what you don't know can hurt you
Showing 1 - 19 of 19 RSS Feed

Files Date: 2010-03-20

Mandriva Linux Security Advisory 2010-062
Posted Mar 20, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-062 - content_encoding.c in libcurl 7.10.5 through 7.19.7, when zlib is enabled, does not properly restrict the amount of callback data sent to an application that requests automatic decompression, which might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact by sending crafted compressed data to an application that relies on the intended data-length limit. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2010-0734
MD5 | 05c20c297f8da93108c96e8fddbd13cc
Security Notice For CA ARCserve Backup
Posted Mar 20, 2010
Authored by Kevin Kotas | Site www3.ca.com

CA's support is alerting customers to security risks with CA ARCserve Backup. The version of JRE shipped with ARCserve Backup is potentially susceptible to multiple vulnerabilities and has also reached end of life. Support is providing JRE 1.6 upgrades as remediation.

tags | advisory, vulnerability
MD5 | 39b4f795f0d4f2b19a949182519db623
OpenNHRP NBMA Next Hop Resolution 0.11.5
Posted Mar 20, 2010
Authored by Timo Teras | Site sourceforge.net

OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.

Changes: Shortcut renewals were fixed. Negative cached entries of a peer are now cleared when it sends a resolution request (which proves it\'s alive again), improving convergence time. The libev version was updated, and some related fixes were made.
tags | encryption, protocol
systems | cisco, linux
MD5 | 0982ce7c39bd760f0b58161f0883d4ec
Libnids Library 1.24
Posted Mar 20, 2010
Authored by Nergal | Site libnids.sourceforge.net

Libnids is a library that provides a functionality of one of NIDS (Network Intrusion Detection System) components, namely E-component. It means that libnids code watches all local network traffic, cooks received datagrams a bit, and provides convenient information on them to analyzing modules of NIDS. So, if you intend to develop a custom NIDS, you do not have to build low-level network code. If you decide to use libnids, and you have got E-component ready - you can focus on implementing other parts of NIDS.

Changes: This release fixes another remotely triggerable dereference in ip_fragment.c. An unofficial patch enables tracking of already established TCP connections. Missing reset of some tcp_* variables upon nids_exit has been fixed. This release has correct calculation of the radiotap header, compilation warning fixes with newer gcc, and uses pcap_get_selectable_fd() instead of pcap_fileno().
tags | local, library
MD5 | 72d37c79c85615ffe158aa524d649610
Skipfish Web Application Scanner 1.03b
Posted Mar 20, 2010
Authored by Michal Zalewski | Site code.google.com

Skipfish is a fully automated, active web application security reconnaissance tool. It is high speed, has a low false positive rate, and is easy to use.

tags | tool, web, scanner
systems | unix
MD5 | b2a37c1049c03afc8b216e73e3112c39
Wazzum Dating Software Shell Upload
Posted Mar 20, 2010
Authored by indoushka

Wazzum Dating Software suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 3ef4c2549dffb91ea6281278c35e35d9
eDisplay Personal FTP Server 1.0.0 Post-Authentication Crash
Posted Mar 20, 2010
Authored by loneferret

eDisplay Personal FTP server version 1.0.0 post-authentication proof of concept crash exploit.

tags | exploit, proof of concept
MD5 | 69fffd05db4e2f001185396c204c7b56
eDisplay Personal FTP Server 1.0.0 Pre-Authentication Crash
Posted Mar 20, 2010
Authored by loneferret

eDisplay Personal FTP server version 1.0.0 pre-authentication proof of concept crash exploit.

tags | exploit, proof of concept
MD5 | 9923b0f4ff83cf3f1dff337ef4e3d6c1
IBM Lotus 6.x HTTP Response Splitting
Posted Mar 20, 2010
Authored by Yaniv Miron

IBM Lotus version 6.x suffers from a HTTP response splitting vulnerability.

tags | exploit, web
MD5 | 744e9dcbb4315b585b5dab5d3fe641e4
Joomla JE Tooltip Local File Inclusion
Posted Mar 20, 2010
Authored by Chip D3 Bi0s

The Joomla JE Tooltip component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | cdcc8823d483d70d240131646d7a221d
DirectAdmin 1.34.4 Cross Site Request Forgery
Posted Mar 20, 2010
Authored by K053

DirectAdmin version 1.34.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 9ba28f02c4b37d7413c604296f30c7e2
Islamic Voice Insecure Cookie Handling
Posted Mar 20, 2010
Authored by jiko

Islamic Voice suffers from an insecure cookie handling vulnerability.

tags | exploit, insecure cookie handling
MD5 | ba4c423ae9874d3adf9ca99dd6e57fa1
Islamic Voice SQL Injection
Posted Mar 20, 2010
Authored by jiko

Islamic Voice suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1d1c86b377f2a98ef248d68cc8062d67
Xilisoft Video Converter Buffer Overflow
Posted Mar 20, 2010
Authored by ItSecTeam

Xilisoft Video Converter stack buffer overflow exploit that creates a malicious .yuv file.

tags | exploit, overflow
MD5 | 6e809f6ad5bb8fcd2245876399f61d1c
PHPWind 6.0 Cross Site Scripting
Posted Mar 20, 2010
Authored by Liscker

PHPWind version 6.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2920e6b8677c8cec38eeaf3e0a640ce5
VariCAD 2010-2.05 EN (DWB File) Stack Buffer Overflow
Posted Mar 20, 2010
Authored by n00b, MC, dookie | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow in VariCAD 2010-2.05 EN. An attacker must send the file to victim and the victim must open the file.

tags | exploit, overflow
MD5 | 47732020345d48689e39fc3d483c642d
MediaCoder Local Buffer Overflow
Posted Mar 20, 2010
Authored by fl0 fl0w

MediaCoder local buffer overflow exploit that creates a malicious .lst file.

tags | exploit, overflow, local
MD5 | e81a3df8e03ecdd1eab70c69a94e1a46
phpscripte24 Preisschlacht Liveshop System SQL Injection
Posted Mar 20, 2010
Authored by Easy Laster

phpscripte24 Preisschlacht Liveshop System suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 41e039e538a32fc1fc86d4a32221bc79
Quality Point 1.0 NewsFeed Cross Site Scripting / SQL Injection
Posted Mar 20, 2010
Authored by Red-D3v1L

Quality Point version 1.0 NewsFeed suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 6bc8cee6c6eeb80a8f9521328964afb4
Page 1 of 1
Back1Next

File Archive:

February 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    22 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    2 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    50 Files
  • 6
    Feb 6th
    24 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    6 Files
  • 9
    Feb 9th
    1 Files
  • 10
    Feb 10th
    1 Files
  • 11
    Feb 11th
    22 Files
  • 12
    Feb 12th
    25 Files
  • 13
    Feb 13th
    16 Files
  • 14
    Feb 14th
    32 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    10 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close