what you don't know can hurt you
Showing 1 - 25 of 53 RSS Feed

Files Date: 2009-07-30

AJ Matrix DNA SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ Matrix DNA suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 8eb83bbad4885fcc65d98ef113a8cdf8
AJ HYPE PRIME SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ HYPE PRIME suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0c0bba41e3b8eafb4e6d20df2cfc0a2b
5th EC2ND Conference - Call For Papers
Posted Jul 30, 2009
Site 2009.ec2nd.org

Call For Papers for EC2ND - The 5th European Conference on Computer Network Defence will take place in November 2009 at the Politecnico di Milano technical university in Milano, Italy.

tags | paper, conference
MD5 | 8d319bed990902a0e52e287352a157db
Epiri Professional Web Browser 3.0 Remote Crash Exploit
Posted Jul 30, 2009
Authored by LiquidWorm | Site zeroscience.mk

Epiri Professional Web Browser version 3.0 remote denial of service proof of concept exploit.

tags | exploit, remote, web, denial of service, proof of concept
MD5 | ba0b0cb6b0828ece2ed7a31fc49de5cf
Debian Linux Security Advisory 1834-2
Posted Jul 30, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1834-2 - The previous update caused a regression for apache2 in Debian 4.0 "etch". Using mod_deflate together with mod_php could cause segfaults when a client aborts a connection. This update corrects this flaw. A denial of service flaw was found in the Apache mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. This issue did not affect Debian 4.0 "etch". A denial of service flaw was found in the Apache mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file. A similar flaw related to HEAD requests for compressed content was also fixed.

tags | advisory, remote, denial of service
systems | linux, debian
advisories | CVE-2009-1890, CVE-2009-1891
MD5 | 9ca2a901ffd9844bf8fc9e3f696d6691
Banner Exchange Script 1.0 SQL Injection
Posted Jul 30, 2009
Authored by 599eme Man

Banner Exchange Script version 1.0 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 69b023b21c8644958ac8aa061b46d7e5
AJ HYPE ACME SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

AJ HYPE ACME suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 7ac06ae35363e16c3fd02d45124f4ad3
Softbiz Dating Script SQL Injection
Posted Jul 30, 2009
Authored by MizoZ

Softbiz Dating Script is susceptible to a remote SQL injection vulnerability in cat_products.php.

tags | exploit, remote, php, sql injection
MD5 | 4513bcf936604838dcbebc4868c88e00
Ez Album Persistent Cross Site Scripting
Posted Jul 30, 2009
Authored by MizoZ

Ez Album suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | cf5d30402aeb75db8fad043804ac0235
WebVision 2.1 Cross Site Scripting
Posted Jul 30, 2009
Authored by MizoZ

WebVision version 2.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b7434fe72f0f66f50aa37b5c368dd3c7
Check Rootkit 0.49
Posted Jul 30, 2009
Authored by Nelson Murilo | Site chkrootkit.org

Chkrootkit checks locally for signs of a rootkit. Chkrootkit includes ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions, strings.c for quick and dirty strings replacement, check_wtmpx.c to check for wtmpx deletions and the files chkproc.c and chkdirs.c to check for LKM trojans. Tested on Linux 2.0.x, 2.2.x and 2.4.x, FreeBSD 2.2.x, 3.x, 4.x, and 5.x, BSDI, OpenBSD 2.6, 2.7, 2.8, 2.9, 3.0 and 3.1, NetBSD 1.5.2 and Solaris 2.5.1, 2.6 and 8.0, and HP-UX 11.

Changes: New and enhanced tests, minor bug fixes.
tags | tool, trojan, integrity, rootkit
systems | linux, netbsd, unix, solaris, freebsd, openbsd, hpux
MD5 | 304d840d52840689e0ab0af56d6d3a18
PTC Script 1.2 Cross Site Scripting
Posted Jul 30, 2009
Authored by 599eme Man

PTC Script version 1.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | b2833ba74707876e69fc7edae4d478c9
Jokes Portal Script Seo 1.0 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Jokes Portal Script Seo version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9bcf57f8e930b4ca80b3978496d7b046
Flash Games Script 1.0 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Flash Games Scripts version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 43ee179e65e2c9e3a2423623a3ab04b6
Article Directory Script Seo 2.5 XSS
Posted Jul 30, 2009
Authored by 599eme Man

Article Directory Script Seo version 2.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 99c9203a7aa16b2d17fa9ab79a7336da
HP Security Bulletin HPSBUX02421 SSRT090047
Posted Jul 30, 2009
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - Potential security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service (DoS) or to execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary, vulnerability
systems | hpux
advisories | CVE-2009-0846, CVE-2009-0847
MD5 | de8d458838985b6d57b4a33cd148e5d4
ISC BIND 9 Remote Dynamic Update Message Denial Of Service
Posted Jul 30, 2009
Authored by Kingcope

ISC BIND 9 remote dynamic update message denial of service proof of concept exploit.

tags | exploit, remote, denial of service, proof of concept
advisories | CVE-2009-0696
MD5 | a61bbabebb2a6b7d45a77e10bf8e5b8e
EPSON Status Monitor 3 Privilege Escalation
Posted Jul 30, 2009
Authored by Nine:Situations:Group | Site retrogod.altervista.org

EPSON Status Monitor 3 suffers from a local privilege escalation vulnerability.

tags | exploit, local
MD5 | f41edd5ce2a858716f58495c6c9cb6ee
Haraldscan Bluetooth Discovery Scanner
Posted Jul 30, 2009
Authored by Terence Stenvold | Site code.google.com

Harald Scan is a Bluetooth discovery scanner. It determines Major and Minor device classes according to the Bluetooth SIG specification and attempts to resolve a device's MAC address to the largest known vendor/MAC address list. Written in Python.

Changes: MACLIST now uses IEEE OUI naming for vendors. It also contains 223 entries. The interface now shows how many devices were discovered. The -s and "Unknown" MAC service scans are only done once instead of continually.
tags | tool, python, wireless
MD5 | 4bb0a34fe5700ba1e7d1e257f91f278b
Cisco Security Advisory 20090729-bgp
Posted Jul 30, 2009
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Recent versions of Cisco IOS Software support RFC4893 ("BGP Support for Four-octet AS Number Space") and contain two remote denial of service (DoS) vulnerabilities when handling specific Border Gateway Protocol (BGP) updates. These vulnerabilities affect only devices running Cisco IOS Software with support for four-octet AS number space (here after referred to as 4-byte AS number) and BGP routing configured. The first vulnerability could cause an affected device to reload when processing a BGP update that contains autonomous system (AS) path segments made up of more than one thousand autonomous systems. The second vulnerability could cause an affected device to reload when the affected device processes a malformed BGP update that has been crafted to trigger the issue.

tags | advisory, remote, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2009-1168, CVE-2009-2049
MD5 | 60221c86e9e529b6fdbbbb617369cc1a
NTSOFT BBS E-Market Professional XSS
Posted Jul 30, 2009
Authored by Ivan Sanchez | Site nullcode.com.ar

NTSOFT BBS E-Market Professional suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 895963fa29a041e028d0c4b450c498a3
Mandriva Linux Security Advisory 2009-181
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-181 - The dns_db_findrdataset function in db.c in named in ISC BIND 9.4 before 9.4.3-P3, 9.5 before 9.5.1-P3, and 9.6 before 9.6.1-P1, when configured as a master server, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an ANY record in the prerequisite section of a crafted dynamic update message, as exploited in the wild in July 2009. This update provides fixes for this vulnerability.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2009-0696
MD5 | f818f4536c291da5a138b1639b467642
Mandriva Linux Security Advisory 2009-180
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-180 - Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a.xbm file. This update provides fixes for this vulnerability.

tags | advisory, denial of service, overflow
systems | linux, mandriva
advisories | CVE-2009-2286
MD5 | ebd169656fa65b87ca8bc2ca60f79420
Mandriva Linux Security Advisory 2009-179
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-179 - Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld in MySQL 4.0.0 through 5.0.83 allow remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in a database name in a (1) COM_CREATE_DB or (2) COM_DROP_DB request. NOTE: some of these details are obtained from third party information. This update provides fixes for this vulnerability.

tags | advisory, remote, denial of service, vulnerability
systems | linux, mandriva
advisories | CVE-2009-2446
MD5 | 2333069db481ce74865ad8ee103548ed
Mandriva Linux Security Advisory 2009-178
Posted Jul 30, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-178 - Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses. Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses. This update provides fixes for these vulnerabilities.

tags | advisory, denial of service, vulnerability
systems | linux, mandriva
MD5 | d3506e2fc058915aece39932a401a492
Page 1 of 3
Back123Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close