what you don't know can hurt you
Showing 26 - 43 of 43 RSS Feed

Files from Digital Defense

Email addresssupport at ddifrontline.com
First Active2007-09-25
Last Active2013-05-09
Digital Defense VRT Advisory 2009.24
Posted Apr 28, 2009
Authored by Digital Defense, princeofnigeria, Steven James, r@b13$ | Site digitaldefense.net

Certain Precidia Ether232 devices contain memory overwrite and authentication flaws.

tags | advisory
MD5 | 34d9c21405251aaab3e9e9d063f1afdf
Digital Defense VRT Advisory 2009.23
Posted Apr 16, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

Apache ActiveMQ version 5.2.0 suffers from multiple cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 730bcdba54ba8bcb45c891039e83c7e2
Digital Defense VRT Advisory 2009.22
Posted Mar 9, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

A directory traversal vulnerability exists in the SMART Web Server.

tags | advisory, web
MD5 | b130314ed2d4f2c2d6548baac1ed3a07
Digital Defense VRT Advisory 2009.21
Posted Mar 9, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

The vBook login application suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 75fc728c21338f544aa8ddebd3c92860
Digital Defense VRT Advisory 2009.20
Posted Feb 18, 2009
Authored by Digital Defense, r@b13$, David Marshall | Site digitaldefense.net

The NetMRI login application suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | c333ae4b37e45fffa4f4fea03650d045
Digital Defense VRT Advisory 2008.19
Posted Feb 4, 2009
Authored by Digital Defense, r@b13$, Shmoov | Site digitaldefense.net

The HP-ChaiSOE/1.0 embedded web server on certain HP JetDirect printers allows a potential attacker to gain read only access to directories and files outside of the web root. An attacker can leverage this flaw to read arbitrary system configuration files, cached documents, etc. Information obtained from an affected host may facilitate further attacks against the host. Exploitation of this flaw is trivial using common web server directory traversal techniques. Verified vulnerable systems include the HP JetDirect 2420 and the HP JetDirect 4250.

tags | advisory, web, arbitrary, root
MD5 | 3fc73967d9a3f354bdb5160309340bc5
Digital Defense VRT Advisory 2008.16
Posted Dec 30, 2008
Authored by Digital Defense, Corey LeBleu, r@b13$ | Site digitaldefense.net

The Citrix Broadcast Server administrative login page is vulnerable to trivial SQL injections via the txtUID HTTP POST parameter. An attacker could leverage this flaw to obtain unauthorized access to the web interface or to extract data from the database via blind SQL injection.

tags | advisory, web, sql injection
MD5 | 657e79ffbf7ce2e8ad204969e22dbf2f
Digital Defense VRT Advisory 2008.18
Posted Dec 4, 2008
Authored by Digital Defense, Steven James, r@b13$ | Site digitaldefense.net

Orb Networks' Orb media server is vulnerable to a denial of service condition. Sending malformed http requests may crash the service denying service to legitimate users.

tags | advisory, web, denial of service
MD5 | dcbb3413fa3b5dfdcbfe4c5e3e9afa57
Digital Defense VRT Advisory 2008.15
Posted Nov 21, 2008
Authored by Digital Defense, Corey LeBleu, r@b13$ | Site digitaldefense.net

The iPhone Configuration Web Utility 1.0 for Windows web interface is vulnerable to a common web directory traversal attack. Successful exploitation will result in arbitrary read-onlyfile access outside of the iPhone Configuration Web Utility 1.0 web root.

tags | advisory, web, arbitrary, root
systems | windows, apple, iphone
MD5 | 07526dbd17f8e037041006f8815ffe08
Digital Defense VRT Advisory 2008.17
Posted Nov 7, 2008
Authored by Digital Defense, Steven James, r@b13$ | Site digitaldefense.net

Orb Networks' Orb media server is vulnerable to directory traversal attacks. Users can leverage specially crafted GET requests to read arbitrary files.

tags | advisory, arbitrary
MD5 | 80ddf95439f7628cb6ab20a17c61b714
Digital Defense VRT Advisory 2008.13
Posted Sep 3, 2008
Authored by Digital Defense, Corey LeBleu, r@b13$ | Site digitaldefense.net

PageR versions below 5.0.l7 from AVTECH suffer from a directory traversal vulnerability.

tags | advisory
MD5 | 4f3dc854012982faa1c7229a759a2dd8
Digital Defense VRT Advisory 2008.14
Posted Sep 3, 2008
Authored by Digital Defense, r@b13$, Brandon Shilling | Site digitaldefense.net

The 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point is susceptible to a denial of service condition via the web management interface.

tags | advisory, web, denial of service
MD5 | d3b32a21f0121d23492de63e5c6ed8f2
Digital Defense VRT Advisory 2008.12
Posted Jul 10, 2008
Authored by Digital Defense, Steven James, Mike James, r@b13$ | Site digitaldefense.net

ServerView 04.60.07 suffers from a buffer overflow vulnerability in SnmpGetMibValues.exe.

tags | advisory, overflow
MD5 | 51c065c642db0f5667e29c82dea956db
Digital Defense VRT Advisory 2008.11
Posted Apr 24, 2008
Authored by Digital Defense | Site digitaldefense.net

BadBlue is a web server used for peer-to-peer file sharing. By default, several executable files are stored in the web root: badblue.exe, uninst.exe, and dyndns.exe. Executable files stored in the web root of BadBlue can be launched remotely by any user. This can be leveraged to create a DoS condition by repeatedly invoking the uninst.exe executable. Due to the fact that BadBlue has not released a patch for the previously documented directory traversal vulnerability, an attacker may utilize these two flaws in conjunction to place a malicious executable in the web root and compromise a vulnerable server.

tags | advisory, web, root
advisories | CVE-2007-6378
MD5 | 97b22c9a16c638ad5d8a3727cfad7bfb
Digital Defense VRT Advisory 2008.9
Posted Mar 3, 2008
Authored by Digital Defense, princeofnigeria | Site digitaldefense.net

The PacketTrap PT360 Tool Suite version 1.1.33.1.0 TFTP server component is vulnerable to a denial of service condition.

tags | advisory, denial of service
MD5 | 62d0c7485cdd2e557993698fd84e1921
Digital Defense VRT Advisory 2008.10
Posted Mar 3, 2008
Authored by Digital Defense, princeofnigeria | Site digitaldefense.net

The PacketTrap PT360 Tool Suite version 1.1.33.1.0 TFTP server component is vulnerable to directory traversal attacks.

tags | advisory
MD5 | 63a7c1cb6dc3594d286903361f7179b7
Digital Defense VRT Advisory 2007.5
Posted Oct 5, 2007
Authored by Digital Defense | Site netsupportmanager.com

The NetSupport Manager client that listens on TCP port 5405 does not properly validate input supplied during the initial connection sequence. Specifically, during the configuration exchange part of the initial connection setup, the client does not appear to validate the supplied data which can result in a DoS of the NetSupport Manager Client. Remote code exploitation is also thought to be possible.

tags | advisory, remote, tcp
MD5 | ed61af9ea9612fc1c77af1eadba03aa3
Digital Defense VRT Advisory 2007.4
Posted Sep 25, 2007
Authored by Digital Defense | Site netsupportmanager.com

The NetSupport Manager client that listens on TCP port 5405 does not properly handle authentication sessions. It is possible to pose as the NetSupport Manager, associate to a client, and then issue commands without performing the authentication sequence. Both the basic and advanced authentication schemes can be bypassed in the same manner. When properly exploited, this flaw will results in a complete compromise of the target system. Version 10.20 is susceptible.

tags | advisory, tcp
MD5 | 4dee000df98b5afe03e2e7605156220f
Page 2 of 2
Back12Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    20 Files
  • 3
    Apr 3rd
    15 Files
  • 4
    Apr 4th
    5 Files
  • 5
    Apr 5th
    5 Files
  • 6
    Apr 6th
    27 Files
  • 7
    Apr 7th
    31 Files
  • 8
    Apr 8th
    18 Files
  • 9
    Apr 9th
    11 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close