Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
52d04a0a3188dce04b209d167f90a2a97b042cc9e6ab5a6ef5938617e4304a2aThe Sharedlog Content Management System suffers from a remote file inclusion vulnerability.
aa6fc1c056c7d1081edd9d2abca881f8c62f87fbabf864352b4724dc744a6a39Packet Storm new exploits for October, 2008.
206d3b500ec154e5d834d4f6a1ea7e22ce52f11831ea2806fe19dcb7ea8dd68fMultiInjector is an automatic SQL injection utility. It uses a list of URI addresses to test parameter manipulation. Once a vulnerable parameter has been found, a signature-evasive SQL injection is performed in order to achieve arbitrary OS command execution and automatic defacement on database server. Written in Python.
053642943fce855d2e68c167757673ebc92b6e058a62c270f3a4b7107a3f2338This Metasploit module exploits an API flaw in writeFile() in GE Fanuc SCADA software version 2.6.
204132c160369aaff4a70b753078ac3a180fe4910d8dd861cc1aab84bfafac24SFS EZ Top Sites suffers from a SQL injection vulnerability in topsite.php.
2f35e94d83d140da7f3ce429a80d16728d50a29b3f029a5bd6550dc6363ece5dSFS EZ Career suffers from a SQL injection vulnerability in content.php.
23ab32b0874a7df1bb6a595b9c57f99adabcb5436d09c36697c19741d757ffa7SFS EZ Auction suffers from a blind SQL injection vulnerability in viewfaqs.php.
087dc368b5740e04821eda65f09149a4e8bce8a52e4c7e4a0a6869c5fd4c1406Article Publisher PRO remote blind SQL injection exploit.
044aa9172ba5de783c56bf97b21d1a25378aae04819ea0bce8cebab050c81fc6ModernBill versions 4.4.x and below suffer from cross site scripting and remote file inclusion vulnerabilities.
138d00ffe60f30d73f745413acf02a9d72375958a3ac9b8cfddf48d1f88f65c9SFS Easy Software suffers from a remote SQL injection vulnerability.
e8dddee2dbb0a11f12533d1e97a6262e1a68b6e07745a326578bc2c6b14ee589Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. These include buffer overflow, integer overflow, and input sanitization vulnerabilities.
99978be159aa25ec2ae619c6b0de6e9be7e44eaadd4bb5432a278cffef0e1920SFS EZ Hot or Not suffers from a remote SQL injection vulnerability.
9b8bf671bdffb728e8ed32d03db4058bff76797f6c8e64d628e7127725c1f129Secunia Security Advisory - Some vulnerabilities have been reported in A-LINK WL54AP3 and WL54AP2, which can be exploited by malicious people to conduct cross-site scripting or cross-site request forgery attacks.
75bda5897352e3ccb419814636b7def477f2400409446d11574b912e92556551Secunia Security Advisory - DeltahackingTEAM has discovered some vulnerabilities in various MW6 Technologies ActiveX controls, which can be exploited by malicious people to overwrite arbitrary files.
53ed7d3115b1a4fc425b2a229d1baf49472438e0060e7e2a09f89f425870c83aSecunia Security Advisory - Marco Torti has discovered a vulnerability in eXPert PDF ViewerX ActiveX Control, which can be exploited by malicious people to overwrite arbitrary files.
7cf306da6bc2437f092a324f9d7caad96bad260235ea804840633dae65f3c42bSecunia Security Advisory - GoLd_M has reported a vulnerability in SPBOARD, which can be exploited by malicious people to compromise a vulnerable system.
e2d8178369b0ab0f8906dd365c116bddf0904ec94126f531d18144235dab341fSecunia Security Advisory - Russ McRee has reported some vulnerabilities in CompactCMS, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
b3d96f2241ebcce4a61b6c9833c469df57785090f88d951ffb20121543c75150Secunia Security Advisory - Hakxer has reported a vulnerability in Absolute Podcast .NET, which can be exploited by malicious people to bypass certain security restrictions.
2772b5075d631c3800d9b7adcc3ea7fd0243447502ac9641b16fbcbbf914a808Secunia Security Advisory - ZoRLu has discovered a vulnerability in the Lyrics plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
500b4f822ef628c8b5c583e8d2ec642062aa4eeba94c17e41ecf9ad5b2fe57cfSecunia Security Advisory - Fedora has issued an update for phpMyAdmin. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.
3bbebfba1a2639407d9e33890aad320cf2f35a534348aca15f75b168084ffdbfSecunia Security Advisory - A security issue has been reported in CrossFire, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
1a0f7f1271ec1bbcdb26dd76d6af48e618189c53d7065b35c392c4a8c018a7e0Secunia Security Advisory - VMware has issued an update for VMware ESX Server. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
bc004ae0a82921e3c40f0fb3098fc5c3f30e7254fa94ffb15c5bd4f5cf0f104eSecunia Security Advisory - Fedora has issued an update for openoffice.org. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
bcb6d52e13e1b7f81688afca7ba192063ebbedd5c1fa150d201f2c6422ceaa8dSecunia Security Advisory - Gentoo has issued an update for libspf2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
c9e5f638564d62618c3ca6b86435c79c35afcc92a9984dbcc190a715614058a4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed