FlexCell Grid Control version 5.6.9 remote file overwrite exploit.
82e0aafce4e42b4c9848a3d5aac46bf330aaa2e96b0654ff1c748d99c71c0970MW6 Barcode Active-X related remote heap overflow proof of concept exploit that leverages Barcode.dll.
6b20d02dd90a8abb39b53bfbf3c8d98b95f95fc54544ce5da0085bb44889dafbUbuntu Security Notice USN-711-1 - It was discovered that KTorrent did not properly restrict access when using the web interface plugin. A remote attacker could use a crafted http request and upload arbitrary torrent files to trigger the start of downloads and seeding. It was discovered that KTorrent did not properly handle certain parameters when using the web interface plugin. A remote attacker could use crafted http requests to execute arbitrary PHP code.
e5412200111b9d231ff2dbf237f53462e98eff34b2802840cc8d8e25f843b5eaComplemento is a collection of tools for penetration testing. LetDown is a TCP flooder written after reading the Fyodor article "TCP Resource Exhaustion and Botched Disclosure". Reverse raider is a domain scanner that uses brute force wordlist scanning for finding a target's subdomains or reverse resolution for a range of IPs. Httsquash is an HTTP server scanner, banner grabber, and data retriever. It can be used for scanning large ranges of IPs for finding devices or HTTP servers.
08c6ca5d023bbf50d43246bc47e894a7f12cab09a5faf2d7d3f69994cf85b2ccDebian Security Advisory 1711-1 - Several remotely exploitable vulnerabilities have been discovered in the TYPO3 web content management framework.
1d0ea5b7691bedf7a08976c7de4b8b6edb7e416e4ce1de1e9bbb58618aff7721Ubuntu Security Notice USN-710-1 - A large amount of xine-lib vulnerabilities have been addressed in a package update. The issues addressed range from denial of service to arbitrary code execution vulnerabilities.
7a57d4c1776774d0d20e16a7e70f2bd1e115b441a773f80d44141450b4576de4MySQL version 3.23 hash wordlist cracking utility written in Python.
6773da8b007a1b761b04d1a7a42a40337d23fcb1d34eec0641e2de2c5c59273fMySQL version 5 hash wordlist cracking utility written in Python.
bece4dda62e10bba5c85577081a3cd915d714d07556356d223bf79971820a267A malformed WAP Push packet can be used to cause a denial of service on various SonyEricsson handsets including but not limited to models W910i,W660i,K618i,K610i,Z610i,K810i,K660i,W880i, and K530i.
0ab71c390006fc2e99b4cb466a81f050755497682629dabae8cfd3624bb81e96Remote file inclusion scanner that attempts to make use of a c99 shell on a vulnerable host.
729f611a5419b26b12a48a8eadec313956de095d217193a10f1942dd76c2edcaSunOS Release 5.11 Version snv_101b remote IPv6 kernel crash zero day exploit.
8a068828b19c96be59799ae3ea5e09d37764377dfc0e8cfb4e193c8e3006da62OpenGoo version 1.1 suffers from a local file inclusion vulnerability.
ac927ae41d423794486a25554074fd16405e0e64b1d4b48d8c6b62683bf3337aITLPoll version 2.7 Stable2 suffers from a blind SQL injection vulnerability.
4fd16809762504265480ca7e1a27e369b175c6c14ae892b1c9d3e705f3cec062ConPresso CMS versions 4.07 and below suffer from session fixation, cross site scripting, and cross frame scripting vulnerabilities.
2ea45a301dbc68c54a7b101ebd4a4bd8741dabf23d485fb2118fdc15f967705fShort whitepaper discussing the Benchmarking Attacks and major security weaknesses on all recent Windows versions up to Windows 2008.
98c18c115e086e943c37306043553d9c54cd70eab2536d2bdce075697e519b29WFTPD Pro Server version 3.30.0.1 pre-authentication remote denial of service exploit.
5638b47d2422ffe039bc9c4b65d9438c7d7fd1ea65c1167ed5cc31ba827265f2Debian Security Advisory 1710-1 - Spike Spiegel discovered a stack-based buffer overflow in gmetad, the meta-daemon for the ganglia cluster monitoring toolkit, which could be triggered via a request with long path names and might enable arbitrary code execution.
f1f2caa5aae07c04edc2d02f275cb87b62f382d9f2515e95ab3d41149b706cc8Nokia Multimedia Player version 1.1 null dereference pointer exploit that makes use of a malformed .AVI file.
0d7d55c519d25bd7a991c95ad08c52c64508469e7b13a8e143ee8cc4a2aa01feSiemens ADSL SL2-141 router cross site request forgery exploit.
1e8710fbc1f710587db3f4c4d4a65ea17ae6a3b6a87f5f789aaa7781a7ffdce0LDF suffers from a remote SQL injection vulnerability in login.asp.
78d743189d49a139f7a1db4e15fe03e2ae1b7d6215ff7ddb3ac519b94ed5e8deLootan System versions RC1 and below suffer from a remote SQL injection vulnerability.
fd0b462b6142d5ebc07251dfb824946ebb68b2ddd5dc45f64cb070c33756b433VUPlayer .wax file local buffer overflow crash exploit.
4d305be9b3200e3127514b078df61029474eaef251086e58c8f6a5670aa1f626Secunia Security Advisory - CA has acknowledged some vulnerabilities in various CA products, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct cross-site scripting attacks, cause a DoS (Denial of Service).
41dca450e68b6ae7962eced75e2fbfc42ec925313a1eea55f0761b99024def41Secunia Security Advisory - A vulnerability has been discovered in MemHT Portal, which can be exploited by malicious users to compromise a vulnerable system.
b8d3796270f63bf78d2a6e085dda275cfdf5803219b8a0a05b2c4a23fdeda853Secunia Security Advisory - A vulnerability has been reported in VooDoo cIRCle, which can be exploited by malicious people to conduct spoofing attacks.
279b6861b68fe13b4cf4772ed73b23473b3bba1f9b28436fdda39263a922984c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed