This archive contains all of the 256 exploits added to Packet Storm in September, 2012.
bbb478a3c8f1410582de4a2959ee31d844a1ddfb760e1ad038787a83ee454040AlamFifa CMS version 1.0 Beta suffers from a remote SQL injection vulnerability.
6f1f0aa2b174b5972be5d9d14ec22b93f2ffbfd0437fdffaabeef43d8ceb5a95Archin WordPress theme version 3.2 suffers from an unauthenticated configuration access vulnerability.
d3acec9570e446b9ac94a5014d65862eb7047d8ce33e4dd77bd95bcbc5219200Reaver Pro Livedisc has a named pipe called /tmp/exe that is world writable and any input to it is passed to the shell interpreter, where it is executed as root. This provides a good demonstration as to why using named pipes to execute commands in applications is a bad idea. This exploit spawns a bindshell on localhost:4444 then connects to it.
c81a78f06cb4d36066f8e2f74dece7cc299f97e8c59ea7b40e8f927d7389faaaLG NAS N2B1 Network Storage suffers from a remote username and password hash disclosure vulnerability. Firmware versions 2660 and below are affected.
583c3c845b9944f1e7dff291dbcdb28bf45f813d05a58f15b5540fae3203988aCMS Balitbang Depdiknas version 3.4 suffers from a cross site scripting / html injection vulnerability.
1a41d029545731d64d06dec60331bdc763768cd4971a4eb6bec1e5c6cb24e229Joomla FreiChat component suffers from a remote shell upload vulnerability. Note that this finding houses site-specific data.
aba198fd43c64e01782443997e14e495e21d0ec01345f455c63f5a6a28af19d0Sites by Deadcow Design suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
32b0d86e0d14e7be2ab6f62bc42f001b977e75b434bdb63cea9914243639b6f3Sites developed by APlite Technologies suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
e34ffc698f14bb64e1b1a9d15ff1d38905eb52e37c2a3f262e23ffa2f2b06520FvS Groupmp3 CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
cd335c36fbb8a27835621d98fa4021a307685f5f42abf5058722c07616195bb8Sites by Dream Ecommerce suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
52b20400a47b6882b3bbd18d02cb2ef6a2fef8095646abad551e6d4dd308f99bFoxit Reader version 5.4.3.0920 suffers from a division by zero vulnerability. Proof of concept included.
64c39943ede48fafc7df094b4ba9db97e024699ae4b84cef93954f047664c5fcSites designed by MediaRocket suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
943ca34487381fc10f6e4a8403ff1d709fe719c01d7ac90c78d3b4e1ba03e384Etoro.it suffers from a cross site scripting vulnerability.
ad63034f311cda954d829a7b909bd4cb3f73a3bdc4bf22746d9e89faada4cb0cThis Metasploit module triggers a vulnerability in the LSA RPC service of the Samba daemon because of an error on the PIDL auto-generated code. Making a specially crafted call to SetInformationPolicy to set a PolicyAuditEventsInformation allows to trigger a heap overflow and finally execute arbitrary code with root privileges. The module uses brute force to guess the system() address and redirect flow there in order to bypass NX. The start and stop addresses for brute forcing have been calculated empirically. On the other hand the module provides the StartBrute and StopBrute which allow the user to configure his own addresses.
9949872fc1ebdc3a22c30908a1250ac0f492dd32e5fa7cdf09b5146958389629OSSEC WUI version 0.3 suffers from a POST cross site scripting vulnerability.
8d079d840ac8fd5072d58b0e908b4760ef10866ac645e9b7f97eeed627b61d1aJAMF Casper Suite MDM suffers from a cross site request forgery vulnerability.
cf040459d9566c7ec0296767cfadc0a7c77290c27d5f32c1c12b7b58c1b369b8Trend Micro Control Manager versions 5.5 and 6.0 suffer from an AdHocQuery remote blind SQL injection vulnerability.
ce96999e810814c024c38533c2b23e3e57c9c4a4b441314fa7e4c4133f539757Smartfren Connex EC 1261-2 UI OUC suffers from a local privilege escalation vulnerability.
0ec1e258edf48173a940544afae0a141012670394cdffa3cf9890e76a8cbf613Midori Browser version 0.3.2 suffers from a denial of service vulnerability.
4e2ac39a4af661e2d43542177067075d29ca5a2897fe1fbdcc060ee3f8e3f014Cisco DPC2100 suffers from a denial of service vulnerability.
57eb8e0c57287bdb0c7cfc3d19dcb0bc551868b44599107a6bcb16f4f30d8e10WordPress ABC-Test plugin version 0.1 suffers from a cross site scripting vulnerability.
9fa0057ada1da700fbdc590dfebe6a5118a65cf4f8a88e073ae0a90928d88e9cThis Metasploit module exploits an arbitrary code execution backdoor placed into phpMyAdmin version 3.5.2.2 through a compromised SourceForge mirror.
59077add4c187d53c147d92602048e756381c136f672e418d6ccc8272b22fa12ViArt Shop Enterprise version 4.1 suffers from an arbitrary command execution vulnerability.
69353825c81b3b5696280fe717952c4cc87fb13200a9b37925b2a714cc7bd893ViArt Shop Enterprise version 4.1 suffers from multiple stored cross site scripting vulnerabilities.
00063469483e02daf3fcd7001cdf2570115352b637dc37bcb2e18986107d2d9c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed