exploit the possibilities
Showing 1 - 25 of 53 RSS Feed

Files Date: 2008-09-24

Nmap Scanning Utility 4.76
Posted Sep 24, 2008
Authored by Fyodor | Site insecure.org

Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.

Changes: Various updates to Zenmap. New external script category. Improved rpcinfo.nse. Fixed an assertion failure where raw TCP timing ping probes were wrongly used during a TCP connect scan.
tags | tool, remote, udp, tcp, protocol, nmap
systems | unix
MD5 | 54b5c9e3f44c1adde17df68170eb7cfe
phpcounter-lfi.txt
Posted Sep 24, 2008
Authored by dun

PHPcounter versions 1.3.2 and below suffer from a local file inclusion vulnerability in defs.php.

tags | exploit, local, php, file inclusion
MD5 | d5f3eabcdecb7598fb3329348ec6ffba
mailwatch-lfi.txt
Posted Sep 24, 2008
Authored by dun

mailwatch versions 1.0.4 and below suffer from a local file inclusion vulnerability in docs.php.

tags | exploit, local, php, file inclusion
MD5 | a554530e79cd56db7d32a01979d91859
emergecolab-lfi.txt
Posted Sep 24, 2008
Authored by dun

emergecolab version 1.0 suffers from a local file inclusion vulnerability in index.php.

tags | exploit, local, php, file inclusion
MD5 | 36a2f416d7c822fff4c4c8c0d5194ce9
Secunia Security Advisory 31947
Posted Sep 24, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - dun has discovered a vulnerability in Basebuilder, which can be exploited by malicious people to disclose sensitive information or to compromise a vulnerable system.

tags | advisory
MD5 | 75d7534536f7ae55726326e8d7817a7f
adnforums-sql.txt
Posted Sep 24, 2008
Authored by Pepelux | Site enye-sec.org

adnforum versions 1.0b and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f0c99c1c716df9297e00b671b9c83231
Cisco Security Advisory 20080924-ipc
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco 10000, uBR10012 and uBR7200 series devices use a User Datagram Protocol (UDP) based Inter-Process Communication (IPC) channel that is externally reachable. An attacker could exploit this vulnerability to cause a denial of service (DoS) condition on affected devices. No other platforms are affected. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.

tags | advisory, denial of service, udp, protocol
systems | cisco
advisories | CVE-2008-3805
MD5 | 2eb9445caa3f771783ba52f3df333950
Cisco Security Advisory 20080924-l2tp
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - A vulnerability exists in the Cisco IOS software implementation of Layer 2 Tunneling Protocol (L2TP), which affects limited Cisco IOS software releases. Several features enable the L2TP mgmt daemon process within Cisco IOS software, including but not limited to Layer 2 virtual private networks (L2VPN), Layer 2 Tunnel Protocol Version 3 (L2TPv3), Stack Group Bidding Protocol (SGBP) and Cisco Virtual Private Dial-Up Networks (VPDN). Once this process is enabled the device is vulnerable. This vulnerability will result in a reload of the device when processing a specially crafted L2TP packet. Cisco has released free software updates that address this vulnerability.

tags | advisory, protocol
systems | cisco
advisories | CVE-2008-3813
MD5 | 959e6f950f8d45cd162adaa8884c159a
Cisco Security Advisory 20080924-ubr
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. Only Cisco uBR10012 series devices that are configured for linecard redundancy are affected. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.

tags | advisory, protocol
systems | cisco
MD5 | 22aebd8dc8f2252b504fa40fd7005100
Cisco Security Advisory 20080924-sccp
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - A series of segmented Skinny Call Control Protocol (SCCP) messages may cause a Cisco IOS device that is configured with the Network Address Translation (NAT) SCCP Fragmentation Support feature to reload. Cisco has released free software updates that address this vulnerability. A workaround that mitigates this vulnerability is available.

tags | advisory, protocol
systems | cisco
advisories | CVE-2008-3811, CVE-2008-3810
MD5 | c4a5861997362e05262f595b3b991c50
Cisco Security Advisory 20080924-mfi
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco IOS Software Multi Protocol Label Switching (MPLS) Forwarding Infrastructure (MFI) is vulnerable to a Denial of Service (DoS) attack from specially crafted packets. Only the MFI is affected by this vulnerability. Older Label Forwarding Information Base (LFIB) implementation, which is replaced by MFI, is not affected. Cisco has released free software updates that address this vulnerability.

tags | advisory, denial of service, protocol
systems | cisco
advisories | CVE-2008-3804
MD5 | 2ca2e9297da59391fb75b633c97427d7
Cisco Security Advisory 20080924-iosips
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - The Cisco IOS Intrusion Prevention System (IPS) feature contains a vulnerability in the processing of certain IPS signatures that use the SERVICE.DNS engine. This vulnerability may cause a router to crash or hang, resulting in a denial of service condition. Cisco has released free software updates that address this vulnerability. There is a workaround for this vulnerability.

tags | advisory, denial of service
systems | cisco
advisories | CVE-2008-2739
MD5 | 056124c4e1444105829eaf130206a303
Cisco Security Advisory 20080924-iosfw
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco IOS software configured for IOS firewall Application Inspection Control (AIC) with a HTTP configured application-specific policy are vulnerable to a Denial of Service when processing a specific malformed HTTP transit packet. Successful exploitation of the vulnerability may result in a reload of the affected device. Cisco has released free software updates that address this vulnerability.

tags | advisory, web, denial of service
systems | cisco
advisories | CVE-2008-3812
MD5 | 093f817c1bca98ed9e6d091b74f78911
Cisco Security Advisory 20080924-ssl
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - A Cisco IOS device may crash while processing an SSL packet. This can happen during the termination of an SSL-based session. The offending packet is not malformed and is normally received as part of the packet exchange. Cisco has released free software updates that address this vulnerability. Aside from disabling affected services, there are no available workarounds to mitigate an exploit of this vulnerability.

tags | advisory
systems | cisco
advisories | CVE-2008-3798
MD5 | 55bfa08260352eb89573da8d0a2d4d94
Cisco Security Advisory 20080924-cucm
Posted Sep 24, 2008
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Unified Communications Manager, formerly Cisco Unified CallManager, contains two denial of service (DoS) vulnerabilities in the Session Initiation Protocol (SIP) service. An exploit of these vulnerabilities may cause an interruption in voice services. Cisco will release free software updates that address these vulnerabilities and this advisory will be updated as fixed software becomes available. There are no workarounds for these vulnerabilities.

tags | advisory, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2008-3800, CVE-2008-3801
MD5 | 6bbf152fdce78edb17a37587a9b04b53
adnforums-insecure.txt
Posted Sep 24, 2008
Authored by Pepelux | Site enye-sec.org

adnforum versions 1.0b and below suffer from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
MD5 | 8558d158f3f8e4308d2d507c943a31df
google-exhaust.txt
Posted Sep 24, 2008
Authored by Aditya K Sood | Site secniche.org

Google Chrome versions 0.2.149.30 and 0.2.149.29 carriage return NULL object memory exhaustion denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | 4b420b098cbf197783426bca8b1464d9
Secunia Security Advisory 31553
Posted Sep 24, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Sarid Harper has reported a vulnerability in Checkpoint Connectra NGX, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | d56834e23abc688fa7519a8c67d79101
Secunia Security Advisory 31945
Posted Sep 24, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in 6rbScript, which can be exploited by malicious people to disclose sensitive information or to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 17f82fb70e8fb786c997f218a37d67f1
Secunia Security Advisory 31946
Posted Sep 24, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the freeCap CAPTCHA (sr_freecap) extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 4d1595cedb508d009af04b8e2a11f476
jadu-sql.txt
Posted Sep 24, 2008
Authored by r45c4l | Site darkc0de.com

Jadu CMS for Government suffers from a remote SQL injection vulnerability in recruit_details.php.

tags | exploit, remote, php, sql injection
MD5 | 8f567cf96f82c35daf7ab2370b57243a
Ubuntu Security Notice 645-2
Posted Sep 24, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 645-2 - USN-645-1 fixed vulnerabilities in Firefox and xulrunner for Ubuntu 7.04, 7.10 and 8.04 LTS. This provides the corresponding update for Ubuntu 6.06 LTS. A very large amount of vulnerabilities have been addressed in the latest Firefox release from Ubuntu.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2008-0016, CVE-2008-3835, CVE-2008-3836, CVE-2008-3837, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060, CVE-2008-4061, CVE-2008-4062, CVE-2008-4063, CVE-2008-4064, CVE-2008-4065, CVE-2008-4066, CVE-2008-4067, CVE-2008-4068, CVE-2008-4069
MD5 | 3737a17c2ee71d3f49ae89960dad0b8f
Ubuntu Security Notice 645-1
Posted Sep 24, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 645-1 - A very large amount of vulnerabilities have been addressed in the latest Firefox release from Ubuntu.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2008-0016, CVE-2008-3835, CVE-2008-3836, CVE-2008-3837, CVE-2008-4058, CVE-2008-4059, CVE-2008-4060, CVE-2008-4061, CVE-2008-4062, CVE-2008-4063, CVE-2008-4064, CVE-2008-4065, CVE-2008-4066, CVE-2008-4067, CVE-2008-4068, CVE-2008-4069
MD5 | 5d2ebadeea8e8f3a40b1fdc2685f6313
webcp-disclose.txt
Posted Sep 24, 2008
Authored by GolD_M | Site tryag.cc

webcp version 0.5.7 suffers from a remote file disclosure vulnerability in sendfile.php.

tags | exploit, remote, php, info disclosure
MD5 | 27aad691c218ec152e42e8379296df8a
ajauctionpro-sql.txt
Posted Sep 24, 2008
Authored by GolD_M | Site tryag.cc

AJ Auction Pro Platinum Skin #2 suffers from a remote SQL injection vulnerability in detail.php.

tags | exploit, remote, php, sql injection
MD5 | 83a2bf540bf31506e14610b7fbac9586
Page 1 of 3
Back123Next

File Archive:

June 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    10 Files
  • 2
    Jun 2nd
    16 Files
  • 3
    Jun 3rd
    15 Files
  • 4
    Jun 4th
    25 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    0 Files
  • 7
    Jun 7th
    0 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    0 Files
  • 11
    Jun 11th
    0 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close