what you don't know can hurt you
Showing 1 - 25 of 65 RSS Feed

Files Date: 2006-02-20

SUSE-SA-2006-009.txt
Posted Feb 20, 2006
Authored by Ludwig Nussel | Site suse.com

SUSE Security Announcement - With certain handcraftable signatures GPG was returning a 0 (valid signature) when used on command-line with option --verify. This only affects GPG version 1.4.x, so it only affects SUSE Linux 9.3 and 10.0. Other SUSE Linux versions are not affected. This could make automated checkers, like for instance the patch file verification checker of the YaST Online Update, pass malicious patch files as correct.

tags | advisory
systems | linux, suse
MD5 | da20b8c447a55ea800538ef715169f5c
waraxe-2006-SA-046.txt
Posted Feb 20, 2006
Authored by Janek Vind aka waraxe | Site waraxe.us

waraxe-2006-SA#046 - Critical sql injection in phpNuke 7.5-7.8.

tags | exploit, sql injection
MD5 | 811085c5fa14dc1bcfc184789306ef0a
waraxe-2006-SA-045.txt
Posted Feb 20, 2006
Authored by Janek Vind aka waraxe | Site waraxe.us

waraxe-2006-SA#045 - Bypassing CAPTCHA in phpNuke 6.x-7.9.

tags | exploit
MD5 | 063b8691c3fbfe346e8096aa8ebbcbcb
secunia-NJStar.txt
Posted Feb 20, 2006
Site secunia.com

Secunia Research has discovered a vulnerability in NJStar Word Processor, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 184496717b8cdb835ba46ae90e191dae
OpenPKG Security Advisory 2006.5
Posted Feb 20, 2006
Authored by OpenPKG Foundation | Site openpkg.org

OpenPKG Security Advisory - An allocation off-by-one bug exists in the TIN [1] news reader version 1.8.0 and earlier which can lead to a buffer overflow.

tags | advisory, overflow
MD5 | b4e9f3edc4ae3c51e02316a77ca794bc
OpenPKG Security Advisory 2006.4
Posted Feb 20, 2006
Authored by OpenPKG Foundation | Site openpkg.org

OpenPKG Security Advisory - According to vendor security information [0], privilege escalation vulnerabilities exist in the PostgreSQL RDBMS [1] before version 8.1.3. The bug allowed any logged-in user to "SET ROLE" to any other database user id. Due to inadequate validity checking, a user could exploit the special case that "SET ROLE" normally uses to restore the previous role setting after an error. This allowed ordinary users to acquire superuser status, for example.

tags | advisory, vulnerability
MD5 | f7c2932dfd01b6098ce708d7b1df93b3
EV0071.txt
Posted Feb 20, 2006
Site evuln.com

Magic Calendar Lite suffers from an authentication bypass vulnerability.

tags | advisory, bypass
MD5 | 479d14c4da6c30607f462c5a6efab22f
EV0069.txt
Posted Feb 20, 2006
Site evuln.com

TTS Software Time Tracking Software suffers from multiple vulnerabilities including XSS and SQL injection.

tags | advisory, vulnerability, sql injection
MD5 | 8a20ef6fa342f0d4b5a73af9d310f5c6
EV0068.txt
Posted Feb 20, 2006
Site evuln.com

CALimba suffers from an authentication bypass vulnerability.

tags | advisory, bypass
MD5 | e8a2e8cb1fd0515f3868baf02546baca
EV0067.txt
Posted Feb 20, 2006
Site evuln.com

PHP/MYSQL Timesheet suffers from multiple SQL injection vulnerabilities.

tags | advisory, php, vulnerability, sql injection
MD5 | 19f3823a44addefdd74aa1479aadc180
EV0066.txt
Posted Feb 20, 2006
Site evuln.com

Scriptme SmE GB Host suffers from an authentication bypass vulnerability.

tags | advisory, bypass
MD5 | fed5c2ba9fcd9e374df9241110baf4fb
EV0065.txt
Posted Feb 20, 2006
Site evuln.com

Scriptme products "SmE GB Host" and "SmE Blog Host" suffer from arbitrary script code insertion in the BBcode [url] tag.

tags | advisory, arbitrary
MD5 | 25d61c002ed71e06acae3e2b25830e3a
siteframe_5.0.2_xss.txt
Posted Feb 20, 2006
Authored by Kiki | Site kiki91.altervista.org

Siteframe Beaumont 5.0.1a suffers from a flaw that allows a remote cross site scripting attack.

tags | exploit, remote, xss
MD5 | ce03740986426700893c23a5ec0d333c
phpkit_161r2_incl_xpl.txt
Posted Feb 20, 2006
Authored by rgod | Site retrogod.altervista.org

PHPKit v.1.6.1 release 2 remote code execution exploit.

