seeing is believing
Showing 1 - 25 of 43 RSS Feed

Files Date: 2008-09-16

Secunia Security Advisory 31873
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - JosS has reported a vulnerability in Pre Real Estate Listings, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 4916e181c54ef536d983018caf9e42df
Debian Linux Security Advisory 1638-1
Posted Sep 16, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1638-1 - It has been discovered that the signal handler implementing the login timeout in Debian's version of the OpenSSH server uses functions which are not async-signal-safe, leading to a denial of service vulnerability.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2008-4109
MD5 | a4725d1017a3061b9bd94d587ae8de60
shatter-db2overrrun.txt
Posted Sep 16, 2008
Authored by Ariel Sanchez | Site appsecinc.com

Team SHATTER Security Advisory - The XMLQUERY and XMLEXISTS functions are vulnerable to a stack based buffer overflow by passing an overly long parameter. The XMLQUERY and XMLEXISTS functions are installed by default. IBM DB2 Database Server versions 9.1 and 9.5 on the Windows platform are affected.

tags | advisory, overflow
systems | windows
advisories | CVE-2008-3854
MD5 | 9d0fda53713aeb1d83a503fc2f5d77f9
shatter-clrstored.txt
Posted Sep 16, 2008
Authored by Martin Rakhmanov | Site appsecinc.com

Team SHATTER Security Advisory - It is possible to use the CLR stored procedure deployment feature of IBM Database add-ins for Visual Studio to produce a privilege escalation or denial of service on a DB2 server. IBM DB2 Database Server versions 9.1 and 9.5 on the Windows platform are affected.

tags | advisory, denial of service
systems | windows
advisories | CVE-2008-3852
MD5 | d8b2ee72a117b1a46f50f8385f48a70f
hotelresv-sql.txt
Posted Sep 16, 2008
Authored by JosS | Site spanish-hackers.com

Hotel Reservation System suffers from a blind SQL injection vulnerability in city.asp.

tags | exploit, sql injection, asp
MD5 | 14979e98b131b5daac149f20e41aaae3
unrealfp.zip
Posted Sep 16, 2008
Authored by Luigi Auriemma | Site aluigi.org

Server shutdown exploit for Unreal Engine which suffers from a failed assertion vulnerability.

tags | exploit
MD5 | a4765d152d1fbc578a2f05704063a425
unrealfp.txt
Posted Sep 16, 2008
Authored by Luigi Auriemma | Site aluigi.org

Unreal Engine suffers from a failed assertion vulnerability that allows for server shutdown.

tags | advisory
MD5 | b70b6f7b5e898285076fe8997204951f
Mandriva Linux Security Advisory 2008-198
Posted Sep 16, 2008
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A symlink vulnerability was found in the javareconf script in R that allows local users to overwrite arbitrary files. The updated packages have been patched to prevent this issue.

tags | advisory, arbitrary, local
systems | linux, mandriva
advisories | CVE-2008-3931
MD5 | 14c5b788a42daa3222647ec863022a33
oscom-disclose.txt
Posted Sep 16, 2008
Authored by John Cobb | Site NoBytes.com

osCommerce version 2.2rc2a suffers from an information disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 65ee5d5494cf12af5c68ea93fe56f1e0
gonafish-sql.txt
Posted Sep 16, 2008
Authored by sl4xUz

Gonafish LinksCaffePRO version 4.5 suffers from a remote SQL injection vulnerability in index.php.

tags | exploit, remote, php, sql injection
MD5 | 92138255b0565ae264d96a9effa694a5
Secunia Security Advisory 31812
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Hussin X has reported a vulnerability in Downline Goldmine Builder and related scripts, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 6b83d6c64deed8de94830e2be37996d0
Secunia Security Advisory 31871
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - r45c4l and h4x0r have reported a vulnerability in iBoutique, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | ce8a60def649b600f99e27e668c20878
CVE-2008-4042-exploit.c
Posted Sep 16, 2008
Authored by Albert Sellares, Marc Morata Fite | Site wekk.net

Denial of service exploit for Postfix versions 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux 2.6 kernel.

tags | exploit, denial of service, kernel
systems | linux
advisories | CVE-2008-3889, CVE-2008-4042
MD5 | 5ed2e099042a3c0aa0c78f7c30dafffc
Technical Cyber Security Alert 2008-260A
Posted Sep 16, 2008
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA08-260A - Apple has released Security Update 2008-006 and Mac OS X version 10.5.5 to correct multiple vulnerabilities affecting Apple Mac OS X and Mac OS X Server. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service.

tags | advisory, denial of service, arbitrary, vulnerability
systems | apple, osx
MD5 | 7f51d894052a6353c3df3f6509753aff
installshield-exec.txt
Posted Sep 16, 2008
Authored by Brian Dowling | Site simplicity.net

The InstallShield Update Agent uses insecure methods of retrieving operational script code from unauthenticated, unverified external sources over HTTP. Arbitrary remote code execution is possible on all known product versions.

tags | advisory, remote, web, arbitrary, code execution
advisories | CVE-2008-1093
MD5 | c2ec73952b44772b583587e4c9334e5d
airtel-multi.txt
Posted Sep 16, 2008
Authored by Shishir Birmiwal

The Bharti DSL modem provided by Airtel suffers from credential disclosure and various other vulnerabilities that allow for device compromise.

tags | advisory, vulnerability
MD5 | 135d1b61c5d97529a006c20878c8835c
attachmax-sqlrfidisclose.txt
Posted Sep 16, 2008
Authored by M.Hasran Addahroni | Site advisories.echo.or.id

Attachmax Dolphin versions 2.1.0 suffer from remote file inclusion, blind SQL injection, and file disclosure vulnerabilities.

tags | exploit, remote, vulnerability, code execution, sql injection, file inclusion, info disclosure
MD5 | f31cb1a608581ca871cff577b230cceb
Secunia Security Advisory 31841
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Sun Management Center (SunMC), which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | d8eb1ef4e2bef4b9a1b2a1e5133440fc
Secunia Security Advisory 31857
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - wins.mallow has reported a vulnerability in Nokia E90 Communicator, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 6064158885d46491b2db25411d2e67bd
Secunia Security Advisory 31876
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue with an unknown impact has been reported in OSADS.

tags | advisory
MD5 | e2f0a3bec64d3f4aa3255bc6251058bd
Secunia Security Advisory 31888
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in multiple LANDesk products, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 885886d4dc040b77d7ba3aae3f043f5b
openssl-0.9.8i.tar.gz
Posted Sep 16, 2008
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fixed a state transition in s3_srvr.c and d1_srvr.c. Various precautionary measures added. Support added for Local Machine Keyset attribute in PKCS#12 files. Various other additions as well.
tags | encryption, protocol
MD5 | 561e00f18821c74b2b86c8c7786f9d8b
iscriptseasy-sql.txt
Posted Sep 16, 2008
Authored by SirGod | Site insecurity.ro

iScripts EasyIndex suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 907605e1ce23a4ed6c300af1008b958d
TPTI-08-06.txt
Posted Sep 16, 2008
Authored by Aaron Portnoy | Site tippingpoint.com

A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of LANDesk Management Suite. Authentication is not required to exploit this vulnerability. The specific flaw exists within the QIP Server Service (qipsrvr.exe) which listens by default on TCP port 12175. The process makes a vulnerable call to MultiByteToWideChar using values obtained from packet data. A malicious 'heal' request can allow an attacker to control both the pointer to the StringToMap and the StringSize arguments. The destination buffer is either allocated on the stack or heap depending on the specified sizes. In both cases it can be overflown leading to arbitrary code execution under the context of the SYSTEM user.

tags | advisory, remote, overflow, arbitrary, tcp, code execution
advisories | CVE-2008-2468
MD5 | bbacd0bb61f7b22820af780249de43c7
Secunia Security Advisory 31869
Posted Sep 16, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for bzip2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, redhat
MD5 | b26699bbce338def60bcbb3aee1aff18
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close