Proof of concept exploit for Carsten's 3D Engine which suffers from a format string vulnerability allowing an attacker to execute remote code.
0b7fa71d3a76cde2ad42ed07070a95ea39226e5a2fb74f4d0e6456fe699135c2Carsten's 3D Engine suffers from a format string vulnerability that can allow an attacker to execute remote code.
3d5695b329803227a386ca608c13e7e767ddd93829c720a83ddc98f2090cb6f0Secunia Security Advisory - Luigi Auriemma has reported two vulnerabilities in Ca3DE, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
0f60beb0451a6f928acabe5cc570dcb90f99ed44e7117b0a761a962d44fb8cafKiosk is a Palm hack/DA combination that can be used to lock a Palm handheld to a single application. When activated, only the current application can run, and a password is needed to launch other applications. This is useful when loaning a PDA to a child or to a co-worker to use for a specific purpose.
7a852be9379868e58daef64c6d86f3876dad40745a1b203738d386b979e9a924phpBB 2.0.13 fails to properly sanitize some variables in the usercp_register.php script.
0752a9f2af60d8528ee32be5f69a3cf658ac23e6660bd352fd557917bff6672fPABox version 1.6 is susceptible to a cross site scripting attack.
70e73ed35b640185dfeae795700edafc7f3cdbae839d0995ef088f51ec7b31ebFOROS version 3.2 allows for account compromise by changing the username and forumid in a cookie to someone else's.
492008e324e8509317922f46824f23cef8ee3a42bb3cd8c138c42510f5e09cb3PHP News version 1.2.4 remote file inclusion exploit.
12ee37a4339310474492728fd58eefcfed15208e9eac7767a56dba4658bc1a6eUbuntu Security Notice USN-90-1 - Tavis Ormandy discovered a format string vulnerability in ImageMagick's file name handling. Specially crafted file names could cause a program using ImageMagick to crash, or possibly even cause execution of arbitrary code.
0be267c34df41b8864e1ad26192c586f2dd2d39aa4cbd841916ddbd8e92288e9Gentoo Linux Security Advisory GLSA 200503-07 - phpMyAdmin contains several security issues. Maksymilian Arciemowicz has discovered multiple variable injection vulnerabilities. It is also possible to force phpMyAdmin to disclose information in error messages. Additionally, it has a failure to correctly escape special characters. Versions below 2.6.1_p2-r1 are affected.
773ce2bbb51691b19f2ef44012dc64db761d4d76bb05e0e56ff991fa5fc852d3Gentoo Linux Security Advisory GLSA 200503-06 - Ulf Harnhammar discovered a format string vulnerability in netstuff.cpp. Versions less than 1.3.17 are affected.
aa120c1229e2bd10b8f67dfa637b69dad0e937009692cc28456a4ddf34b8f9baSecunia Security Advisory - Kristof Philipsen has reported a vulnerability in Computalynx CProxy, which can be exploited by malicious people to disclose sensitive information and cause a DoS (Denial of Service).
e33efb4e74c37a878032e01098a3ee8b04856a38d6ac41d864725a9199cf6364
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed