what you don't know can hurt you
Showing 1 - 25 of 34 RSS Feed

Files Date: 2009-03-12

editeurscripts.com Cross Site Scripting
Posted Mar 12, 2009
Authored by Jonathan Salwan | Site shell-storm.org

Multiple modules from editeurscripts.com suffer from cross site scripting vulnerabilities.These include EsContacts version 1.0, EsBaseAdmin version 2.1, EsPartenaires version 1.0, and EsNews version 1.2.

tags | exploit, vulnerability, xss
MD5 | a76dce87254159cf71ccc697e99defe5
HP Security Bulletin HPSBMA02413 SSRT080040
Posted Mar 12, 2009
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - Potential security vulnerabilities have been identified with HP WMI Mapper for Windows Server 2003 and Windows Server 2008 for Itanium-based Servers. The vulnerabilities could be exploited remotely to allow unauthorized access to data or locally to gain unauthorized access.

tags | advisory, vulnerability
systems | windows
advisories | CVE-2009-0712, CVE-2009-0173
MD5 | ac1bb38183d1b77d03688908ea73c9ce
SlySoft ElbyCDIO.sys Denial Of Service
Posted Mar 12, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Multiple products from SlySoft suffer from a ElbyCDIO.sys related denial of service vulnerability. These include AnyDVD versions 6.5.2.2 and below, Virtual CloneDrive versions 5.4.2.3 and below, CloneDVD versions 2.9.2.0 and below, and CloneCD versions 5.3.1.3 and below.

tags | advisory, denial of service
advisories | CVE-2009-0824
MD5 | 1ca2a66e15e9631c7a443df7617038b5
Open Source CERT Security Advisory 2008.15
Posted Mar 12, 2009
Authored by Will Drewry, Open Source CERT | Site ocert.org

Base64 encoding and decoding functions in glib suffer from vulnerabilities during memory allocation which may result in arbitrary code execution when processing large strings. A number of other GNOME-related applications which predate glib are vulnerable due to the commonality of this flawed code.

tags | advisory, arbitrary, vulnerability, code execution
advisories | CVE-2008-4316, CVE-2009-0585, CVE-2009-0586, CVE-2009-0587
MD5 | 14e09a36cebfeef1876eb083dcfdcce0
TOORCAMP 2009 Call For Participation
Posted Mar 12, 2009
Site toorcamp.org

ToorCamp 2009 Call For Participation - ToorCamp is the United State's first ever full-scale hacker camp. Modelled after the camps in Holland and Germany, ToorCamp will focus on all of the technology topics that ToorCon has become famous for but will expand out into other areas of society. It will be held at the Titan-1 Missile Silo July 2nd through the 5th, 2009.

tags | paper, conference
MD5 | e36b1c56d454144d9cc2140593beaa56
Trellis Desk Cross Site Scripting
Posted Mar 12, 2009
Authored by larry

Trellis Desk version 1.0 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 4b44b6c42c479f3d9679bc380569fc10
KSplice Linux Kernel Updater
Posted Mar 12, 2009
Authored by Anders Kaseorg | Site ksplice.com

Ksplice is practical technology for updating the Linux kernel without rebooting. It enables you to avoid the disruptive process of rebooting for kernel security updates and bugfixes. By making it easy to keep your systems up to date, Ksplice helps you avoid the security and stability risks of running out-of-date software.

Changes: Fixed a bug where Ksplice relocations were sometimes written pointing to the middle of patched sections. Fixed a Makefile bug where the Ksplice core module was compiled twice. Renamed or reorganized several data structures in the Ksplice kernel code. Changed the Ksplice module names from primary/helper to old_code/new_code.
tags | kernel
systems | linux
MD5 | 79bc8aa5275c026e3bd4092da93cb996
TikiWiki 2.2 Cross Site Scripting
Posted Mar 12, 2009
Authored by iliz

TikiWiki version 2.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 41989ddf1727a65e4fba9e29c3253a9b
Gentoo Linux Security Advisory 200903-26
Posted Mar 12, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200903-26 - A buffer overflow in TMSNC might lead to the execution of arbitrary code when processing an instant message. Nico Golde reported a stack-based buffer overflow when processing a MSN packet with a UBX command containing a large UBX payload length field. Versions less than or equal to 0.3.2-r1 are affected.

tags | advisory, overflow, arbitrary
systems | linux, gentoo
advisories | CVE-2008-2828
MD5 | 7c40c53326027beca155d092fdce086b
Mandriva Linux Security Advisory 2009-074
Posted Mar 12, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-074 - neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service (NULL pointer dereference and crash) via vectors related to Digest authentication and Digest domain parameter support. The updated packages have been upgraded to version 0.28.3 to prevent this.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2008-3746
MD5 | a89284a51dd18f828e2cd56ebf6b631a
Mandriva Linux Security Advisory 2009-073
Posted Mar 12, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-073 - Various stack buffer overflows were discovered and corrected in sarg. Additionally the previous release fixed CVE-2008-1922. The updated packages have been patched to correct these issues.

tags | advisory, overflow
systems | linux, mandriva
advisories | CVE-2008-1922
MD5 | 106f2dd12624446aca97e491817844b2
Sun Java Communications Suite HTML Injection
Posted Mar 12, 2009
Authored by Edgard Chammas

The Sub Java Communications Suite suffers from multiple HTML injection vulnerabilities.

tags | advisory, java, vulnerability
MD5 | 95eceaf68a2575c880fe95f35f1a0289
JDKChat 1.5 Integer Overflow
Posted Mar 12, 2009
Authored by LiquidWorm, n3tpr0b3 | Site zeroscience.mk

Proof of concept exploit for an integer overflow in JDKChat version 1.5.

tags | exploit, overflow, proof of concept
MD5 | db99397b836395dd2a121c28c7d69cd5
Mandriva Linux Security Advisory 2009-072
Posted Mar 12, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-072 - The functions used to write strings into shell like configuration files by Mandriva tools were not taking care of some special characters. This could lead to some bugs (like wireless keys containing certain characters not working), and privilege escalation. This update fixes that issue by ensuring proper protection of strings. The updated packages have been patched to correct these issues.

tags | advisory, shell
systems | linux, mandriva
MD5 | 3e865733cdae0ce94e57c3a946300f95
PhpMySport 1.4 XSS / SQL Injection
Posted Mar 12, 2009
Authored by XaDoS

PhpMySport version 1.4 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 099f11717193c652601aa046ffc3d488
iAntiVirus Fails In A Few Spots
Posted Mar 12, 2009
Authored by Carsten Eilers

iAntiVirus version 1.35 fails to fails to scan .sit and .dmg archives and can also be tricked to ignore archives if special characters are in the names.

tags | advisory
MD5 | b16966f752bfa408756c43a7e23c85cc
Secunia Security Advisory 34179
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in UMI.CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | e66726f3aff938eb7d4b8a699c3a0980
Secunia Security Advisory 34256
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in ModSecurity, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | b9fc375b0cd7487e1c3cc1831e324548
Secunia Security Advisory 34235
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has acknowledged a vulnerability in tmsnc, which can potentially be exploited by malicious people to compromise a user's system.

tags | advisory
systems | linux, gentoo
MD5 | f3158b83df7504c763da8a2ef7d4a739
Secunia Security Advisory 34223
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in ZipItFast, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | a1894f7540984a35e0ee2c2a9951f2ca
Secunia Security Advisory 34252
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for the kernel. This fixes some security issues and vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, redhat
MD5 | 03229f31b527a93599407dc8a7f5a120
Secunia Security Advisory 34250
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for roundup. This fixes a vulnerability, which can be exploited by malicious users to manipulate certain data.

tags | advisory
systems | linux, fedora
MD5 | f45c2383f79bba1b595a39c823c5e75d
Secunia Security Advisory 34242
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Radiator, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
MD5 | 54e84da20b6ce3dc2bc59f8f98801515
Secunia Security Advisory 34254
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability and a security issue have been reported in Apple iTunes, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially disclose sensitive information.

tags | advisory, denial of service
systems | apple
MD5 | ef6343db5fc545113df48af2545dd440
Secunia Security Advisory 34234
Posted Mar 12, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for courier-authlib. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
systems | linux, gentoo
MD5 | 3d32aba8c08dbaca3d0021215fdb2124
Page 1 of 2
Back12Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    18 Files
  • 3
    Apr 3rd
    0 Files
  • 4
    Apr 4th
    0 Files
  • 5
    Apr 5th
    0 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    0 Files
  • 9
    Apr 9th
    0 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close