what you don't know can hurt you
Showing 1 - 18 of 18 RSS Feed

Files Date: 2009-01-09

World Association of Newspapers SQL Injection Exploit
Posted Jan 9, 2009
Authored by baltazar | Site darkc0de.com

World Association of Newspapers remote SQL injection exploit that leverages articles.php.

tags | exploit, remote, php, sql injection
MD5 | 166ab2f62e87a72c7b3044a3afd1bc2b
Apache/PHP Denial Of Service
Posted Jan 9, 2009
Authored by e.wiZz!

Snippet of code that will supposedly cause Apache 2.2.11 with PHP 5.2.8 to crash due to a possible buffer overflow in com_print_typeinfo.

tags | exploit, overflow, php
MD5 | 484d7f85dd80ab62b29daf1258a5b549
Mocha Network Activity Monitor
Posted Jan 9, 2009
Authored by Nurullah Akkaya | Site nakkaya.com

Mocha is a tool that monitors your network activity and keeps a record of IP / MAC address pairings and firewall logs. It will give a warning when it notices any suspicious activity, like any changes in MAC address or any connection attempt to the firewall. Written in Java.

tags | java, system logging
systems | unix
MD5 | cc7e0aa753a3f910ba4abfdb7e9a2723
Microsoft Internet Explorer Javascript Denial Of Service
Posted Jan 9, 2009
Authored by Praveen Darshanam

Microsoft Internet Explorer 7.0.5730.13 Javascript screen[] denial of service exploit.

tags | exploit, denial of service, javascript
advisories | CVE-2009-0072
MD5 | ff67d46680939805876e338096c215ce
VUPlayer 2.49 .ASX File Overflow
Posted Jan 9, 2009
Authored by aBo MoHaMeD | Site v4-team.net

VUPlayer version 2.49 local buffer overflow exploit that creates a malicious .asx file.

tags | exploit, overflow, local
MD5 | 39418d5cae475f08a124277cbe39b59c
OpenStego Free Steganography Solution
Posted Jan 9, 2009
Authored by Samir Vaidya | Site sourceforge.net

OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for images). Both source and jar releases are in this tarball.

Changes: Various updates. See changelog.
tags | java, encryption, steganography
MD5 | 90f1770e957ffd7fe07b41e13fc1bb2d
ShakaCon III Call For Papers
Posted Jan 9, 2009
Site 2009CFP.html

Shakacon II Call For Papers - Shakacon will offer local, national, and international participants a casual, social, learning environment designed to present a "holistic" security view and the opportunity to network with peers and fellow enthusiasts in a relaxed setting. This conference will be held June 11th and 12th, 2009 in Honolulu, HI.

tags | paper, local, conference
MD5 | 26050629cc64d11d6a11de01e9248b72
Fast FAQs System SQL Injection
Posted Jan 9, 2009
Authored by X0r

Fast FAQs System suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 38338a96cc20bbaa2dd5154b11eefcbd
Debian Linux Security Advisory 1698-1
Posted Jan 9, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1698-1 - It was discovered that GForge, a collaborative development tool, insufficiently sanitizes some input allowing a remote attacker to perform SQL injection.

tags | advisory, remote, sql injection
systems | linux, debian
advisories | CVE-2008-2381
MD5 | 29c1b4ba2b7bdfca14d2a2b0df04b7be
Mandriva Linux Security Advisory 2009-001
Posted Jan 9, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-001 - A vulnerability was found by the Google Security Team with how OpenSSL checked the verification of certificates. An attacker in control of a malicious server or able to effect a man-in-the-middle attack, could present a malformed SSL/TLS signature from a certificate chain to a vulnerable client, which would then bypass the certificate validation. The updated packages have been patched to prevent this issue.

tags | advisory
systems | linux, mandriva
advisories | CVE-2008-5077
MD5 | 1c6c72c0bc98167e9bf07aa33780150a
VUPlayer 2.49 .ASX File Buffer Overflow
Posted Jan 9, 2009
Authored by H-T Team | Site no-hack.fr

VUPlayer version 2.49 local buffer overflow exploit that creates a malicious .asx file.

tags | exploit, overflow, local
MD5 | 5d9d5dc22051cf0bfd9c5002d2aac7bf
MP3 TrackMaker 1.5 Heap Overflow
Posted Jan 9, 2009
Authored by H-T Team | Site no-hack.fr

MP3 TrackMaker version 1.5 local heap overflow proof of concept exploit that creates a malicious .mp3 file.

tags | exploit, overflow, local, proof of concept
MD5 | bb1a84c7a2d4a3d7d8a7fa0a98ca8345
Ubuntu Security Notice 706-1
Posted Jan 9, 2009
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-706-1 - It was discovered that Bind did not properly perform certificate verification. When DNSSEC with DSA certificates are in use, a remote attacker could exploit this to bypass certificate validation to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic.

tags | advisory, remote, web, spoof
systems | linux, ubuntu
advisories | CVE-2009-0025
MD5 | 506056264ebfe80a7eaba22a136f9c66
Common User Passwords Profiler
Posted Jan 9, 2009
Authored by j0rgan

CUPP is the Common User Passwords Profiler. It takes in various user about a given human target and then generates a logical dictionary for password cracking.

tags | cracker
MD5 | bd7782044e4a77d19a6893f1435d8ff5
Google Chrome Insecure Methods
Posted Jan 9, 2009
Authored by e.wiZz!

Google Chrome appears to suffer from denial of service issues through misuse of the view-source URI.

tags | exploit, denial of service, xss
MD5 | ba0b82575944b29f4ab5a0e3fa49310b
IBM DataPower XS40 Denial Of Service
Posted Jan 9, 2009
Authored by Erik

The IBM DataPower XS40 Security Gateway automatically reboots when fed random data to TCP port 443 over SSL allowing for a remote and unauthenticated denial of service.

tags | exploit, remote, denial of service, tcp
MD5 | 05851714af04d19476baf44ebf62d309
Samba Heap Overflow Exploit
Posted Jan 9, 2009
Authored by zuc

Samba versions below 3.0.20 heap overflow exploit. Written for older versions of Debian, Slackware, and Mandrake.

tags | exploit, overflow
systems | linux, slackware, debian, mandrake
MD5 | 043d719fc037091a570b1970f725c510
Asterisk Project Security Advisory - AST-2009-001
Posted Jan 9, 2009
Authored by Tilghman Lesher | Site asterisk.org

Asterisk Project Security Advisory - IAX2 provides a different response during authentication when a user does not exist, as compared to when the password is merely wrong. This allows an attacker to scan a host to find specific users on which to concentrate password cracking attempts.

tags | advisory
advisories | CVE-2009-0041
MD5 | 51f47441fcd4678b7c237afe816ab371
Page 1 of 1
Back1Next

File Archive:

September 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    20 Files
  • 2
    Sep 2nd
    15 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    4 Files
  • 5
    Sep 5th
    1 Files
  • 6
    Sep 6th
    1 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    27 Files
  • 9
    Sep 9th
    7 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    9 Files
  • 12
    Sep 12th
    0 Files
  • 13
    Sep 13th
    0 Files
  • 14
    Sep 14th
    25 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    15 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    12 Files
  • 19
    Sep 19th
    1 Files
  • 20
    Sep 20th
    1 Files
  • 21
    Sep 21st
    15 Files
  • 22
    Sep 22nd
    21 Files
  • 23
    Sep 23rd
    8 Files
  • 24
    Sep 24th
    15 Files
  • 25
    Sep 25th
    4 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close