tags | exploit, remote, code execution
MD5 | c74559bd973108f43a4f289ace75750b
AD20060216.txt
Posted Feb 20, 2006
Site secway.org

Winamp versions up to and including 5.13 suffer from a .m3u buffer overflow vulnerability

tags | advisory, overflow
MD5 | 6ce8097aa8fb6b01da815588d5251346
DWL-G700AP.txt
Posted Feb 20, 2006
Authored by l0om | Site excluded.org

It is possible to crash the web interface on a D-Link DWL-G700AP by sending it a simple GET request. POC included.

tags | advisory, web
MD5 | 54fe1137106d52d891bdb223424243a9
RUNCMS1.3a-sql.tyxt
Posted Feb 20, 2006
Authored by Hamid Network Security Team | Site runcms.org

RUNCMS version 1.3a is vulnerable to SQL injection due to improper user input sanitization. POC included.

tags | exploit, sql injection
MD5 | a591d89417da6212625bb43c43e71d92
Kyoceraprinters.txt
Posted Feb 20, 2006
Authored by evader | Site evader.wordpress.com

It is possible to gain administrative access on Kyocera 3830 printers by using telnet.

tags | advisory
MD5 | 6db2d97acaf3238129c57fcc77ad3ce1
XOR-Wimpy.txt
Posted Feb 20, 2006
Site xorcrew.net

XOR Crew :: Security Advisory - Wimpy MP3 Player - Text file overwrite. (lame)

tags | exploit
MD5 | 0b5e63b0baed4e4d3df620e5da8c8711
XOR-HostAdmin.txt
Posted Feb 20, 2006
Site xorcrew.net

XOR Crew :: Security Advisory - HostAdmin - Remote Command Execution Vulnerability. POC Included.

tags | exploit, remote, add administrator
MD5 | a3822c6af19d6986347f2440fb18ad65
XOR-wcp.txt
Posted Feb 20, 2006
Site xorcrew.net

XOR Crew :: Security Advisory - Web Calendar Pro - Denial of Service SQL injection (lame). POC included.

tags | exploit, web, denial of service, sql injection
MD5 | 62d38045ab7f6461ba6a084de44aa940
XOR-iUser.txt
Posted Feb 20, 2006
Authored by Scott Dewey | Site xorcrew.net

XOR Crew :: Security Advisory - iUser Ecommerce - Remote Command Execution Vulnerability. POC exploit included.

tags | exploit, remote
MD5 | 9e024c74b23959c5aea8d0c1a202b516
enyelkm.en.v1.1.tar.gz
Posted Feb 20, 2006
Authored by RaiSe | Site enye-sec.org

LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry handlers, so it does not modify sys_call_table, or IDT content. It hide files, directories, and processes. Hides chunks inside of files, gives remote reverse_shell access, local root, etc.

Changes: Version 1.1
tags | tool, remote, x86, kernel, local, root, rootkit
systems | linux, unix
MD5 | 89340215b6cfceb3a176c4a30e34f5c6
ms06_009_eng.txt
Posted Feb 20, 2006
Authored by Ryan Lee | Site ryanstyle.com

Security advisory for MS06-009 - Misuse of ShellAbout() API could allow elevation of privilege Affected system: Korean version of Windows XP, 2003 and Office 2003.

tags | advisory
systems | windows, xp
MD5 | 89c81435b681173f5017312728a5acfb
plus-6.2.0.189.txt
Posted Feb 20, 2006
Authored by Brian Boner

PLUS (PatchLink Update Server) version: 6.2.0.189 suffers from several bugs and security issues.

tags | advisory
MD5 | 7cbb9e4d755998f24ea49dfbe015bed5
Page 1 of 3
Back123Next

File Archive:

February 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    1 Files
  • 2
    Feb 2nd
    2 Files
  • 3
    Feb 3rd
    17 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    16 Files
  • 7
    Feb 7th
    19 Files
  • 8
    Feb 8th
    1 Files
  • 9
    Feb 9th
    2 Files
  • 10
    Feb 10th
    15 Files
  • 11
    Feb 11th
    20 Files
  • 12
    Feb 12th
    12 Files
  • 13
    Feb 13th
    18 Files
  • 14
    Feb 14th
    17 Files
  • 15
    Feb 15th
    4 Files
  • 16
    Feb 16th
    4 Files
  • 17
    Feb 17th
    34 Files
  • 18
    Feb 18th
    15 Files
  • 19
    Feb 19th
    19 Files
  • 20
    Feb 20th
    20 Files
  • 21
    Feb 21st
    15 Files
  • 22
    Feb 22nd
    2 Files
  • 23
    Feb 23rd
    2 Files
  • 24
    Feb 24th
    16 Files
  • 25
    Feb 25th
    37 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close