what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 36 RSS Feed

Files Date: 2009-11-23

e107 SQL Injection / Cross Site Scripting
Posted Nov 23, 2009
Authored by SVRT | Site security.bkis.vn

e107 versions 0.7.16 and below suffer from cross site scripting and SQL injection vulnerabilities.

tags | advisory, vulnerability, xss, sql injection
SHA-256 | b5a1b182556ef4eefffabe1f32b4551ce30084ff37aa878c82cac82d6fa64ed4
KR-Web 1.1b2 Remote File Inclusion
Posted Nov 23, 2009
Authored by cr4wl3r

KR-Web versions 1.1b2 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, web, code execution, file inclusion
SHA-256 | a386c7625bdaf631132312db50e8b77d7365aa361b2b29f65d7d4451679f4379
NukeHall 0.3 Remote File Inclusion
Posted Nov 23, 2009
Authored by cr4wl3r

NukeHall versions 0.3 and below suffer from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
SHA-256 | 247930f6c14576eea09d890f7972daa2bdd0b4184511d8029fba4a99c1ea1be2
Core Security Technologies Advisory 2009.0910
Posted Nov 23, 2009
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies Advisory - Autodesk Maya Script Nodes suffers from an arbitrary command execution vulnerability.

tags | exploit, arbitrary
advisories | CVE-2009-3578
SHA-256 | 712759632964aaf8f28383abb772e4eddf35bed1cc5ff8cf14afe7edc29eff56
Core Security Technologies Advisory 2009.0909
Posted Nov 23, 2009
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies Advisory - Autodesk 3DS Max Application Callbacks suffers from an arbitrary command execution vulnerability.

tags | exploit, arbitrary
advisories | CVE-2009-3577
SHA-256 | 12afede80085a780e1c1f5f949f3e5fcff03a3da7d88aeb395f51b281b4bbef7
Core Security Technologies Advisory 2009.0908
Posted Nov 23, 2009
Authored by Core Security Technologies | Site coresecurity.com

Core Security Technologies Advisory - Autodesk SoftImage Scene TOC suffers from an arbitrary command execution vulnerability.

tags | exploit, arbitrary
advisories | CVE-2009-3576
SHA-256 | 6a65333fd95ea605b67837e1d86e4a86121099882aba62fc0c7d2e867650527f
Internet Explorer MSHTML.DLL Modifier
Posted Nov 23, 2009
Authored by Derek Soeder

This code is for a DLL that loads into Internet Explorer as a BHO and modifies MSHTML.DLL in memory to mitigate attempts by the getElementsByTagName Body Style vulnerability.

SHA-256 | 29e82a2de8203195dcfb1971c885efe9081f588afdf4034ea888c3643b4303b7
Internet Explorer 6/7 Code Execution
Posted Nov 23, 2009
Authored by K4mr4n_st | Site securitylab.ir

Microsoft Internet Explorer version 6 and 7 STYLE code execution exploit.

tags | exploit, code execution
SHA-256 | 150b2d337f9eb099d50256657d6b24ca644b215cadb6427077aa75fd660c41a6
Debian Linux Security Advisory 1938-1
Posted Nov 23, 2009
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1938-1 - It was discovered that php-mail, a PHP PEAR module for sending email, has insufficient input sanitising, which might be used to obtain sensitive data from the system that uses php-mail.

tags | advisory, php
systems | linux, debian
SHA-256 | 6732dc598d3c4a70b0cbce00b5b3a633302c6d1e2f3ce0185b249d6f16d567c6
Outreach Project Tool 1.2.6 Remote File Inclusion
Posted Nov 23, 2009
Authored by cr4wl3r

Outreach Project Tool versions 1.2.6 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 4e4445dbee73bbd10fbfa8e4eb2d03958472786c6a13a4d3839296d3b711585c
PHP Traverse 0.8.0 Remote File Inclusion
Posted Nov 23, 2009
Authored by cr4wl3r

PHP Traverse versions 0.8.0 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, php, code execution, file inclusion
SHA-256 | a77089df0362737a9ba23a5ec3c61d3fe971ca5a3fbfca9417536dec03b82e65
PointComma 3.8b2 Remote File Inclusion
Posted Nov 23, 2009
Authored by cr4wl3r

PointComma versions 3.8b2 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 1d5a95cee440e0d8f2022ff2b0d9660a9f458ede4307cfc2aed176c8dd6491f9
ICMPv4/IP Fuzzer Prototype
Posted Nov 23, 2009
Authored by laurent gaffie | Site g-laurent.blogspot.com

