what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 71 RSS Feed

Files Date: 2009-08-26

Debian Linux Security Advisory 1874-1
Posted Aug 26, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1874-1 - Several vulnerabilities have been discovered in the Network Security Service libraries.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2009-2404, CVE-2009-2408, CVE-2009-2409
SHA-256 | c3c145e663c0e41608a4517f6698e23ceea9427cb81c0b2b53641a715105c451
Open Auto Classifieds 1.5.9 File Upload
Posted Aug 26, 2009
Authored by Andrew Horton

Open Auto Classifieds versions 1.5.9 and below remote file upload exploit.

tags | exploit, remote, file upload
SHA-256 | 7322a5373069e15092dc57a0de4058e73dee14a907bea94cf3798baa0b9bdde4
Open Auto Classifieds 1.5.9 SQL Injection
Posted Aug 26, 2009
Authored by Andrew Horton

Open Auto Classifieds versions 1.5.9 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f4d256bf5b94a24105c65130d206160fc23ebc64c40b09e1bc5146d96200727b
Megapanzer Skype Trojan Source
Posted Aug 26, 2009
Authored by Ruben Unteregger

This is the source code for the Skype Superintendent Trojan. It injects function calls into the Skype process to intercept all audio data coming and going to the Skype process. It extracts the PCM audio data, converts it to MP3 and sends it to the attacker after encrypting it.

tags | exploit, trojan
SHA-256 | 50398ad61e00692c92dd2314b4361cbb17e4a9e0f3004de10cacb297e3951d03
CA Internet Security Suite Denial Of Service
Posted Aug 26, 2009
Authored by Nikita Tarakanov | Site securitylab.ru

Positive Technologies Research Team has discovered a denial of service (DoS) vulnerability in CA Internet Security Suite. The IOCTL handler in vetmonnt.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system.

tags | advisory, denial of service, local
advisories | CVE-2009-0682
SHA-256 | 5e302735926df7a191cd4c4df3119475cbea6aad9029461f9bb55779ca994495
VideoGirls BiZ Cross Site Scripting
Posted Aug 26, 2009
Authored by Moudi

VideoGirls BiZ suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 45157b1204667a6a4cb2128debe099fde2a65cc2cc276dd98c60af35228ac810
Total Calendar 2.4 SQL Injection / LFI
Posted Aug 26, 2009
Authored by Moudi

Total Calendar version 2.4 suffers from blind SQL injection and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, sql injection, file inclusion
SHA-256 | e00088f7ff09003746dc049878ea5ba7895f03e12a09f5af7aa10ee57f281ed7
Stand Alone Arcade 1.1 Cross Site Scripting
Posted Aug 26, 2009
Authored by Moudi

Stand Alone Arcade version 1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 15f91a1e6a5a77cd6d0583330e0465441acada38bda090512fbbf618d6716223
SearchFeed Script Cross Site Scripting
Posted Aug 26, 2009
Authored by Moudi

SearchFeed Script suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | b97d37e1011b7ba56976b4e78eb17b56dd4bc0f5baa626402f5a8bb5f2d97194
PHP Video Youtube Script XSS
Posted Aug 26, 2009
Authored by Moudi

PHP Video YouTube Script suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
SHA-256 | 5038cbd660a2c0114224332f68f41913a75bc747abbc54c0a0a70b024ddace0e
PHP Calendars Script Cross Site Scripting
Posted Aug 26, 2009
Authored by Moudi

PHP Calendars Script suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
SHA-256 | 00c2efb6f29d7a2f40ee698f03cc86421b1d5b00a830643b38faa3919e978820
Discuz! Plugin Crazy Star 2.0 SQL Injection
Posted Aug 26, 2009
Authored by ZhaoHuAn

Discuz! Plugin Crazy Star versions 2.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f46aa68f55a22ddcbeb0e9dd80d8f9a1c7086c3d04053e84be0357031fdb1d64
TFTPUtil GUI 1.3.0 Denial Of Service
Posted Aug 26, 2009
Authored by ThE g0bL!N

TFTPUtil GUI version 1.3.0 remote denial of service exploit.

tags | exploit, remote, denial of service
SHA-256 | 7dac29f1e21983324fc9a9d2664d4ba0fd34a688e5b3b6fecc20a89bbd88c1f5
Debian Linux Security Advisory 1873-1
Posted Aug 26, 2009
Authored by Debian | Site debian.org

Debian Security Advisory 1873-1 - Juan Pablo Lopez Yacubian discovered that incorrect handling of invalid URLs could be used for spoofing the location bar and the SSL certificate status of a web page.

tags | advisory, web, spoof
systems | linux, debian
advisories | CVE-2009-2654
SHA-256 | 356bf7c18df73523e6398c09fcd86214240a2f6d1b8b04047695a2254b6e4857
Ninja Blog 4.8 Cross Site Scripting
Posted Aug 26, 2009
Authored by Moudi

Ninja Blog version 4.8 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 5312a74a3dae0b65adfc64707d9ee64e0ecf9ec80f9e1bfcd5c88d997993d2ab
E-Gold Game Pirates Of The Caribbean SQL Injection
Posted Aug 26, 2009
Authored by Moudi

E-Gold Game: Pirates of the Caribbean suffers from a blind SQL injection vulnerability.

tags | exploit, sql injection
SHA-256 | 59c736927e50aec080bdd871e1f29121c26adaea4d3578668e246f6b781e35b8
DigiOz Guestbook 1.7.2 XSS
Posted Aug 26, 2009
Authored by Moudi

DigiOz Guestbook version 1.7.2 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | ed03a1db41098117876cd4503e1bcdf5c67b46e90122b62aaf8c16a68bfc4b74
Simple CMS FrameWork 1.0 SQL Injection
Posted Aug 26, 2009
Authored by Red-D3v1L

Simple CMS FrameWork versions 1.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 04e5ccf3969856d83e3f9759d4ba50644d0216d016d70210d2bf7dafe554431f
Auction RSS Content Script 3.0 XSS
Posted Aug 26, 2009
Authored by Moudi

Auction RSS Content Script version 3.0 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 8f7cf9a6a227fbed484626d604acfea12217c71f82ffb0e7580813bba15ec1e8
Affiliate Master Script 2.0 XSS
Posted Aug 26, 2009
Authored by Moudi

Affiliate Master Script version 2.0 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | cac15c4fe4603e81dca3e23e359891535d7718d819a7bea48d4af05dc0574c4a
Ubuntu Security Notice 826-1
Posted Aug 26, 2009
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-826-1 - It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. It was discovered that Mono did not properly escape certain attributes in the ASP.net class libraries which could result in browsers becoming vulnerable to cross-site scripting attacks when processing the output. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data (such as passwords), within the same domain. This issue only affected Ubuntu 8.04 LTS. It was discovered that Mono did not properly filter CRLF injections in the query string. If a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, steal confidential data (such as passwords), or perform cross-site request forgeries. This issue only affected Ubuntu 8.04 LTS.

tags | advisory, remote, vulnerability, xss, asp
systems | linux, ubuntu
advisories | CVE-2008-3422, CVE-2008-3906, CVE-2009-0217
SHA-256 | 2ad29fa1156368f088ec7fd61ddf354bd88a9b875c072b5a2b54cec8ad4511a1
Cisco Security Advisory 20090826-cucm
Posted Aug 26, 2009
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Unified Communications Manager (formerly CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption to voice services. The Session Initiation Protocol (SIP) and Skinny Client Control Protocol (SCCP) services are affected by these vulnerabilities.

tags | advisory, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2009-2050, CVE-2009-2051, CVE-2009-2052, CVE-2009-2053, CVE-2009-2054
SHA-256 | 8a2ea0a4627f9010053dc3a65ff3691adac7f833b375825a60556dbd0c581ab4
Moa Gallery 1.2.0 File Disclosure
Posted Aug 26, 2009
Authored by GolD_M | Site tryag.cc

Moa Gallery versions 1.2.0 and below suffer form a remote file disclosure vulnerability.

tags | exploit, remote, info disclosure
SHA-256 | ebe84fa16df2febf9af5c6fbb5e7bb718d1de30bafd790d1b881c96eb4314a94
A Practical Message Falsification Attack On WPA
Posted Aug 26, 2009
Authored by Masakatu Morii, Toshihiro Ohigashi

Whitepaper called A Practical Message Falsification Attack on WPA.

tags | paper
SHA-256 | e4508ac705e974e5997e8f259c77fb0c5a4426a86c4bc54012872d08daa7d98d
Moa Gallery 1.2.0 SQL Injection
Posted Aug 26, 2009
Authored by Mr.SQL | Site pal-hacker.com

Moa Gallery version 1.2.0 suffers from a remote SQL injection vulnerability in index.php.

tags | exploit, remote, php, sql injection
SHA-256 | 10b9e7cf37d3f3dfd23cbba0f954aa18a6fb6c50f5c71b5f5c0068f1dfd8bfb4
Page 1 of 3
Back123Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close