This Metasploit module exploits a stack buffer overflow in Magix Musik Maker 16. When opening a specially crafted arrangement file (.mmm) in the application, an unsafe strcpy() will allow you to overwrite a SEH handler. This exploit bypasses DEP & ASLR, and works on XP, Vista & Windows 7. Egghunter is used, and might require up to several seconds to receive a shell.
270a3316873b5bc88495642eac3f7de2a3221c8b7aa36519b966bed7c9dff806Mandriva Linux Security Advisory 2011-098 - Cross-site scripting vulnerability in the WEBrick HTTP server in Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted URI that triggers a UTF-7 error page. The safe-level feature in Ruby allows context-dependent attackers to modify strings via the Exception#to_s method, as demonstrated by changing an intended pathname. The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service via vectors involving creation of a large BigDecimal value within a 64-bit process, related to an integer truncation issue. The updated packages have been patched to correct this issue.
c941433f0af830382d2f5cef03846e0594fa90093d37e8faa51dbc590703d07cMandriva Linux Security Advisory 2011-097 - Cross-site scripting vulnerability in the WEBrick HTTP server in Ruby allows remote attackers to inject arbitrary web script or HTML via a crafted URI that triggers a UTF-7 error page. The FileUtils.remove_entry_secure method in Ruby allows local users to delete arbitrary files via a symlink attack. The safe-level feature in Ruby allows context-dependent attackers to modify strings via the Exception#to_s method, as demonstrated by changing an intended pathname. The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service via vectors involving creation of a large BigDecimal value within a 64-bit process, related to an integer truncation issue.
b4b5b329ab9f90d2cf477e7443536a822964f07e1ebebf9360cc7de333949c6avBulletin version 4.0.x suffers from a remote SQL injection vulnerability that can be leveraged using a cross site request forgery vulnerability.
f9857c4738bd671fa3a07ef92ee6901ad48b101a0bda8bf8372d643d1114462ePligg CMS version 1.1.4 suffers from multiple cross site request forgery vulnerabilities.
8cabab4755f3dfc3cf2c108c7bb0bff9c1319b5ac6edc5c8870afcae353cccd3BadAss is a Ruby script that makes it very easy to perform cracking attacks, port scanning, and more.
cc969c821f770dd276e32740bd727d5ebbd49e568f7070daadb0f14da4d42b3fMandriva Linux Security Advisory 2011-095 - It was discovered that the fix for CVE-2011-0419 under certain conditions could cause a denial-of-service attack in APR.
aee7c9b916aac108d9dc237d107aef2724cb3ece79267c7664d931b1efbc8e0aHomepages Admin suffers from a remote SQL injection vulnerability that allows for authentication bypass. An attacker can then upload a php shell.
6684b565beb5170192ff35a07632c64d22a4fc4fa000765a30e120773848069cCisco switches that support the Router Advertisement Guarding feature suffer from a bypass vulnerability.
dfb1b1f1370ed0fca6b3fc2310596a2d8f28ec7855e6e6b5c7a6ae568fec009cThe Joomla Maplocator component suffers from a remote SQL injection vulnerability.
06a0ca2a7aa9915e32916356e3b9edf4e7814fec6bfb1a30a74fffb8c8c408fcSecunia Security Advisory - Fedora has issued an update for mediawiki. This fixes two vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.
299651cb44686cb4a1f351c9e0f818304902a6a826ac57aeadfa4580c0e7110dSecunia Security Advisory - A weakness and a vulnerability have been reported in phpMyAdmin, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct spoofing attacks.
39cc1f2c0deb8769ab994b6b983c541c6cab6b812cc578af9ebe1de76d332c54Secunia Security Advisory - A vulnerability has been reported in Dirmngr, which can be exploited by malicious people to cause a DoS (Denial of Service).
2c98e1a0bc092d3b2c71571730448c557d175b8103ad1b6245224c7ed73e168cSecunia Security Advisory - Gjoko Krstic has discovered multiple vulnerabilities in Tugux, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
1fb6583bb3d9eda85019308f9948fa4c79e7494b70406b572e3e13013cd19bd2Secunia Security Advisory - SUSE has issued an update for firefox3-pango. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
9b83cdecf1af4b6938f2646900eb3531cc65ba5982ca4c367aae6ff69886371eSecunia Security Advisory - SUSE has issued an update for thunar. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
ad286b916648d05ac28a83018a306d02d34c97b22c783843cbbff36a25acc254Secunia Security Advisory - SUSE has issued an update for opera. This fixes a vulnerability, which can be exploited by malicious people to compromise a user's system.
a802dc61854973b8b4747045bab5d34e9e985f63d8b261e04b94126c769ccfb2Secunia Security Advisory - A security issue has been discovered in chillyCMS, which can be exploited by malicious people to disclose sensitive information.
57a8fd26e9498fd82c90d216ac203a2e45c49fd42c2dff0cece32e45122bf95fSecunia Security Advisory - Debian has issued an update for apr. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
04b5f8b8242dcbdbe77aef39c67da213661710b7e9444db07192705ce56cd5b0Secunia Security Advisory - Some vulnerabilities have been reported in SystemTap, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
30542cbb78ba5728d350f8244d25cedc6fe4987c1489686230feb0ed41ffd15b
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed