exploit the possibilities
Showing 1 - 20 of 20 RSS Feed

Files Date: 2011-03-25

Unidesk Management Administrative Bypass
Posted Mar 25, 2011
Authored by Nathan Power

The Unidesk Management Console versions 1.3 and below suffer from a direct access vulnerability that allows an attacker direct access to administrative resources.

tags | exploit, bypass
MD5 | a6bd464642b73295da562bb9ce35e9a5
Ubuntu Security Notice USN-1093-1
Posted Mar 25, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1093-1 - Joel Becker discovered that OCFS2 did not correctly validate on-disk symlink structures. Ben Hutchings discovered that the ethtool interface did not correctly check certain sizes. Eric Dumazet discovered that many network functions could leak kernel stack contents. Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A large number of additional vulnerabilities have also been address.

tags | advisory, kernel, vulnerability
systems | linux, ubuntu
advisories | CVE-2010-2478, CVE-2010-2942, CVE-2010-2943, CVE-2010-2954, CVE-2010-2955, CVE-2010-2960, CVE-2010-2962, CVE-2010-2963, CVE-2010-3067, CVE-2010-3078, CVE-2010-3079, CVE-2010-3080, CVE-2010-3084, CVE-2010-3296, CVE-2010-3297, CVE-2010-3298, CVE-2010-3310, CVE-2010-3432, CVE-2010-3437, CVE-2010-3442, CVE-2010-3477, CVE-2010-3705, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3858, CVE-2010-3859, CVE-2010-3861
MD5 | 489eff83457a79961f07c39f78b7daae
Artefact St. CMS Cross Site Scripting / Path Disclosure
Posted Mar 25, 2011
Authored by MustLive

Artefact St. CMS suffers from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
MD5 | 4c105c2078bb91233d911bbfbfd1a2c9
Family Connections CMS 2.3.2 XSS / XML Injection
Posted Mar 25, 2011
Authored by LiquidWorm | Site zeroscience.mk

Family Connections CMS version 2.3.2 suffers from stored cross site scripting and XML injection vulnerabilities.

tags | exploit, vulnerability, xss, xxe
MD5 | 3737e837c7a9f72a555d24b0c6e15940
Ubuntu Security Notice USN-1092-1
Posted Mar 25, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1092-1 - Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that certain iovec operations did not calculate page counts correctly. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. Alan Cox discovered that the HCI UART driver did not correctly check if a write operation was available. A local attacker could exploit this flaw to gain root privileges.

tags | advisory, denial of service, kernel, local, root
systems | linux, ubuntu
advisories | CVE-2010-4076, CVE-2010-4077, CVE-2010-4158, CVE-2010-4162, CVE-2010-4163, CVE-2010-4242
MD5 | 362978eca2e0e46e05f7268e1d25a4d3
EMC Data Protection Advisor Collector Arbitrary Code Execution
Posted Mar 25, 2011
Site emc.com

EMC Data Protection Advisor Collector for Solaris SPARC contains a potential security vulnerability that can be exploited to execute malicious code with elevated privileges on the affected system. EMC Data Protection Advisor Collector for Solaris SPARC versions 5.7 earlier than build 5833 and 5.7.1 earlier than build 5833 are affected.

tags | advisory
systems | solaris
advisories | CVE-2011-1420
MD5 | d647cb1b5d956107a8cac69a27fa1f14
Parallels Plesk 8.2 URL Redirection
Posted Mar 25, 2011
Authored by Aung Khant | Site yehg.net

Parallels Plesk versions 7.0 through 8.2 suffer from an open URL redirection vulnerability.

tags | exploit
MD5 | af12b61b0039d18a0ac1291c02735a4e
FXRecruiter Shell Upload
Posted Mar 25, 2011
Authored by Ashiyane Digital Security Team

FXRecruiter suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 0b970bc3612c770d1e9bb09df06b4b49
HP OpenView Network Node Manager getnnmdata.exe (Hostname) CGI Buffer Overflow
Posted Mar 25, 2011
Authored by MC | Site metasploit.com

This Metasploit module exploits a buffer overflow in HP OpenView Network Node Manager 7.50/7.53. By sending specially crafted Hostname parameter to the getnnmdata.exe CGI, an attacker may be able to execute arbitrary code.

tags | exploit, overflow, arbitrary, cgi
advisories | CVE-2010-1555, OSVDB-64976
MD5 | 6db126182cecfe4e72e62fd877200199
Secunia Security Advisory 43865
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered multiple vulnerabilities in openC, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory, vulnerability
MD5 | 162988ae8273a944b663f194d4585176
Secunia Security Advisory 43866
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered a vulnerability in openC, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | e7b0302a4da7bb9498ecc96c9dfcf9e3
Secunia Security Advisory 43571
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for pywebdav. This fixes a vulnerability, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
systems | linux, debian
MD5 | def1ef4b1f8602d7e470089aa8f01759
Secunia Security Advisory 43608
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in the Spaces module for Drupal, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | 7444b3760100caecaa654df1886d5df5
Secunia Security Advisory 43612
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered multiple vulnerabilities in Support Incident Tracker, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | d9fc86da559ac7305c35163dd2f203b7
Turkish Aybulut Portal 1.3 Cross Site Scripting
Posted Mar 25, 2011
Authored by kurdish hackers team | Site kurdteam.org

Turkish Aybulut Portal version 1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d3b39f69aa5d0fc9715fe2e457a077bf
Ubuntu Security Notice USN-1091-1
Posted Mar 25, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1091-1 - It was discovered that several invalid HTTPS certificates were issued and revoked. An attacker could use these to perform a man-in-the-middle attack. These were placed on the certificate blacklist to prevent their misuse.

tags | advisory, web
systems | linux, ubuntu
MD5 | 01969df814c55b0db550e3ca42e7bf27
Secunia Security Advisory 43881
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory
systems | linux, fedora
MD5 | b24755e6b75bcdc62b02d2666e6eac09
Secunia Security Advisory 43868
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered a vulnerability in netjukebox, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 9dd8bacdccf7a6bd7c46c9ea4189a249
Secunia Security Advisory 43858
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Mahara, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.

tags | advisory, vulnerability, csrf
MD5 | ef42c083efa8904f8eef963625d844b5
Secunia Security Advisory 43869
Posted Mar 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - AutoSec Tools has discovered a vulnerability in Group-Office, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | 1b925f13c6f5c79a5c08d8bb97428f4e
Page 1 of 1
Back1Next

File Archive:

September 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    1 Files
  • 2
    Sep 2nd
    38 Files
  • 3
    Sep 3rd
    30 Files
  • 4
    Sep 4th
    15 Files
  • 5
    Sep 5th
    12 Files
  • 6
    Sep 6th
    17 Files
  • 7
    Sep 7th
    3 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    24 Files
  • 10
    Sep 10th
    22 Files
  • 11
    Sep 11th
    22 Files
  • 12
    Sep 12th
    15 Files
  • 13
    Sep 13th
    5 Files
  • 14
    Sep 14th
    2 Files
  • 15
    Sep 15th
    1 Files
  • 16
    Sep 16th
    11 Files
  • 17
    Sep 17th
    16 Files
  • 18
    Sep 18th
    8 Files
  • 19
    Sep 19th
    14 Files
  • 20
    Sep 20th
    20 Files
  • 21
    Sep 21st
    3 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close