context-dependent attacker could potentially execute arbitrary code. Proof of concept included. Irfanview Plugins version 4.33 is affected.
cd8bb7da17eb6fd5c44d2f4ceac57a18c44aca435eea690d9247652a97f176d8PHP Money Books version 1.03 suffers from stored cross site scripting vulnerabilities.
28c37410044d56ed3d43c475e197fffb8cafc605053dcc62a4fa1bfca5ebdb61PC Tools Firewall Plus version 7.0.0.123 suffers from a denial of service vulnerability.
4447ecdb0363561495e738164aa0f707a038ec3388d0a37f183ac75f3c8b355dSpecView versions 2.5 build 853 and below suffer from a remote directory traversal vulnerability.
37c481c86f91ff979c1f2a14452d4bc1fc45aaf6d60f55ae0b180aa752d19d99PowerNet Twin Client versions 8.9 and below suffer from a stack overflow vulnerability.
01ee7bdceda2abbcd11f2723950b87df2788e5314ddad8946094bb92071a21fdThis Metasploit module exploits a vulnerability found in Apple QuickTime. When handling a TeXML file, it is possible to trigger a stack-based buffer overflow, and then gain arbitrary code execution under the context of the user. The flaw is generally known as a bug while processing the 'transform' attribute, however, that attack vector seems to only cause a TerminateProcess call due to a corrupt stack cookie, and more data will only trigger a warning about the malformed XML file. This Metasploit module exploits the 'color' value instead, which accomplishes the same thing.
c3e73b5fb622e5d0d8dee9cca23a811ec375673bedd92228a5733bc9287c407bThis Metasploit module exploits an authentication bypass vulnerability in the administration console of Openfire servers. By using this vulnerability it is possible to upload/execute a malicious Openfire plugin on the server and execute arbitrary Java code. This Metasploit module has been tested against Openfire 3.6.0a. It is possible to remove the uploaded plugin after execution, however this might turn the server in some kind of unstable state, making re-exploitation difficult. You might want to do this manually.
f96c770e59d9d05308428a0fe45cb31107b3064402edcf2653bd604b617ffe44Lefigaro.fr suffers from a cross site scripting vulnerability.
2b6001bd8c7d5624b2c4fc19842dac3f602962123078d63d24ee986593e31640Internet Mobile suffers from a denial of service vulnerability that triggers an exception handler. Post exploitation the program must be reinstalled.
f62fb11dd66093bb0cdd30237cc9c4c7d0fce7078ef39c6a4be17144b9bcf514Hi-media suffers from a remote SQL injection vulnerability.
17ee62de993a1e79a03aca02af14eae5006cd8b1e1305748e7941e113e0187e0B2CPrint suffers from a remote ASP shell upload vulnerability.
07aa64e3542baf26914c58bd60df81bce81243de8587811fbef33dcfab8b6757Kongregate.com suffers from a cross site scripting vulnerability.
0b2d9442e574b62a25db9e9e8fe869f6944a116b8512276d2ea69ee2a436d646Ghana50.gov.gh suffers from a cross site scripting vulnerability.
73ada375439d3064c88ce6153b874b1a88c0ae18dcb6c12029f1bda5bb23ec25TEMENOS T24 Core Banking Solution System version 7 suffers from a cross site scripting vulnerability.
c98de2b59ae7660620eab1d44dcb42a197c5a01b987f62005384b0415c883941Advanced MP3 Player Infusion version 2.01 suffers from a remote shell upload vulnerability.
0d53259e616b4161775a0b9272f7b7ef1d1569e48797e4a3ba27a9c8136edeffJAKCMS version 2.2.6 suffers from a remote shell upload vulnerability.
8979837fbdfb46b12bd7cad18d277dc1d78e57253e57f5b607581b9edb59d77e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed