what you don't know can hurt you
Showing 1 - 25 of 49 RSS Feed

Files Date: 2008-08-04

Core Security Technologies Advisory 2008.0716
Posted Aug 4, 2008
Authored by Core Security Technologies, Anibal Sacco | Site coresecurity.com

Core Security Technologies Advisory - The Sun xVM VirtualBox suffers from a privilege escalation vulnerability due to insufficient input validation in VboxDrv.sys. Proof of concept code included.

tags | exploit, proof of concept
advisories | CVE-2008-3431
MD5 | f3f07889b0717e36d5c22836fe132842
webmail-passwordleak.txt
Posted Aug 4, 2008
Authored by Xc0re Security Research Group | Site xc0re.net

It appears that both Horde and Roundcube leak username and password credentials by sending them base64 encoded with every POST.

tags | exploit
MD5 | 97ab9b88be18f7f4c465869c0712695f
Secunia Security Advisory 31323
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in HTTrack, which potentially can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 4e6ff775284d9af7affbcdadeed54d39
Secunia Security Advisory 31346
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Corwin has reported a vulnerability in Online Dating, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 68f479bee109e4d66b7277615f98a1d2
Secunia Security Advisory 31350
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in OpenTTD, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system.

tags | advisory, denial of service
MD5 | 6a5b01c0150aa646ad8c4ac43bfb6236
Secunia Security Advisory 31353
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Luigi Auriemma has reported a vulnerability in America's Army Special Forces, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 3193d52874ddc3774dab20bb1cbbb4ec
Secunia Security Advisory 31357
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Ingres, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local, vulnerability
MD5 | 2d9a03576898329a5c30dbb7fa1501c2
Secunia Security Advisory 31360
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for opensc. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
systems | linux, debian
MD5 | 92ca0568b5119ebf9a149b434da3674b
Secunia Security Advisory 31379
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Apache Tomcat, which can be exploited by malicious people to conduct cross-site scripting attacks or to bypass certain security restrictions.

tags | advisory, vulnerability, xss
MD5 | c40c6822f9fbbbff35d8c96e0044499c
Secunia Security Advisory 31380
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for httracker. This fixes a security issue, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory
systems | linux, debian
MD5 | 78019819ee815d5a81985b15022cbd8a
Secunia Security Advisory 31381
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Apache Tomcat, which can be exploited by malicious people to conduct cross-site scripting attacks or to bypass certain security restrictions.

tags | advisory, vulnerability, xss
MD5 | a69cafb27cc8cdd8f8e0e033ac5111f0
shatter-oemxss2.txt
Posted Aug 4, 2008
Authored by Esteban Martinez Fayo | Site appsecinc.com

Team SHATTER Security Advisory - The Oracle Enterprise Manager Database Control 10gR1, 10gR2, and 11g (11.1.0.6) all suffer from a cross site scripting vulnerability in the REFRESHHOME parameter.

tags | advisory, xss
advisories | CVE-2008-2603
MD5 | 021423e3d6a2e61df40f2188dc97f0ae
shatter-oemxss.txt
Posted Aug 4, 2008
Authored by Esteban Martinez Fayo | Site appsecinc.com

Team SHATTER Security Advisory - The Oracle Enterprise Manager Database Control 10gR1 and Oracle Enterprise Manager Grid Control 10gR1 suffer from a cross site scripting vulnerability in the REFRESHHOME parameter.

tags | advisory, xss
advisories | CVE-2008-2590
MD5 | 1c71a063a0e7e0e294df98350a7df4f6
shatter-dbmsdefer.txt
Posted Aug 4, 2008
Authored by Esteban Martinez Fayo | Site appsecinc.com

Team SHATTER Security Advisory - The Oracle Database Server versions 9iR1, 9kiR2, 10gR1, 10gR2, and 11gR1 all suffer fro a SQL injection vulnerability in DBMS_DEFER_SYS.DELETE_TRAN.

tags | advisory, sql injection
MD5 | a858d413a5cecada3f0b6489ac526174
shatter-oaswwexp.txt
Posted Aug 4, 2008
Authored by Esteban Martinez Fayo | Site appsecinc.com

Team SHATTER Security Advisory - The Oracle Application Server versions 9.0.4.3, 10.1.2.2, and 10.1.4.1 all suffer from a SQL injection vulnerability in WWEXP_API_ENGINE.

