what you don't know can hurt you
Showing 1 - 25 of 33 RSS Feed

Files Date: 2008-10-14

Technical Cyber Security Alert 2008-288A
Posted Oct 14, 2008
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert TA08-288A - Microsoft has released updates to address vulnerabilities that affect Microsoft Windows, Internet Explorer, and Microsoft Office as part of the Microsoft Security Bulletin Summary for October 2008. The most severe vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code.

tags | advisory, remote, arbitrary, vulnerability
systems | windows
MD5 | 76883bb5eac1fb5cbd9f8b02cc9bf736
iDEFENSE Security Advisory 2008-10-14.1
Posted Oct 14, 2008
Authored by iDefense Labs, Stephen Fewer | Site idefense.com

iDefense Security Advisory 10.14.08 - Remote exploitation of an arbitrary command execution vulnerability in Microsoft Corp.'s Host Integration Server 2006 could allow an attacker to execute arbitrary code with the privileges of the affected service. The RPC interface exposes several methods that an unauthenticated attacker can use to execute arbitrary programs on the server. RPC opcodes 1 and 6 both allow an attacker to call the CreateProcess() function with full control over the application started, as well as the command line passed to it. This allows an attacker to run arbitrary programs on the server. iDefense has confirmed the existence of this vulnerability in Host Integration Server 2006. Previous versions may also be affected.

tags | advisory, remote, arbitrary
advisories | CVE-2008-3466
MD5 | 05e989925ceb282962a869ddba7121b7
Debian Linux Security Advisory 1654-1
Posted Oct 14, 2008
Authored by Debian | Site debian.org

Debian Security Advisory 1654-1 - It was discovered that libxml2, the GNOME XML library, didn't correctly handle long entity names. This could allow the execution of arbitrary code via a malicious XML file.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2008-3529
MD5 | c33d7a774611a7a5eb21f9567769a3a6
phpnukereview2-sql.txt
Posted Oct 14, 2008
Authored by boom3rang | Site khq-crew.ws

Remote SQL injection exploit for the Reviews2 module for PHP-Nuke.

tags | exploit, remote, php, sql injection
MD5 | 2579b6910e2c785d884ddb19e1dbccb8
webscene-sql.txt
Posted Oct 14, 2008
Authored by Angela Chang

Webscene eCommerce suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ba6b149ecfdc07dd9273a1939de8ed82
nukedklan-multi.txt
Posted Oct 14, 2008
Authored by real | Site real.o-n.fr

Nuked-Klan versions 1.7.7 and below and SP4.4 and below remote SQL injection and remote shell upload exploit.

tags | exploit, remote, shell, sql injection
MD5 | a40fcd627b5b2d3fbafeecda20bf7c86
RISE-2008001.txt
Posted Oct 14, 2008
Authored by Adriano Lima | Site risesecurity.org

There exists a vulnerability within a function of the Sun Solstice AdminSuite sadmind, which when properly exploited can lead to remote compromise of the vulnerable system.

tags | advisory, remote
MD5 | 12d9f6f3f9a69ac51832156de1c101da
phpwebsite152-sql.txt
Posted Oct 14, 2008
Authored by d3v1l

phpWebSite version 1.5.2 suffers from a remote SQL injection vulnerability in article.php.

tags | exploit, remote, php, sql injection
MD5 | 14e5cb9672059a67b4d7394e970c7ba7
assh-2.0.tgz
Posted Oct 14, 2008
Authored by ZZZ Team | Site assh.sourceforge.net

Assh is an anonymous ssh client for GNU/Linux and Mac OS X. It use proxies to get connected on remote ssh servers.

tags | remote, encryption
systems | linux, apple, osx
MD5 | 2763b4e5969d9e403539c9314c9b47b1
Secunia Security Advisory 32138
Posted Oct 14, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Microsoft Office, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 0831f713d7314a28c131d90e70c04576
Secunia Security Advisory 32247
Posted Oct 14, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Microsoft Windows, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges.

tags | advisory, denial of service, local, vulnerability
systems | windows
MD5 | 35c31c4d37de4c6d5fcfae29bec451e0
Secunia Security Advisory 32251
Posted Oct 14, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
systems | windows
MD5 | 3d19fac22101a600f6c2875ad58fc11d
sezhoo-rfi.txt
Posted Oct 14, 2008
Authored by DaRkLiFe

