Andr01d Magic Dumper is a perl script that lets you search for 3rd party passwords, dump the call log, dump contacts, dump wireless configuration, and more.
d72a4fda030c2eda19593c20082b0ddc82155913a8fe017727f81010ac6ccda8T50 Sukhoi PAK FA Mixed Packet Injector (f.k.a. F22 Raptor) is a tool designed to perform "Stress Testing". It is a powerful and an unique packet injection tool. The author has added in some anti-kiddo tricks.
1a4f11b993b8a80388bd33f4cc736819517ff227be6e83f04f3403aa15bb4234whCMS version 0.115 Alpha suffers from a cross site request forgery vulnerability.
a9b89c32cec3cd33690975012da7f205c95ca22cb4baeaf6badbfcb7db5ff4c4ACROS Security Problem Report #2011-01-11-1 - A binary planting vulnerability in F-Secure Internet Security 2010 and 2011, F-Secure Anti-Virus 2010 and 2011 and multiple other F-Secure products allows local or remote (even Internet-based) attackers to deploy and execute malicious code on Windows machines in the context of logged-on users.
01f52cb96345599ee288a5aaf14347b748cc0327df5569dc06d00aff5958486bWitchxtool is a perl script that consists of a port scanner, LFI scanner, MD5 bruteforcer, dork SQL injection scanner, fresh proxy scanner, and a dork LFI scanner.
833d41e3d4cc5515b41acff39daf512f73c3e5420ec0e662d92add4c50aa6e45Energine version 2.3.8 suffers from cross site request forgery, path disclosure, and remote SQL injection vulnerabilities.
f3a42b4a26c8545636e37c0a6fab6d1aee99fa946f57c2593836c39a61f5116dVaM Shop version 1.6 suffers from cross site request forgery and cross site scripting vulnerabilities.
e8f55967831064b8aa28d53e800e6327dedc31458ff7b1b2967bee8a7c39c7feDiafan CMS version 4.3 suffers from cross site request forgery and cross site scripting vulnerabilities.
551fffb8b6621732a0e7acd0fa4eb6f8eff051d3c6161ce5c63cf17c06388217Cambio version 0.5a suffers from a cross site request forgery vulnerability.
9116dd710afa41b503f18fdf3f03e44b0138e88bc3e5fc20dc307390c03aa488Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very flexible.
d46060d223d96fc42554acdc64b1cf95c5fbf905d7daa19f4be00ce3b80a0fbdPhorensix is a post-login VoIP forensics tool created for Asterisk (tested on Asterisk 1.4.5 to be exact). Phorensix takes a look at a rogue host connecting to a vulnerable account. Who is connecting, where are they coming from, what are they doing to my PBX, what are they doing ON MY PBX.
c1c3095c55f2ee325938757792b91d6a8739f648eb60657a6fc3e8c534058355W-Agora versions 4.2.1 and below suffer from cross site scripting, denial of service, and remote SQL injection vulnerabilities.
ef75e866d4249b6b095182cd5de8fd073063a90cc658c257e7322bad0e6a6f9dNokia Multimedia Player version 1.0 SEH unicode exploit.
38feea6c86de7fdd960e3a0e0951208b5f74ed2d58028405e405845c7c7bb555Mono/Moonlight suffers from a local privilege escalation vulnerability.
dbb7e39dc55c86d76a0dd4ef8dadef2773134510e6cf07fbbc3bf405f1dcc77dThis archive has a pcap file that demonstrates the Wireshark ZigBee ZCL dissector infinite loop denial of service vulnerability.
7211ea67fe5b4c0ebac815865af33fe662c004747752dbb8e69dc1f5aef26f6fGMER versions 1.0.15.15087 and below suffer from a pointer dereference vulnerability. Both an advisory and exploit are included in this archive.
7cbf50aa017e12f55c31b1f73898c64ed1fe3bdeb1bb0faa8eaac256e81ca369Secunia Security Advisory - Multiple vulnerabilities have been discovered in Newv SmartClient NewvCommon ActiveX control, which can be exploited by malicious people to manipulate certain data and compromise a user's system.
124bdb49ee740ac4ee61646223eeabcaf1881a5019046473cd11d116020ba2ddTomcat/JBoss .nse script for nmap that also includes a short dictionary attack for Tomcat's /manager/html basic-auth.
d137ef1900e82dc5d32696185e0c0429b0f837c050ec8d213194f75103c9bcceaidSQL SQL injection detection and exploitation tool is a modular PHP scanner that allows you to develop your own plugins for use.
ac0d3ebd50b8ed0d5e391ccaba376170718b01af8eda840d89a24f4b5cd7a4f7Secunia Security Advisory - Slackware has issued an update for php. This fixes a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service).
6babc8fe65ef5a7d306ed67c65ddfe63f910ee8d0585db41560819ea5b8d5b16Secunia Security Advisory - John Leitch has discovered a vulnerability in Wing FTP Server, which can be exploited by malicious people to conduct cross-site request forgery attacks.
d4a5db2043fc6274a0ffdcbcf0ca50a11264d6e99bd1daccceafda2cf86653a1Secunia Security Advisory - High-Tech Bridge SA has discovered multiple vulnerabilities in VaM Shop, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
f7eea18c3432a83a26ca868f453a6db862294c0c76855117521bc64d47f6c6bdSecunia Security Advisory - Ubuntu has issued an update for linux and linux-ec2. This fixes some weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose system information and potentially sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to disclose potentially sensitive information.
d7cc67a4a115cbeff2bfe9a15fa57b77c9a5ede4fe95fe582f33b6c9c5aeb5b9Secunia Security Advisory - A vulnerability has been discovered in LotusCMS, which can be exploited by malicious people to disclose sensitive information.
b7a7bb27bceedbdb8e40b221e623c4a620f9fe129a6b9467b6c318d5ae52337eSecunia Security Advisory - Two vulnerabilities have been reported in Microsoft Data Access Components, which can be exploited by malicious people to compromise a user's system.
9be8f8a7b1dfe2b30ad87a89fd6073f7f04f3c50c2d9b4a61a96539473b501b9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed