exploit the possibilities
Showing 1 - 25 of 27 RSS Feed

Files Date: 2010-08-23

Mandriva Linux Security Advisory 2010-157
Posted Aug 23, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-157 - The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via negative size values for certain strings in FontType42 font files, leading to a heap-based buffer overflow. FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted font file. Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted Adobe Type 1 Mac Font File font. bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service via a crafted BDF font file, related to an attempted modification of a value in a static string. The updated packages have been patched to correct these issues.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2010-2805, CVE-2010-2806, CVE-2010-2807, CVE-2010-3053
MD5 | babef798c9a7ac143dd0af5ad896d414
Mandriva Linux Security Advisory 2010-156
Posted Aug 23, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-156 - The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via negative size values for certain strings in FontType42 font files, leading to a heap-based buffer overflow. FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted font file. Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted Adobe Type 1 Mac Font File font. bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service via a crafted BDF font file, related to an attempted modification of a value in a static string. Unspecified vulnerability in FreeType 2.3.9, and other versions before 2.4.2, allows remote attackers to cause a denial of service via vectors involving nested Standard Encoding Accented Character calls, related to psaux.h, cffgload.c, cffgload.h, and t1decode.c.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2010-2805, CVE-2010-2806, CVE-2010-2807, CVE-2010-3053, CVE-2010-3054
MD5 | 92c6cdf08fefda2ef8ee18bdf8ef06f5
Joomla Zoom Portfolio SQL Injection
Posted Aug 23, 2010
Authored by Chip D3 Bi0s

The Joomla Zoom component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4deb31dd7dae5ceb193283b9ffa00baa
Link CMS SQL Injection
Posted Aug 23, 2010
Authored by hacker at sr.gov.yu

LINK CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1875c05fab67fe28e8f844cf06df03e4
AneCMS SQL Injection
Posted Aug 23, 2010
Authored by Sweet

AneCMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6a2cc3e6a10c8207c7bed9c650bb4b4d
Ananta Gazelle CMS Local File Inclusion / Cross Site Scripting
Posted Aug 23, 2010
Authored by Sweet

Ananta Gazelle CMS suffers from cross site scripting and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
MD5 | 2f7a958b207726c4728791ebb4d9e3de
4images 1.7.8 Remote File Inclusion
Posted Aug 23, 2010
Authored by LoSt.HaCkEr, aDaM_TRoJaN

4images version 1.7.8 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 8685030dabae223126a441320dd3b95b
X Zero Community Classifieds 5.2 SQL Injection / Cross Site Scripting
Posted Aug 23, 2010
Authored by indoushka

X Zero Community Classifieds version 5.2 suffers from cross site scripting and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | 10db88dfa221a958bd5c3a3b20372540
Video Script ASP Database Disclosure
Posted Aug 23, 2010
Authored by indoushka

Video Script ASP suffers from a database disclosure vulnerability.

tags | exploit, asp, info disclosure
MD5 | 9ecb248dfc1c6d27615da5e3933c772e
UblogReload 1.0.5 Database Disclosure
Posted Aug 23, 2010
Authored by indoushka

UblogReload version 1.0.5 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 76ca9d95653da3b336255b4a83ae02ef
Joomla Biblioteca 1.0 Beta SQL Injection
Posted Aug 23, 2010
Authored by Salvatore Fresta

The Joomla Biblioteca component version 1.0 Beta suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | b7ea15dc78bed1168365a6591346c1e1
Joomla / XOOPS Zina SQL Injection
Posted Aug 23, 2010
Authored by Th3 RDX

The Zina component for both Joomla and XOOPS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | be1d06313731d6f58e2ca11001e15d37
Secunia Security Advisory 41073
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for DeviceKit-power. This fixes a security issue, which can be exploited by malicious, local users to bypass certain security restrictions.

tags | advisory, local
systems | linux, fedora
MD5 | 357e2995cc98dc3f930d0d8a69d42295
Secunia Security Advisory 41069
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in FTPGetter Standard, FTPGetter Professional, and FTPGetter Professional Portable Edition, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | c4771e548ef2d7599b22b2da55aab5bd
Secunia Security Advisory 41077
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has acknowledged a vulnerability in uzbl, which can be exploited by malicious people to compromise a user's system.

tags | advisory
systems | linux, fedora
MD5 | 647eebdbf81aafb823935b42eaebe37b
Secunia Security Advisory 41075
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for phpMyAdmin. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
systems | linux, fedora
MD5 | 68eb6248c60507b66f3c45bc6fa28830
Secunia Security Advisory 41036
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in netStartEnterprise, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | bfbfc76eae773c46653b8ad697b46a90
Secunia Security Advisory 41059
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the JPodium component for Joomla!, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | 9b1394cf13c538d81137b11d6c9b1f2e
Secunia Security Advisory 41066
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in 3D-FTP, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 12eccb75d714baad9e6615ead8ab9672
Secunia Security Advisory 41067
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Auto FTP Manager, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 775c131d5665c5314ef297e35f188e9c
Secunia Security Advisory 41068
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in MAXdev MD-Pro, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | cd42483b23385dbb5c2ce6a4cdaa83d2
Secunia Security Advisory 40792
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered some vulnerabilities in libgdiplus for Mono, which can be exploited by malicious people to compromise an application using the library.

tags | advisory, vulnerability
MD5 | d270ab5c5a8ef13a2eb062ea963eaa78
Secunia Security Advisory 41037
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for lvm2. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

tags | advisory, local
systems | linux, debian
MD5 | 88bff4f31a84d413e8af83d59fb15ef1
Secunia Security Advisory 41045
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - l3D has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | windows
MD5 | 38fb2fc21acc131677614e19f6a7ffe1
Secunia Security Advisory 41057
Posted Aug 23, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - IBM has acknowledged a vulnerability in IBM Content Integrator, which can be exploited by malicious people to disclose system information or potentially sensitive information and cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 2c19ceddac32633b3163e33746d67a32
Page 1 of 2
Back12Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    19 Files
  • 16
    Oct 16th
    25 Files
  • 17
    Oct 17th
    17 Files
  • 18
    Oct 18th
    3 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close