This is the ICMPv4/IP fuzzer prototype code.

tags | fuzzer
SHA-256 | 35272cf0bbd351d1c3768a01705b36f56401acf729c58cd4d80efa24fbe4308b
OSI Codes PHP Live! Support 3.1 Remote File Inclusion
Posted Nov 23, 2009
Authored by Don Tukulesto | Site indonesiancoder.com

OSI Codes PHP Live! Support version 3.1 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, php, code execution, file inclusion
SHA-256 | 166ca7335c4d46caad48f60ac32d51993582dc6e1440aa04daa5e308c83b1ad7
HITB Security Conference Call For Papers 2010
Posted Nov 23, 2009
Site conference.hitb.org

The call for papers for the upcoming Hack in The Box Security Conference 2010 in Dubai is now open.

tags | paper, conference
SHA-256 | 5cff73dbb42258efd59ae1e0f527cd24e6ea09077b2afc25e726689b2bf01d94
PHP MultiPart For-Data Denial Of Service
Posted Nov 23, 2009
Authored by Bogdan Calin | Site acunetix.com

PHP MultiPart Form-Data denial of service proof of concept exploit.

tags | exploit, denial of service, php, proof of concept
SHA-256 | 56ed6bc37b2f5f076954de0fda0f42085950231ca16763028f6e873710289eea
Mandriva Linux Security Advisory 2009-302
Posted Nov 23, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-302 - Some vulnerabilities were discovered and corrected in php-5.3.1.

tags | advisory, php, vulnerability
systems | linux, mandriva
advisories | CVE-2009-3292, CVE-2009-3557, CVE-2009-3558, CVE-2009-3559
SHA-256 | a0ce7da0ac8e1b13fe4bfd3054d144216d266c1034944be910714f24fb8b1173
ZoRBaCK Connect Back Shell
Posted Nov 23, 2009
Authored by ZoRLu

This is the ZoRBaCK Connect php script that allows for a remote shell on a compromised host.

tags | tool, remote, shell, php, rootkit
systems | unix
SHA-256 | d5226055e30c86c65d275b843a2bf889713d2e585da4851f73e2b3df09c6c0e8
Debian Linux Security Advisory 1937-1
Posted Nov 23, 2009
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1937-1 - It was discovered that gforge, collaborative development tool, is prone to a cross-site scripting attack via the helpname parameter. Beside fixing this issue, the update also introduces some additional input sanitising. However, there are no known attack vectors.

tags | advisory, xss
systems | linux, debian
advisories | CVE-2009-3303
SHA-256 | 89e3797a7902cb9264a1b0984b93653e5cf9b33c064e604ca124959bd8a33f35
GtkHash Crypto Computer 0.3.0
Posted Nov 23, 2009
Site gtkhash.sourceforge.net

GtkHash is a utility for computing message digests or checksums using the mhash library. Currently supported hash functions include MD5, SHA1, SHA256, SHA512, RIPEMD, HAVAL, TIGER, and WHIRLPOOL.

Changes: An optional Nautilus (GNOME file manager) extension was added.
tags | encryption
SHA-256 | db10c0cdb6585a0efab3f3a526d32880c0eecce258095677f104ccfa68d6aae2
Internet Explorer PDF Information Leak
Posted Nov 23, 2009
Authored by Inferno from Secure Thoughts

Internet Explorer leaks local host information when printing pages to PDF files.

tags | exploit, local
SHA-256 | 00625010641ec812746a3b6b983d25c01e81f649260f6b38d6dd5a738c8b5183
Secunia Security Advisory 37469
Posted Nov 23, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Opera, where one has unknown impacts and the other one can be exploited by malicious people to disclose potentially sensitive information and conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
SHA-256 | 98b8ada02d5faada48cf8ac34afb984eb757ff9b84e92b5893a57dc0a9d42a47
Secunia Security Advisory 37448
Posted Nov 23, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system.

tags | advisory
SHA-256 | 27148f0030a4d612e9c58a79218b423144350de910a157ad4bd029e9f4192ae8
Secunia Security Advisory 37450
Posted Nov 23, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for gforge. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
systems | linux, debian
SHA-256 | c31412cbfa52b597eeec61cb5f867a8ba598aa80e981250901662b5b5586891a
Secunia Security Advisory 37470
Posted Nov 23, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - VMware has issued an update for ESXi. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

tags | advisory, denial of service
SHA-256 | 756daf1f43da03eb0686df3920b19572b779108170d35699efcb7b0c95f260fa
Page 1 of 2
Back12Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    0 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close