what you don't know can hurt you
Showing 1 - 17 of 17 RSS Feed

Files Date: 2008-07-22

Ubuntu Security Notice 627-1
Posted Jul 22, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 627-1 - Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Dnsmasq. A remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic.

tags | advisory, remote, web, spoof, protocol
systems | linux, ubuntu
advisories | CVE-2008-1447
MD5 | 0b11fe1d320f9ebc0ce03f99670eab53
DSECRG-08-032.txt
Posted Jul 22, 2008
Authored by Digital Security Research Group | Site dsecrg.com

Claroline eLearning and eWorking Platform version 1.8.10 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | f71ed888ac06312f64ea478ffcfbd3f2
Debian Linux Security Advisory 1613-1
Posted Jul 22, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1613-1 - Multiple vulnerabilities have been identified in libgd2, a library for programmatic graphics creation and manipulation. The Common Vulnerabilities and Exposures project identifies the following three issues:

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2007-3476, CVE-2007-3477, CVE-2007-3996, CVE-2007-2445
MD5 | f8c950a3139d1a9b9ffb7c36183f28f7
Mandriva Linux Security Advisory 2008-151
Posted Jul 22, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A buffer overflow vulnerability in libxslt could be exploited via an XSL style sheet file with a long XLST transformation match condition, which could possibly lead to the execution of arbitrary code. The updated packages have been patched to correct this issue.

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2008-1767
MD5 | 1bcd643704c45767fa68f8d446802e52
Secunia Security Advisory 31125
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Zoph, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | d0446f330186494cdb615780879eb60a
Secunia Security Advisory 31136
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for acroread. This fixes a security issue and a vulnerability, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to compromise a user's system.

tags | advisory, local
systems | linux, redhat
MD5 | ee4fabf72a28dc74fd243a17f55d84a2
Secunia Security Advisory 31147
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in phpScheduleIt, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | 7ce2349e9c238d30fb5f6d33cc0c1d82
Secunia Security Advisory 31162
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mr.SQL has reported a vulnerability in MojoAuto, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 141d3d720c7399207fad91442064c430
Secunia Security Advisory 31169
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - rPath has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to poison the DNS cache.

tags | advisory
MD5 | 6ee7dc3718e95d5af96230c427b16fcf
Secunia Security Advisory 31174
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - CWH Underground has discovered some vulnerabilities in Def-Blog, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 691612b737c5ad0b7062f5cc0e492c49
Secunia Security Advisory 31192
Posted Jul 22, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Khashayar Fereidani has discovered some vulnerabilities in EasyE-Cards, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | bcd22d8265c4e2a4769f91baa1e46744
GNU SIP Witch Telephony Server
Posted Jul 22, 2008
Authored by David Sugar | Site gnutelephony.org

GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.

Changes: Introduction of cgi control interface, server state support and use of state.xml config to set state properties, and more.
tags | telephony, protocol
MD5 | e9f61984910512e70c5c4f354ebefb9f
pkd-1.0.tgz
Posted Jul 22, 2008
Authored by eric

ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.

Changes: Support for 2.6.25 kernels, various additions and improvements.
tags | tool, kernel, udp, firewall
systems | linux
MD5 | 12bb0ad2c69e51769b69a48250a71e64
shopcartdx-sql.txt
Posted Jul 22, 2008
Authored by Cr@zy_King

ShopCartDx version 4.30 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f0f09d010d615e954dc6bfdb548ae189
youtubeblog-rfisqlxss.txt
Posted Jul 22, 2008
Authored by unohope | Site chroot.org

YouTube Blog version 0.1 suffers from remote file inclusion, SQL injection, and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, code execution, xss, sql injection, file inclusion
MD5 | 9c83470e6b3fb9d7f64df17a816bc054
intellitamper-overflow.txt
Posted Jul 22, 2008
Authored by Guido Landi

IntelliTamper version 2.0.7 html parser remote buffer overflow exploit.

tags | exploit, remote, overflow
MD5 | 768f68895d134f16b4510549cd649793
modjk1219-overflow.txt
Posted Jul 22, 2008
Authored by unohope | Site chroot.org

Apache mod_jk version 1.2.19 remote buffer overflow exploit for win32.

tags | exploit, remote, overflow
systems | windows
MD5 | 53fca1af8a7eee242ef26ee3bac1db44
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close