what you don't know can hurt you
Showing 1 - 25 of 29 RSS Feed

Files Date: 2010-04-24

Adobe Reader's Custom Memory Management - A Heap Of Trouble
Posted Apr 24, 2010
Authored by Haifei Li | Site fortinet.com

Whitepaper called Adobe Reader's Custom Memory Management: A Heap Of Trouble.

tags | paper
MD5 | 86dbc3e7c60a1529b0cacbc87e0cc94c
WHMCS Control SQL Injection
Posted Apr 24, 2010
Authored by Islam DefenDers

WHMCS Control suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 574cd2a2453a7a23028f72b0d8d22663
NCT Jobs Portal Script SQL Injection / Cross Site Scripting
Posted Apr 24, 2010
Authored by Sid3 effects

NCT Jobs Portal Script suffers from a cross site scripting vulnerability. It also suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, xss, sql injection
MD5 | b5aee9a2c816001af6d9c8811c0f364e
ZipWrangler 1.20 .ZIP SEH Exploit
Posted Apr 24, 2010
Authored by TecR0c, Sud0 | Site corelan.be

ZipWrangler version 1.20 SEH overwrite exploit that creates a malicious .zip file.

tags | exploit
MD5 | b14d0a580bcb27259eb0b085b9b5c619
Hashdays 2010 Call For Papers
Posted Apr 24, 2010
Site hashdays.ch

Hashdays 2010 Call For Papers - Hashdays is an international security technology and research conference which is preceded by several 2-day workshops delivering IT security training. The event features many international IT security experts sharing their deep technical knowledge in an open environment and takes place November 3rd to 6th, 2010 in Lucerne.

tags | paper, conference
MD5 | 6eb71122262d34a98b3f062f4a6dc19b
HP Digital Imaging Insecure Method
Posted Apr 24, 2010
Authored by ThE g0bL!N

HP Digital Imaging (hpodio08.dll) insecure method exploit.

tags | exploit
MD5 | aabd7db2abcfbf72929dacfa11e6f667
27 Bytes setuid(0) ^ execve("/bin/sh", 0, 0) Shellcode
Posted Apr 24, 2010
Authored by Magnefikko

27 bytes small setuid(0) ^ execve("/bin/sh", 0, 0) shellcode.

tags | shellcode
MD5 | b891514fb220803d18df4cecc9950b3d
Openpresse 1.01 Local File Inclusion
Posted Apr 24, 2010
Authored by cr4wl3r

Openpresse version 1.01 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | ae9b5ccb168923bee83e2acb203eac0f
Openplanning 1.00 Remote / Local File Inclusion
Posted Apr 24, 2010
Authored by cr4wl3r

Openplanning version 1.00 suffers from local file inclusion and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
MD5 | 2c1fa02fdb26231b8ceb6d0f2063cb9b
Openfoncier 2.00 Remote / Local File Inclusion
Posted Apr 24, 2010
Authored by cr4wl3r

Openfoncier version 2.00 suffers from local file inclusion and remote file inclusion vulnerabilities.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
MD5 | 5c1d8f24369e118dc59b9a8a3b7f2206
27 Bytes setreuid(0, 0) And execve("/bin/sh") Shellcode
Posted Apr 24, 2010
Authored by Magnefikko

27 bytes small setreuid(0, 0) and execve("/bin/sh") shellcode.

tags | shellcode
MD5 | 2de190d18295670026d6108032bb2edf
NKInfoWeb SQL Injection
Posted Apr 24, 2010
Authored by d4rk-h4ck3r

NKInfoWeb suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9ea52ca12786714661d35433f8da15d6
CommView 6.1 Denial Of Service
Posted Apr 24, 2010
Authored by p4r4N0ID | Site corelan.be

CommView version 6.1 (build 636) suffers from a local denial of service vulnerability.

tags | advisory, denial of service, local
MD5 | ecb52cdf5fbb39963e51e4fb0da2d883
Memorial Web Site Script Password Reset / Insecure Cookie
Posted Apr 24, 2010
Authored by Chip D3 Bi0s

Memorial Web Site Script suffers from password reset and insecure cookie handling vulnerabilities.

tags | exploit, web, vulnerability, insecure cookie handling
MD5 | ec04c83bfeb5096694207899d8defcd8
Memorial Web Site Script Arbitrary Deletion
Posted Apr 24, 2010
Authored by Chip D3 Bi0s

Memorial Web Site Script suffers from arbitrary deletion vulnerabilities.

tags | exploit, web, arbitrary, vulnerability
MD5 | 64c6822ac89c02118e1a3145c8da4b18
CommView 6.1 Denial Of Service
Posted Apr 24, 2010
Authored by p4r4N0ID

CommView version 6.1 (build 636) local denial of service exploit.

tags | exploit, denial of service, local
MD5 | ec6d3afb21f9ac00e2bdc0851c47d85f
Debian Linux Security Advisory 2039-1
Posted Apr 24, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2039-1 - It was discovered that Cacti, a frontend to rrdtool for monitoring systems and services missed input sanitising, making an SQL injection attack possible.

tags | advisory, sql injection
systems | linux, debian
MD5 | 9cba2bd591957275baabc5a17bbea69f
EPay Enterprise 4.13 SQL Injection
Posted Apr 24, 2010
Authored by v3n0m

EPay Enterprise version 4.13 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0549f3fcdaa0f9a2a4df03ff0e192819
DataLife Engine 6.9 Cross Site Scripting
Posted Apr 24, 2010
Authored by MustLive

DataLife Engine version 6.9 suffers from a cross site scripting vulnerability via the Referer header.

tags | exploit, xss
MD5 | e0b471da55ea71515003d1928f9913c2
Zero Day Initiative Advisory 10-078
Posted Apr 24, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-078 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ZENworks Server (zenserver.exe). This Tomcat server listens by default on TCP ports 80 and 443. The vulnerability exists in the UploadServlet. Using the UploadServlet an attacker can upload a malicious file outside of the TEMP directory on the server. By accessing this uploaded file remotely it is executed in the context of the zenserver.exe process. This can be exploited to gain arbitrary code execution in the context of the user running the ZENworks server.

tags | advisory, remote, arbitrary, tcp, code execution
MD5 | 70e14fc634206483eb5407a6749f804c
Mihao8 CMS Cross Site Scripting
Posted Apr 24, 2010
Authored by riusksk

Mihao8 CMS suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | ad4bf43fa2b5f063289cf495f1080d5c
Firebrand Technologies Local File Inclusion
Posted Apr 24, 2010
Authored by R3VAN_BASTARD

Firebrand Technologies suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 043ec42b5fd265e3b1a01e0589db9cdf
29 Bytes setuid(0) And execve("/bin/sh",...) Shellcode
Posted Apr 24, 2010
Authored by Marcin Ulikowski

29 bytes small setuid(0) and execve("/bin/sh",...) shellcode.

tags | shellcode
MD5 | 8a1a8e63c0bda2d235a2b40efddde311
Another File Integrity Checker 2.15
Posted Apr 24, 2010
Authored by Eric Gerbier | Site afick.sourceforge.net

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.

Changes: Afick will now work on Windows Vista/Seven with uac. Afick_cron now uses boune syntax instead of bash syntax. A bug has been fixed for activeperl 5.10.1.1007. Remaining environment variables in the configuration file are detected/replaced by the check_config and clean_config options.
tags | tool, integrity
systems | windows, unix
MD5 | 5ed77c562b9615b89a2f62cdb97720d8
Mac OS X 10.6.3 Filesystem HFS Denial Of Service
Posted Apr 24, 2010
Authored by Maksymilian Arciemowicz

Mac OS X version 10.6.3 suffers from a HFS related denial of service vulnerability.

tags | exploit, denial of service
systems | apple, osx
advisories | CVE-2010-0105
MD5 | d89986c71d3d5cc8e9d36186955f67d7
Page 1 of 2
Back12Next

File Archive:

March 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    15 Files
  • 2
    Mar 2nd
    5 Files
  • 3
    Mar 3rd
    3 Files
  • 4
    Mar 4th
    25 Files
  • 5
    Mar 5th
    20 Files
  • 6
    Mar 6th
    16 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    12 Files
  • 9
    Mar 9th
    3 Files
  • 10
    Mar 10th
    4 Files
  • 11
    Mar 11th
    23 Files
  • 12
    Mar 12th
    12 Files
  • 13
    Mar 13th
    12 Files
  • 14
    Mar 14th
    19 Files
  • 15
    Mar 15th
    12 Files
  • 16
    Mar 16th
    3 Files
  • 17
    Mar 17th
    1 Files
  • 18
    Mar 18th
    15 Files
  • 19
    Mar 19th
    1 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close