txtBB versions 1.0 RC3 and below suffer from a HTML/Javascript injection vulnerability that allows for privilege escalation.
15feeef5688a81fac2fb0e1040533589Whitepaper called Exploiting Web 2.0, Real Life XSS-Worm.
6f43b52656e363dadf4f84b3c9cf8ce7GNU SIP Witch is a pure SIP-based office telephone call server that supports generic phone system features like call forwarding, hunt groups and call distribution, call coverage and ring groups, holding, and call transfer, as well as offering SIP specific capabilities such as presence and messaging. It supports secure telephone extensions for making calls over the Internet, and intercept/decrypt-free peer-to-peer audio and video extensions. It is not a SIP proxy, a multi-protocol telephone server, or an IP-PBX, and does not try to emulate Asterisk, FreeSWITCH, or Yate.
ded93b60eccf5f15bded10a7c557fa9cScannedonly is a samba VFS module that ensures that only files that have been scanned for viruses are visible and accessible to the end user. Scannedonly was developed because of scalability problems with samba-vscan. Scannedonly comes in two parts: a Samba VFS module and (one or more) daemons. The daemon scans files and marks them when they are known to be clean. The samba module simply filters out files that aren't marked clean.
2c64474e8b8bdda64fcae7036cf367d8C4 SCADA Security Advisory - Areva T+D E-TerraHabitat and E-TerraPlatform solutions suffer from denial of service and privilege escalation vulnerabilities.
519f461107912041f1454a8f737e0d64ClearBudget version 0.6.1 suffers from local file inclusion and insecure cookie handling vulnerabilities.
65718e9248c1bab8640424d5940b406fClearBudget version 0.6.1 suffers from a database disclosure vulnerability.
c23b1881e617864ca67262074e7910e0Nokia N95-8 browser crashing denial of service exploit. Apparently this vulnerability also affects Firefox 3.06 causing a stack overflow.
452b088c26d7cd3db8cf0f6f1fcbc653Proof of concept exploit for the FeedMon version 2.7.0.0 outline tag buffer overflow vulnerability.
a5fd1c763db3821dfdc22864f8261f57dBpowerAMP Audio Player local buffer overflow exploit that spawns a shell on port 7777.
db6fcad05c5152ed97685d2aedf84eeaSecurityFocus.com suffered from a linked cross site scripting vulnerability in the whitepaper search section.
f3bd9cd347576023fc24f19a80a9bb5dFeedDemon versions 2.7 and below suffer from a remote buffer overflow vulnerability.
04c33e9148fda794daa6e9da5eb49353GR Note version 0.94 Beta suffers from a remote database disclosure vulnerability.
4d6bacb6380124621ff98909b04f6936The prdomain business register suffers from a remote SQL injection vulnerability.
f20821bf5c02d30b427e164ac71eba54Debian Security Advisory 1717 - Stefan Cornelius discovered a buffer overflow in devil, a cross-platform image loading and manipulation toolkit, which could be triggered via a crafted Radiance RGBE file. This could potentially lead to the execution of arbitrary code.
392dd395136401c7bb0309b9b90049e1Kipper version 2.01 suffers from cross site scripting, local file inclusion, and database disclosure vulnerabilities.
93c6a4499549ca4593e1814088b3fd63The Drupal Link module version 5.x-2.5 on Drupal 5.10 suffers from a cross site scripting vulnerability.
e6fa0cd19ad78b49d15eed9d3e825b88UltraVNC and TightVNC integer overflow proof of concept exploit.
866b8590249361fdeeab0aea0d335a38Secunia Security Advisory - D.Mortalov has reported some vulnerabilities in 4Site CMS, which can be exploited by malicious people to conduct SQL injection attacks.
4736b6f72347bd6efd689528a229caeaSecunia Security Advisory - Fedora has issued an update for roundcubemail. This fixes a vulnerability, which can be exploited by malicious people to conduct script insertion attacks.
1dd0bc61921bfca6520d948fd5bc8c27Secunia Security Advisory - Some vulnerabilities have been reported in multiple Cisco Products, which can be exploited by malicious people to cause a DoS (Denial of Service) and by malicious users to bypass certain security restrictions.
751aab112badd09516ac85f07576a890Secunia Security Advisory - Fedora has issued an update for gpsdrive. This fixes some security issues, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
45321262b6d9b8649a24968822811f90Secunia Security Advisory - Fedora has issued an update for nss. This fixes a security issue, which potentially can be exploited by malicious people to conduct spoofing attacks.
5fdc1ae866c8146b6e9a128df0cc2864Secunia Security Advisory - A vulnerability has been reported in the Views Bulk Operations module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
bd9104800e3ccd34d9687c12bde9c533Secunia Security Advisory - A vulnerability has been reported in htmLawed, which can be exploited by malicious people to conduct cross-site scripting attacks.
556e5d1be5d5335b9a005684db052f86
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed