This code utilizes the p0f derived OS signature database of disco to actively fingerprint operating systems. It is able to fingerprint hosts based on a single SYN-ACK received from a probed port, and as such can be used to identify multiple hosts NAT Masquerading behind a single IP.
865238503c148718bb001eb113497666968941a9099c1924ac39f4004ddbb782
Secunia Security Advisory - Some vulnerabilities have been reported in VLC Media Player, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.
a5a5605f1d4d368090505fc4f2b52162a564ad64c5a86637a64d8be1a755ce8b
Secunia Security Advisory - His0k4 has discovered a vulnerability in the yvComment component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
0408849d97d8b0c340f628d1526a6de64f4bf1ef550bc6c127af1d756ea0cd63
Secunia Security Advisory - Ubuntu has issued an update for evolution. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
f8579e208c13efaa32e1e125351aca12a8717f018e7c2ceaf7db7587721db6ef
Secunia Security Advisory - Some vulnerabilities have been reported in Novell GroupWise Messenger, which can be exploited by malicious people to compromise a vulnerable system.
3003c37011da10a557ae324d3ad5b075bd6efb0eca7a899a1d747bb14be7fd61
Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
159382d375e4f139e5ced2e2d123c89682be4b5c0849831819013630bcb5865b
GSC appears to have an authentication bypass vulnerability that allows for arbitrary kicking.
dbe31f7c1db895d6b52291a25a648e362288475cac1af701a5c56e0c4d5f1973
Debian Security Advisory 1593-1 - It was discovered that the Host Manager web application performed insufficient input sanitizing, which could lead to cross-site scripting.
463072642e42dc7402b6167240c664ddb0e23132e9548ffcc354d3bb0cf14838
Secunia Security Advisory - Some vulnerabilities have been reported in IBM DB2, where some have unknown impact and others can be exploited by malicious, local users to gain escalated privileges.
31cd190a501bdfbfcfdb6306367e01795b3416637057d38406a04d23a0ae300b
Secunia Security Advisory - A vulnerability has been reported in openwsman, which can be exploited by malicious users to gain escalated privileges.
6c2fe9fa52680aecf043f5ad72f80e95e9b108a09e7cbb97fd866403a928c1ac
Secunia Security Advisory - Underz0ne Crew have reported a vulnerability in JiRo's FAQ Manager eXperience, which can be exploited by malicious people to conduct SQL injection attacks.
08fd0880962f170bf174382030beae207ffac00b6f2016ed6a607efe701d3bcc
Flux CMS versions 1.5.0 and below remote arbitrary file overwrite exploit that leverages loadsave.php.
22034e29d2837c5537c62c4cb7ab64a939e30f52f4871423dadf3fed8ed93ec5
Realm CMS versions 2.3 and below suffer from session management, cross site scripting, and SQL injection vulnerabilities.
09310fcdab074a65528ee038f16e846671af23989c2db23dc05d9a35159083b3
ASPilot Pilot Cart version 7.3 suffers from a SQL injection vulnerability.
babe3f75309bf08b478ada61ecb682d7f5a41848d152bf5492acee1d126f8f54
Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
c9a3991107dd377a63cfe7866417c5e29b3bffc9332aa5979bcc74ddb78d6bb6
PHP-Nuke versions 7.9 and below suffer from multiple SQL injection vulnerabilities using artid and secid.
82c65c80a20ca8667ef73b201f9bc4d73a0a10e598e0aaeeceaeb888657b357e
Galatolo WebManager versions 1.0 and below suffer from local file inclusion and cross site scripting vulnerabilities.
17fa838f9854606a7ed484c50a880d9b93969fe5cb1b674b3722859b2547223e
Debian Security Advisory 1592-2 - Two vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or arbitrary code execution. Wei Wang from McAfee reported a potential heap overflow in the ASN.1 decode code that is used by the SNMP NAT and CIFS subsystem. Exploitation of this issue may lead to arbitrary code execution. This issue is not believed to be exploitable with the pre-built kernel images provided by Debian, but it might be an issue for custom images built from the Debian-provided source package. Brandon Edwards of McAfee Avert labs discovered an issue in the DCCP subsystem. Due to missing feature length checks it is possible to cause an overflow they may result in remote arbitrary code execution. This updated advisory adds the linux-2.6 build for mipsel which was not yet available at the time of DSA-1592-1.
24b053846451d3576b4c71ededba2a1cd624973f0c782d76c0de627779d54fa0
webTA systems, used by many federal employees, suffer from cross site scripting vulnerabilities.
21e51dbd364bb90c2a4e4ae3a09eb553d7b14b9cbd935d6e87b6065a44d68782
Secunia Security Advisory - Some vulnerabilities have been discovered in BrowserCRM, which can be exploited by malicious people to compromise a vulnerable system.
c659199aff462fb84c5717afb09be45686790c2865560de653a835045cfebfa2
Secunia Security Advisory - His0k4 has discovered a vulnerability in the Rapid Recipe component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
ca818836a5d29b05f7c5f071982b1543c8c4eba147c61b5b96add045e46827ab
Secunia Security Advisory - His0k4 has discovered a vulnerability in the GameQ component for Joomla!, which can be exploited by malicious people to conduct SQL injection attacks.
a75a85652cf42c5f897779cbb5c3d74a820e7e5ff7c9ede6481dd763e67f49b4
Secunia Security Advisory - SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, malicious users to gain escalated privileges, and malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
19a302c7bd15ef579594ebf2b11ccafc474a5e7fee0e435460165ec296e2a73c
The Nextgen Gallery Wordpress plugin version 0.96 suffers from a persistent cross site scripting vulnerability.
40422b2940956bf8221738d5ae70043144713852087a7d9719e9c7aa7efe6d90
Telephone Directory 2008 suffers from SQL injection and cross site scripting vulnerabilities.
c0cdc03012ec96f5e89ea60acfd436d52a56f1016b716b8a2dd1b4faa56d7ffb