Full PHP Emlak Script suffers from a remote SQL injection vulnerability in landsee.php.
0d78a18e819716d1f441a5ad3024be3eAn input validation error within the web interface of Dreambox model DM500C allows for a denial of service condition.
249afecfcb2122f8d5df9de75eb67421LogMeIn remote access utility Active-X memory consumption denial of service exploit.
e12c30e8f96bf5c07afba2181139dc26Najdi.si Toolbar Active-X remote buffer overflow proof of concept exploit.
4a245592d331db41db8244311ef61d31Invision Power Board versions 2.3.5 and below remote exploit that brute forces, attempts IDS evasion, and more.
a4f25aaae79e8aa14fd8d1ea7af1c1d9Sun Solaris 8/9/10 and OpenSolaris versions below snv_96 snoop utility remote exploit.
808193e9a074d86648b31609b4886635Secunia Security Advisory - shinnai has reported some vulnerabilities in Ultra Office Control, which can be exploited by malicious people to compromise a user's system.
223ceb42a6950cee86de55bdf831977aSecunia Security Advisory - Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system.
480e38cc56634bf47a673162603a0e7dA vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of messaging applications that make use of the libpurple library. User interaction is not required to exploit this vulnerability. The specific flaw exists in the implementation of the MSN protocol, specifically the handling of SLP messages. The function msn_slplink_process_msg() fails to properly validate an offset value specified in the SLP packet. By providing a specific value, an attacker can overflow a heap buffer resulting in arbitrary code execution.
d76ab9bcd5ffc3e70e7f81027f487560Mandriva Linux Security Advisory - Two denial of service vulnerabilities were discovered in the ipsec-tools racoon daemon, which could allow a remote attacker to cause it to consume all available memory. The updated packages have been patched to prevent these issues.
2d7f6108eed9a9dc420bf8b8ca56cdb7Kisgearth is a small perl script that gives you the ability to convert your Kismet xml logfiles to GoogleEarth kml files. You can apply a lot of filters and use sorting/ordering functions in order to get the best results.
b90a6b1724452a768c81af392dcff196Firefox version 3.0.1 (final release) suffers from an unspecified remote code execution vulnerability.
e5305be99ab1f77ca6497f785fd1274eOpenSSH version 4.4p1 backdoor that logs all incoming and outgoing logins and password via the client and the daemon, adds a magic password for sshd, store passwords to an encrypted logfile, and disables logging if the magic password is used. Based on the Aion 3.8p1 patch.
192f15fe0fcea062231c3f66884c8f81dotProject version 2.1.2 suffers from cross site scripting and SQL injection vulnerabilities.
1b9c35808b2257054fb9d7ccb5a78d0cLynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
7b66c5c9f4febd9441c0cc63ded8c345HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running Apache. These vulnerabilities could be exploited remotely resulting in Cross Site Scripting (XSS) or Denial of Service (DoS).
50243815f59ecafcedf99163c1ad9ff7Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more.
8127e08b1ff85620eb093c95e357543bMercadolibre.com suffers from cross site scripting and remote javascript insertion vulnerabilities.
26ab2008a67c3c1880359d16155ec80fstrongSwan is a complete IPsec and IKEv1 implementation for Linux 2.4 and 2.6 kernels. It interoperates with most other IPsec-based VPN products. It is a descendant of the discontinued FreeS/WAN project. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A unique feature is the use of X.509 attribute certificates to implement advanced access control schemes based on group memberships.
918fa35839013b14bd4b972853aeedb4Friendly Technologies Active-X related remote command execution exploit that leverages fwRemoteCfg.dll.
4ca334d8cb11512389b2598b255c2e16Friendly Technologies Active-X remote buffer overflow exploit that leverages fwRemoteCfg.dll.
89e10b34b9b9cc0ea532944e20fc1f6fAcoustica Mixcraft versions 4.2 Build 98 and below mx4 file local buffer overflow exploit.
88d4635a1cb1ff5e03e8fe080c837dd4
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed