exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 52 RSS Feed

Files Date: 2011-05-31

ZoneMinder Video Camera Security Tool 1.24.4
Posted May 31, 2011
Authored by Philip Coombes | Site zoneminder.com

ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.

Changes: This release primarily addresses a number of system and configuration issues that arose from 1.24.3, but also includes significant improvements to version management and upgrades.
tags | web
systems | linux, unix
SHA-256 | 63cd333011cdd550c0a27631a8353e140b57da531c51c13539a22cf06043130b
Guru JustAnswer Professional 1.25 SQL Injection
Posted May 31, 2011
Authored by v3n0m

Guru JustAnswer Professional version 1.25 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | b411599b06af14d877cb69d0191dcba323cdc4737823fe7f423d38036f3c283e
iPhone4 FTP Server 1.0 Remote Crash
Posted May 31, 2011
Authored by offsetIntruder

iPhone4 FTP Server 1.0 empty CWD-RETR remote crash denial of service exploit.

tags | exploit, remote, denial of service
SHA-256 | 475b9126b494053efc37cc13c7a6fa63dedf0a3b5b6cfad131b1b11adc82d7a6
Revese Engineering And Memory Patching
Posted May 31, 2011
Authored by Richard Davy

Whitepaper called Reverse Engineering and Memory Patching.

tags | paper
SHA-256 | bf5743c2cb8982634575f5c681bc4227d41f8d102007140878aee70541416b69
Joomla 1.6.x Administrator PHP Code Execution
Posted May 31, 2011
Authored by James Bercegay | Site gulftech.org

This Metasploit module can be used to gain a remote shell to a Joomla! 1.6.x install when administrator credentials are known. This is achieved by uploading a malicious component which is used to execute the selected payload.

tags | exploit, remote, shell
SHA-256 | 612d16778b5cce15c16e50253fe4bc1f0dbda9b28aac75b76518ca8050eb526c
Joomla 1.6.0 SQL Injection
Posted May 31, 2011
Authored by James Bercegay | Site gulftech.org

A vulnerability was discovered by Aung Khant that allows for exploitable SQL Injection attacks against a Joomla 1.6.0 install. This exploit attempts to leverage the SQL Injection to extract admin credentials, and then store those credentials within the notes_db. The vulnerability is due to a validation issue in /components/com_content/models/category.php that erroneously uses the "string" type whenever filtering the user supplied input. This issue was fixed by performing a whitelist check of the user supplied order data against the allowed order types, and also escaping the input.

tags | exploit, php, sql injection
advisories | CVE-2011-1151
SHA-256 | 647e5aeb46772c7d0cdb8e0649db65e77ffaa67a35949d881a8ff0eac18b6c6d
Kentico CMS 5.5R2.23 Cross Site Scripting
Posted May 31, 2011
Authored by LiquidWorm | Site zeroscience.mk

Kentico CMS versions 5.5R22.23 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 9f11fec3060e9fb15201282364d5cc0bf0d5d681f43c5b204bee3e6115fd40af
FestOS <= 2.3c TinyBrowser File Upload Code Execution
Posted May 31, 2011
Authored by KedAns-Dz | Site metasploit.com

This Metasploit module exploits a vulnerability in the TinyMCE/tinybrowser plugin. By renaming the uploaded file this vulnerability can be used to upload/execute code on the affected system.

tags | exploit
SHA-256 | f8db17b294efb81fd18b606bdb54bbae4c0ec34e8fe95b0d4a1492781eed0504
GloDerWorks SQL Injection
Posted May 31, 2011
Authored by Kalashinkov3

GloDerWorks suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | bd2dd524079f96906063e53d73019cf13f518a5826cfc773ec864ba4cbc7184a
Allied Telesis Divulges Secret Backdoor
Posted May 31, 2011
Site h-online.com

Allied Telesis accidentally divulged secret backdoors in all of their products.

tags | advisory
SHA-256 | f9dbb783644f15b90e043e5f58f5f8cf1bdf6408610a4487ad0dff928b2a7731
Belkin G Wireless Router 5.00.12 Password Hash Disclosure
Posted May 31, 2011
Authored by Aodrulez

Belkin G Wireless Router with firmware version 5.00.12 suffers from a password hash disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 1ff16d35f0826f93976163d23810916b6c842c832770207c9409be7c72c79f0d
HTTPConsole 1.0.0.0 For Windows
Posted May 31, 2011
Authored by AutoSec Tools | Site autosectools.com

This is an HTTP console to remote administer Windows hosts with a browser-based, AJAX-enabled, command-line interface. Server requires .NET 3.5. Written in C# and JavaScript.

tags | remote, web, javascript
systems | windows
SHA-256 | 7dec994beced4f331b24fde32be7a2e3088ff3ecf40ecae45cd2ec54a69a686b
7-Technologies IGSS 9 Data Server/Collector Packet Handling
Posted May 31, 2011
Authored by Luigi Auriemma, sinn3r | Site metasploit.com

This Metasploit module exploits multiple vulnerabilities found on IGSS 9's Data Server and Data Collector services. The initial approach is first by transferring our binary with Write packets (opcode 0x0D) via port 12401 (igssdataserver.exe), and then sending an EXE packet (opcode 0x0A) to port 12397 (dc.exe), which will cause dc.exe to run that payload with a CreateProcessA() function as a new thread.

tags | exploit, vulnerability
SHA-256 | 296723ada905112b4245260cd9a74751a41e72054aba11b2d7103f9bf26ee23d
Websolutions SQL Injection
Posted May 31, 2011
Authored by Kalashinkov3

Websolutions suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 30a65cedb585c3de4627c61682d858af6792fec5474e7dc37acbfadb130be426
Secunia Security Advisory 44742
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Guru JustAnswer Professional, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
SHA-256 | d828d86ef972974d7abdbe7ddecc1a58bdae85072798318ed96e5bd419eb36e4
Secunia Security Advisory 44687
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for unbound. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, debian
SHA-256 | 2bb9ee2048c02ccc58ec6ee5a81fafa0f9e8f0f1e630bfe70a6adc2ead456477
Secunia Security Advisory 44746
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the sh404SEF component for Joomla!, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | ca6f88f0508140eee8d901b179d5ec49b81100314c14e2e948a32e334bd0fdf9
Secunia Security Advisory 44763
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for pam. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information and perform certain actions with escalated privileges.

tags | advisory, denial of service, local, vulnerability
systems | linux, ubuntu
SHA-256 | 07afe114b2c3d6423f6e8bb42e271a6adf3522351ff6bf1fe3a005374f66bea0
Secunia Security Advisory 44761
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, ubuntu
SHA-256 | 2efe0275cac53e900eb758949faa5ce420159c70b52de00c145fbdedbe4aacf9
Secunia Security Advisory 44760
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Ajax File Manager plugin for TinyMCE, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 18e606eb728385ca6d67f176386ee4a11307545729b24326f2b64abbf741654e
Secunia Security Advisory 44762
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, ubuntu
SHA-256 | 5bf1bca874f9650ab9bc97e8962ebf4ae7896f9d3b39110b675f6bb58eed7ef1
Secunia Security Advisory 44628
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in IBM Tivoli Management Framework, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
SHA-256 | 7a32fd23458e18efd486d740315bb11078bd9e40e41fa2510c19926b85d1869e
Secunia Security Advisory 44747
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local
systems | linux
SHA-256 | 80b78981c06ab8ba78eae3eccf56cd0d78a072d0beaf719068549bc8de2181b3
Secunia Security Advisory 44720
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Puzzle Apps CMS, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
SHA-256 | 97cb620e605db565d5626e36385d2b51cc3aac4b5cb3cb6ba0040f61473ef6de
Secunia Security Advisory 44744
Posted May 31, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Slackware has issued an update for bind. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, slackware
SHA-256 | df839adfacf47637123469c2582a70f02d3facf077294542649534dff56e647f
Page 1 of 3
Back123Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close