what you don't know can hurt you
Showing 1 - 25 of 67 RSS Feed

Files Date: 2006-11-14

Secunia Security Advisory 22812
Posted Nov 14, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Vallheru, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 82daf785213eaf426fc8a3f6d3b0ff72
killallproc.c
Posted Nov 14, 2006
Authored by Kris Katterjohn

11 byte shellcode for Linux/x86 that kills all processes.

tags | x86, shellcode
systems | linux
MD5 | d606a66e501b25709fe4a4cca6168cf5
VMware Security Advisory 2006-0009
Posted Nov 14, 2006
Authored by VMware | Site vmware.com

VMware Security Advisory - A new update has been released for VMware ESX Server version 3.0.0. This patch addresses the AMD fxsave/restore security vulnerability.

tags | advisory
advisories | CVE-2006-1056
MD5 | fbb068276771c1e7463a3712434aea83
VMware Security Advisory 2006-0008
Posted Nov 14, 2006
Authored by VMware | Site vmware.com

VMware Security Advisory - A new update has been released for VMware ESX 2.0.2 versions prior to upgrade patch 2. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.

tags | advisory, vulnerability, python
advisories | CVE-2004-2069, CVE-2006-3403, CVE-2005-2177, CVE-2006-3467, CVE-2006-1056, CVE-2006-1342, CVE-2006-1343, CVE-2006-1864, CVE-2006-2071
MD5 | bb35ebbd06f52a0140b2bf867e5172fa
VMware Security Advisory 2006-0007
Posted Nov 14, 2006
Authored by VMware | Site vmware.com

VMware Security Advisory - A new update has been released for VMware ESX 2.1.3 versions prior to upgrade patch 2. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.

tags | advisory, vulnerability, python
advisories | CVE-2004-2069, CVE-2006-3403, CVE-2005-2177, CVE-2006-3467, CVE-2006-1056, CVE-2006-1342, CVE-2006-1343, CVE-2006-1864, CVE-2006-2071
MD5 | 4f3cbd421d4a3476d5b84152399b3673
VMware Security Advisory 2006-0006
Posted Nov 14, 2006
Authored by VMware | Site vmware.com

VMware Security Advisory - A new update has been released for VMware ESX versions 2.5.3 prior to upgrade patch 4. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.

tags | advisory, vulnerability, python
advisories | CVE-2004-2069, CVE-2006-3403, CVE-2005-2177, CVE-2006-3467, CVE-2006-1056, CVE-2006-1342, CVE-2006-1343, CVE-2006-1864, CVE-2006-2071
MD5 | 3f5369604f0c4d48579db01e332e6a04
VMware Security Advisory 2006-0005
Posted Nov 14, 2006
Authored by VMware | Site vmware.com

VMware Security Advisory - A new update has been released for VMware ESX versions 2.5.4 prior to upgrade patch 1. This patch addresses vulnerabilities in ucd-snmp, XFree86, an AMD fxsave/restore security flaw, some minor information leaks, and more.

tags | advisory, vulnerability
advisories | CVE-2005-2177, CVE-2006-3467, CVE-2006-1056, CVE-2006-1342, CVE-2006-1343, CVE-2006-1864, CVE-2006-2071
MD5 | 2c2c7135a54317ec1346817dca2e51fc
Gentoo Linux Security Advisory 200611-8
Posted Nov 14, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-08 - Vladimir Mosgalin has reported that when processing certain packages, RPM incorrectly allocates memory for the packages, possibly causing a heap-based buffer overflow. Versions less than 4.4.6-r3 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | 52521940eebf7c4f721139f18e3c8eef
Gentoo Linux Security Advisory 200611-7
Posted Nov 14, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-07 - M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage() function of coders/dcm.c, causing the improper handling of DCM images. Pihlaja also reported that there are several boundary errors in the ReadPALMImage() function of coders/palm.c, similarly causing the improper handling of PALM images. Versions less than 1.1.7-r3 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 304b459994a7c879fa655aedc958faf5
Gentoo Linux Security Advisory 200611-6
Posted Nov 14, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-06 - Tavis Ormandy of the Google Security Team has discovered a pre-authentication vulnerability, causing sshd to spin until the login grace time has been expired. Mark Dowd found an unsafe signal handler that was vulnerable to a race condition. It has also been discovered that when GSSAPI authentication is enabled, GSSAPI will in certain cases incorrectly abort. Versions less than 4.4_p1-r5 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 3b6b67d565d2a6e68a0594289f6bcc1e
phprunner.txt
Posted Nov 14, 2006
Authored by Lostmon | Site lostmon.blogspot.com

PHPRunner suffers from a database credential disclosure vulnerability.

tags | advisory
MD5 | cdb7279f4491fd2addb11a3d97eab5a5
broadcom_wifi_ssid.rb.txt
Posted Nov 14, 2006
Authored by Matt Miller, H D Moore, Johnny Cache, Chris Eagle | Site projects.info-pull.com

This Metasploit module exploits a stack overflow in the Broadcom Wireless driver that allows remote code execution in kernel mode by sending a 802.11 probe response that contains a long SSID. The target MAC address must be provided to use this exploit. The two cards tested fell into the 00:14:a5:06:XX:XX and 00:14:a4:2a:XX:XX ranges.

