zzuf is a transparent application input fuzzer. It works by intercepting file operations and changing random bits in the program's input. zzuf's behavior is deterministic, making it easy to reproduce bugs.
0a89fdb6912d4dd68ac88c54951e87738294d13562e0d57662fb90974b947710Mambo versions 4.6.4 and below suffer from a remote file inclusion vulnerability in Output.php.
b4321ec4f6cc98a9fc83a37f5c925992f9c7ca101d953b4b15cc6ed4637b1019GLLCTS2 remote blind SQL injection exploit that makes use of listing.php.
d9d81f632ca691e0e786285b0557db814d1e5ac6c5437e96978a8d786f337922Mandriva Linux Security Advisory - The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 and 2.6 before 2.6.25.5, as used in the cifs and ip_nat_snmp_basic modules; and (b) the gxsnmp package; does not properly validate length values during decoding of ASN.1 BER data, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a length greater than the working buffer, which can lead to an unspecified overflow; (2) an oid length of zero, which can lead to an off-by-one error; or (3) an indefinite length for a primitive encoding.
89462fab20dfaa1a27ad9dd2d7a06c79801ad5d651d59a14339a79123017c8bbSecurify has discovered a denial-of-service vulnerability in Microsoft Active Directory (AD) in which a domain user sending a specially-crafted LDAP request can cause the Active Directory server to initiate a controlled restart.
fc3f06ade63b865947cc4b1bf649e6487bbdc0aac56f1436df0b8ec8df3cc4c2E-SMART CART suffers from a remote SQL injection vulnerability in productsofcat.asp.
8c43b3865e99d939c9c543e07f240491cf235d33ba3c0e8f449c561517dfdcc1Pre Ads Portal versions 2.0 and below suffer from multiple remote SQL injection vulnerabilities.
c727082efa6d6a2383180a340d0d101346ac71c649b41fa138e52eca094733bfPre News Manager versions 1.0 and below suffer from a SQL injection vulnerability in index.php.
8908c077bea9b82fc1cf3b02d208ee2ab40d75fc5613e0c5df1ec5a64a012a71WebChamado version 1.1 suffers from a SQL injection vulnerability.
175ad4b09e1e7a9bfc4e1b285c0cba58106d5898e0a7839625adbd807dafe45aEasy-Clanpage version 3.0b1 suffers from a local file inclusion vulnerability.
54715a7d244f3e92bb5b89e9c815b30fb60d72e41ccb59aa8cb8675b2e4e5012PHP JOBWEBSITE PRO suffers from a remote SQL injection vulnerability in JobSearch3.php.
731a65fcd25bc4ba48752a9a4f8a319a6dd0022cf0f6a8f6420dcdb85a6e81c3Secunia Security Advisory - Alex Eden has reported a vulnerability in Kronos webTA, which can be exploited by malicious users to conduct script insertion attacks.
7d6c08b33edb2da84c903b88f252b6bd1180a1e2f756734ad078bb5fbeddbba2Secunia Security Advisory - CWH Underground has discovered two vulnerabilities in FOG Forum, which can be exploited by malicious people to disclose sensitive information.
c44ee5a4c2fb2fdd088c39dda27c7f8fd22c9b88d2700becfcaa939ddd2bcb5eSecunia Security Advisory - Fedora has issued an update for the kernel. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
c40b47d23499f34e1af7966e1ce6ef1c8c878dc52f684db0c356a0414756114aSecunia Security Advisory - Debian has issued an update for typo3. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks, and by malicious users to compromise a vulnerable system.
7d824faba4830fea4c1b81c48e4345b94c773610326f448a00157d0e148851e8Secunia Security Advisory - Debian has issued an update for mt-daapd. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
6306b3f740e2088be6e0d30e495b492c3707809fbf615e8c0aaeefebb28f55baSecunia Security Advisory - Ubuntu has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
708bcc3bc0d4322d9d00d10fa38553d539b1da458ec176c9a157ddf51b726067Secunia Security Advisory - Debian has issued an update for xorg-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
c0a4665d908bdd5ff6f0edef05c89ba6d75631c3182957bd9dd8df51fce6c685Secunia Security Advisory - A vulnerability has been reported in Xerox WorkCentre, which can be exploited by malicious people to conduct script insertion attacks.
b90b5eb93ff204d854646bcff728ee9f57d7ea7fe173d1b638114c2f04238f5afwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
dcb1e7c56142881d9ede36c33467ced19afcf30898134c38a0ad4b49b7a7dc3cUbuntu Security Notice 616-1 - Multiple flaws were found in the RENDER, RECORD, and Security extensions of X.org which did not correctly validate function arguments. An authenticated attacker could send specially crafted requests and gain root privileges or crash X. It was discovered that the MIT-SHM extension of X.org did not correctly validate the location of memory during an image copy. An authenticated attacker could exploit this to read arbitrary memory locations within X, exposing sensitive information.
e68afa4a3b9f564a0925b4738fb8574270851a397d02743a5151ba59b408b24aMyBlog PHP and MySQL Blog/CMS suffer from a remote file inclusion vulnerability in games.php.
8d601afa83d23b790dc44a8ddf8a992d5d016010d0674e49de8164e60f349867vBulletin versions 3.7.1 and below and 3.6.10 and below suffer from an obscure cross site scripting vulnerability.
79522a868935a643ffc7f6604fbd040ccb9129a9c4ced4aa4639af830ce59e92Secunia Security Advisory - A vulnerability has been reported in some Xerox Copier/Printer products, which can be exploited by malicious people to conduct script insertion attacks.
54a4089402f21a73aa44ca852869c2f6efd8838061509f8c450cda9d3b0a9fe4Secunia Security Advisory - Fedora has issued an update for xorg-x11-server. This fixes some vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to gain escalated privileges.
8d15924a921f916f6ae27550fb6bd900d911612751a0127e77587c1fe82a7bbb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed