what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 17 of 17 RSS Feed

Files Date: 2010-03-06

Apache 2.2.14 mod_isapi Remote SYSTEM Exploit
Posted Mar 6, 2010
Authored by Brett Gervasoni | Site senseofsecurity.com.au

Apache version 2.2.14 mod_isapi remote SYSTEM exploit. Due to the nature of the vulnerability, and exploitation method, DEP should be limited to essential Windows programs and services. At worst, if DEP is enabled for the Apache process, you could cause a constant DoS by looping this (since apache will automatically restart).

tags | exploit, remote
systems | windows
advisories | CVE-2010-0425
SHA-256 | c783414f79f43dcae00ce4cd44e85c324652565b650c7c405e711ebdd5c30075
Apache 2.2.14 mod_isapi Dangling Pointer
Posted Mar 6, 2010
Authored by Brett Gervasoni | Site senseofsecurity.com.au

By sending a specially crafted request followed by a reset packet it is possible to trigger a vulnerability in Apache 2.2.14 mod_isapi that will unload the target ISAPI module from memory. However function pointers still remain in memory and are called when published ISAPI functions are referenced. This results in a dangling pointer vulnerability. Successful exploitation results in the execution of arbitrary code with SYSTEM privileges.

tags | advisory, arbitrary
advisories | CVE-2010-0425
SHA-256 | 90f73578fb832e46f16d36335ab9911e89d608d85ddf6502b6fd7c3f8e006935
Mandriva Linux Security Advisory 2010-056
Posted Mar 6, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-056 - This update provides the OpenOffice.org 3.0 major version and holds multiple security updates relating to integer and heap buffer overflows.

tags | advisory, overflow
systems | linux, mandriva
advisories | CVE-2009-0200, CVE-2009-0201, CVE-2009-2140, CVE-2009-3736
SHA-256 | 74b7eb99fa9e572af2880279fa7eb4f4842de76630658a18025413b76abcd582
Cru Content CMS File Disclosure
Posted Mar 6, 2010
Authored by fx0

Cru Content CMS suffers from a remote file disclosure vulnerability.

tags | exploit, remote, info disclosure
SHA-256 | 523cc7e9539b82349e231e34a659d25dea0e81a82243e0f81879dd40a0deed9b
ncpfs Race Conditions / Denial Of Service / Disclosure
Posted Mar 6, 2010
Authored by Dan Rosenberg

The ncpmount, ncpumount, and ncplogin utilities, installed as part of the ncpfs package, contain race conditions, information disclosures, and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, info disclosure
advisories | CVE-2010-0788, CVE-2010-0790, CVE-2010-0791
SHA-256 | bee0a8f7594f3657d6643476cfedee7d3fee1c4555768af16fe7f3bde6ab4720
Juniper Secure Access Cross Site Scripting
Posted Mar 6, 2010
Authored by Logica

Juniper Secure Access suffers from a cross site scripting vulnerability. SA Appliances running Juniper IVE OS 6.0 or higher are affected.

tags | advisory, xss
systems | juniper
SHA-256 | 0882671fc019f10145475cd894b03e06c77f59799dbbcde50b40394c2be3d4ee
Mandriva Linux Security Advisory 2010-055
Posted Mar 6, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-055 - Denial of service, buffer overflows, integer overflows and other issues have been addressed in Poppler.

tags | advisory, denial of service, overflow
systems | linux, mandriva
advisories | CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180, CVE-2009-1181, CVE-2009-1182, CVE-2009-1183, CVE-2009-1188, CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3606, CVE-2009-3607, CVE-2009-3608, CVE-2009-3609, CVE-2009-3938
SHA-256 | c1f39ccb7ae4691e51e96d2b4dda262462f9738eabe92c6b916c22a54e98557d
Smart Tool To Remove Hidden Rootkit Services
Posted Mar 6, 2010
Site spywareanalytics.com

AdvancedWinServiceManager is a smart tool to remove hidden rootkit services. It makes it easy to eliminate such malicious services by separating out third party services from Windows services. By default it shows only third party services along with more details such as Company Name, Description, Install Date, File Path etc at one place which helps in quickly differentiating between legitimate and malicious services. It comes with rich features such as detecting hidden rootkit services, exporting the service list to html based log file, displaying only third party services etc.

systems | windows
SHA-256 | dcce7bf4b916b166e1a6a4571c36f88fb61258c125eb3adfa0dc30770328021c
Secunia Security Advisory 38809
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - iDefense Labs has reported a vulnerability in various Symantec products, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 566dd8cf83fd70edf4a05b5b0d2844d7e15035558428720dccd52acb537f87d8
Secunia Security Advisory 38847
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for MozillaFirefox and seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a user's system.

tags | advisory, vulnerability, xss
systems | linux, suse
SHA-256 | c8ae8c4a28bc9580599f7a3af41e2eeb6f751f24d97e592aa8b0339dadeb2d8e
Secunia Security Advisory 38797
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - iDefense Labs has reported a vulnerability in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 015c8b62ef09d4a17fc7df45bd3f1fabe814db7ef69a18667da02d1a35fd6c38
Secunia Security Advisory 38815
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in Avaya products, which can be exploited by malicious people to conduct cross-site scripting attacks or compromise a user's system.

tags | advisory, vulnerability, xss
SHA-256 | 1a59fbccb80629e654554214b37652c34bc8400009610384ac1fbc1418bc9603
Secunia Security Advisory 38823
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - iDefense Labs has reported a vulnerability in Lotus Notes, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | bfdc354e3be84d885a40a40895348d1db2d17580d19123663aca859a2f81a21e
Secunia Security Advisory 38842
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in CA SiteMinder, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
SHA-256 | cf93d9f1a7c8a53470fd71ddfd9706fdf2212d9aad44fa2335b0db370138e771
Secunia Security Advisory 38819
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Easy Laster has reported a vulnerability in smartplugs, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | 10e4731e0bb75d53281438dc0b7ffa15cd09b11cf60c84ea59e75f602434cdca
Secunia Security Advisory 38854
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gjoko 'LiquidWorm' Krstic has discovered a vulnerability in J. River Media Jukebox, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
SHA-256 | 80622e0c4ce6c5263e126e49082d38b75e48931e13aab23a0f9f650b11fa8650
Secunia Security Advisory 38749
Posted Mar 6, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in ePublisher, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
SHA-256 | e537fc79e0472f1752116f2496d888fc541d0f85191db923726f060de39d30f2
Page 1 of 1
Back1Next

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close