exploit the possibilities
Showing 1 - 19 of 19 RSS Feed

Files Date: 2011-03-01

Digital Defense VRT Advisory 2010.30
Posted Mar 1, 2011
Authored by Digital Defense, r@b13$ | Site digitaldefense.net

The Alcatel-Lucent OmniVista 4760 NMS is vulnerable to a directory traversal. This flaw allows remote unauthenticated attackers to retrieve arbitrary files from a vulnerable system.

tags | advisory, remote, arbitrary
MD5 | c72b908021cbb8ccb139fd2fa9a9429d
WP Forum WordPress Plugin 1.7.8 SQL Injection
Posted Mar 1, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

WP Forum WordPress plugin version 1.7.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ed4d6fca85c086de011b5f592d4f7477
Mingle Forum WordPress Plugin 1.0.28 Cross Site Scripting / Path Disclosure
Posted Mar 1, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Mingle Forum WordPress plugin version 1.0.28 suffers from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
MD5 | 56f45c9450ef936efdbd55a936fc931a
Question And Answer Forum 1.2.4 Cross Site Scripting
Posted Mar 1, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Question and Answer Forum version 1.2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b56f36a564782d240fb1a89399c8d7e9
NextGEN Gallery WordPress Plugin 1.7.3 Path Disclosure
Posted Mar 1, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

NextGEN Gallery WordPress plugin version 1.7.3 suffers from a path disclosure vulnerability.

tags | exploit, info disclosure
MD5 | f8cb7cd69e9bf5b5158ce489622010ae
Debian Security Advisory 2163-2
Posted Mar 1, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2163-2 - The changes in python-django DSA-2163 necessary to fix the issues CVE-2011-0696 and CVE-2011-0697 introduced an unavoidable backward incompatibility, which caused a regression in dajaxice, which depends on python-django. This update supplies fixed packages for dajaxice.

tags | advisory, python
systems | linux, debian
advisories | CVE-2011-0696, CVE-2011-0697
MD5 | e1d7156ab77d02842b90d5eefb795d3d
Forritun Og Honnun SQL Injection
Posted Mar 1, 2011
Authored by eXeSoul

Forritun Og Honnun suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 90137e5db2dd39fcf16e26f4963fe6b2
Jomsborg AB, Sverige SQL Injection
Posted Mar 1, 2011
Authored by eXeSoul

Jomsborg AB, Sverige suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 927b3f9e42bb77fc4af506919da66f42
Slow SSH Bruteforcer
Posted Mar 1, 2011
Authored by Luca Hall | Site phiral.net

Slowbrute is a slow SSH brute-forcing utility written in Python. Paramiko must be installed and if Tor is being leveraged in order to anonymize the scan, run it at 127.0.0.1:9050.

tags | cracker, python
systems | linux
MD5 | 5ad6f475408e16296206c6ed2103c0b2
SnapProof Cross Site Scripting
Posted Mar 1, 2011
Authored by Difficult 511

SnapProof suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 970c5ff750bcbf5aab339a6acc04f37c
HP Security Bulletin HPSBUX02633 SSRT100387
Posted Mar 1, 2011
Authored by HP | Site hp.com

HP Security Bulletin HPSBUX02633 SSRT100387 - A potential vulnerability has been identified with HP-UX running Java. The vulnerability could be remotely exploited to create a Denial of Service (DoS). Revision 1 of this advisory.

tags | advisory, java, denial of service
systems | hpux
advisories | CVE-2010-4476
MD5 | 91994d14096538a4221fbdf7aa5219b6
Vsftpd 2.3.2 Denial Of Service
Posted Mar 1, 2011
Authored by Maksymilian Arciemowicz

Vsftpd version 2.3.2 proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
advisories | CVE-2011-0762
MD5 | 09863966c8291875392d3c442e7bdde9
Packet Storm New Exploits For February, 2011
Posted Mar 1, 2011
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 262 exploits added to Packet Storm in February, 2011.

tags | exploit
systems | linux
MD5 | fb52e7f891f143c9c7f9da4a4231f535
TOR Virtual Network Tunneling Tool 0.2.1.30
Posted Mar 1, 2011
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: This release fixes a variety of less critical bugs. The main other change is a slight tweak to Tor's TLS handshake.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | 6c6d61e053af5969a245d025c4cfce9d
Linux Kernel 2.6.37 Denial Of Service
Posted Mar 1, 2011
Authored by prdelka

Linux kernel versions 2.6.37 and below local kernel denial of service exploit that leverages a divide-by-zero error in tcp_select_initial_window when processing user supplied TCP_MAXSEG.

tags | exploit, denial of service, kernel, local
systems | linux
advisories | CVE-2010-4165
MD5 | 8b511f6f9abf85cdb0a69e2d17c92230
Vsftpd 2.3.2 Denial Of Service
Posted Mar 1, 2011
Authored by Maksymilian Arciemowicz

Vsftpd versions 2.3.2 on NetBSD and 2.3.0 on Ubuntu suffer from a remote denial of service vulnerability.

tags | exploit, remote, denial of service
systems | linux, netbsd, ubuntu
advisories | CVE-2011-0762
MD5 | 82dea11c22e451d703ea293b86d79d64
Ubuntu Security Notice USN-1079-1
Posted Mar 1, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1079-1 - Multiple openjdk-6 vulnerabilities have been addressed. It was discovered that untrusted Java applets could create domain name resolution cache entries, allowing an attacker to manipulate name resolution within the JVM. It was discovered that the Java launcher did not did not properly setup the LD_LIBRARY_PATH environment variable. A local attacker could exploit this to execute arbitrary code as the user invoking the program. It was discovered that within the Swing library, forged timer events could allow bypass of SecurityManager checks. Konstantin PreiBer and others discovered that specific double literals were improperly handled, allowing a remote attacker to cause a denial of service. It was discovered that the JNLPClassLoader class when handling multiple signatures allowed remote attackers to gain privileges due to the assignment of an inappropriate security descriptor. Various other issues were also addressed.

tags | advisory, java, remote, denial of service, arbitrary, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2010-4448, CVE-2010-4450, CVE-2010-4465, CVE-2010-4469, CVE-2010-4470, CVE-2010-4471, CVE-2010-4472, CVE-2010-4476, CVE-2011-0706
MD5 | d0fdae600b8038ace7a4e0a40f6561cf
Ubuntu Security Notice USN-1078-1
Posted Mar 1, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1078-1 - Dominik George discovered that logwatch did not properly sanitize log file names that were passed to the shell as part of a command. If a remote attacker were able to generate specially crafted filenames (for example, via Samba logging), they could execute arbitrary code with root privileges.

tags | advisory, remote, arbitrary, shell, root
systems | linux, ubuntu
advisories | CVE-2011-1018
MD5 | 589d1bfc5c88ed47a5e38120d1501883
Microsoft Windows XP WmiTraceMessageVa Integer Truncation
Posted Mar 1, 2011
Authored by Nikita Tarakanov

Proof of concept exploit that demonstrates the Microsoft Windows XP WmiTraceMessageVa integer truncation vulnerability as described in MS11-011.

tags | exploit, proof of concept
systems | windows, xp
advisories | CVE-2011-0045
MD5 | a030ca0f85ab41754f7bdf439317b6fb
Page 1 of 1
Back1Next

File Archive:

June 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    1 Files
  • 2
    Jun 2nd
    2 Files
  • 3
    Jun 3rd
    19 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    15 Files
  • 6
    Jun 6th
    12 Files
  • 7
    Jun 7th
    11 Files
  • 8
    Jun 8th
    1 Files
  • 9
    Jun 9th
    1 Files
  • 10
    Jun 10th
    15 Files
  • 11
    Jun 11th
    15 Files
  • 12
    Jun 12th
    15 Files
  • 13
    Jun 13th
    8 Files
  • 14
    Jun 14th
    16 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close