This archive contains all of the 256 exploits added to Packet Storm in September, 2012.
bbb478a3c8f1410582de4a2959ee31d844a1ddfb760e1ad038787a83ee454040
AlamFifa CMS version 1.0 Beta suffers from a remote SQL injection vulnerability.
6f1f0aa2b174b5972be5d9d14ec22b93f2ffbfd0437fdffaabeef43d8ceb5a95
Archin WordPress theme version 3.2 suffers from an unauthenticated configuration access vulnerability.
d3acec9570e446b9ac94a5014d65862eb7047d8ce33e4dd77bd95bcbc5219200
Reaver Pro Livedisc has a named pipe called /tmp/exe that is world writable and any input to it is passed to the shell interpreter, where it is executed as root. This provides a good demonstration as to why using named pipes to execute commands in applications is a bad idea. This exploit spawns a bindshell on localhost:4444 then connects to it.
c81a78f06cb4d36066f8e2f74dece7cc299f97e8c59ea7b40e8f927d7389faaa
LG NAS N2B1 Network Storage suffers from a remote username and password hash disclosure vulnerability. Firmware versions 2660 and below are affected.
583c3c845b9944f1e7dff291dbcdb28bf45f813d05a58f15b5540fae3203988a
CMS Balitbang Depdiknas version 3.4 suffers from a cross site scripting / html injection vulnerability.
1a41d029545731d64d06dec60331bdc763768cd4971a4eb6bec1e5c6cb24e229
Joomla FreiChat component suffers from a remote shell upload vulnerability. Note that this finding houses site-specific data.
aba198fd43c64e01782443997e14e495e21d0ec01345f455c63f5a6a28af19d0
Sites by Deadcow Design suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
32b0d86e0d14e7be2ab6f62bc42f001b977e75b434bdb63cea9914243639b6f3
Sites developed by APlite Technologies suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
e34ffc698f14bb64e1b1a9d15ff1d38905eb52e37c2a3f262e23ffa2f2b06520
FvS Groupmp3 CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
cd335c36fbb8a27835621d98fa4021a307685f5f42abf5058722c07616195bb8
Sites by Dream Ecommerce suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
52b20400a47b6882b3bbd18d02cb2ef6a2fef8095646abad551e6d4dd308f99b
Foxit Reader version 5.4.3.0920 suffers from a division by zero vulnerability. Proof of concept included.
64c39943ede48fafc7df094b4ba9db97e024699ae4b84cef93954f047664c5fc
Sites designed by MediaRocket suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.
943ca34487381fc10f6e4a8403ff1d709fe719c01d7ac90c78d3b4e1ba03e384
Etoro.it suffers from a cross site scripting vulnerability.
ad63034f311cda954d829a7b909bd4cb3f73a3bdc4bf22746d9e89faada4cb0c
This Metasploit module triggers a vulnerability in the LSA RPC service of the Samba daemon because of an error on the PIDL auto-generated code. Making a specially crafted call to SetInformationPolicy to set a PolicyAuditEventsInformation allows to trigger a heap overflow and finally execute arbitrary code with root privileges. The module uses brute force to guess the system() address and redirect flow there in order to bypass NX. The start and stop addresses for brute forcing have been calculated empirically. On the other hand the module provides the StartBrute and StopBrute which allow the user to configure his own addresses.
9949872fc1ebdc3a22c30908a1250ac0f492dd32e5fa7cdf09b5146958389629
OSSEC WUI version 0.3 suffers from a POST cross site scripting vulnerability.
8d079d840ac8fd5072d58b0e908b4760ef10866ac645e9b7f97eeed627b61d1a
JAMF Casper Suite MDM suffers from a cross site request forgery vulnerability.
cf040459d9566c7ec0296767cfadc0a7c77290c27d5f32c1c12b7b58c1b369b8
Trend Micro Control Manager versions 5.5 and 6.0 suffer from an AdHocQuery remote blind SQL injection vulnerability.
ce96999e810814c024c38533c2b23e3e57c9c4a4b441314fa7e4c4133f539757
Smartfren Connex EC 1261-2 UI OUC suffers from a local privilege escalation vulnerability.
0ec1e258edf48173a940544afae0a141012670394cdffa3cf9890e76a8cbf613
Midori Browser version 0.3.2 suffers from a denial of service vulnerability.
4e2ac39a4af661e2d43542177067075d29ca5a2897fe1fbdcc060ee3f8e3f014
Cisco DPC2100 suffers from a denial of service vulnerability.
57eb8e0c57287bdb0c7cfc3d19dcb0bc551868b44599107a6bcb16f4f30d8e10
WordPress ABC-Test plugin version 0.1 suffers from a cross site scripting vulnerability.
9fa0057ada1da700fbdc590dfebe6a5118a65cf4f8a88e073ae0a90928d88e9c
This Metasploit module exploits an arbitrary code execution backdoor placed into phpMyAdmin version 3.5.2.2 through a compromised SourceForge mirror.
59077add4c187d53c147d92602048e756381c136f672e418d6ccc8272b22fa12
ViArt Shop Enterprise version 4.1 suffers from an arbitrary command execution vulnerability.
69353825c81b3b5696280fe717952c4cc87fb13200a9b37925b2a714cc7bd893
ViArt Shop Enterprise version 4.1 suffers from multiple stored cross site scripting vulnerabilities.
00063469483e02daf3fcd7001cdf2570115352b637dc37bcb2e18986107d2d9c