what you don't know can hurt you
Showing 1 - 25 of 85 RSS Feed

Files Date: 2009-01-14

KDE Konqueror 4.1.3 link href Memory Leak Exploit
Posted Jan 14, 2009
Authored by Jeremy Brown | Site jbrownsec.blogspot.com

KDE Konqueror version 4.1.3 link href memory leak exploit that causes a denial of service condition.

tags | exploit, denial of service, memory leak
MD5 | 78bb6da689e50358a0379d6b799d9908
KDE Konqueror 4.1.3 iframe src Memory Leak Exploit
Posted Jan 14, 2009
Authored by Jeremy Brown | Site jbrownsec.blogspot.com

KDE Konqueror version 4.1.3 iframe src memory leak exploit that causes a denial of service condition.

tags | exploit, denial of service, memory leak
MD5 | f7afe44447b10c72b5ed7602a16d1a61
3COM TFTP Buffer Overflow
Posted Jan 14, 2009
Authored by Jeremy Brown | Site jbrownsec.blogspot.com

3COM TFTP buffer overflow exploit that binds a shell to port 4444.

tags | exploit, overflow, shell
MD5 | 7fade5159dd655cf691fe4e64134c4eb
Oracle BEA WebLogic Server Apache Connector Buffer Overflow
Posted Jan 14, 2009
Site assurent.com

A remotely exploitable vulnerability has been discovered in the Apache Connector component of Oracle BEA WebLogic Server. Specifically, the vulnerability is due to a boundary error when processing incoming HTTP requests and can lead to a buffer overflow condition. This boundary error can lead to a Denial of Service (DoS) condition for the Apache HTTP server.

tags | advisory, web, denial of service, overflow
advisories | CVE-2008-5457
MD5 | 0f11a669cbc616f2cd6788c5253e45da
Fwknop Port Knocking Utility
Posted Jan 14, 2009
Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Added the ability to send SPA packet over HTTP to a webserver. Added ENABLE_EXTERNAL_CMDS for fwknopd to control whether the EXTERNAL_CMD_OPEN and EXTERNAL_CMD_CLOSE directives are used. Various bug fixes.
tags | tool, scanner, vulnerability
systems | unix
MD5 | e5cfc108cd49ee13ad36bad20f84df75
Advisory Check Tool Version 2.20
Posted Jan 14, 2009
Authored by Stephan Schmieder | Site advchk.unixgu.ru

Advchk (Advisory Check) reads security advisories so you do not have to. Advchk gathers security advisories using RSS feeds, compares them to a list of known services, and alerts you if you are vulnerable. Since adding hosts and services by hand would be quite a boring task, advchk leverages nmap for automatic service and version discovery.

systems | unix
MD5 | 636c8537279823f747ca9439d688a1dd
Joomla Fantasytournament SQL Injection
Posted Jan 14, 2009
Authored by Valon Kerolli | Site itshqip.com

The Joomla Fantasytournament component suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | db33e426e599d222a567861cbc40e929
Joomla Camelcitydb2 2.2 SQL Injection
Posted Jan 14, 2009
Authored by Valon Kerolli | Site itshqip.com

The Joomla Camelcitydb2 component version 2.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 34f9f0aa91edf30105c3247014678bdd
EDraw Office Viewer 5.4 Insecure Method
Posted Jan 14, 2009
Authored by Cyber-Zone | Site iq-ty.com

EDraw Office Viewer Component version 5.4 HttpDownloadFile() insecure method exploit.

tags | exploit
MD5 | dc40f66c96a9f05c3e4de8a481de4f09
Mandriva Linux Security Advisory 2009-010
Posted Jan 14, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-010 - A security vulnerability have been discovered and corrected in VNC server of qemu 0.9.1 and earlier, which could lead to a denial-of-service attack. The updated packages have been patched to prevent this.

tags | advisory
systems | linux, mandriva
advisories | CVE-2008-2382
MD5 | 67434e0f4276f15cce0666cbd359fbf8
Mandriva Linux Security Advisory 2009-009
Posted Jan 14, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-009 - Security vulnerabilities have been discovered and corrected in VNC server of kvm version 79 and earlier, which could lead to denial-of-service attacks. The updated packages have been patched to prevent this.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2008-2382, CVE-2008-5714
MD5 | e2dab81b04a9c88a26f99418d9083c8c
Mandriva Linux Security Advisory 2009-008
Posted Jan 14, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-008 - Security vulnerabilities have been discovered and corrected in VNC server of qemu version 0.9.1 and earlier, which could lead to denial-of-service attacks. The updated packages have been patched to prevent this.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2008-2382, CVE-2008-5714
MD5 | 77674ef7cda27a88f2b0eadd0bd35a49
Mandriva Linux Security Advisory 2009-007
Posted Jan 14, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-007 - A flaw was found in how NTP checked the return value of signature verification. A remote attacker could use this to bypass certificate validation by using a malformed SSL/TLS signature. The updated packages have been patched to prevent this issue.

tags | advisory, remote
systems | linux, mandriva
advisories | CVE-2009-0021
MD5 | 110997cb840f9a84b788931ee719be0e
FreeBSD Security Advisory SA-09:04.bind
Posted Jan 14, 2009
Site security.freebsd.org

FreeBSD Security Advisory - The DSA_do_verify() function from OpenSSL is used to determine if a DSA digital signature is valid. When DNSSEC is used within BIND it uses DSA_do_verify() to verify DSA signatures, but checks the function return value incorrectly.

tags | advisory
systems | freebsd
advisories | CVE-2009-0025
MD5 | 65fe5e9bd8c4cad2c55fc401a2636136
Excel Viewer OCX 3.2 File Execution
Posted Jan 14, 2009
Authored by Stack | Site v4-team.com

Excel Viewer OCX version 3.2 remote file execution exploit.

tags | exploit, remote
MD5 | 6f63a61ee66181a273c521e8e69e639a
PHP Photo Album 0.8b Local File Inclusion
Posted Jan 14, 2009
Authored by Osirys | Site y-osirys.com

Php Photo Album version 0.8 BETA suffers from a local file inclusion vulnerability in index.php.

tags | exploit, local, php, file inclusion
MD5 | a016158d9d02d78bc0c7838fde9a029a
Phosheezy 2.0 Command Execution
Posted Jan 14, 2009
Authored by Osirys | Site y-osirys.com

Phosheezy version 2.0 remote command execution exploit.

tags | exploit, remote
MD5 | 35fa5e556f43d69b90eda53bda4ab5ff
AAA EasyGrid Active-X 3.51 File Overwrite
Posted Jan 14, 2009
Authored by H-T Team | Site no-hack.fr

AAA EasyGrid Active-X version 3.51 remote file overwrite exploit.

tags | exploit, remote, activex
MD5 | 0c0c5cb3be8b3f015a123d215276b2df
Netvolution CMS 1.0 XSS / SQL Injection
Posted Jan 14, 2009
Authored by Ellinas

Netvolution CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 30a452456c9b3d00f28d05027df9a2d0
Syzygy CMS 0.3 SQL Injection
Posted Jan 14, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

Syzygy CMS versions 0.3 and below suffer from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 68da0a2a5570e05d11bc44bc684603cf
TeamSpeak 2.0.23.17 File Disclosure
Posted Jan 14, 2009
Authored by c411k | Site forum.antichat.ru

TeamSpeak versions 2.0.23.17 and below suffer from a remote file disclosure vulnerability.

tags | exploit, remote, info disclosure
MD5 | 1225b30130d15cbb7b200c6bd24ad1ae
OTSTurntables 1.00.027 .ofl Stack Overflow
Posted Jan 14, 2009
Authored by suN8Hclf | Site dark-coders.pl

OTSTurntables version 1.00.027 local stack overflow exploit that generates a malicious .ofl file.

tags | exploit, overflow, local
MD5 | bf3ecb3e355e13a2dc54026bfa372a4c
Secunia Security Advisory 33416
Posted Jan 14, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Sun has acknowledged a vulnerability in Sun Solaris, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
systems | solaris
MD5 | 537d970937f047fb68e43a59c412af5c
Secunia Security Advisory 33519
Posted Jan 14, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - pfSense has acknowledged some vulnerabilities in pfSense, which can be exploited by malicious people to conduct cross-site request forgery or spoofing attacks.

tags | advisory, spoof, vulnerability, csrf
MD5 | 84c19457a70162322b7f32b14daf151c
Secunia Security Advisory 33442
Posted Jan 14, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for openssl. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
systems | linux, redhat
MD5 | 0999da628b52de2df4d2e0339d22157a
Page 1 of 4
Back1234Next

File Archive:

September 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    38 Files
  • 3
    Sep 3rd
    30 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    12 Files
  • 6
    Sep 6th
    17 Files
  • 7
    Sep 7th
    3 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    24 Files
  • 10
    Sep 10th
    22 Files
  • 11
    Sep 11th
    22 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    5 Files
  • 14
    Sep 14th
    2 Files
  • 15
    Sep 15th
    1 Files
  • 16
    Sep 16th
    11 Files
  • 17
    Sep 17th
    16 Files
  • 18
    Sep 18th
    8 Files
  • 19
    Sep 19th
    12 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close