what you don't know can hurt you
Showing 1 - 25 of 26 RSS Feed

Files Date: 2011-05-05

BMC Dashboards 7.6.01 XSS / File Reading
Posted May 5, 2011
Authored by ProCheckUp, Richard Brain, Jan Fry | Site procheckup.com

BMC Dashboards version 7.6.01 suffers from cross site scripting and arbitrary file reading vulnerabilities.

tags | exploit, arbitrary, vulnerability, xss
MD5 | bce50851f2934515bde755b3f42eec8c
VMware Security Advisory 2011-0008
Posted May 5, 2011
Authored by VMware | Site vmware.com

VMware Security Advisory 2011-0008 - VMware vCenter Server directory traversal and information disclosure vulnerabilities. vSphere Client Installer is delivered through an unsigned package.

tags | advisory, vulnerability, info disclosure
advisories | CVE-2011-0426, CVE-2011-1788, CVE-2011-1789
MD5 | 64c7e61b34373b41425447a3e9b243fe
BMC Remedy Knowledge Management 7.5.00 XSS / Bypass
Posted May 5, 2011
Authored by ProCheckUp, Richard Brain | Site procheckup.com

BMC Remedy Knowledge Management version 7.5.00 suffers from authentication bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | cc9c53132408c87a1256f5d68aed93bc
Cisco Security Response 20110505-ios
Posted May 5, 2011
Authored by Cisco Systems | Site cisco.com

Cisco Security Response - Cisco PSIRT is actively working with NCNIPC (China) to further understand the details of what is reported in the bugtraq postings. At this stage Cisco PSIRT cannot confirm the existence of any new vulnerabilities in Cisco IOS Software based on the information that is currently available.

tags | advisory, vulnerability
systems | cisco
MD5 | 8b5f387cd56f8a9c47fc41125a608286
Ubuntu Security Notice USN-1111-1
Posted May 5, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1111-1 - Multiple vulnerabilities have been addressed in the Linux 2.6 kernel. Dan Rosenberg discovered multiple flaws in the X.25 facilities parsing. Vegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. Nelson Elhage discovered that the kernel did not correctly handle process cleanup after triggering a recoverable kernel bug. Nelson Elhage discovered that Econet did not correctly handle AUN packets over UDP. Dan Rosenberg discovered that the OSS subsystem did not handle name termination correctly. Dan Rosenberg discovered that IRDA did not correctly check the size of buffers. Dan Carpenter discovered that the TTPCI DVB driver did not check certain values during an ioctl. Jens Kuehnel discovered that the InfiniBand driver contained a race condition. Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values.

tags | advisory, kernel, udp, vulnerability
systems | linux, ubuntu
advisories | CVE-2010-4164, CVE-2010-4249, CVE-2010-4258, CVE-2010-4342, CVE-2010-4527, CVE-2010-4529, CVE-2011-0521, CVE-2011-0695, CVE-2011-1017
MD5 | 5cfa21ecf64f02a0235d9824d46af1ed
BadAss 0.1 Alpha
Posted May 5, 2011
Authored by blass

BadAss is a Ruby script that makes it very easy to perform cracking attacks, port scanning, and more.

tags | tool, ruby
systems | unix
MD5 | 248bcb3127658085e5010bf95f498db2
PHP Directory Listing Script 3.1 Cross Site Scripting
Posted May 5, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

PHP Directory Listing version 3.1 suffers from a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 3eaf99d481378643bce5dbf892a5365a
PHPDug 2.0.0 XSS / XSRF / SQL Injection
Posted May 5, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

PHPDug version 2.0.0 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | f11ed1fdcec542c568656a4e9cf925b8
Ajax Calendar 1.0 Cross Site Scripting
Posted May 5, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Ajax Calendar version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 07f553f5e09d7c4db8ce5e59558475c9
Introduction To Man-In-The-Middle Attacks
Posted May 5, 2011
Authored by Pouya Daneshmand

Whitepaper called Introduction to Man-in-the-middle Attacks. Written in Persian.

tags | paper
MD5 | c6d9c8900cbd54113b00b5e59cfc0a04
t2'11 Call For Papers
Posted May 5, 2011
Site t2.fi

t2'11 Call For Papers - This conference will take place from October 27th through the 28th, 2011 in Helsinki, Finland.

tags | paper, conference
MD5 | d20495ac2fd5365e0ec5e1e76503620a
Ubuntu Security Notice USN-1122-2
Posted May 5, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1122-2 - USN-1122-1 fixed vulnerabilities in Thunderbird for Lucid and Maverick. This update provides the corresponding fixes for Natty. It was discovered that there was a vulnerability in the memory handling of certain types of content. An attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. It was discovered that Thunderbird incorrectly handled certain JavaScript requests. If JavaScript were enabled, an attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. Ian Beer discovered a vulnerability in the memory handling of a certain types of documents. An attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. Multiple other vulnerabilities were also addressed.

