all things security
Showing 1 - 25 of 32 RSS Feed

Files Date: 2007-07-10

chilkat-multi.txt
Posted Jul 10, 2007
Authored by shinnai | Site shinnai.altervista.org

Chilkat Zip ActiveX component version 12.4 multiple insecure methods exploit.

tags | exploit, activex
MD5 | 432dd23f79ce3822537fa113e27b0b6f
neotracepro-overflow.txt
Posted Jul 10, 2007
Authored by nitr0us

NeoTracePro version 3.25 ActiveC TraceTarger() remote buffer overflow exploit.

tags | exploit, remote, overflow
MD5 | 7f57760dceabbd9148169a95cd49100f
sapdb-seh.txt
Posted Jul 10, 2007
Authored by Heretic2

AP DB version 7.4 WebTools remote SEH overwrite exploit.

tags | exploit, remote
MD5 | 5ac2f86c38b1831d73391ef5596ffe63
aigaion-sql.txt
Posted Jul 10, 2007
Authored by Cody "CypherXero" Rester | Site cypherxero.net

Aigaion versions 1.3.3 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1b3508cd1c502da65ce16ef7ab378d49
avts10-passwd.txt
Posted Jul 10, 2007
Authored by Dj7xpl | Site Dj7xpl.2600.ir

AV Tutorial Script version 1.0 remote user password change exploit.

tags | exploit, remote
MD5 | 65dacbac8665d793af03be7e0c83b08f
fgs17-sql.txt
Posted Jul 10, 2007
Authored by Xenduer77

FlashGameScript versions 1.7 and below suffer from a SQL injection vulnerability.

tags | exploit, sql injection
MD5 | 0d668b079c809941927afd0dd587e5f6
gss31-sql.txt
Posted Jul 10, 2007
Authored by Xenduer77

GameSiteScript versions 3.1 and below suffer from a SQL injection vulnerability.

tags | exploit, sql injection
MD5 | 0787d580e82b74b371a8e00e533339a8
iDEFENSE Security Advisory 2007-07-09.2
Posted Jul 10, 2007
Authored by iDefense Labs, Sean Larsson | Site idefense.com

iDefense Security Advisory 07.09.07 - Remote exploitation of multiple integer overflow vulnerabilities in several of the image loader plug-ins included with distributions of 'The GIMP' allow attackers to crash The GIMP or potentially execute arbitrary code with the privileges of the user. iDefense has confirmed that version 2.2.15 of The GIMP is vulnerable on both Linux and Windows platforms. It is suspected that all previous versions of the GIMP are also affected.

tags | advisory, remote, overflow, arbitrary, vulnerability
systems | linux, windows
advisories | CVE-2006-4519
MD5 | 0bed7c854f7e51ca02e6f60a08783965
EEYE-Java.txt
Posted Jul 10, 2007
Authored by Daniel Soeder | Site eeye.com

eEye Digital Security has discovered a stack buffer overflow in Java WebStart, a utility installed with Java Runtime Environment for the purpose of managing the download of Java applications. By opening a malicious JNLP file, a user's system may be compromised by arbitrary code within the file, which executes with the privileges of that user. Systems affected are Java Runtime Environment 6 update 1 and below and Java Runtime Environment 5 update 11 and below.

tags | advisory, java, overflow, arbitrary
MD5 | 3e976378e3500569323acb831bebdede
iDEFENSE Security Advisory 2007-07-09.1
Posted Jul 10, 2007
Authored by iDefense Labs, Mario Ballano | Site idefense.com

iDefense Security Advisory 07.09.07 - Local exploitation of an input validation vulnerability within the NPF.SYS device driver of WinPcap allows attackers to execute arbitrary code in kernel context. The vulnerability specifically exists due to insufficient input validation when handling the Interrupt Request Packet (Irp) parameters passed to IOCTL 9031 (BIOCGSTATS). By passing carefully chosen parameters to this IOCTL, an attacker can overwrite arbitrary kernel memory. iDefense has confirmed the existence of this vulnerability in version 4.0 of WinPcap as included in Wireshark 0.99.5. The version of NPF.SYS tested was 4.0.0.755. Older versions are suspected to be vulnerable.

tags | advisory, arbitrary, kernel, local
MD5 | f82d75712873da8e8192b774dda27d9f
Debian Linux Security Advisory 1332-1
Posted Jul 10, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1332-1 - Several remote vulnerabilities have been discovered in the VideoLan multimedia player and streamer, which may lead to the execution of arbitrary code.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2007-3316, CVE-2007-3467
MD5 | 6f23ba24753c08132b3b0efa48c000a4
Mozilla Firefox wyciwyg:// Psuedo-URI Advisory
Posted Jul 10, 2007
Authored by Michal Zalewski | Site lcamtuf.coredump.cx

A vulnerability exists in how Mozilla Firefox handles internal wyciwyg:// pseudo-URIs.

tags | advisory
MD5 | abfc62b40701ed2d0de2a1efeaf77641
codeigniter-multi.txt
Posted Jul 10, 2007
Authored by Lukasz Pilorz

CodeIgniter versions below SVN 28.06.2007 suffer from directory traversal and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 788964b86a545549cdc2034a3f5e0107
alph-0.23.tar.gz
Posted Jul 10, 2007
Authored by Corcalciuc V. Horia | Site sourceforge.net

alph implements and analyzes historical and traditional ciphers and codes, such as polyalphabetic, substitutional, and mixed employing human-reconstructable algorithms. It provides a pipe filter interface in order to encrypt and decrypt block text to achieve transparency. The program is meant to be used in conjunction with external programs that transfer data, resulting in transparent encryption or decryption of information. The program can thus be used as a mail filter, IRC filter, IM filter, and so on.

Changes: Added warning for possibly irreversible cyphers. Added scramble function. Cleaned up source a bit. Updated manpage.
tags | encryption
MD5 | 8faa4cfadfb4e6e7200eba64d9d06c90
phpcomet-rfi.txt
Posted Jul 10, 2007
Authored by o_0p

The PHP Comet-Server application may suffer from a remote file inclusion vulnerability.

tags | exploit, remote, php, code execution, file inclusion
MD5 | a84a113b33a8f2ba98c9d8aa13b20f54
apache_modjk_overflow.rb.txt
Posted Jul 10, 2007
Authored by Nicob

Metasploit module for the buffer overflow vulnerability in Apache mod_jk version 1.2.20. Written to work on Win23.

tags | exploit, overflow
advisories | CVE-2007-0774
MD5 | b4b22d53df77e3f9138159dff0fe7fed
0x82-apache-mod_jk.c
Posted Jul 10, 2007
Authored by Xpl017Elz | Site x82.inetcop.org

Apache Tomcat Connector mod_jk version 1.2.19 remote buffer overflow exploit for Fedora Core 5,6 (exec-shield).

tags | exploit, remote, overflow
systems | linux, fedora
MD5 | 7237019e79ecd2b7a54187bb77cd1af4
apachemodjk-overflow.txt
Posted Jul 10, 2007
Authored by eliteboy

Apache mod_jk versions 1.2.19 and 1.2.20 remote buffer overflow exploit that binds a shell to TCP port 5555. Written for SUSE Enterprise Linux and FreeBSD.

tags | exploit, remote, overflow, shell, tcp
systems | linux, freebsd, suse
MD5 | 95ff9da192f618c2f9f7b549029f03e8
Debian Linux Security Advisory 1331-1
Posted Jul 10, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1331-1 - Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. Stefan Esser discovered HTTP response splitting vulnerabilities in the session extension. This only affects Debian 3.1 (Sarge). Stefan Esser discovered that an integer overflow in memory allocation routines allows the bypass of memory limit restrictions. This only affects Debian 3.1 (Sarge) on 64 bit architectures. It was discovered that a buffer overflow in the xmlrpc extension allows the execution of arbitrary code.

tags | advisory, remote, web, overflow, arbitrary, php, vulnerability
systems | linux, debian
advisories | CVE-2006-0207, CVE-2006-4486, CVE-2007-1864
MD5 | 7da389efe8f7c6225ce535d725b591d5
Debian Linux Security Advisory 1330-1
Posted Jul 10, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1330-1 - Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. Stefan Esser discovered that a buffer overflow in the zip extension allows the execution of arbitrary code. It was discovered that a buffer overflow in the xmlrpc extension allows the execution of arbitrary code.

tags | advisory, remote, overflow, arbitrary, php, vulnerability
systems | linux, debian
advisories | CVE-2007-1864, CVE-2007-1399
MD5 | 9cf0c0cd8ed25af5fed88d4f4798e07a
adv-2-mid.txt
Posted Jul 10, 2007
Authored by Pepepistola

YouTube suffers from a cross site request forgery arbitrary code injection vulnerability.

tags | advisory, arbitrary, csrf
MD5 | 929ed33148b2c70976b0a0bada8a31a7
Secunia Security Advisory 25938
Posted Jul 10, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for php5. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
systems | linux, debian
MD5 | 5e33bbceb7aaa79ec6cf2ad2f2559e85
Secunia Security Advisory 25945
Posted Jul 10, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for php4. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability, xss
systems | linux, debian
MD5 | c28534e290a789bd06f5958477e70e72
Secunia Security Advisory 25955
Posted Jul 10, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Zhongling Wen has reported a vulnerability in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel
systems | linux
MD5 | 7b8f4852ffcfdc40ab051fb136c21b3b
Secunia Security Advisory 25960
Posted Jul 10, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Xenduer77 has reported a vulnerability in FlashGameScript, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | b881fdd4b0fc56f2816ff16250c71b96
Page 1 of 2
Back12Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    2 Files
  • 23
    Oct 23rd
    16 Files
  • 24
    Oct 24th
    4 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close