exploit the possibilities
Showing 1 - 25 of 128 RSS Feed

Files Date: 2010-08-26

Secunia Security Advisory 41162
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Mihalism Multi Host, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 3b10875ea42f5e93c2b5a65c9eb755dd
Secunia Security Advisory 41131
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in IZArc, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 857b08802ca8754c24377fece3f2b39e
Secunia Security Advisory 41125
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Cisco Packet Tracer, which can be exploited by malicious people to compromise a user's system.

tags | advisory
systems | cisco
MD5 | 77a624c4c03e1b2b0d29af6a5ce43377
Secunia Security Advisory 41137
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Roxio Media Creator, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 09a71703d9700cda02f5f9a53ed2bb01
Secunia Security Advisory 41103
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in PKZIP, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 1c6f0693409629b7be2d7bc243618630
Secunia Security Advisory 41147
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Eskarina Smith has discovered a vulnerability in Auto CMS, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 9c23d0a089f44f02079d4fa594130dac
Secunia Security Advisory 41127
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Webmatic, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | bd0a1b621350df85c5955836e4101089
Secunia Security Advisory 41116
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered some vulnerabilities in Target CMS, which can be exploited by malicious user to conduct script insertion attacks, SQL injection attacks, and disclose sensitive information and by malicious people to conduct cross-site scripting attacks, SQL injection attacks, and disclose sensitive information.

tags | advisory, vulnerability, xss, sql injection
MD5 | 36d3c89e35c01aefc6bc10945c06b885
Secunia Security Advisory 41168
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Mozilla Firefox, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 57916baf50ba53f5e4db873cff3dd34b
Secunia Security Advisory 41100
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | cisco
MD5 | eaba613dce7a89f19d5a6ca56552e9fe
Ubuntu Security Notice 977-1
Posted Aug 26, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 977-1 - It was discovered that MoinMoin did not properly sanitize its input, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.

tags | advisory, remote, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2010-2487, CVE-2010-2969, CVE-2010-2970
MD5 | f68f3a58fdfc97baf2600337ecdae858
Cisco Security Advisory 20100825-cucm
Posted Aug 26, 2010
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Unified Communications Manager contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of voice services.

tags | advisory, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2010-2837, CVE-2010-2838
MD5 | 39b956735d64474208f2097bb325129d
Cisco Security Advisory 20100825-cup
Posted Aug 26, 2010
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Unified Presence contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of presence services. suffers from a denial of service vulnerability.

tags | advisory, denial of service, vulnerability, protocol
systems | cisco
advisories | CVE-2010-2839, CVE-2010-2840
MD5 | 33edb5f3958a5e2477649763ba65dfab
Google Earth 5.1.3535.3218 DLL Hijacking Exploit
Posted Aug 26, 2010
Authored by LiquidWorm | Site zeroscience.mk

Google Earth version 5.1.3535.3218 DLL hijacking exploit that leverages quserex.dll.

tags | exploit
MD5 | 6fbd052731b9bbd40eba76c70dd87773
Nullsoft Winamp 5.581 DLL Hijacking Exploit
Posted Aug 26, 2010
Authored by LiquidWorm | Site zeroscience.mk

Nullsoft Winamp version 5.581 DLL hijacking exploit that leverages wnaspi32.dll.

tags | exploit
MD5 | 9683aecf71f52839df66101d92b394ba
Microsoft Office PowerPoint 2007 12.0.4518 DLL Hijacking Exploit
Posted Aug 26, 2010
Authored by LiquidWorm | Site zeroscience.mk

Microsoft Office PowerPoint 2007 version 12.0.4518 DLL hijacking exploit that leverages pp4x322.dll.

tags | exploit
MD5 | 11bfa4e4ee5e432098464b0ff11324be
Adobe Shockwave Director mmap Trusted Chunk Size Remote Code Execution
Posted Aug 26, 2010
Authored by Aaron Portnoy, Logan Brown | Site dvlabs.tippingpoint.com

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Shockwave. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the DIRAPIX module responsible for parsing the RIFF-based Director file format. When handling the mmap chunk, the process trusts the chunk size immediately following the fourCC value. It is passed to Ordinal1111 exported by the IML32X module which is responsible for allocating a heap buffer for processing the rest of the chunk. If an incorrect size is provided, later memory copies can corrupt data beyond the allocated buffer. This can be abused to execute remote code under the context of the user running the web browser.

tags | advisory, remote, web, arbitrary
advisories | CVE-2010-2870
MD5 | 33e5b0573ece83e983beb2adc72c6a91
GFI WebMonitor Script Code Injection
Posted Aug 26, 2010
Authored by Oliver Karow | Site oliverkarow.de

The GFI WebMonitor administrative interface suffers from a remote script code injection vulnerability.

tags | advisory, remote
MD5 | e852ee5571207a5c8ba662b8b597b2bf
Secunia Security Advisory 41159
Posted Aug 26, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in SSSD, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | e80dfbca3f22019d9318f8d16d79ed55
eSitesBuilder Cross Site Scripting / Path Disclosure / SQL Injection
Posted Aug 26, 2010
Authored by MustLive

eSitesBuilder suffers from cross site scripting, path disclosure and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 9bd927d0824e7189634c8884404aa2f9
Media Player Classic 6.4.9.1 DLL Hijacking Exploit
Posted Aug 26, 2010
Authored by LiquidWorm | Site zeroscience.mk

Media Player Classic version 6.4.9.1 DLL hijacking exploit that leverages iacenc.dll.

tags | exploit
MD5 | 9375a1adfd717f53e2832cdd892e3db0
CVE Checker 0.4
Posted Aug 26, 2010
Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: This release includes internal project files reorganization (more to the liking of the GNU autoconf/automake standards), fixes a database leak bug, and introduces a slightly more intelligent pullcves command (with multiple return code behavior to improve automation efforts). All documentation has been updated, and a pullcves manual page has been added.
tags | vulnerability
systems | unix
MD5 | 83ec8494760832e1e391601aa0a612e7
Ubuntu Security Notice 976-1
Posted Aug 26, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 976-1 - It was discovered that Tomcat incorrectly handled invalid Transfer-Encoding headers. A remote attacker could send specially crafted requests containing invalid headers to the server and cause a denial of service, or possibly obtain sensitive information from other requests.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2010-2227
MD5 | 0b74366029786f67cded22e3a6d3a27b
Corel PHOTO-PAINT X3 13.0.0.576 DLL Hijacking Exploit
Posted Aug 26, 2010
Authored by LiquidWorm | Site zeroscience.mk

Corel PHOTO-PAINT X3 version 13.0.0.576 DLL hijacking exploit that leverages crlrib.dll.

tags | exploit
MD5 | 4e105a1cda037b305a27801d3e7d61dc
Zero Day Initiative Advisory 10-165
Posted Aug 26, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-165 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Internet Security Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the UfPBCtrl.dll ActiveX control. The extSetOwner function accepts a parameter and assumes it is an initialized pointer. By specifying an invalid address, an attacker can force the process to call into a controlled memory region. This can be exploited to execute remote code under the context of the user invoking the browser.

tags | advisory, remote, arbitrary, activex
MD5 | 79d435b7566cb78ed40a20bd51f2e7e9
Page 1 of 6
Back12345Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    19 Files
  • 16
    Oct 16th
    25 Files
  • 17
    Oct 17th
    17 Files
  • 18
    Oct 18th
    7 Files
  • 19
    Oct 19th
    1 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close