tags | advisory, overflow, arbitrary, javascript, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2011-0065, CVE-2011-0066, CVE-2011-0067, CVE-2011-0069, CVE-2011-0070, CVE-2011-0071, CVE-2011-0072, CVE-2011-0073, CVE-2011-0074, CVE-2011-0075, CVE-2011-0077, CVE-2011-0078, CVE-2011-0080, CVE-2011-0081, CVE-2011-1202
MD5 | 13376de19894833f92a88a2b7818511c
Ubuntu Security Notice USN-1122-1
Posted May 5, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1122-1 - It was discovered that there was a vulnerability in the memory handling of certain types of content. An attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. It was discovered that Thunderbird incorrectly handled certain JavaScript requests. If JavaScript were enabled, an attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. Ian Beer discovered a vulnerability in the memory handling of a certain types of documents. An attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. Multiple other vulnerabilities were also addressed.

tags | advisory, overflow, arbitrary, javascript, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2011-0065, CVE-2011-0066, CVE-2011-0067, CVE-2011-0069, CVE-2011-0070, CVE-2011-0071, CVE-2011-0072, CVE-2011-0073, CVE-2011-0074, CVE-2011-0075, CVE-2011-0077, CVE-2011-0078, CVE-2011-0080, CVE-2011-0081, CVE-2011-1202
MD5 | ac0ab599716943e519fdaec4758e7c68
Ubuntu Security Notice USN-1126-2
Posted May 5, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1126-2 - USN 1126-1 fixed several vulnerabilities in PHP. The fix for CVE-2010-4697 introduced an incorrect reference counting regression in the Zend engine that caused the PHP interpreter to segfault. This regression affects Ubuntu 6.06 LTS and Ubuntu 8.04 LTS.

tags | advisory, php, vulnerability
systems | linux, ubuntu
advisories | CVE-2011-1144, CVE-2006-7243, CVE-2010-4697, CVE-2010-4698, CVE-2011-0420, CVE-2011-0421, CVE-2011-0441, CVE-2011-0708, CVE-2011-1072, CVE-2011-1092, CVE-2011-1144, CVE-2011-1148, CVE-2011-1153, CVE-2011-1464, CVE-2011-1466, CVE-2011-1467, CVE-2011-1468, CVE-2011-1469, CVE-2011-1470, CVE-2011-1471
MD5 | 0e2b45f3123eaf29102228d7f91ad24c
IRL Digital Media SQL Injection
Posted May 5, 2011
Authored by RoAd_KiLlEr

IRL Digital Media suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ba5e053d00438ecfb072d01064181970
Leading Edge Technology Solutions SQL Injection
Posted May 5, 2011
Authored by RoAd_KiLlEr

Leading Edge Technology Solutions (L.E.T.S) suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7e71d83994dd3f8120eee7ac20f96cba
SPlayer 3.7 Buffer Overflow
Posted May 5, 2011
Authored by xsploited Security

SPlayer versions 3.7 build 2055 and below buffer overflow exploit that spawns calc.exe.

tags | exploit, overflow
MD5 | b32c4714616c77834a35864a0724c533
HP Security Bulletin HPSBMA02667 SSRT100464 3
Posted May 5, 2011
Authored by HP | Site hp.com

HP Security Bulletin HPSBMA02667 SSRT100464 3 - Potential security vulnerabilities have been identified with HP SiteScope. These vulnerabilities could be exploited remotely via Cross Site Scripting (XSS) and HTML injection. Revision 3 of this advisory.

tags | advisory, vulnerability, xss
advisories | CVE-2011-1726, CVE-2011-1727
MD5 | c1a6b474272f4adb9b992bf79a8a27b3
Secunia Security Advisory 44432
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Menu Access module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | a715cd2ef0beaa37a3fe370701e1b17f
Secunia Security Advisory 44422
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information and compromise a user's system.

tags | advisory, vulnerability
systems | linux, ubuntu
MD5 | dfbc54f2349f393196998248f691fb4e
Secunia Security Advisory 44092
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in Directory Listing Script, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 24777d3596d5074de238947db99be43f
Secunia Security Advisory 44400
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for perl. This fixes a vulnerability and some security issues, which can be exploited by malicious people to bypass certain security restrictions and conduct HTTP response splitting attacks.

tags | advisory, web, perl
systems | linux, ubuntu
MD5 | 1a11300f8a6837ff71fc1f5f4e2e9e9e
Secunia Security Advisory 44452
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weakness has been discovered in Asterisk, which can be exploited by malicious people to determine valid usernames.

tags | advisory
MD5 | b20d19cdf30a93653303ea3ca5f52ac4
Secunia Security Advisory 44457
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Proofpoint Enterprise Protection, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.

tags | advisory, vulnerability, xss, sql injection
MD5 | db7d20ad9473a86d0f3232892188f494
Secunia Security Advisory 44409
Posted May 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - MustLive has discovered a vulnerability in WordPress, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | e39bb9ec35f854e90735ccd1b5fd2581
Page 1 of 2
Back12Next

File Archive:

November 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    28 Files
  • 2
    Nov 2nd
    1 Files
  • 3
    Nov 3rd
    1 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    19 Files
  • 6
    Nov 6th
    65 Files
  • 7
    Nov 7th
    22 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    1 Files
  • 10
    Nov 10th
    1 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    65 Files
  • 13
    Nov 13th
    27 Files
  • 14
    Nov 14th
    22 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    1 Files
  • 17
    Nov 17th
    3 Files
  • 18
    Nov 18th
    22 Files
  • 19
    Nov 19th
    17 Files
  • 20
    Nov 20th
    15 Files
  • 21
    Nov 21st
    16 Files
  • 22
    Nov 22nd
    2 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close