CMSimple versions 2.4 and below are susceptible to cross site scripting attacks. Exploitation details provided.
ac5fd80af7327965eade344735d47989fe407c7d846f5b82c9581eed9c67f1b4Proof of concept exploit for the MS05-036 JPEG ICC overflow issue.
964d55971ebc2328554586401051651c26d84a43f508f62667f0210d4af91b9aSecunia Security Advisory - Mark Pilgrim has reported a vulnerability in the Greasemonkey extension for Firefox, which can be exploited by malicious people to disclose various information.
dddb2788715783fb070fbb5f0fbb4c61388ee7f8ce00e265751f9eeda421aebeSecunia Security Advisory - Sun Microsystems has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause files to be extracted to an arbitrary directory on a user's system.
6d2912243cbe67007cfb7b149f38c3831e91c4116d06703d17516aa0c8f81e97Secunia Security Advisory - rgod has discovered a vulnerability in Pyrox Search, which can be exploited by malicious people to conduct cross-site scripting attacks.
46303c97074299fa59d508b33bd954f4a9228ba36d779fbc04bb0cfd4c51e1f3Secunia Security Advisory - KDE has issued an update for Kopete. This fixes some vulnerabilities in libgadu, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.
ffa088eb32f921e73b58ecbd4c562fa8e2626d77523faad04ed78fd59b6b3048Weplab is a tool to review the security of WEP encryption in wireless networks from an educational point of view. Several attacks are available, so it can measure the effectiveness and minimum requirements of each one. Currently, weplab supports several methods, and it is able to crack the WEP key from 600,000 encrypted packets.
0420ae604811de6366b3e302813c3ab19671b3a4910217e2dfe9544fd59c6b69Greasemonkey Firefox extension arbitrary file disclosure exploit.
6e3a1a94c9a12d069c5c0fbaaaeb6dfde3f2af79e0d9e5b4d3e2d72525c35015Plash (the Principle of Least Authority Shell) is a Unix shell that lets you run Unix programs with access only to the files and directories they need to run. In order to implement this, the filesystem is virtualized. Each process can have its own namespace, which can contain a subset of your files. Plash is implemented by modifying GNU libc and replacing the system calls that use filenames. For example, open() is changed so that it sends a message to a file server via a socket. If the request is successful, the server sends the client a file descriptor. Processes are run in a chroot jail under dynamically-allocated user IDs. No kernel modifications are required. Existing Linux binaries work unchanged.
093649215ccc30a106eff56de86fb5af56abe41da0caa6764cc4f0ada4fae80dBeltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
4864570c20eb7c652c11da1bb06d2866cafa830449d11a1ec5d89b8b2fd8bcaaarpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
85f68830d30e27cbdd69eb2279a9825aac020830b7de5e3524c00948f8178daaFreeBSD Security Advisory FreeBSD-SA-05:17.devfs - Due to insufficient parameter checking of the node type during device creation, any user can expose hidden device nodes on devfs mounted file systems within their jail. Device nodes will be created in the jail with their normal default access permissions.
e1c7cadcfc9a5b70208783e95f2c0e0102c8c0c89d38162917beeb93216b369cDebian Security Advisory DSA 763-1 - Markus Oberhumer discovered a flaw in the way zlib, a library used for file compression and decompression, handles invalid input. This flaw can cause programs which use zlib to crash when opening an invalid file.
a27a54950193671066e8e58e185d1af8aa532745949f17af9eca68212b3dc189Simple replacement binaries for netstat, ls, and ps that enable an attacker or administrator to hide specific strings.
60b4569d41899121ba50b99fc410a2bd24142d5f2c7bf9931f2512e999cf5ae0phpBB 2.0.17 has been released to fix some cross site scripting flaws in earlier versions.
3c919db6e03305ded631e8a8dfac067a5f66b3db8521b773e6f8fa08b4541346Cool whitepaper discussing the return into libc attacks used to bypass non-executable stacks.
1ba3c2707f91d623e72b2c5a1148eab35db801819661c3567ab2521765535e5fMisuse of services like Google's WMLProxy and IYHY allow for proxied/anonymous attacks against web sites.
c520e4f371db2afdd4444776ffdf953c2721adc1507e695f201b5cb6b86b2db6A vulnerability in PeanutHull versions 3.0 Beta 5 and below allows for local escalation to SYSTEM privileges.
e386d26672ec959f3aae1a8ff760d9fb2cce069ebf985167f901becbb46f3893Gentoo Linux Security Advisory GLSA 200507-18 - MediaWiki fails to escape a parameter in the page move template correctly. Versions less than 1.4.7 are affected.
20fa3d166c6f6eecd10de38c0d4d31ef451282fd4a3e5f1ba60c0dc59f93ef92PHPNews 1.2.5 is susceptible to SQL injection attacks.
1158ee071f079e4bf13a9537c73ff65066db777d4b8bdad47648b2e244dac61bPHP Surveyor version 0.98 stable is vulnerable to multiple SQL injection, cross site scripting, and path disclosure flaws.
cb8271abdb655fdec5823f0f81bacfa9adb4bae8c2f371f81aca744b88241536The Cisco Call Manager versions 3.2 and below may restart when more than 1 gigabyte of memory is used. Sending specially crafted packets to the CCM will cause the CCM to use more than 1 gigabyte of virtual memory.
a73577718b6c44a7e301e85575188a29e2d59b9366f6093c8b2ffcfac3022c66A SQL injection vulnerability exists in a Chinese ASP webcounter.
db7e634e2ae892bb30d9ca134e5c03c7306b58ce541dd373f15f9de52b74fa17Secunia Security Advisory - thegreatone has discovered some vulnerabilities in PHP Surveyor, which can be exploited by malicious users to conduct SQL injection attacks.
f1cf5ebb779803ee5f943120c7c9e146351cd55cca4396fd044cf825bbed1e3fSecunia Security Advisory - F5 Networks has acknowledged some vulnerabilities in BIG-IP and 3-DNS, which can be exploited by malicious people to compromise a user's system.
1094ad92a97fdc0e9f22ee1656e8d0ce432d693213412dd582307271dd724207
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed