what you don't know can hurt you
Showing 1 - 25 of 35 RSS Feed

Files Date: 2006-11-27

Secunia Security Advisory 23102
Posted Nov 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - bolivar has reported a vulnerability in Basic Forum, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | facf007bf2e8b91c280ddcc6e01a4348
Secunia Security Advisory 23132
Posted Nov 27, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS (Denial of Service), and by malicious people to bypass certain security restrictions, expose sensitive information, and manipulate data.

tags | advisory, denial of service, vulnerability
systems | linux, suse
MD5 | fc887b2dc8a22da500aea4193b723ca6
apb-rfi.txt
Posted Nov 27, 2006
Authored by ThE-LoRd-Of-CrAcKiNg

Active PHP Bookmarks version 1.1.02 suffers from a remote file inclusion flaw in apb.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | eb87b9d0d671d5af9f66d0a45bb6be78
javacrack.pdf
Posted Nov 27, 2006
Authored by Subere

Whitepaper entitled Cracking String Encrypting in Java Obfuscated Bytecode.

tags | paper, java
MD5 | f0739a49ebc9c9404cbd455eb485ca84
wbblite_102_sql.html
Posted Nov 27, 2006
Authored by rgod | Site retrogod.altervista.org

Woltlab Burning Board Lite version 1.0.2 Zend_Hash_Del_Key_Or_Index / blind SQL injection exploit.

tags | exploit, sql injection
MD5 | 51876241b351f7781a3c0d53a94cc130
mmgallery.txt
Posted Nov 27, 2006
Authored by Al7ejaz Hacker

mmgallery suffers from a cross site scripting flaw.

tags | exploit, xss
MD5 | 7cad755b7c618f7b93abf004c4666a2b
spg-xss.txt
Posted Nov 27, 2006
Authored by Al7ejaz Hacker

Simple PHP Gallery version 1.1 suffers from a cross site scripting flaw.

tags | exploit, php, xss
MD5 | ba33496ecb98d4ad9e737119b942dc57
Gentoo Linux Security Advisory 200611-20
Posted Nov 27, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-20 - GNU gv does not properly boundary check user-supplied data before copying it into process buffers. Versions less than 3.6.2-r1 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 7ae82392e20edf7870211646d9cf6170
Gentoo Linux Security Advisory 200611-19
Posted Nov 27, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-19 - M. Joonas Pihlaja has reported that a boundary error exists within the ReadDCMImage() function of coders/dcm.c, causing the improper handling of DCM images. Pihlaja also reported that there are several boundary errors in the ReadPALMImage() function of coders/palm.c, similarly causing the improper handling of PALM images. Versions less than 6.3.0.5 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 869549fe1008df9559656a273122376c
Gentoo Linux Security Advisory 200611-18
Posted Nov 27, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-18 - Urs Janssen and Aleksey Salow have reported multiple buffer overflows in TIN. Additionally, the OpenPKG project has reported an allocation off-by-one flaw which can lead to a buffer overflow. Versions less than 1.8.2 are affected.

tags | advisory, overflow
systems | linux, gentoo
MD5 | e7c491eb81405c4e3065cb5d7b2e66a3
katsnoop.tbz2
Posted Nov 27, 2006
Authored by Kris Katterjohn

Utility that sniffs HTTP Basic Authentication information and prints the base64 decoded form.

tags | tool, web, sniffer
MD5 | 12d40e120b774b2fc6bc909178815f7a
NCISACIS-2007-CFP.txt
Posted Nov 27, 2006
Authored by Jeimy J. Cano

The Seventh National Computer and Information Security Conference ACIS 2006 (NCIS 2006) invites all researchers and practitioners to submit research papers in security topics.

tags | paper, conference
MD5 | 1b2bb329bfdd1480251101782273a5cd
googleInclusion.txt
Posted Nov 27, 2006
Authored by Noam Rathaus

The Google Crawler could be leveraged as an anonymizer for launching remote file inclusion attacks.

tags | advisory, remote, file inclusion
MD5 | 87dafacbeaf0cfd1da7f16f5f388b377
nvidia.c
Posted Nov 27, 2006
Authored by Hessam-x | Site hessamx.net

NVIDIA nView suffers from a local denial of service condition in keystone.exe.

tags | exploit, denial of service, local
MD5 | 0119226346eec65acd6e338519cf1eea
Mandriva Linux Security Advisory 2006.218
Posted Nov 27, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-218-1 - An off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote attackers to cause a denial of service (crash) via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array.

tags | advisory, remote, denial of service, overflow
systems | linux, mandriva
advisories | CVE-2006-5989
MD5 | e05fff3c295a6d10cc76b0fc34ba2607
Gentoo Linux Security Advisory 200611-17
Posted Nov 27, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200611-17 - Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that fvwm-menu-directory does not sufficiently sanitise directory names prior to generating menus. Versions less than 2.5.18-r1 are affected.

tags | advisory
systems | linux, gentoo
MD5 | 2ea56daab1a6c91c8cbf713a5dc24e67
Echo Security Advisory 2006.61
Posted Nov 27, 2006
Authored by Echo Security, Matdhule

a-ConMan versions 3.2beta and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | 51ec3baaf301218c1b214f199b9440af
ihd231-xss.txt
Posted Nov 27, 2006
Authored by SwEET-DeViL

InverseFlow Help Desk version 2.31 is susceptible to multiple cross site scripting flaws.

tags | exploit, xss
MD5 | e9afb09304c7a3bbf4e7b28759de7457
confidence-2007-cfp.txt
Posted Nov 27, 2006
Site 2007.confidence.org.pl

Call for papers for the 3rd edition of the best Polish IT security conference, CONFIDENCE 2007, which is taking place on May 12 and May 13, 2007.

tags | paper, conference
MD5 | 4c353d0ddaad9be33335fb7fa949e034
secunia-passgosso.txt
Posted Nov 27, 2006
Site secunia.com

Secunia Research has discovered a security issue in PassGo SSO Plus version 2.1.0.32, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
advisories | CVE-2006-5965
MD5 | 02f7d4d5705f31b3825f6791caf65a32
mozExpose.txt
Posted Nov 27, 2006

Mozilla has made public bug #360493 that discusses a flaw where Firefox's Password manager is exposed to public sites.

tags | advisory
MD5 | c18474258b9dddc1a37e51ff69931c93
proxychecker.txt
Posted Nov 27, 2006
Authored by b1ma | Site iko94.blogspot.com

HTTP proxy checking utility.

tags | web
MD5 | bb262c9d1c79b5fdca42a57931d7f5b8
GSI.zip
Posted Nov 27, 2006
Authored by Jeffball55

Google Site Indexer (GSI) is a program designed to create a directory listing when a site has turned directory listing off. It sends requests to google using the site operator. Also it gets the sites robots.txt file.

tags | web
MD5 | 66d7f970fce9ebc6ef0044f3f8e8f290
snort-2.6.1.1.tar.gz
Posted Nov 27, 2006
Authored by Martin Roesch | Site snort.org

Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Includes real time alerting, incorporating alerting mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages via smbclient.

Changes: Fixed problem with snort using high CPU and potentially reprocessing the same TCP reassembled packets at session end or TCP ACK of only part of a packet.
tags | tool, overflow, cgi, sniffer, protocol
systems | unix
MD5 | a7313ff4346317c301af361e211a7cd4
mod_securid-2.0.3.tar.gz
Posted Nov 27, 2006
Authored by Erwan Legrand | Site deny-all.com

The mod_securid Apache module implements RSA SecurID authentication for the Apache Web server. It allows administrators to restrict access to Web sites (or parts of Web sites) to users authenticated using a SecurID token and an ACE server.

Changes: Added configure script. Added process maintenance. Fixed a few bugs.
tags | web
MD5 | 789f3705c9b6609d22e880cc0acceea1
Page 1 of 2
Back12Next

File Archive:

May 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    14 Files
  • 2
    May 2nd
    3 Files
  • 3
    May 3rd
    1 Files
  • 4
    May 4th
    18 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    21 Files
  • 7
    May 7th
    15 Files
  • 8
    May 8th
    19 Files
  • 9
    May 9th
    1 Files
  • 10
    May 10th
    2 Files
  • 11
    May 11th
    18 Files
  • 12
    May 12th
    39 Files
  • 13
    May 13th
    15 Files
  • 14
    May 14th
    17 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    2 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    21 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    6 Files
  • 23
    May 23rd
    1 Files
  • 24
    May 24th
    1 Files
  • 25
    May 25th
    2 Files
  • 26
    May 26th
    23 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close