what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 51 RSS Feed

Files Date: 2009-01-28

Google Chrome ClickJacking
Posted Jan 28, 2009
Authored by x0x | Site cyber-warrior.org

Code that demonstrates the Google Chrome version 1.0.154.43 clickjacking vulnerability.

tags | exploit
SHA-256 | 03574def8d9d7f4c377488d4c1a5b9243ec0d8f75e5d2d7f597a272799ae8201
FFmpeg Type Conversion Vulnerability
Posted Jan 28, 2009
Authored by Tobias Klein | Site trapkit.de

FFmpeg contains a type conversion vulnerability while parsing malformed 4X movie files. The vulnerability may be exploited by a (remote) attacker to execute arbitrary code in the context of FFmpeg or an application using the FFmpeg library.

tags | advisory, remote, arbitrary
SHA-256 | fdcf90835a6517d5d2a479f58cb2df9924557def551619884e79cb3f547d6180
Debian Linux Security Advisory 1714-1
Posted Jan 28, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1714-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2009-0282
SHA-256 | 05a5adea0d8ec28c0010e75b95a578fbe74e1759d8175b86d33a04c0cea7878d
Debian Linux Security Advisory 1713-1
Posted Jan 28, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1713-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2009-0282
SHA-256 | 68f93e87aeb3723d64ef0ed09181b91f5c6221b04ebdc9900b50af215e4bf67e
Debian Linux Security Advisory 1712-1
Posted Jan 28, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1712-1 - It was discovered that an integer overflow in the "Probe Request" packet parser of the Ralinktech wireless drivers might lead to remote denial of service or the execution of arbitrary code.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2009-0282
SHA-256 | 806d1b0b94508c455675218ab282784460171f46e59d0aa75263b9520e2dfd97
Core Security Technologies Advisory 2008.1211
Posted Jan 28, 2009
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies Advisory - Multiple stack buffer overflow vulnerabilities have been discovered in Amaya, which can be exploited by unauthorized people using crafted web pages to compromise a user's system. Versions 11.0 and below are affected.

tags | advisory, web, overflow, vulnerability
SHA-256 | 4f5fe11c68b25a031c852b7dc492461acfaa7a12adbc0ba45ed0651a87ee791a
SmartSiteCMS 1.0 Blind SQL Injection
Posted Jan 28, 2009
Authored by certaindeath

SmartSiteCMS version 1.0 remote blind SQL injection exploit that uses articles.php.

tags | exploit, remote, php, sql injection
SHA-256 | 8dc4d65963b9a2e3ec5485d75b7c08e6c1985ae66c0fe9a9e27eff286bdfcbb5
Google Chrome Click Jacking
Posted Jan 28, 2009
Authored by Aditya K Sood | Site secniche.org

The Google Chrome browser versions 1.0.154.43 and below suffer from a clickjacking vulnerability.

tags | exploit
SHA-256 | 27dcfcdabbcecce3e8e4b66b1588af2538f343cb247465ef7a0c037215785377
Social Engine SQL Injection
Posted Jan 28, 2009
Authored by Snakespc | Site snakespc.com

Social Engine suffers from a remote SQL injection vulnerability in blog.php.

tags | exploit, remote, php, sql injection
SHA-256 | 250d58cd724dbf96f25515b1811cc40a57dd614cb233d80da00e837194214d87
Community CMS 0.4 Blind SQL Injection
Posted Jan 28, 2009
Authored by darkjoker | Site darkjokerside.altervista.org

Community CMS versions 0.4 and below remote blind SQL injection exploit that uses index.php.

tags | exploit, remote, php, sql injection
SHA-256 | 2c06704b235eaf18e149f1b6c3fbf06134295427b659e6f5d9ebd948209e2968
Zinf Audio Player 2.2.1 Universal Exploit
Posted Jan 28, 2009
Authored by H-T Team | Site no-hack.fr

Zinf Audio Player version 2.2.1 universal local buffer overflow exploit that creates a malicious .pls file and launches calc.exe.

tags | exploit, overflow, local
SHA-256 | 82389511c38046d9cfc27b5557ecad039256e81f283690cf234c8d68e3071e38
Web Hacking Incidents Database Update
Posted Jan 28, 2009
Authored by Ofer Shezaf

This file documents recent incidents that have been reported to the Web Hacking Incidents Database (WHID).

tags | advisory, web
SHA-256 | 937af488cc6082b0ce51a0af28870120abb73256fee5ef8a02f8e960a5ffe8bd
Microsoft Internet Explorer 7.0 Stack Overflow
Posted Jan 28, 2009
Authored by Juan Pablo Lopez Yacubian

Microsoft Internet Explorer 7.0 suffers from a stack overflow vulnerability when accepting a very large payload for any form variable.

tags | advisory, overflow
SHA-256 | 04c28a2e489f7f974c91bd9f44d1683672b451a1bcb121885ef732f143930f2a
Confidence 2009 Final Call For Papers
Posted Jan 28, 2009
Site 2009.confidence.org.pl

Final call for papers for the 5th edition of CONFIDENCE which is taking place on May 15th and May 16th, 2009 in Krakow, Poland.

tags | paper, conference
SHA-256 | aeaaeec2abf263bdc2fb8236ba9c89aa2ec4f1d8c9bc14ce1713188073033472
Max.Blog 1.0.6 Authentication Bypass
Posted Jan 28, 2009
Authored by Salvatore Fresta

Max.Blog versions 1.0.6 and below suffer from an offline authentication bypass vulnerability in offline_auth.php.

tags | exploit, php, bypass
SHA-256 | 7fbacf2aeb40d0bfed5b5238ae5d62c675412063aee58b207e2ed16e2e5ebcef
Max.Blog 1.0.6 SQL Injection
Posted Jan 28, 2009
Authored by Salvatore Fresta

Max.Blog versions 1.0.6 and below suffer from a remote SQL injection vulnerabilty in submit_post.php.

tags | exploit, remote, php, sql injection
SHA-256 | 039ea77ba9557deb0e5c89b7b7fc9e6fe8f0be1658e75d83a4c117a5882ca7f8
Lore 1.5.6 SQL Injection
Posted Jan 28, 2009
Authored by OzX | Site foro.undersecurity.net

Lore version 1.5.6 blind SQL injection exploit that uses article.php.

tags | exploit, php, sql injection
SHA-256 | 162b37cc90e2e08478870b1b63ede365f3f9d5b90c5d9ec360711e24376edc55
PHP-List Remote Code Execution
Posted Jan 28, 2009
Authored by mozi

Local file inclusion exploit for PHP-List version 2.10.x that performs remote code execution.

tags | exploit, remote, local, php, code execution, file inclusion
SHA-256 | 1b19a9078c5a8b7604e637366f4a7c7930ad19ab102b1d5f23196e62243d7af5
Chipmunk Blog Add Admin Exploit
Posted Jan 28, 2009
Authored by X0r

Authentication bypass exploit for Chipmunk Blog that adds an administrative user.

tags | exploit, add administrator
SHA-256 | a3abbcb39e002d42d2678747cd2f3024ed2bad8f47cbf8b8e88f5587dc01d561
GameScript 4.6 XSS / LFI / SQL Injection
Posted Jan 28, 2009
Authored by Encrypt3d.M!nd

GameScript version 4.6 suffers from cross site scripting, remote SQL injection, and local file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, xss, sql injection, file inclusion
SHA-256 | c59472aa5bc53787f194e5406e892945d1e6162e18e6cf83d1935e2743f37873
Secunia Security Advisory 33670
Posted Jan 28, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Xianur0 has discovered a vulnerability in Simple Machines Forum, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | cc76e61b6b65ec7ce1345da205f1e4e4923af34cac43386dcaa1be4a30b31cd6
Secunia Security Advisory 33446
Posted Jan 28, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in osCommerce, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
SHA-256 | a24e8f34fed73cdb25dc3ac93cccd101c83579ef94c36b36b7d01ba9e7857932
Secunia Security Advisory 33669
Posted Jan 28, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Encrypt3d.M!nd has reported some vulnerabilities in GameScript, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
SHA-256 | 84f921f751f5c6cb1cd0a52617dfdc242800ec58b4f5c6b22cb4bbf35402b84b
Secunia Security Advisory 33686
Posted Jan 28, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - fuzion has discovered a vulnerability in Gazelle CMS, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
SHA-256 | eef8aec064a81dbb05780a5011aeb2b7f801c97ae28be496f78582fe5c4f17c8
Secunia Security Advisory 33712
Posted Jan 28, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some weaknesses have been reported in various CA products, which can be exploited by malware to bypass the scanning functionality.

tags | advisory
SHA-256 | 4e2196907b5e41de5a8b18bc8993911b9cbe6a5311ec8c7503b38f8fb98957dc
Page 1 of 3
Back123Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close