what you don't know can hurt you
Showing 1 - 25 of 69 RSS Feed

Files Date: 2010-01-29

Debian Linux Security Advisory 1968-2
Posted Jan 29, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1968-2 - It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data (CVE-2009-4010).

tags | advisory
systems | linux, debian
advisories | CVE-2009-4010
MD5 | 206a48ca48247cafa78ec670f4c0480d
CemaListe 2.3 Database Disclosure
Posted Jan 29, 2010
Authored by LionTurk

CemaListe version 2.3 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 40b53ea1725aff2642267b86a7700c2f
AIC Audio Player 1.4.1.587 Denial Of Service
Posted Jan 29, 2010
Authored by b0telh0

AIC Audio Player version 1.4.1.587 local crash denial of service proof of concept exploit.

tags | exploit, denial of service, local, proof of concept
MD5 | bb70a1f61201c6a977a457ad8f4cd175
Ubuntu Security Notice 892-1
Posted Jan 29, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 892-1 - Ronald Volgers discovered that FUSE did not correctly check mount locations. A local attacker, with access to use FUSE, could unmount arbitrary locations, leading to a denial of service.

tags | advisory, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2009-3297
MD5 | 8d6d9887d42f1d9e81abcc3b43ffd594
PHP Product Catalog Cross Site Request Forgery
Posted Jan 29, 2010
Authored by bi0

PHP Product Catalog suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf
MD5 | 9990443596e72946bcc911b1d41edd05
Debian Linux Security Advisory 1981-2
Posted Jan 29, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1981-2 - The latest DSA for maildrop introduced two regressions. The maildrop program stopped working when invoked as a non-root user, such as with postfix. Also, the lenny version dropped a dependency on the courier-authlib package.

tags | advisory, root
systems | linux, debian
advisories | CVE-2010-0301
MD5 | 00664f6329ad84b6d0353790886ea97b
Joomla JE Quiz Blind SQL Injection
Posted Jan 29, 2010
Authored by bhunt3r

The Joomla JE Quiz component suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | bdde6cbe47024bcb8c72905c703a04b9
XAMPP Cross Site Request Forgery / Cross Site Scripting / Path Disclosure / SQL Injection / Traversal
Posted Jan 29, 2010
Authored by MustLive

XAMPP versions 1.6.8 and below suffer from cross site request forgery, cross site scripting, path disclosure, remote SQL injection and directory traversal vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, file inclusion, csrf
MD5 | d934d9380ec1f23797936d5bc2f1c657
Joomla CCNewsLetter Local File Inclusion
Posted Jan 29, 2010
Authored by AtT4CKxT3rR0r1ST

The Joomla CCNewsLetter component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 3c8c3fb4a90be768bdcd05608de94694
Ubuntu Security Notice 893-1
Posted Jan 29, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 893-1 - Ronald Volgers discovered that the mount.cifs utility, when installed as a setuid program, suffered from a race condition when verifying user permissions. A local attacker could trick samba into mounting over arbitrary locations, leading to a root privilege escalation.

tags | advisory, arbitrary, local, root
systems | linux, ubuntu
advisories | CVE-2009-3297
MD5 | 6d7694cdc9b4cf486e8c305a1e883f1e
Joomla CCNewsLetter Directory Traversal
Posted Jan 29, 2010
Authored by bhunt3r

The Joomla CCNewsLetter component suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 28bcbd792bc663b5dc4d701b8085ff74
Rising AntiVirus 2008 - 2010 Privilege Escalation Proof Of Concept
Posted Jan 29, 2010
Authored by Dlrow

Rising AntiVirus 2008 through 2010 local privilege escalation proof of concept exploit.

tags | exploit, local, proof of concept
MD5 | bf5bc5705505b6ba0c2581aa7bcf9bb1
ProCheckUp Security Advisory 2009.19
Posted Jan 29, 2010
Authored by ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

CommonSpot Server suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7144d772c8cbadba806662ced571db18
Debian Linux Security Advisory 1981-1
Posted Jan 29, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1981-1 - Christoph Anton Mitterer discovered that maildrop, a mail delivery agent with filtering abilities, is prone to a privilege escalation issue that grants a user root group privileges.

tags | advisory, root
systems | linux, debian
MD5 | d71498bde7e9b947d97c068eb038aff8
Arraid Insecure Cookie Handling
Posted Jan 29, 2010
Authored by alnjm33

Arraid version 1. suffers from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
MD5 | 05ffa129dd1824cbc172ceacf2c8317b
Joomla jVideoDirect Blind SQL Injection
Posted Jan 29, 2010
Authored by bhunt3r

The Joomla jVideoDirect component version 1.1 RC3b suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b73a79491f87bdbe3d56e4250c65d66c
Joomla CCNewsLetter Blind SQL Injection
Posted Jan 29, 2010
Authored by bhunt3r

The Joomla CCNewsLetter component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 8b4e8703e47b99addf52859cc4104155
Ubuntu Security Notice 891-1
Posted Jan 29, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 891-1 - It was discovered that lintian did not correctly validate certain filenames when processing input. If a user or an automated system were tricked into running lintian on a specially crafted set of files, a remote attacker could execute arbitrary code with user privileges.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2009-4013, CVE-2009-4014, CVE-2009-4015
MD5 | 1a2a6112f1845b7aa041854dc1d14266
fipsForum 2.6 Database Disclosure
Posted Jan 29, 2010
Authored by ViRuSMaN

fipsForum version 2.6 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | d63571fbaa05101a1ad09918be37b0d5
Joomla Autartitarot Directory Traversal
Posted Jan 29, 2010
Authored by bhunt3r

The Joomla Autartitarot component suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | 76b8485d97f1ee5a65622b450079d1d7
phpBB 2.0.1 Cross Site Scripting
Posted Jan 29, 2010
Authored by s4r4d0

phpBB version 2.0.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 30401ea5d194b2d04f8f3d43ccc6c2a3
NovaBoard 1.1.2 SQL Injection
Posted Jan 29, 2010
Authored by Delibey

NovaBoard version 1.1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 763fd08c90b965b75f7609ab33388134
LandShop Cross Site Scripting
Posted Jan 29, 2010
Authored by Cyber_945

LandShop suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | f231415caf2a7e08faf7e1619ebc63d8
Debian Linux Security Advisory 1980-1
Posted Jan 29, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 1980-1 - David Leadbeater discovered an integer underflow that could be triggered via the LINKS command and can lead to a denial of service or the execution of arbitrary code (CVE-2009-4016). This issue affects both, ircd-hybrid and ircd-ratbox.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2009-4016, CVE-2010-0300
MD5 | 6abd38406438648094718cf58d2701eb
Nmap Port Scanner 5.21
Posted Jan 29, 2010
Authored by Fyodor | Site insecure.org

Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings.

Changes: Fixed an error that occurred when UDP scan was combined with version scan. Various NSE improvements.
tags | tool, remote, udp, tcp, protocol, nmap
systems | unix
MD5 | f77fa51d89ab27d35e5cd87bb086b858
Page 1 of 3
Back123Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    2 Files
  • 23
    Oct 23rd
    16 Files
  • 24
    Oct 24th
    4 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close