what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 27 RSS Feed

Files Date: 2004-06-25

artmedic.txt
Posted Jun 25, 2004
Authored by Adam Simuntis aka n30n

artmedic_links 5, the PHP script, is susceptible to a file and URL inclusion vulnerability.

tags | advisory, php
SHA-256 | fcb5bd9d71d92305c88ad7546002bb9461b97c61d6b4476192e7c92d834817af
DumpSIS-0.81.zip
Posted Jun 25, 2004
Authored by Jimmy Shah

Symbian SIS file dumping utility that allows for analysis of potential malware without actual installation of files. It provides information on file headers (UIDs, Version, Number of Languages, Number of files), file list (Destination name by default, Source filename and file type).

Changes: Minor fix for decoding If/Else If statements in SIS files.
systems | unix
SHA-256 | d0b5a4ac2ae9c2a7e25d96eb3a066b7934371142f4f87debfe9c326b0ca0ab29
Secunia Security Advisory 11941
Posted Jun 25, 2004
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Alan Fitton has discovered a vulnerability in giFT-FastTrack, allowing malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an unspecified error, which can be exploited to crash the giFT daemon via a specially crafted signal. Version 0.8.6 and prior are reportedly affected.

tags | advisory, denial of service
SHA-256 | 952b88a417674f0acb22f4a6dfd67756190439d585dfd1efab3bb1623259e089
57587.html
Posted Jun 25, 2004
Site sunsolve.sun.com

A flaw in Kerberos password handling under Sun Solaris 9 allows for passwords to be logged in clear text on clients with services using pam_krb5 as an auth module.

tags | advisory
systems | solaris
SHA-256 | 3e8f112307c599098b445c863693bd8fada2f48c9458a8350f1589bcb01e67a7
syscheck-0.6.3.tgz
Posted Jun 25, 2004
Authored by steveg | Site stevegcentral.com

Syscheck version 0.6.3 is a utility for performing sanity checking on system files, services, and ports. It attempts to identify any trojans or rootkits that may be getting used and also looks for vulnerable software installed. ELF binary included.

tags | trojan
systems | unix
SHA-256 | acd45abdf8d192ac0196d7584cbc89736c1a1b3ef25c4a5899f2b0dd9277f2c9
mod_rootme-0.3.tgz
Posted Jun 25, 2004
Authored by Christophe Devine

mod_rootme is a very cool module that sets up a backdoor inside of Apache where a simple GET request will allow a remote administrator the ability to grab a root shell on the system without any logging.

Changes: This version adds support for a large number of unix systems, including the BSDs, Solaris, OSF/Tru64 and more.
tags | remote, web, shell, root
SHA-256 | 5d4dbf999c7882a9556deb51b0d6c190b7a93de32438eaf87319407dde904309
zone-h-gnats.txt
Posted Jun 25, 2004
Authored by Khan Shirani | Site zone-h.org

A format string bug has been discovered in the Gnats package version 4.0 which could possibly be exploited to execute arbitrary commands.

tags | advisory, arbitrary
SHA-256 | cfca36ef8b0b5c888ed1009e7585a1649bce8e2d751f4117f5322cc8b06614f1
57581.html
Posted Jun 25, 2004
Site sunsolve.sun.com

An unspecified vulnerability has been discovered in Sun StorEdge Enterprise Storage Manager, which can be exploited by malicious, local users to gain root privileges.

tags | advisory, local, root
SHA-256 | 2d9524179730bf2bea09666c1915fa03c6e51c0cdf2fb55150023d2850e35e23
rlprd.py.exploit
Posted Jun 25, 2004
Authored by Andrew Griffiths | Site felinemenace.org

Remote exploit that makes use of a format string vulnerability in rlpr version 2.x.

tags | exploit, remote
SHA-256 | 671d9ed33356c2438a4c4a70a5e1e61d2e6b9186125af05bd345ee60f4144974
rlprd204.txt
Posted Jun 25, 2004
Authored by jaguar | Site felinemenace.org

Vulnerabilities in rlpr version 2.x include a format string error and boundary error in the msg() function that can lead to remote arbitrary code execution.

tags | advisory, remote, arbitrary, vulnerability, code execution
SHA-256 | 909257fe013334eb749954d5e33494289bf97fdbac67301020845d045a82f68b
7350ssharp-0.51.tgz
Posted Jun 25, 2004
Authored by teso, stealth | Site stealth.openwall.net

ssharp is a tool for man in the middle attacks against SSH.

