Whitepaper called Adobe Reader's Custom Memory Management: A Heap Of Trouble.
86dbc3e7c60a1529b0cacbc87e0cc94c
WHMCS Control suffers from a remote SQL injection vulnerability.
574cd2a2453a7a23028f72b0d8d22663
NCT Jobs Portal Script suffers from a cross site scripting vulnerability. It also suffers from a remote SQL injection vulnerability that allows for authentication bypass.
b5aee9a2c816001af6d9c8811c0f364e
ZipWrangler version 1.20 SEH overwrite exploit that creates a malicious .zip file.
b14d0a580bcb27259eb0b085b9b5c619
Hashdays 2010 Call For Papers - Hashdays is an international security technology and research conference which is preceded by several 2-day workshops delivering IT security training. The event features many international IT security experts sharing their deep technical knowledge in an open environment and takes place November 3rd to 6th, 2010 in Lucerne.
6eb71122262d34a98b3f062f4a6dc19b
HP Digital Imaging (hpodio08.dll) insecure method exploit.
aabd7db2abcfbf72929dacfa11e6f667
27 bytes small setuid(0) ^ execve("/bin/sh", 0, 0) shellcode.
b891514fb220803d18df4cecc9950b3d
Openpresse version 1.01 suffers from a local file inclusion vulnerability.
ae9b5ccb168923bee83e2acb203eac0f
Openplanning version 1.00 suffers from local file inclusion and remote file inclusion vulnerabilities.
2c1fa02fdb26231b8ceb6d0f2063cb9b
Openfoncier version 2.00 suffers from local file inclusion and remote file inclusion vulnerabilities.
5c1d8f24369e118dc59b9a8a3b7f2206
27 bytes small setreuid(0, 0) and execve("/bin/sh") shellcode.
2de190d18295670026d6108032bb2edf
NKInfoWeb suffers from a remote SQL injection vulnerability.
9ea52ca12786714661d35433f8da15d6
CommView version 6.1 (build 636) suffers from a local denial of service vulnerability.
ecb52cdf5fbb39963e51e4fb0da2d883
Memorial Web Site Script suffers from password reset and insecure cookie handling vulnerabilities.
ec04c83bfeb5096694207899d8defcd8
Memorial Web Site Script suffers from arbitrary deletion vulnerabilities.
64c6822ac89c02118e1a3145c8da4b18
CommView version 6.1 (build 636) local denial of service exploit.
ec6d3afb21f9ac00e2bdc0851c47d85f
Debian Linux Security Advisory 2039-1 - It was discovered that Cacti, a frontend to rrdtool for monitoring systems and services missed input sanitising, making an SQL injection attack possible.
9cba2bd591957275baabc5a17bbea69f
EPay Enterprise version 4.13 suffers from a remote SQL injection vulnerability.
0549f3fcdaa0f9a2a4df03ff0e192819
DataLife Engine version 6.9 suffers from a cross site scripting vulnerability via the Referer header.
e0b471da55ea71515003d1928f9913c2
Zero Day Initiative Advisory 10-078 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ZENworks Server (zenserver.exe). This Tomcat server listens by default on TCP ports 80 and 443. The vulnerability exists in the UploadServlet. Using the UploadServlet an attacker can upload a malicious file outside of the TEMP directory on the server. By accessing this uploaded file remotely it is executed in the context of the zenserver.exe process. This can be exploited to gain arbitrary code execution in the context of the user running the ZENworks server.
70e14fc634206483eb5407a6749f804c
Mihao8 CMS suffers from cross site scripting vulnerabilities.
ad4bf43fa2b5f063289cf495f1080d5c
Firebrand Technologies suffers from a local file inclusion vulnerability.
043ec42b5fd265e3b1a01e0589db9cdf
29 bytes small setuid(0) and execve("/bin/sh",...) shellcode.
8a1a8e63c0bda2d235a2b40efddde311
afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.
5ed77c562b9615b89a2f62cdb97720d8
Mac OS X version 10.6.3 suffers from a HFS related denial of service vulnerability.
d89986c71d3d5cc8e9d36186955f67d7