exploit the possibilities
Showing 1 - 25 of 84 RSS Feed

Files Date: 2010-09-11

Mandriva Linux Security Advisory 2010-174
Posted Sep 11, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-174 - Stack-based buffer overflow in the bgp_route_refresh_receive function in bgp_packet.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a malformed Outbound Route Filtering message. bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unknown AS type in an AS path attribute in a BGP UPDATE message. Updated packages are available that bring Quagga to version 0.99.17 which provides numerous bugfixes over the previous 0.99.12 version, and also corrects these issues.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2010-2948, CVE-2010-2949
MD5 | e1e5616bfa5b08fe0782d85563830e0b
Joomla NKC 2.0.b Beta SQL Injection
Posted Sep 11, 2010
Authored by Valentin Hoebel

The Joomla NKC component version 2.0.b Beta suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e1cd9370f9976202fe2f386b5da1e9cc
Mandriva Linux Security Advisory 2010-173
Posted Sep 11, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-173 - Security issues were identified and fixed in firefox and mozilla-thinderbird. Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 do not properly restrict read access to the statusText property of XMLHttpRequest objects, which allows remote attackers to discover the existence of intranet web servers via cross-origin requests. Cross-site scripting vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 allows user-assisted remote attackers to inject arbitrary web script or HTML via a selection that is added to a document in which the designMode property is enabled. Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 do not properly restrict use of the type attribute of an OBJECT element to set a document's charset, which allows remote attackers to bypass cross-site scripting protection mechanisms via UTF-7 encoding. Various other issues were addressed.

tags | advisory, remote, web, arbitrary, xss
systems | linux, mandriva
advisories | CVE-2010-2764, CVE-2010-2769, CVE-2010-2768, CVE-2010-2762, CVE-2010-2766, CVE-2010-3167, CVE-2010-3168, CVE-2010-2760, CVE-2010-2765, CVE-2010-3166, CVE-2010-2767, CVE-2010-3169
MD5 | bdf0c71494fe71aeb99e91f83382b1be
Mandriva Linux Security Advisory 2010-172
Posted Sep 11, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-172 - Some vulnerabilities were discovered and corrected in the Linux kernel. Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel before 2.6.35 might allow local users to gain privileges or cause a denial of service via unspecified vectors. The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the cifs.upcall userspace helper, which allows local users to spoof the results of DNS queries and perform arbitrary CIFS mounts via vectors involving an add_key call, related to a cache stuffing issue and MS-DFS referrals. The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server. Integer overflow in the ext4_ext_get_blocks function in fs/ext4/extents.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service via a write operation on the last block of a large file, followed by a sync operation.

tags | advisory, denial of service, overflow, arbitrary, kernel, local, spoof, vulnerability
systems | linux, mandriva
advisories | CVE-2010-2240, CVE-2010-2492, CVE-2010-2524, CVE-2010-3015
MD5 | 42e8224f2625e072bff3266c7756ac26
HP Security Bulletin HPSBMA02576 SSRT090231
Posted Sep 11, 2010
Authored by Hewlett Packard | Site hp.com

HP Security Bulletin - A potential security vulnerability has been identified with HP Data Protector Express 3.x and 4.x and HP Data Protector Express Single Server Edition (SSE) 3.x and 4.x running on supported Microsoft Windows, Linux, and NetWare versions. The vulnerability could be exploited locally to create a Denial of Service (DoS) or to execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, windows
advisories | CVE-2010-3007
MD5 | 11e8a1732da1d4053172c4e6014f0cb1
Piwigo 2.1.2 Cross Site Request Forgery / Cross Site Scripting / SQL Injection
Posted Sep 11, 2010
Authored by Sweet

Piwigo version 2.1.2 suffers from cross site request forgery, cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | 3988474faf20a972d0fc609ed1f44fa9
Mechbunny PaysiteReviewCMS Cross Site Scripting
Posted Sep 11, 2010
Authored by Valentin Hoebel

Mechbunny PaysiteReviewCMS suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 537a89782f0db038688b9600e53e65d0
YOPS Remote Command Execution
Posted Sep 11, 2010
Authored by ipax | Site dclabs.com.br

YOPS (Your Own Personal [WEB] Server) version 2009-11-30 suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, web, overflow
MD5 | c648fe223b54443d9d9543189d3da13e
Mechbunny Porn Tube Search Cross Site Scripting / Redirection
Posted Sep 11, 2010
Authored by Valentin Hoebel

Mechbunny Porn Tube Search Script suffers from cross site scripting and redirection vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 53245624ae7bf7232b6c950de2250e8a
NMB Scanner 1.2.6
Posted Sep 11, 2010
Authored by Gregoire Barbier | Site gbarbier.free.fr

NMB Scanner scans the shares of a SMB network, using the NMB and SMB protocols. It is useful for acquiring information on a local area network for such purposes as security auditing. It can obtain such information as NMB/SMB/Windows hostname, IP address, IP hostname, ethernet MAC address, Windows username, NMB/SMB/Windows domain name, and master browser. It can discover all the NMB/SMB/Windows hosts on a local area network by using the hosts lists maintained by master browsers.

Changes: Public share listing support, some MAC address listing improvements such as split ARP-queried and SMB-queried MAC addresses and the hiding of null MAC addresses, and other minor improvements.
tags | tool, local, scanner, protocol
systems | windows, unix
MD5 | 18ae53952d074c013994baddeffa2a5d
Acoustica MP3 Audio Mixer 2.471 SEH Overwrite
Posted Sep 11, 2010
Authored by Carlos Hollmann

Acoustica MP3 Audio Mixer version 2.471 extended M3U directives SEH overwrite exploit.

tags | exploit
MD5 | 8d8d5c95502bc7b6ade85730db13e451
Webkit Memory Corruption
Posted Sep 11, 2010
Authored by Jose Antonio Vazquez Gonzalez

Webkit on Apple Safari versions prior to 4.1.2 and 5.0.2 and Google Chrome versions prior to 5.0.375.125 suffers from a memory corruption vulnerability.

tags | exploit
systems | apple
advisories | CVE-2010-1813
MD5 | c02933ebe9605677f38a92ea22c0fc78
Symphony 2.0.7 SQL Injection / Cross Site Scripting
Posted Sep 11, 2010
Authored by JosS

Symphony version 2.0.7 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 9a422dd06d42f19e5557a8b24d0130c0
HexInject 1.1
Posted Sep 11, 2010
Authored by crossbower | Site hexinject.sourceforge.net

HexInject is a hexadecimal and raw packet injector and sniffer. It can be easily combined with other tools to provide a powerful command line framework for raw network access. It will automatically set the correct checksum (IP, TCP, UDP, ICMP).

tags | tool, udp, sniffer, tcp
MD5 | 8542411cc5d31101e2a8f56b73dd6fa1
CubeCart 4.3.3 SQL Injection / Cross Site Scripting
Posted Sep 11, 2010
Authored by Bogdan Calin | Site acunetix.com

CubeCart version 4.3.3 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | e8d2880c2bc093d47b1caf4696823a64
ColdUserGroup 1.6 Bypass / Cross Site Scripting
Posted Sep 11, 2010
Authored by Sangteamtham

ColdUserGroup version 1.6 suffers from bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, bypass
MD5 | 4ae352c11f6a3ceb653178eb0d2e05ca
Adobe Flash Player IE Insecure DLL Hijacking
Posted Sep 11, 2010
Authored by Aung Khant | Site yehg.net

Adobe Flash Player IE version 10.1.x suffers from an insecure DLL hijacking vulnerability.

tags | advisory
MD5 | 7420abfe0cdfd375df579e5a1a2d9050
PGP Desktop Insecure DLL Hijacking
Posted Sep 11, 2010
Authored by Aung Khant | Site yehg.net

PGP Desktop versions 9.10.x through 10.0.0 suffers from an insecure DLL hijacking vulnerability.

tags | advisory
MD5 | 98e4e97261791dc1de0c532cdba63b7a
Debian Linux Security Advisory 2107-1
Posted Sep 11, 2010
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2107-1 - Dan Rosenberg discovered that in couchdb, a distributed, fault-tolerant and schema-free document-oriented database, an insecure library search path is used; a local attacker could execute arbitrary code by first dumping a maliciously crafted shared library in some directory, and then having an administrator run couchdb from this same directory.

tags | advisory, arbitrary, local
systems | linux, debian
advisories | CVE-2010-2953
MD5 | d5d557e4848a756063f7c6e319939cb8
CVE Checker 0.6
Posted Sep 11, 2010
Authored by Sven Vermeulen | Site cvechecker.sourceforge.net

cvechecker reports about possible vulnerabilities on your system by scanning the installed software and matching the results with the CVE database. This is not a bullet-proof method and you will most likely have many false positives, but it is still better than nothing, especially if you are running a distribution with little security coverage.

Changes: Reporting performance was improved tremendously for recent SQLite libraries. Reporting on found software, regardless of it matching a CVE entry, was added, and quite a few bugs were fixed.
tags | vulnerability
systems | unix
MD5 | 0e7c5d0504b2ddc2e069ee1d3e0b7edd
Elliptic Curve Cryptography Anomalous Curves
Posted Sep 11, 2010
Authored by Alonso De Jesus Garcia Herrera, Carlos Mario Penagos Hollmann

Whitepaper called Elliptic Curve Cryptography Anomalous Curves. Written in Spanish.

tags | paper
MD5 | 2b639c3df334eaf5d930ef387fb86c6c
Month Of Abysssec Undisclosed Bugs - ASP Nuke 0.80
Posted Sep 11, 2010
Authored by Abysssec | Site abysssec.com

Month Of Abysssec Undisclosed Bugs - ASP Nuke version 0.80 suffers from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection, asp
MD5 | 4bf52396b5f0c01190bf7eb76407a975
Month Of Abysssec Undisclosed Bugs - Microsoft Word
Posted Sep 11, 2010
Authored by Abysssec, Shahin | Site abysssec.com

Month Of Abysssec Undisclosed Bugs - Microsoft Office Word 2007 suffers from a sprmCMajority related buffer overflow vulnerability.

tags | advisory, overflow
advisories | CVE-2010-1900
MD5 | 4de6aa1d99a44432101422734338d37c
Month Of Abysssec Undisclosed Bugs - Excel RTD Memory Corruption
Posted Sep 11, 2010
Authored by Abysssec, Shahin | Site abysssec.com

Month Of Abysssec Undisclosed Bugs - Excel RTD suffers from a memory corruption vulnerability.

tags | advisory
advisories | CVE-2010-1246
MD5 | 426eec4a19110f387aa07f886aa42af2
Month Of Abysssec Undisclosed Bugs - aradBlog 1.2.8
Posted Sep 11, 2010
Authored by Abysssec | Site abysssec.com

Month Of Abysssec Undisclosed Bugs - aradBlog versions 1.2.8 and below suffer from shell upload and remote administrative access vulnerabilities.

tags | advisory, remote, shell, vulnerability
MD5 | 00564b90305f6b6c6f994d0035b72aa8
Page 1 of 4
Back1234Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    19 Files
  • 16
    Oct 16th
    25 Files
  • 17
    Oct 17th
    17 Files
  • 18
    Oct 18th
    7 Files
  • 19
    Oct 19th
    1 Files
  • 20
    Oct 20th
    4 Files
  • 21
    Oct 21st
    5 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close