Voice Logger suffers from a remote SQL injection vulnerability that allows for authentication bypass as well as an arbitrary file download vulnerability.
6dd5934f028b093d5d8bd5693b5f0b0569da00f3dbba65651175bba34bfcf673Kate's Video Toolkit version 7.0 crash proof of concept denial of service exploit that creates a malicious WAV file.
67c470f887d0a666ab1d02341218d7300a3a1cc134aa2a732d995763227cb5d4Light Audio Mixer version 1.0.12 crash proof of concept denial of service exploit that creates a malicious WAV file.
c877efbdaffb2739770c88b26e45cb0a2f408187958b6199cd15d8ca84cea187rpcbind CALLIT procedure UDP denial of service proof of concept exploit.
b1f8e8ac62cc8aa90feb364db73662e95355e499461aacc4babe70c99e31dd2dThe Joomla Googlemaps plugin suffers from cross site scripting, path disclosure, denial of service, and XML injection vulnerabilities.
165dc70f4d8846397f4d21ce1f9794a33e98cb8d13ea08baf7996288d00ca669Dell Kace 1000 SMA version 5.4.70402 suffers from multiple cross site scripting vulnerabilities.
f31d9466c071de7d9384679b764eb2b12bfadfa571627c915b0ffc7b94cf09eeOlive File Manager version 1.0.1 for iOS suffers from arbitrary file upload and cross site scripting vulnerabilities.
4923d8db6286e1cf6917d43aa359d9d1dbc6d093111aca760cfae1f6c1112cbcFTP Sprite version 1.2.1 for iOS suffers from a persistent script insertion vulnerability.
b17f9f86c93c7d304115e7a035b5f7635cf9f925526f289c29667e10571460d8Squid version 3.3.5 remote denial of service crash exploit.
247867b58f499ec2f8cbd7f45618c22bc77cf0fc844f2741c42df41f4033fd68Eglibc suffers from a PTR MANGLE bug. All statically linked applications compiled with glibc and eglibc are affected, independent of the operating system distribution. Note that this problem is not solved by only patching the eglibc, but it is also necessary to recompile all static executables. Proof of concept exploit included.
886e08b8e90e2d9b861f8e4dba2d25b994c4200f1929e01cc6bc74363c57f184Nikon CoolPix L Series Fw version 1.0 suffers from an information disclosure vulnerability.
00c5dc25f1958967070a5163d5ecb6dda8b5bb295f0fb9e5d15b3cce7642bdc8Barracuda CudaTel version 2.6.02.040 suffers from a cross site scripting vulnerability.
7c11db64cfe677974655ad7002705d5f2f7e6ebaafd849999276966c27b4d925Saurus CMS version 4.7.1 suffers from cross site scripting, remote file inclusion, local file inclusion, information disclosure, remote SQL injection, HTTP response splitting, cross site request forgery, and directory traversal vulnerabilities.
b52a1c3cfedd7ec254223b0a31cf381969950ec828d4cd8eca7bea868182a7f5Huawei E587 3G Mobile Hotspot version 11.203.27 is prone to a command injection vulnerability in the Web UI. Successful exploitation allows unauthenticated attackers to execute arbitrary commands with root privileges.
a1277a086994c77c5b27fe6d4cf723c3ea4f7b25c8d585ca62eb686634443540Zoho suffers from information disclosure due to a lack of a content-type being specified and also appears to use mixed content.
d57f3ea5e158c04a53db6f3c8f8158fa024c8439b78c89b7ef0eedc2e2627082Dell.com suffers from an open redirection vulnerability.
baf412e7889b650aa9f5b020cf6998f1fa9728459107af98d8386dc1f2c2e57cTinyMCE Image Manager versions 1.1 and below suffer from a cross site scripting and content spoofing vulnerabilities.
e55aa3aa8b2c3f02ed3a4e8d382c5d7f6b8a8782e1f5c69b053233d74a800737OpenEMR versions 4.1.1 patch-12 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
34d2a68eac35ef40f833eadd836730cb6db7a18c16f6872866a69898d3908187WordPress Spicy Blogroll plugin suffers from a local file inclusion vulnerability.
3814a0f4ff4e69f4aa928e46072b86b3dd76a24c29f6ade039a04e52b49abd4fTri-PLC Nano-10 r81 suffers from a denial of service vulnerability.
3dec489a87603f353793b3b457817422652a12aa0f5738db26be2d0b80e352d5This Metasploit module uses a valid administrator username and password to execute a powershell payload using a similar technique to the "psexec" utility provided by SysInternals. The payload is encoded in base64 and executed from the commandline using the -encodedcommand flag. Using this method, the payload is never written to disk, and given that each payload is unique, is less prone to signature based detection. Since executing shellcode in .NET requires the use of system resources from unmanaged memory space, the .NET (PSH) architecture must match that of the payload. Lastly, a persist option is provided to execute the payload in a while loop in order to maintain a form of persistence. In the event of a sandbox observing PSH execution, a delay and other obfuscation may be added to avoid detection. In order to avoid interactive process notifications for the current user, the psh payload has been reduced in size and wrapped in a powershell invocation which hides the process entirely.
b0c0d56f17bcccf9a854df5ee2b60da13d6ac2e471086b300b676e73683ee4ecCorda suffers from cross site scripting and path disclosure vulnerabilities.
bffa23638e52400483ca2946ce826605a44afcbd0bab0762a1df07612c2664ccThe WordPress I Love It theme suffers from cross site scripting, content spoofing, and path disclosure vulnerabilities.
781da1e7aeb3a72439cf3b06e380d6b86f400e90a518a7210062bb2d8bee4e9bThis Metasploit module exploits a buffer overflow in MediaCoder 0.8.22. The vulnerability occurs when adding an .m3u, allowing arbitrary code execution under the context of the user. DEP bypass via ROP is supported on Windows 7, since the MediaCoder runs with DEP. This Metasploit module has been tested successfully on MediaCoder 0.8.21.5539 to 0.8.22.5530 over Windows XP SP3 and Windows 7 SP0.
7d841ff629512953fde2ad0b9d42720ffd2fc843859e5ee5bfe58e990084b709This Metasploit module exploits a stack-based buffer overflow vulnerability in version 1.11 of Corel PDF Fusion. The vulnerability exists while handling a XPS file with long entry names. In order for the payload to be executed, an attacker must convince the target user to open a specially crafted XPS file with Corel PDF Fusion. By doing so, the attacker can execute arbitrary code as the target user.
916643fb975e5382aef5b8e8b08179bdf4cfd923b7b247577966efc132ea1fa0
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed