what you don't know can hurt you
Showing 1 - 25 of 73 RSS Feed

Files Date: 2009-08-06

Debian Linux Security Advisory 1851-1
Posted Aug 6, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1851-1 - It was discovered that gst-plugins-bad0.10, the GStreamer plugins from the "bad" set, is prone to an integer overflow when processing a MED file with a crafted song comment or song name.

tags | advisory, overflow
systems | linux, debian
advisories | CVE-2009-1438
MD5 | 27bbcf263b76824859d659c551096e78
Mandriva Linux Security Advisory 2009-195
Posted Aug 6, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-195 - A vulnerability has been identified and corrected in apr and apr-util. This update provides fixes for these vulnerabilities.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2009-2412
MD5 | 6056b7eb20e3e9f988e3c4a6730d1472
Mandriva Linux Security Advisory 2009-194
Posted Aug 6, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-194 - Vulnerabilities have been discovered in the wireshark package, which could lead to application crash via radius, infiniband and afs dissectors. This update provides a fix for those vulnerabilities.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2009-2560, CVE-2009-2562, CVE-2009-2563
MD5 | 15c79f38e808c32e78c3b25411544ee1
Fetchmail Improper SSL Certificate Verification
Posted Aug 6, 2009
Authored by Matthias Andree

Fetchmail versions 6.3.10 and below suffer from an improper SSL certificate subject verification vulnerability.

tags | advisory
advisories | CVE-2009-2666
MD5 | ce1c88b31cfa80c0f26065acd3c46668
ImTOO MPEG Encoder 3.1.53 Overflow
Posted Aug 6, 2009
Authored by optix hacker

ImTOO MPEG Encoder version 3.1.53 local buffer overflow proof of concept exploit that creates a malicious .m3u file.

tags | exploit, overflow, local, proof of concept
MD5 | bb188bf5220eedce825067e301cdab61
Groovy Media Player 1.2.0 Overflow
Posted Aug 6, 2009
Authored by optix hacker

Groovy Media Player version 1.2.0 local buffer overflow proof of concept exploit that creates a malicious .m3u file.

tags | exploit, overflow, local, proof of concept
MD5 | 560fe3cacde80d4f5fbf2434e4aaad5e
Mandriva Linux Security Advisory 2009-193
Posted Aug 6, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-193 - ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate. This update corrects the problem, including for older ruby versions.

tags | advisory, remote, ruby
systems | linux, mandriva
advisories | CVE-2009-0642
MD5 | a793838c15e2a6a2ab05426489d08726
Pico MP3 Player 1.0 Denial Of Service
Posted Aug 6, 2009
Authored by PLATEN

Pico MP3 Player version 1.0 crash exploit that creates a malicious .mp3 file.

tags | exploit, denial of service
MD5 | f8a43fab35b596314fcd128107400cbe
PHP Photo Vote 1.3F Cross Site Scripting
Posted Aug 6, 2009
Authored by Moudi

PHP Photo Vote version 1.3F suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 9482f6ee49d5c1f095f7b98ba6ec700e
PHP Easy Shopping Cart 3.1R XSS
Posted Aug 6, 2009
Authored by Moudi

PHP Easy Shopping Cart version 3.1R suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | b4b242a122b7620ac30ae2b526af772d
AccessoriesMe PHP Affiliate Script 1.4 SQL Injection / XSS
Posted Aug 6, 2009
Authored by Moudi

AccessoriesM3 PHP Affiliate Script version 1.4 suffers from blind SQL injection and cross site scripting vulnerabilities.

tags | exploit, php, vulnerability, xss, sql injection
MD5 | 19e9d0f097408b24c8a9fe2c7de38427
LM Starmail 2.0 SQL Injection / RFI
Posted Aug 6, 2009
Authored by int_main();

LM Starmail version 2.0 suffers from remote SQL injection and remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, sql injection, file inclusion
MD5 | cab1e4f1c23c822ceef109b72e3b2f6c
TYPO3 CMS 4.0 SQL Injection
Posted Aug 6, 2009
Authored by JxE-13, CyberNaj

TYPO3 CMS version 4.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | aa953c6016b58abecf3305766624f627
Playlistmaker 1.5 Stack Overflow
Posted Aug 6, 2009
Authored by germaya_x

Playlistmaker version 1.5 local stack overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow, local
MD5 | 403622f921eea296ec35564ed69d81a1
PHP Script Forum Hoster Deletion / XSS
Posted Aug 6, 2009
Authored by int_main();

PHP Script Forum Hoster suffers from topic deletion and cross site scripting vulnerabilities.

tags | exploit, php, vulnerability, xss
MD5 | 5f74c33332c1575d613da8e2e08d6dbd
jetAudio 7.5.3.15 Denial Of Service
Posted Aug 6, 2009
Authored by Dr_IDE

jetAudio version 7.5.3.15 local crash proof of concept exploit that creates a malicious .m3u file.

tags | exploit, denial of service, local, proof of concept
MD5 | ca070df46fa5bca9a13226d805db10dc
FreeBSD 7.2-RELEASE SCP Kernel Denial Of Service
Posted Aug 6, 2009
Authored by Shaun Colley

FreeBSD 7.2-RELEASE SCTP local kernel denial of service exploit that causes a panic.

tags | exploit, denial of service, kernel, local
systems | freebsd
MD5 | d523ee0a513ba05092abd0e5bef97c54
A2 Media Player Pro 2.51 Buffer Overflow
Posted Aug 6, 2009
Authored by hack4love

A2 Media Player Pro 2.51 universal local buffer overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow, local
MD5 | 93affe60b6b9d64e2837b2a8b0d9a237
jetAudio 7.1.9.4030 Buffer Overflow
Posted Aug 6, 2009
Authored by Dr_IDE

jetAudio version 7.1.9.4030 plus vx universal buffer overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow
MD5 | 8332cfe68d46426af070326db3beb242
jetAudio 7.1.9.4030 Buffer Overflow
Posted Aug 6, 2009
Authored by germaya_x

jetAudio version 7.1.9.4030 plus vx universal buffer overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow
MD5 | 7a2905f6385892dd367023a91b123a4f
Huawei MT800 Cross Site Request Forgery
Posted Aug 6, 2009
Authored by Jerome Athias

The Huawei MT880 device suffers from cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | d495b32eeec9d223717cf369ace5b529
Zero Day Initiative Advisory 09-050
Posted Aug 6, 2009
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 09-050 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Web Start. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the code that handles loading a custom JPEG splash screen for a WebStart application. While handling certain parts of the splash screen, javaws.exe makes an improper calculation which is later used for an allocation. Later during decompression, Java Web Start will write data into this mis-allocated buffer resulting in a heap-based buffer overflow and eventual code execution under the context of the current user.

tags | advisory, java, remote, web, overflow, arbitrary, code execution
MD5 | 0087b5ad7a30c326c75a6ed1814a81b4
Zero Day Initiative Advisory 09-049
Posted Aug 6, 2009
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 09-049 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Sun Java Runtime. User interaction is required in that a target must visit a malicious web page or open a malicious JNLP file. The specific flaw exists within the code responsible for handling Pack200 compressed JAR files. During decompression, several fields within a Pack200 header are trusted and used to calculate sizes for heap buffer allocations. By providing malicious values an attacker can create undersized heap buffers and subsequently overflow them. This can be leveraged to execute arbitrary code under the context of the user accessing the file or web page.

tags | advisory, java, remote, web, overflow, arbitrary
MD5 | 9d45901d78d4febd4ddd736bba35c385
Zero Day Initiative Advisory 09-048
Posted Aug 6, 2009
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 09-048 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists when accessing embedded style sheets within an HTML file. When modifying the properties of rules defined in the style the behavior element is improperly processed resulting in a memory corruption which can be further leveraged to execute arbitrary code under the context of the current user.

tags | advisory, remote, arbitrary
advisories | CVE-2009-1919
MD5 | 5d4d5adfcf9157bcf0345eaf40935dea
Zero Day Initiative Advisory 09-047
Posted Aug 6, 2009
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 09-047 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the appending of elements to an invalid object. When appending malformed elements to a empty DIV element memory corruption can occur. A properly constructed web page can result in remote code execution under the context of the current user.

tags | advisory, remote, web, arbitrary, code execution
advisories | CVE-2009-1918
MD5 | 8c2d5168cfde5c2e2d8f9ca597c2ca38
Page 1 of 3
Back123Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close