exploit the possibilities
Showing 1 - 25 of 76 RSS Feed

Files Date: 2009-12-15

CarolinaCon 2010 Call For Papers
Posted Dec 15, 2009
Site carolinacon.org

The CarolinaCon 2010 Call For Papers is now open. It's an annual technology conference to enhance local and global awareness of current technology issues and developments, provide affordable technology education sessions to the unwashed masses, deliver varied/informative/interesting presentations on a wide variety of InfoSec/hacking/technology/science topics, and mix in enough entertainment and side contests/challenges to make for a truly fun event. It will be taking place March 19th through the 21st in Raleigh, NC, USA.

tags | paper, local, conference
MD5 | 4c3b3ff332f642afd11b5441e56dfa34
Maketh Packet Generator 0.2.0
Posted Dec 15, 2009
Authored by Simpp | Site simpp-kode.tuxfamily.org

Maketh is a packet generator that supports forging ARP, IP, TCP, UDP, ICMP and the ethernet header as well.

tags | tool, udp, scanner, tcp
systems | unix
MD5 | f9d78cf3ca7446e600b309d134b1d738
SSHatter Brute Forcer 1.0
Posted Dec 15, 2009
Authored by Tim Brown | Site nth-dimension.org.uk

SSHatter is a remote brute force utility that attempts every password from a given list against a target.

Changes: This release adds dumb mode, where SSHatter will check password equals password, username, and blank. It adds sudo mode, where SSHatter will echo the password to STDIN. It adds rudimentry file transfer modes, which also work interactively via "put" and "get". It improves the usage message. There is a new command line interface based on Getops. There is a modular design to allow more code reuse, a new threading model, support for SSH private keys, mass mode for post brute force command execution, and interactive mode for post brute force command execution. Timing attack based username enumeration has been removed for now.
tags | remote
MD5 | 74fbc2170fad60bd868f08bcd41bf4c9
Ez Blog 1.0 XSS / XSRF
Posted Dec 15, 2009
Authored by Milos Zivanovic

Ez Blog version 1.0 suffers from cross site scripting and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | b4b4cdb5826e234dc4e30398679718e1
VMware Security Advisory 2009-0017
Posted Dec 15, 2009
Authored by VMware | Site vmware.com

VMware Security Advisory - VMware vCenter and ESX update releases address cross-site scripting issues in the Help functionality of WebAccess. A vCenter Lab Manager release addresses the same issues which are present in the online Help functionality of Lab Manager and Stage Manager.

tags | advisory, xss
advisories | CVE-2009-3731
MD5 | 50a23466133ae40653dd475bf7610668
Ez Cart Cross Site Request Forgery
Posted Dec 15, 2009
Authored by Milos Zivanovic

Ez Cart version 1.0 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | e08252774a7adf7ac41965d5edbf5de1
SitioOnline SQL Injection
Posted Dec 15, 2009
Authored by 4lG3r14n0-t3r0

SitioOnline suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9a80f0c77f9a9b5d4a47b80a5e5fbcff
DesigNsbyjm CMS 1.0 SQL Injection
Posted Dec 15, 2009
Authored by R3d-D3v!L

DesigNsbyjm CMS versions 1.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1030571e4046ac33bf44729306371bb9
Mandriva Linux Security Advisory 2009-333
Posted Dec 15, 2009
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-333 - NULL Bytes in SSL Certificates can be used to falsify client or server authentication. This only affects users who have SSL enabled, perform certificate name validation or client certificate authentication, and where the Certificate Authority (CA) has been tricked into issuing invalid certificates. The use of a CA that can be trusted to always issue valid certificates is recommended to ensure you are not vulnerable to this issue. Privilege escalation via changing session state in an index function. This closes a corner case related to vulnerabilities and CVE-2007-6600. Packages for 2008.0 are being provided due to extended support for Corporate products. This update provides a solution to these vulnerabilities.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2009-4034, CVE-2009-4136
MD5 | 12b131d96a39a6c76ec1620515ba7462
Ez Faq Maker 1.0 XSS / XSRF
Posted Dec 15, 2009
Authored by Milos Zivanovic

Ez Faq Maker version 1.0 suffers from cross site scripting and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 934489546b0d805451802f7b45d51752
Orkut Cross Site Scripting
Posted Dec 15, 2009
Authored by Sanjay Kumar

Orkut suffered from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5cd4a4b6230600db9d395b6a89d06bfb
Ez News Manager / Pro XSRF
Posted Dec 15, 2009
Authored by Milos Zivanovic

Ez News Manager version 1.0 and Ez News Manager Pro version 1.0 suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 87b34be37c4c399d590f61955991e7e4
Daloradius Cross Site Scripting
Posted Dec 15, 2009
Authored by Hadi Kiamarsi

Daloradius suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 344ebdd7e4cd4b0709876e7f6be39def
Debian Linux Security Advisory 1952-2
Posted Dec 15, 2009
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1952-2 - Security support for asterisk, an Open Source PBX and telephony toolkit, has been discontinued for the oldstable distribution (etch). The current version in oldstable is not supported by upstream anymore and is affected by several security issues. Backporting fixes for these and any future issues has become unfeasible and therefore we need to drop our security support for the version in oldstable. We recommend that all asterisk users upgrade to the stable distribution (lenny).

tags | advisory
systems | linux, debian
MD5 | ed04b9a1e9190f23e4535ed8486fe2e5
Debian Linux Security Advisory 1952-1
Posted Dec 15, 2009
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1952-1 - Several vulnerabilities have been discovered in asterisk, an Open Source PBX and telephony toolkit.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2009-0041, CVE-2008-3903, CVE-2009-3727, CVE-2008-7220, CVE-2009-4055, CVE-2007-2383
MD5 | 905e5c3863d4bfeacc6145c0bea47bae
ClickTrackerASP SQL Injection
Posted Dec 15, 2009
Authored by R3d-D3v!L

ClickTrackerASP suffers from a remote SQL injection vulnerability in sitedetails.asp.

tags | exploit, remote, sql injection, asp
MD5 | 8079c29290ea2ebeee8cc43c7bee414f
LinkPal 1.0 SQL Injection
Posted Dec 15, 2009
Authored by R3d-D3v!L

LinkPal version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2b5e9fe393a9d80a487172d09cf97ae2
DubSite CMS 1.0 Cross Site Request Forgery
Posted Dec 15, 2009
Authored by Connection

DubSite CMS version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 06095a6d6c0cbe65eb3ee4444a5d5ac5
Debian Linux Security Advisory 1951-1
Posted Dec 15, 2009
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1951-1 - It was discovered that firefox-sage, a lightweight RSS and Atom feed reader for Firefox, does not sanitize the RSS feed information correctly, which makes it prone to a cross-site scripting and a cross-domain scripting attack.

tags | advisory, xss
systems | linux, debian
advisories | CVE-2009-4102
MD5 | 9125d5fc6f3fae4c371b61bf5883ba91
Trango Broadband Wireless Interception
Posted Dec 15, 2009
Authored by Blair

Trango Broadband Wireless suffers from an authentication vulnerability that allows for interception of ethernet packets.

tags | exploit
MD5 | 58ca5559834609bd8de3fa7d13c38936
Imageshack.us Cross Site Scripting
Posted Dec 15, 2009
Authored by Nishant Soni | Site secworm.net

Imageshack.us suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b7c5b73c90cd6bf235fb826633ca1791
PasswordManager Pro 6.1 Script Injection
Posted Dec 15, 2009
Authored by Stefan Friedli | Site scip.ch

PasswordManager Pro version 6.1 suffers from a script injection vulnerability.

tags | advisory
MD5 | a627d0e5361b2f0984e7c36e392b4f43
WSCreator 1.1 Blind SQL Injection
Posted Dec 15, 2009
Authored by Salvatore Fresta

WSCreator version 1.1 suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ba0f2473f4e719db04fe0107726a7679
pyForum 1.0.3 XSS / XSRF
Posted Dec 15, 2009
Authored by Nam Nguyen | Site bluemoon.com.vn

pyForum version 1.0.3 suffers from cross site scripting and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, xss, csrf
MD5 | 518f13b335b55ff9b787285c1bfb63e5
Generic Random Remote Fuzzer
Posted Dec 15, 2009
Authored by Jeremy Brown

This small perl script is a generic random remote fuzzer.

tags | remote, perl, fuzzer
MD5 | f8b3252e97cd17efc8addb74d8ad7fc5
Page 1 of 4
Back1234Next

File Archive:

April 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    21 Files
  • 2
    Apr 2nd
    35 Files
  • 3
    Apr 3rd
    21 Files
  • 4
    Apr 4th
    16 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    1 Files
  • 7
    Apr 7th
    2 Files
  • 8
    Apr 8th
    23 Files
  • 9
    Apr 9th
    19 Files
  • 10
    Apr 10th
    15 Files
  • 11
    Apr 11th
    14 Files
  • 12
    Apr 12th
    11 Files
  • 13
    Apr 13th
    2 Files
  • 14
    Apr 14th
    5 Files
  • 15
    Apr 15th
    14 Files
  • 16
    Apr 16th
    19 Files
  • 17
    Apr 17th
    19 Files
  • 18
    Apr 18th
    8 Files
  • 19
    Apr 19th
    4 Files
  • 20
    Apr 20th
    5 Files
  • 21
    Apr 21st
    1 Files
  • 22
    Apr 22nd
    10 Files
  • 23
    Apr 23rd
    22 Files
  • 24
    Apr 24th
    7 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close