what you don't know can hurt you
Showing 1 - 25 of 39 RSS Feed

Files Date: 2009-04-06

Wapiti Web Application Vulnerability Scanner
Posted Apr 6, 2009
Authored by Nicolas Surribas | Site wapiti.sourceforge.net

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities.

Changes: Added more patterns for file handling vulnerabilities in PHP. Added GET_SQL and POST_SQL as modules (-m) for attacks. Modified getcookie.py and cookie.py so they try to get the cookies even if cookielib fails.
tags | tool, web, scanner, vulnerability
systems | unix
MD5 | 6ee8da782ba48e050ff346561888c555
Gentoo Linux Security Advisory 200904-5
Posted Apr 6, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200904-05 - An error in the OpenSSL certificate chain validation in ntp might allow for spoofing attacks. It has been reported that ntp incorrectly checks the return value of the EVP_VerifyFinal(), a vulnerability related to CVE-2008-5077 (GLSA 200902-02). Versions less than 4.2.4_p6 are affected.

tags | advisory, spoof
systems | linux, gentoo
advisories | CVE-2008-5077, CVE-2009-0021
MD5 | 0c5dd387f687f59dc506f4ebb4ed7577
Gentoo Linux Security Advisory 200904-4
Posted Apr 6, 2009
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200904-04 - A processing error in WeeChat might lead to a Denial of Service. Sebastien Helleu reported an array out-of-bounds error in the colored message handling. Versions less than 0.2.6.1 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2009-0661
MD5 | 11b82eccd1114b9730956e847d9c37d8
iDB 0.2.5pa Local File Inclusion
Posted Apr 6, 2009
Authored by LOTFREE TEAM | Site lotfree.next-touch.com

iDB version 0.2.5pa SVN 243 local file inclusion exploit.

tags | exploit, local, file inclusion
MD5 | 0f9461c47a95147ee8b64751b5790e7c
Pirelli Discuss DRG A225 Exploit
Posted Apr 6, 2009
Authored by j0rgan | Site jorgan.users.cg.yu

Pirelli Discus DRG A225 wifi router WPA2PSK default algorithm exploit.

tags | exploit
MD5 | 00f66dcce8c11a4ea17f4818d38ed58c
xine-lib Quicktime STTS Atom Integer Overflow
Posted Apr 6, 2009
Authored by Tobias Klein | Site trapkit.de

Xine-lib contains an integer overflow vulnerability while parsing malformed STTS atoms of Quicktime movie files. The vulnerability may be exploited by a (remote) attacker to execute arbitrary code in the context of an application using the xine library. Versions 1.1.16.2 and below are affected.

tags | advisory, remote, overflow, arbitrary
MD5 | 260eae7eabcdd414d0278b9336fc0f80
vBulletin 3.8.2 Cross Site Scripting
Posted Apr 6, 2009
Authored by The-0utl4w | Site aria-security.net

vBulletin version 3.8.2 suffers from persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | a05df8ceade92139f593ff2de76c77b1
VMware Security Advisory 2009-0005
Posted Apr 6, 2009
Authored by VMware | Site vmware.com

VMware Security Advisory - Updated VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues.

tags | advisory
advisories | CVE-2008-4916, CVE-2008-3761, CVE-2009-1146, CVE-2009-1147, CVE-2009-0909, CVE-2009-0910, CVE-2009-0908, CVE-2009-0177, CVE-2009-0518
MD5 | 5e7a084ff896405d70a063513e64fea7
Mandriva Linux Security Advisory 2009-086
Posted Apr 6, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-086 - An array indexing error in the GStreamer's QuickTime media file format decoding plug-in enables attackers to crash the application and potentially execute arbitrary code by using a crafted media file. This update provides fix for that security issue.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2009-0398
MD5 | 2ab17e2fbcd41cd2e8f6e50117ac6980
Joomla Book Joomlas 0.1 SQL Injection
Posted Apr 6, 2009
Authored by Salvatore Fresta

The Book Joomlas Joomla component version 0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d6bf09f559305cb167f1f72e8163f687
Vuurmuur Firewall Manager
Posted Apr 6, 2009
Authored by Victor Julien | Site vuurmuur.org

Vuurmuur is a middle-end and front-end for netfilter and iptables that is aimed at system administrators who need a decent firewall, but do not have netfilter specific knowledge. It converts human-readable rules into an iptables ruleset (or optional a bash script), makes netfilter logs readable, and includes an ncurses GUI.

Changes: Traffic shaping handling was improved. Source port randomization support was added. Support for PMTU MSS clamping was added. Generating and installing of translations was fixed. There were many other small fixes.
tags | tool, firewall, bash
systems | linux
MD5 | bad91aafcbea5e3a434440f88d722778
XBMC 8.10 Overflow
Posted Apr 6, 2009
Authored by n00b

XBMC version 8.10 GET request remote buffer overflow SEH universal exploit.

tags | exploit, remote, overflow
MD5 | d9540f3bbc21820c7d5ad343f1e666e3
Mozilla Firefox XSL Memory Corruption
Posted Apr 6, 2009
Authored by DATA_SNIPER

Mozilla Firefox XSL parsing remote memory corruption proof of concept exploit.

tags | exploit, remote, proof of concept
MD5 | af632fa1ab486f44ccc3f233d8becfec
FlexCMS Calendar Blind SQL Injection
Posted Apr 6, 2009
Authored by Lanti-Net | Site khg-crew.ws

FlexCMS Calendar suffers from a blind SQL injection vulnerability.

tags | exploit, sql injection
MD5 | a6a3f21d48dfe94976f1450b0f02ae3f
Secunia Security Advisory 34589
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for weechat. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, gentoo
MD5 | b6f4930584dc105111ce26a7fa96e1f9
Secunia Security Advisory 34581
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SkD has discovered a vulnerability in UltraISO, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 9222a526bec94ab92be285f7453b6588
Secunia Security Advisory 34588
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for ntp. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.

tags | advisory, spoof
systems | linux, gentoo
MD5 | b5a4329659eb67c6b0508f4dad134ca2
Secunia Security Advisory 34322
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Family Connections, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | a6b3cf4b0903a172e6be35bd3f7932ff
Secunia Security Advisory 34590
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for glib. This fixes some vulnerabilities, which can be exploited by malicious people to compromise an application using the library.

tags | advisory, vulnerability
systems | linux, gentoo
MD5 | bc361213d6bb09cdb29160b7a06fcb64
Secunia Security Advisory 34591
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for gnumeric. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
systems | linux, gentoo
MD5 | 30c4dcc95406a4cbf66201311db1cd5f
Secunia Security Advisory 34573
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in the Store Locator extension for TYPO3, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | 32b190ee3fb83e4f08a593c4a8c855da
Secunia Security Advisory 34586
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Frontend User Registration extension for TYPO3, which can be exploited by malicious users to disclose sensitive information.

tags | advisory
MD5 | e4b3efe54913cc5e67c8625fb0a6619a
Secunia Security Advisory 34575
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in glFusion, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | fbca2d354e6d81c31e93da485ec5971d
Secunia Security Advisory 34587
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in mpg123, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | 937f17bd772a5dab585b1adc6b8440e4
Secunia Security Advisory 34593
Posted Apr 6, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Tobias Klein has reported a vulnerability in xine-lib, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | 7ac3b3589e5f0df220b2937ed4d4e8f1
Page 1 of 2
Back12Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    9 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close