SezHoo version 0.1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | bff82c131db2163d5006dd1554133397
sweetcms-sql.txt
Posted Oct 14, 2008
Authored by Dapirates, underc | Site darkc0de.com

Sweet CMS version 1.5.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c48c86906cea5d362524b26eff5ae1be
alicetelecom-backdoor.txt
Posted Oct 14, 2008
Authored by saxdax, drpepperONE

Alice Telecom Italia CPE Modems / Routers manufactured by Pirelli have an embedded backdoor in them that can be used to active telnetd/ftpd/tftpd/httpd.

tags | exploit
MD5 | a99a8d05f51466448fa0c5c4fbe48f8d
mms-03.tgz
Posted Oct 14, 2008
Site scrt.ch

Mini MySqlat0r is a multi-platform application used to audit web sites in order to discover and exploit SQL injection vulnerabilities. It is written in Java and is used through a user-friendly GUI that contains three distinct modules. Program and source code are both included in this tarball.

tags | tool, java, web, scanner, vulnerability, sql injection
systems | unix
MD5 | d655551204886de47d3b8b779e4b27ba
elxis-xss.txt
Posted Oct 14, 2008
Authored by swappie aka faithlove

Elxis 2008.1 Nemesis suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | ebdfb9d765bc810cafddbd35bb601bd1
parsblogger-sql.txt
Posted Oct 14, 2008
Authored by Hussin X | Site tryag.cc

ParsBlogger suffers from a remote SQL injection vulnerability in links.asp.

tags | exploit, remote, sql injection, asp
MD5 | 149bf0f83355859a41b66866ef082518
Ubuntu Security Notice 653-1
Posted Oct 14, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 653-1 - Havoc Pennington discovered that the D-Bus daemon did not correctly validate certain security policies. If a local user sent a specially crafted D-Bus request, they could bypass security policies that had a "send_interface" defined. It was discovered that the D-Bus library did not correctly validate certain corrupted signatures. If a local user sent a specially crafted D-Bus request, they could crash applications linked against the D-Bus library, leading to a denial of service.

tags | advisory, denial of service, local
systems | linux, ubuntu
advisories | CVE-2008-0595, CVE-2008-3834
MD5 | 51d11e90a79a6a32bf8a0d8ff74fe160
Ubuntu Security Notice 652-1
Posted Oct 14, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 652-1 - Chris Evans discovered that certain ICC operations in lcms were not correctly bounds-checked. If a user or automated system were tricked into processing an image with malicious ICC tags, a remote attacker could crash applications linked against liblcms1, leading to a denial of service, or possibly execute arbitrary code with user privileges.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2007-2741
MD5 | 1d4a302260f1f3ca8e9873aaf8852e1c
xhresim-sql.txt
Posted Oct 14, 2008
Authored by r45c4l | Site darkc0de.com

The XOOPS module xhresim suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | dcc97b8e740d2d6b3c6dddb5f42531ca
eserv-overflow.txt
Posted Oct 14, 2008
Authored by LiquidWorm | Site zeroscience.mk

Eserv 3.x FTP Server ABOR related remote stack overflow proof of concept exploit.

tags | exploit, remote, overflow, proof of concept
MD5 | 691e790bbb589946408242bce970a239
wpcomment-multi.txt
Posted Oct 14, 2008
Authored by g30rg3_x

WP Comment Remix version 1.4.3 suffers from cross site scripting, cross site request forgery, and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection, csrf
MD5 | cb118fab7db93c68a6960d0b7ca49b24
wpcomment-sql.txt
Posted Oct 14, 2008
Authored by g30rg3_x

WP Comment Remix version 1.4.3 remote SQL injection proof of concept exploit.

tags | exploit, remote, sql injection, proof of concept
MD5 | ee48b9a41d58499eb60cc9424f9e5ed9
Secunia Security Advisory 32105
Posted Oct 14, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in ENOVIA, which can potentially be exploited by malicious people to disclose sensitive information.

tags | advisory
MD5 | 3a4e87732a569f94c427b2873698a6ef
Page 1 of 2
Back12Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close