what you don't know can hurt you
Showing 1 - 25 of 88 RSS Feed

Files Date: 2007-03-08

HP Security Bulletin 2006-12.37
Posted Mar 8, 2007
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with the version of GZIP delivered by HP-UX Software Distributor (SD). The vulnerability could be remotely exploited leading to a Denial of Service (DoS).

tags | advisory, denial of service
systems | hpux
advisories | CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337, CVE-2006-4338
MD5 | 078a41ad8f51689e27e2f6a86eacf800
aqatom-overflow.txt
Posted Mar 8, 2007
Authored by Sowhat | Site nevisnetworks.com

Apple QuickTime player versions below 7.1.5 suffer from a udta ATOM integer overflow vulnerability.

tags | advisory, overflow
systems | apple
advisories | CVE-2007-0714
MD5 | e1855900b469955400e7d3fc3e91ee59
quicktime-heap-adv-7.1.txt
Posted Mar 8, 2007
Authored by Piotr Bania | Site piotrbania.com

Apple QuickTime player version 7.1 on Windows suffers from a remote heap overflow vulnerability.

tags | advisory, remote, overflow
systems | windows, apple
MD5 | 58c3fe48a3a30c9dd27f603a5b44c1b0
php_446_mssql_connect_bof.txt
Posted Mar 8, 2007
Authored by rgod | Site retrogod.altervista.org

PHP versions 4.4.6 and below mssql_connect() and mssql_pconnect() local buffer overflow exploit.

tags | exploit, overflow, local, php
MD5 | fc8e539f38e2d1fc9ac7576b24393926
Core Security Technologies Advisory 2007.0115
Posted Mar 8, 2007
Authored by Core Security Technologies, Gerardo Richarte | Site coresecurity.com

Core Security Technologies Advisory - GnuPG and GnuPG clients suffer from an unsigned data injection vulnerability.

tags | advisory
advisories | CVE-2007-1263, CVE-2007-1264, CVE-2007-1265, CVE-2007-1266, CVE-2007-1267, CVE-2007-1268, CVE-2007-1269
MD5 | 64c54e4e08d38e7a4a8197d54544d7cd
iDEFENSE Security Advisory 2007-03-05.1
Posted Mar 8, 2007
Authored by iDefense Labs, Ruben Santamarta | Site idefense.com

iDefense Security Advisory 03.05.07 - Remote exploitation of a heap corruption vulnerability in Apple Computer Inc.'s QuickTime media player could allow an attacker to execute arbitrary commands in the context of the current user. The vulnerability specifically exists in QuickTime players handling of Video media atoms. When the 'Color table ID' field in the Video Sample Description is 0, QuickTime expects a color table to be present immediately after the description. A byte swap process is then performed on the memory following the description, regardless if a table is present or not. Heap corruption will occur in the case when the memory following the description is not part of the heap chunk being processed. iDefense Labs confirmed this vulnerability exists in version 7.1.3 of QuickTime on Windows. Previous versions are suspected to be vulnerable.

tags | advisory, remote, arbitrary
systems | windows, apple
advisories | CVE-2007-0718
MD5 | 54feb9602d6d111ed4418218312eece5
sava-sql.txt
Posted Mar 8, 2007
Authored by Belsec Team | Site belsec.com

Sava's Guestbook version 23.11.2006 is susceptible to SQL injection attacks.

tags | advisory, sql injection
MD5 | dac7a2334b7ccd5b386bed5385ea0e81
liguestbook-sql.txt
Posted Mar 8, 2007
Authored by Belsec Team | Site belsec.com

LI-Guestbook version 1.1 is susceptible to SQL injection attacks.

tags | advisory, sql injection
MD5 | 801b410d80306fb2e368aa8b81bdacd2
eportfolio10-multi.txt
Posted Mar 8, 2007
Authored by Stefan Friedli | Site scip.ch

ePortfolio version 1.0 suffers from java related input validation vulnerabilities.

tags | advisory, java, vulnerability
MD5 | f53eaf2b962ec6930e6f137e8d1d547b
HITB-2007-CFP-Malaysia.txt
Posted Mar 8, 2007
Site conference.hitb.org

The call for papers for the upcoming Hack in The Box Security Conference 2007 in Malaysia is now open.

tags | paper, conference
MD5 | 2c289cc906be666afd900cbf2314e6ba
advisory-php-gaestebuch-en.txt
Posted Mar 8, 2007
Authored by Ruben Ventura Pina | Site trew.icenetx.net

PHP-Gaestebuch versions 6.3 and below suffer from a HTML injection vulnerability that can allow for cross site scripting attacks.

tags | exploit, php, xss
MD5 | e96009e3d4f28ab83d7f80c155f39a2a
rrdbrowse-advisory-03-2007.txt
Posted Mar 8, 2007
Authored by Sebastian Wolfgarten | Site devtarget.org

rrdbrowse versions 1.6 and below suffer from an arbitrary file disclosure vulnerability.

tags | exploit, arbitrary
MD5 | 3e9f18b7c424f6cb0fa312a8ca1d76ca
Debian Linux Security Advisory 1262-1
Posted Mar 8, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1262-1 - "Mu Security" discovered that a format string vulnerability in the VoIP solution GnomeMeeting allows the execution of arbitrary code

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2007-1007
MD5 | ec080c4ef8b1ab53843558ca88d1b983
konq-dos.txt
Posted Mar 8, 2007
Authored by mark | Site bindshell.net

Konqueror crashes if Javascript code tries to read the source of a child iframe when it is set to a ftp:// URL.

tags | advisory, denial of service, javascript
MD5 | 8c43a72abdcbb2dd021c2e2057df2cab
vcard26-xss.txt
Posted Mar 8, 2007
Authored by Hasadya Raed

vCard version 2.6 suffers from a cross site scripting flaw.

tags | exploit, xss
MD5 | 0cb36465410185ec40bcfe946ff99180
asterisk-sip-kill.c
Posted Mar 8, 2007
Authored by anonymous

Remote denial of service exploit for Asterisk PBX that makes use of a bug in the SIP channel driver. Versions below 1.2.16 and below 1.4.1 are affected.

tags | exploit, remote, denial of service
MD5 | 7bc997a83ca3b9c66f2f973b835daed5
rps62-sql.txt
Posted Mar 8, 2007
Authored by s0cratex

RPS version 6.2 SQL injection exploit.

tags | exploit, sql injection
MD5 | 77c4660ac82ece56ba2af200963a3f81
rapidleech.txt
Posted Mar 8, 2007
Authored by Red_Dragon, Dark L0rD | Site onhackerline.com

Rapidleech remote code execution exploit.

tags | exploit, remote, code execution
MD5 | ac848836151759e2ac216d59bc718d6e
tyger-sqlxss.txt
Posted Mar 8, 2007
Authored by CorryL

Tyger bug tracking system version 1.1.3 suffers from SQL injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | 61dc6d5fbbfc1fc0114e2e01a19b4059
bj-xss.txt
Posted Mar 8, 2007
Authored by sn0oPy

BJ Webring suffers from a cross site scripting flaw.

tags | exploit, xss
MD5 | b2bf61a76f253dc9651d72ba528f4b2d
webspell-exec.txt
Posted Mar 8, 2007
Authored by DarkFig

webSPELL versions 4.01.02 and below remote code execution exploit.

tags | exploit, remote, code execution
MD5 | c3322c9522b95d88534d18e71a00d5f1
wp-compromise.txt
Posted Mar 8, 2007
Authored by Ivan Fratric

It appears that the WordPress blogging software was compromised and backdoored on Feb 25th, 2007 on the WordPress site.

tags | exploit
MD5 | f35a0b1a03674d0546e774db9d353d4d
Mandriva Linux Security Advisory 2007.050
Posted Mar 8, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 1.5.0.10.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2006-6077, CVE-2007-0008, CVE-2007-0009, CVE-2007-0775, CVE-2007-0777, CVE-2007-0778, CVE-2007-0779, CVE-2007-0780, CVE-2007-0800, CVE-2007-0981, CVE-2007-0995, CVE-2007-0996, CVE-2007-1092
MD5 | 272b47bdd64a3e3aed526ce2a414c45e
netrekfs.zip
Posted Mar 8, 2007
Authored by Luigi Auriemma | Site aluigi.org

Proof of concept exploit for Netrek versions 2.12.0 and below which suffer from a format string vulnerability.

tags | exploit, proof of concept
MD5 | 7d0fda35161f28a0a988a3bae5206b7a
netrekfs.txt
Posted Mar 8, 2007
Authored by Luigi Auriemma | Site aluigi.org

Netrek versions 2.12.0 and below suffer from a format string vulnerability.

tags | advisory
MD5 | 7c7c823ba8ce3115f39bad50638c6691
Page 1 of 4
Back1234Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    2 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close