SHA-256 | 2e4df21e2413ddc4731a20b6106f2fb5a75feeccc9288a687315659cefe6ee28
Secunia Security Advisory 11928
Posted Jun 25, 2004
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VeNoMouS has reported a vulnerability in php-exec-dir, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory, php
SHA-256 | b77c7db1305cebf95c146c518a55922776a3ea9a90a6612fba19cd5c78c70092
zone-h-drcat.txt
Posted Jun 25, 2004
Authored by Khan Shirani | Site zone-h.org

Zone-h Security Advisory - Drcatd is susceptible to multiple local and remote buffer overflows.

tags | advisory, remote, overflow, local
SHA-256 | c443329a687a604fe5080a5f5db4419823ad5aabf4d102051246b2bd45890ea9
argoxp.c
Posted Jun 25, 2004
Authored by Jocanor

New UPNP exploit that affects Microsoft Windows XP SP0. Binds a shell on port 1981.

tags | exploit, shell
systems | windows
SHA-256 | b32da5228997cbf8201fa805c7daa21ca9f569746c832b6fa6f5c82886895b75
SSRT4741.txt
Posted Jun 25, 2004
Site hp.com

DCE for HP Tru64 UNIX is susceptible to a potential RPC buffer overrun attack that can result in a denial of service. Affected releases: All versions of DCE/DFS for Tru64 UNIX are vulnerable v4.1.4 (ifspec), v4.1.5, v4.2 and v4.3.

tags | advisory, denial of service, overflow
systems | unix
SHA-256 | 88ded2925fbaa20f1de257401093d0f0bb211a7c60340a7fe8951877202795c7
vbulletin301.txt
Posted Jun 25, 2004
Authored by Cheng Peng Su

A cross site scripting vulnerability exists in VBulletin.

tags | advisory, xss
SHA-256 | aafd39f6a324f6ee241a54e4a45662c562a61a5a9f22136d28a71e084b6a82d6
iDEFENSE Security Advisory 2004-06-23.t
Posted Jun 25, 2004
Authored by iDefense Labs | Site idefense.com

iDEFENSE Security Advisory 06.23.04: Remote exploitation of a parameter filtering vulnerability in IBM Corp.'s Lotus Notes application allows remote attackers to execute arbitrary code.

tags | advisory, remote, arbitrary
SHA-256 | 71b073911f9767c8350a24944678f84d597446f7e45d0310cf096ff44008c533
lotus.xss.txt
Posted Jun 25, 2004
Site www-1.ibm.com

IBM Lotus recognized the potential for a cross-site scripting vulnerability to exist under certain circumstances.

tags | advisory, xss
SHA-256 | e2282f5c9d84329522a9a0fc435d38a51690757fa9ff1aa4e13916f9eaac358d
57497.html
Posted Jun 25, 2004
Site sunsolve.sun.com

An error within the Basic Security Module (BSM) under Sun Solaris versions 7, 8, and 9 allows a malicious local attacker to cause a denial of service against the system.

tags | advisory, denial of service, local
systems | solaris
SHA-256 | 52e41ffe245705a1556b3565d2b6b29b18f82e072108fd1e407839bbbb067dcc
linux.5820.txt
Posted Jun 25, 2004
Authored by infamous41md

There exists an integer overflow in the Broadcom 5820 Cryptonet driver. A user supplied value is used to size a dynamic buffer, and this buffer is subsequently filled with user supplied data. This allows for a local denial of service attack with possible code execution.

tags | advisory, denial of service, overflow, local, code execution
SHA-256 | e054cb5f6c00876a9b469f206a34496e8c5a8492521c2abdc71ff82951387141
freebsd.local.txt
Posted Jun 25, 2004
Authored by Marceta Milos

It is possible to crash the kernel on FreeBSD/Alpha by passing an unaligned memory address as a 2nd or 3rd argument to execve() syscall. Affected versions: FreeBSD 5.1-RELEASE/Alpha and possibly others. Not affected: FreeBSD 5.1-RELEASE/IA32.

tags | exploit, kernel
systems | freebsd
SHA-256 | a4526052ca2cb1a9ff1b6dffe4989feaa6565bda6886895d2f79921d22533f39
SNS Advisory 76
Posted Jun 25, 2004
Authored by Nobuo Miwa, Little eArth Corporation | Site lac.co.jp

Internet Explorer allows local users to cause a denial of service against the system when attempting to print a certain HTML page.

tags | advisory, denial of service, local
SHA-256 | 58a12f65eb35074551f1ea9e9c4a526a630bdb238680515640a6defcd2a606db
arbitroWeb.txt
Posted Jun 25, 2004
Authored by Josh Gilmour

ArbitroWeb suffers from a java injection flaw.

tags | advisory, java
SHA-256 | b468e30020287fa9dc1cb6f695913e9f49e0bb52cbe7686dfe692207115986e3
arhontWireless.txt
Posted Jun 25, 2004
Authored by Konstantin V. Gavrilenko | Site arhont.com

A clear text account password is obtainable using SNMP on the BT Voyager 2000 Wireless ADSL router.

tags | advisory
SHA-256 | 97dc052ac3e0b1453eaaea2d5bb1c4c31b7c9e9033008710e300211fe44a295c
Kmalloc_Internals.html
Posted Jun 25, 2004
Authored by infamous42md | Site 1nfamus.netfirms.com

White paper discussing possible exploitation of memory returned by kmalloc().

tags | paper
SHA-256 | 94224655fc72bfec74e3d6de5dbfccf52e48efab8a9e3883c65a2847b95c4366
Page 1 of 2
Back12Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close