tags | exploit, remote, overflow, kernel, code execution
MD5 | 8e29a33ce3fa0dea0811bce89496dec2
dlink_wifi_rates.rb.txt
Posted Nov 14, 2006
Authored by Matt Miller, H D Moore, Johnny Cache, LMH | Site projects.info-pull.com

This Metasploit module exploits a stack overflow in the A5AGU.SYS driver provided with the D-Link DWL-G132 USB wireless adapter. This stack overflow allows remote code execution in kernel mode. The stack overflow is triggered when a 802.11 Beacon frame is received that contains a long Rates information element. This exploit was tested with version 1.0.1.41 of the A5AGU.SYS driver and a D-Link DWL-G132 USB adapter (HW: A2, FW: 1.02). Newer versions of the A5AGU.SYS driver are provided with the D-Link WUA-2340 adapter and appear to resolve this flaw, but D-Link does not offer an updated driver for the DWL-G132. Since this vulnerability is exploited via beacon frames, all cards within range of the attack will be affected. The tested adapter used a MAC address in the range of 00:11:95:f2:XX:XX.

tags | exploit, remote, overflow, kernel, code execution
MD5 | a403e8304d2632dbf796bf0e140b69a9
minibb2-rfi.txt
Posted Nov 14, 2006
Authored by ThE-LoRd-Of-CrAcKiNg

MiniBB Forum versions 2.0 and below suffer from a remote file inclusion vulnerability in index.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | 434d0cda87e8545b15ddfef150870811
n.runs-SA-2006.002.txt
Posted Nov 14, 2006
Authored by Sergio Alvarez | Site nruns.com

The Grisoft Inc. AVG Antivirus system has had multiple vulnerabilities discovered in the file parsing engine that allow for arbitrary code execution. The vulnerabilities are present in AVG Antivirus software versions prior to 7.1.407.

tags | advisory, arbitrary, vulnerability, code execution
MD5 | 3bbd0c7852ae5559f60d243ce8a9a966
FLSA-2006-211760.txt
Posted Nov 14, 2006
Site fedoralegacy.org

Fedora Legacy Update Advisory FLSA:211760 - Updated gzip package fixes various security issues, ranging from denial of service flaws to code execution flaws.

tags | advisory, denial of service, code execution
systems | linux, fedora
advisories | CVE-2006-4334, CVE-2006-4338, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337
MD5 | 476b7e065901ce04e9d99e56f6828da9
os2a_1008.txt
Posted Nov 14, 2006
Authored by Jayesh KS, Arun Kethipelly

Remote exploitation of a denial of service vulnerability in ELOG's elogd server allows attackers to crash the service. Versions 2.6.2 (SVN revision 1748) and below are affected.

tags | advisory, remote, denial of service
MD5 | 1acfd760ecdbf727aa5822f4090ea4a5
directadmin-1281.txt
Posted Nov 14, 2006
Site aria-security.net

DirectAdmin version 1.28.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 596ccf0c0743c29d93004c2441c033b3
topstory-rfi.txt
Posted Nov 14, 2006
Authored by rUnViRuS | Site sec-area.com

Topstory Basic version 1.0 suffers from a remote file inclusion vulnerability.

tags | advisory, remote, code execution, file inclusion
MD5 | abc7bd1b3532debdbb95483acfecacd9
infinicart.txt
Posted Nov 14, 2006
Authored by benjamin moss, laurent gaffie | Site s-a-p.ca

infinicart suffers from SQL injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | ffedc4797a1ff3c61e69d933e1cb1114
mystats-108.txt
Posted Nov 14, 2006
Authored by benjamin moss, laurent gaffie | Site s-a-p.ca

MyStats version 1.0.8 and below suffer from SQL injection, cross site scripting, and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | aee6636099bb225a1ff8f6283f59a292
megamallSQL.txt
Posted Nov 14, 2006
Authored by benjamin moss, laurent gaffie | Site s-a-p.ca

Mega Mall suffers from various SQL injection vulnerabilities.

tags | exploit, vulnerability, sql injection
MD5 | a7f1bd17e89fae499f6d33781de86ab8
cmsmelborp.txt
Posted Nov 14, 2006
Authored by DeltahackingSecurityTEAM | Site deltahacking.ir

CMSmelborp Beta remote file inclusion exploit that makes use of user_standard.php.

tags | exploit, remote, php, file inclusion
MD5 | 7cd71b7c54f9bfb02a8ec2ca427d22e0
storystream.txt
Posted Nov 14, 2006
Authored by v1per-haCker | Site xp10.com

StoryStream version 4.0 suffers from remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, file inclusion
MD5 | f9038ea8128856e2029aee807359d4d6
phpwind-501.txt
Posted Nov 14, 2006
Authored by rgod | Site retrogod.altervista.org

PHPWind versions 5.0.1 and below AdminUser remote blind SQL injection exploit.

tags | exploit, remote, sql injection
MD5 | 18e9515c184821f51140b2b519dcbe7e
Page 1 of 3
Back123Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close