tags | advisory, sql injection
MD5 | f38d041b3c47eb6e969a78b4da2b25be
syzygycms-lfi.txt
Posted Aug 4, 2008
Authored by SirGod | Site insecurity.ro

syzygyCMS version 0.3 suffers from a local file inclusion vulnerability in index.php.

tags | exploit, local, php, file inclusion
MD5 | 5f23fe94b1e80c4c40cb878ad42f388c
hydralrc-dos.txt
Posted Aug 4, 2008
Authored by securfrog

Hydralrc versions 0.3.164 and below remote denial of service exploit.

tags | exploit, remote, denial of service
MD5 | dd2a2ce08e3a2928f145b4594369f5fa
joomlaez-sql.txt
Posted Aug 4, 2008
Authored by His0k4

The Joomla EZ Store component remote blind SQL injection exploit.

tags | exploit, remote, sql injection
MD5 | a4d136e3973172acf56b4a2c0bee9daf
xampp-xss.txt
Posted Aug 4, 2008
Authored by IRCRASH | Site ircrash.com

Xammp Linux version 1.6.7 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
systems | linux
MD5 | 403a9eab37d38e5542e80aa105a80cc3
Ubuntu Security Notice 626-2
Posted Aug 4, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 626-2 - USN-626-1 fixed vulnerabilities in xulrunner-1.9. The changes required that Devhelp, Epiphany, Midbrowser and Yelp also be updated to use the new xulrunner-1.9. Original advisory details: A flaw was discovered in the browser engine. A variable could be made to overflow causing the browser to crash. If a user were tricked into opening a malicious web page, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. Billy Rios discovered that Firefox and xulrunner, as used by browsers such as Epiphany, did not properly perform URI splitting with pipe symbols when passed a command-line URI. If Firefox or xulrunner were passed a malicious URL, an attacker may be able to execute local content with chrome privileges.

tags | advisory, web, denial of service, overflow, arbitrary, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2008-2785, CVE-2008-2933
MD5 | 78b80dacd0018da31d715ffdd0641891
asciiart-julia.txt
Posted Aug 4, 2008
Authored by SkyLined

ASCII Art / shellcode hybrid called "Julia". This shellcode was created using Ars Ex Machina Coda. The shellcode will only work when it is run in writable and executable memory and if ECX points to the base address of the shellcode.

tags | shellcode
MD5 | fff6a982f7a170694d94be43ed1d897b
asciiart-skylined2.txt
Posted Aug 4, 2008
Authored by SkyLined

This is a very cool ASCII Art / shellcode hybrid of "SkyLined".

tags | shellcode
MD5 | 5376dccf4f333f4f5ec7f7574b059ccf
asciiart-skylined.txt
Posted Aug 4, 2008
Authored by SkyLined

This is a very cool ASCII Art / shellcode hybrid of "SkyLined".

tags | shellcode
MD5 | 891def1be23b2a1c2b4ac6c496deb605
ArpON-1.44.tar.gz
Posted Aug 4, 2008
Authored by Andrea Di Pasquale | Site arpon.sourceforge.net

ArpON (Arp handler inspectiON) is a portable ARP handler. It detects and blocks all ARP poisoning/spoofing attacks with the Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approaches on switched/hubbed LAN with/without DHCP protocol.

Changes: Added pid file, added license file, adjusted man page, and added doc directory.
tags | spoof, protocol
systems | unix
MD5 | a85f110f3916353c0f7543837fda7cb3
Secunia Security Advisory 31293
Posted Aug 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Raz0r has reported two vulnerabilities in Symphony, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 4bd9184f7fac7d2fd5cec10dab0edd91
Page 1 of 2
Back12Next

File Archive:

June 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    1 Files
  • 2
    Jun 2nd
    2 Files
  • 3
    Jun 3rd
    19 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    15 Files
  • 6
    Jun 6th
    12 Files
  • 7
    Jun 7th
    11 Files
  • 8
    Jun 8th
    1 Files
  • 9
    Jun 9th
    1 Files
  • 10
    Jun 10th
    15 Files
  • 11
    Jun 11th
    15 Files
  • 12
    Jun 12th
    15 Files
  • 13
    Jun 13th
    8 Files
  • 14
    Jun 14th
    16 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close