TRIPP is a utility to rewrite incoming and outgoing IP packets. Since it can rewrite both headers and payload, it can be used to configure the tcp/ip stack behavior in order to perform various tasks mainly intended for network tests, simulations and development.
41978f67ad0896e10ec10edd525909b6563e02ab70ca5c0e75d659ae9bfd92f0PHPNuke version 7.8 "Your_Account" SQL injection exploit.
3f9ba5b05254da335d45717f9c5e334d4b011930c7386ab55c1dfac3fd749703Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Version 1.3 Archive password is set to p4ssw0rd. Use at your own risk.
5fd0ee311d04417cb17095938bb67ff5cfcbe60308ce29202dabb87bba041249dragonflycms 9.0.6.1 suffers from multiple XSS vulnerabilities.
7093b1b9468e1dc3b7fe7e29287711b4973fe038355ad72337f9dbb59d9ae3cfInvision Power Board 2.1.4 Multiple Full Path Disclosure Vulnerabilities.
afc8b5d91c94d44473b65e19fa3da4a01a1ee7b049738c05208ffbd89108b14dMagic Downloads 1.1.3 allows untrusted users to make changes to config.php.
96bf8fe88d2fd2c64aac14658763937cbe1ed2ea302ca3a8bf2b53a5b96a1a44Reamday Enterprises Magic News Lite version 1.2.3 is vulnerable to remote code execution.
e3744687c220f765c14c79cfa2a6b44fa9259a239ef033802305a5f454950be6BirthSys 3.1 suffers from SQL injection.
4bbc6fc29c3fea2a0b6c2f4039628116c26844502ccc25f349ee9e4d6fda7afbMandriva Linux Security Advisory - A number of vulnerabilities have been discovered and corrected in the Linux 2.4 kernel.
9abcee94a0c69bde8fdd72837c0c5e58cd4d17ce83777aea9027af70dfcdbe87Ubuntu Security Notice USN-255-1 - Tomas Mraz discovered a shell code injection flaw in scp. When doing local-to-local or remote-to-remote copying, scp expanded shell escape characters. By tricking an user into using scp on a specially crafted file name (which could also be caught by using an innocuous wild card like '*'), an attacker could exploit this to execute arbitrary shell commands with the privilege of that user.
6ac0ecdbc84d855690efbd4e10ed2acc751e68eac6cb5f80b7a2605acf33a7c3Ubuntu Security Notice USN-254-1 - Javier Fern
d5965a76cf748755371ddb64cf4e640376ff0a27050571bc326186d82284288bUbuntu Security Notice USN-256-1 - Pierre Betouin discovered a Denial of Service vulnerability in the handling of the L2CAP (Logical Link Control and Adaptation Layer Protocol) layer. By sending a specially crafted L2CAP packet through a wireless Bluetooth connection, a remote attacker could crash hcidump.
bb997be45bcf042cc46a0382c474bc67d1bbbaf815e82302b13a770bb3b4bd66Gentoo Linux Security Advisory GLSA 200602-12 - Dirk Mueller found a heap overflow vulnerability in the XPdf codebase when handling splash images that exceed size of the associated bitmap. Versions less than 2.10.0-r4 are affected.
80bc4ec9b5e451f1182209595303b247a076f3f4efaa7617bc6725f2629e8fa6Gentoo Linux Security Advisory GLSA 200602-11 - To copy from a local filesystem to another local filesystem, scp constructs a command line using 'cp' which is then executed via system(). Josh Bressers discovered that special characters are not escaped by scp, but are simply passed to the shell. Versions less than 4.2_p1-r1 are affected.
cfcec5662ad457ca641c0cd1c22d1fa72b373a7171a4822ce1450533f036edc5Geeklog is vulnerable to a number of different attacks such as SQL Injection, and arbitrary file inclusion. These attacks can be combined to ultimately execute code on the vulnerable web server in a very reliable manner.
f63a332bff24a88aa1358f71bc647bc9ea6ad592d707b5ce433c86f107764593The MiniNuke CMS system suffers from a SQL injection vulnerability in pages.asp. Detailed exploitation provided.
a744c329570b707c8183a340f1418a18e37680b8875f2041fcf11863eadea937PostNuke versions less than or equal to 0.761 suffer from SQL injection and XSS if magic_quotes_gpc is off.
a604b558c6e92ba6deb8ee048543b0d78e6b50ac84af760916dc75f0b78271c7PunBB 1.2.10 database flooding Denial of Service exploit.
5210d0ac87a7a438eeab25fb386320adbf49039923ad536d5524db34c2a4e8faRCBlog 1.0.3 and 1.0.2 password disclosure exploit.
8598cff2c9cd1489af67e67152ee7185f0e3b1c49223fa45d6fed1148153c3b9There are several cross site scripting issues within the ADODB_Pager class that may allow for an attacker to render malicious client side code in the victims browser.
2bc700deae76d24ac2fbe25d5f007856f0a3ddc301b3418f203b08e067f0b4bfCoppermine Photo Gallery less than or equal to 1.4.3 remote commands execution exploit.
f51a662e9d32c66c6f21fb60f07ba09ee1a3b6fc68930ba5716cb7187fc58b2aSecunia Security Advisory - albanialove has reported a vulnerability in CPG Dragonfly CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
9149782770007709c29ae3168554e7b215a41541bf8541685c5e32e3cc2609fcSecunia Security Advisory - A vulnerability has been reported in Mambo, which potentially can be exploited by malicious people to compromise a vulnerable system.
a756956d47e55d58941dee427dacfe655c0d3c5e811d3b87f4346e66b4915e4aSecunia Security Advisory - A vulnerability has been reported in UnixWare, which can be exploited by malicious, local users to gain escalated privileges.
e42ea000ff7162d71b8e3708f5795db69b824c5443f9fa2613caf9907ba7ccb0Secunia Security Advisory - Ubuntu has issued an update for noweb. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges.
6af25505b30597bdfa5d75364499aa535223f86c660154c224b87e85024139e9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed