ignore security and it'll go away
Showing 1 - 25 of 920 RSS Feed

Files Date: 2008-01-01 to 2008-01-31

Secunia Security Advisory 28692
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Hal Networks products, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 169a3b7e11333ea7e7a013594f103d18
Secunia Security Advisory 28326
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered a vulnerability in XnView and NConvert, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | bb618385accba904774e431d68185e44
Secunia Security Advisory 28637
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mandriva has issued an update for mysql. This fixes a security issue and a vulnerability, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, mandriva
MD5 | c716cf142620e8eac3f872791225bf31
Secunia Security Advisory 28661
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - ShaFuck31 has reported a vulnerability in AmpJuke, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 424b6fae4debc5e5602e544cadf8b9d3
Secunia Security Advisory 28665
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Larry W. Cashdollar has reported two security issues in the PatchLink Update client for Unix, which can be exploited by malicious, local users to truncate arbitrary files and to gain escalated privileges.

tags | advisory, arbitrary, local
systems | unix
MD5 | 22b847a0644f271f1db3c58e5e74b2bb
Secunia Security Advisory 28675
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Russ McRee has reported some vulnerabilities in SoftCart, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | e4475648472fe5fb661df961eb253283
Secunia Security Advisory 28680
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Alexandr Polyakov and Stas Svistunovich have reported a vulnerability in Nucleus CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | cd58230f24d4371173d79b025aba9572
Secunia Security Advisory 28685
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - GoLd_M has reported a vulnerability in Smart Publisher, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 0a90b15bdda9d5e558f7b50cacae9917
Secunia Security Advisory 28708
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - enter_the_dragon has discovered a vulnerability in the AdServe plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | e924aa30f14b19277572dac1405ba9fe
Secunia Security Advisory 28709
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Alexandr Polyakov and Stas Svistunovich have discovered a vulnerability in phpCMS, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
MD5 | 59e063eb6f7805429668f96b2d725658
Secunia Security Advisory 28710
Posted Jan 30, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered a vulnerability in GFL SDK, which can be exploited by malicious people to compromise an application using the library.

tags | advisory
MD5 | 2044ba34ddc82ed87ff58710965ad1fd
Gentoo Linux Security Advisory 200801-17
Posted Jan 30, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200801-17 - Venustech AD-LAB discovered that an FTP client connected to a vulnerable server with passive mode and SSL support can trigger an fclose() function call on an uninitialized stream in ftpd.c. Versions less than 0.17-r7 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-6263
MD5 | b66bbc1ba20c42940904ede07e0ab1a7
Gentoo Linux Security Advisory 200801-16
Posted Jan 30, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200801-16 - Michael Krieger reported that a specially crafted DNS could prevent an authoritative canonical name (CNAME) record from being resolved because of an improper rotation of resource records. Versions less than 1.2.12.08 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2008-0061
MD5 | 66833b7c3524630883bd1e69dd326fcf
Gentoo Linux Security Advisory 200801-15
Posted Jan 30, 2008
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200801-15 - If using the expression indexes feature, PostgreSQL executes index functions as the superuser during VACUUM and ANALYZE instead of the table owner, and allows SET ROLE and SET SESSION AUTHORIZATION in the index functions (CVE-2007-6600). Additionally, several errors involving regular expressions were found (CVE-2007-4769, CVE-2007-4772, CVE-2007-6067). Eventually, a privilege escalation vulnerability via unspecified vectors in the DBLink module was reported (CVE-2007-6601). This vulnerability is exploitable when local trust or ident authentication is used, and is due to an incomplete fix of CVE-2007-3278. Versions less than 8.0.15 are affected.

tags | advisory, local
systems | linux, gentoo
advisories | CVE-2007-3278, CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601
MD5 | 44b563ffc58ea1fd0ae9838a98c3a2d7
Debian Linux Security Advisory 1479-1
Posted Jan 30, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1479-1 - Several local vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code.

tags | advisory, denial of service, arbitrary, kernel, local, vulnerability
systems | linux, debian
advisories | CVE-2007-2878, CVE-2007-4571, CVE-2007-6151, CVE-2008-0001
MD5 | 5c1550f1a6a2e37eaac74a919eeff908
Debian Linux Security Advisory 1478-1
Posted Jan 30, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1478-1 - Luigi Auriemma discovered two buffer overflows in YaSSL, an SSL implementation included in the MySQL database package, which could lead to denial of service and possibly the execution of arbitrary code.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2008-0226, CVE-2008-0227
MD5 | 71116870a6ad4fd404a9f8f5d3440e16
crypt-insecure.txt
Posted Jan 30, 2008
Authored by Daniel Roethlisberger | Site csnc.ch

LSrunasE version 1.0 and Supercrypt version 1.0 suffer from a vulnerability where an insecure use of RC4 is applied.

tags | advisory
advisories | CVE-2007-6340
MD5 | 5e9a0757e26f6544f87968f7217c4a39
phpkit-xsrf.txt
Posted Jan 30, 2008
Authored by NBBN

PHPKIT version 1.6.4 PL1 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 74f2333a37d46569cde3a89d3ea816e6
tripwire-xss.txt
Posted Jan 30, 2008
Authored by Dave Lewis | Site liquidmatrix.org

Tripwire Enterprise/Server version 7.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6e78ea0f68073a978f2e16b6c55182bb
ampjuke-xss.txt
Posted Jan 30, 2008
Authored by ShaFuck31

AmpJuke version 0.7.0 suffers from a cross site scripting vulnerability in index.php.

tags | exploit, php, xss
MD5 | 6de86c60eaac6a44afe7a1785360c5e7
DSECRG-08-006.txt
Posted Jan 30, 2008
Authored by Sh2kerr, Stas Svistunovich | Site dsecrg.com

Nucleus CMS version 3.31 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | f36ae354c56c03e88f058f9b282a125e
RATS.txt
Posted Jan 30, 2008
Authored by dB

Using RATS to Audit PHP Web Applications.

tags | paper, web, php
MD5 | f5e8c5b9fd9e0da2cfda3d8ac71d7ef8
bannerss-xsrfxss.txt
Posted Jan 30, 2008
Authored by Brendan M. Hickey | Site bhickey.net

Banner Student version 7.3 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 82815fecb3a6885d9c5d0930c2b08875
m_rev-0.2.c
Posted Jan 30, 2008
Authored by ernie@ernie

A little ptrace()-based utility for process argument/name hiding. Works on most Linux 2.6 kernels/configurations (x86/x86-64 architecture).

tags | tool, x86, kernel, rootkit
systems | linux, unix
MD5 | 2e8bb365b19a752d7bde5b88a1045089
woltlab3-xsrf.txt
Posted Jan 30, 2008
Authored by NBBN

Woltlab Burning Board versions 3.x.x suffers from a private message delete cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 5174cc33f55c001171fdf31def116de1
Page 1 of 37
Back12345Next

File Archive:

September 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    5 Files
  • 2
    Sep 2nd
    5 Files
  • 3
    Sep 3rd
    3 Files
  • 4
    Sep 4th
    13 Files
  • 5
    Sep 5th
    16 Files
  • 6
    Sep 6th
    15 Files
  • 7
    Sep 7th
    20 Files
  • 8
    Sep 8th
    16 Files
  • 9
    Sep 9th
    4 Files
  • 10
    Sep 10th
    2 Files
  • 11
    Sep 11th
    15 Files
  • 12
    Sep 12th
    19 Files
  • 13
    Sep 13th
    20 Files
  • 14
    Sep 14th
    38 Files
  • 15
    Sep 15th
    31 Files
  • 16
    Sep 16th
    1 Files
  • 17
    Sep 17th
    7 Files
  • 18
    Sep 18th
    15 Files
  • 19
    Sep 19th
    40 Files
  • 20
    Sep 20th
    8 Files
  • 21
    Sep 21st
    1 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close