what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files Date: 2011-06-13

Ubuntu Security Notice USN-1148-1
Posted Jun 13, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1148-1 - It was discovered that libmodplug did not correctly handle certain malformed S3M media files. If a user or automated system were tricked into opening a crafted S3M file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the program. It was discovered that libmodplug did not correctly handle certain malformed ABC media files. If a user or automated system were tricked into opening a crafted ABC file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the program. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2011-1574, CVE-2011-1761
MD5 | d604bf6421ecc36b9a97b8083b5e81d5
Ubuntu Security Notice USN-1147-1
Posted Jun 13, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1147-1 - Nils Philippsen discovered that GIMP incorrectly handled malformed PSP image files. If a user were tricked into opening a specially crafted PSP image file, an attacker could cause GIMP to crash, or possibly execute arbitrary code with the user's privileges.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2011-1782
MD5 | bed433bb910276c829af2d89b7ea397b
Mandriva Linux Security Advisory 2011-109
Posted Jun 13, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-109 - Cross-site scripting vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real field, related to useradmin/index.cgi and useradmin/user-lib.pl.

tags | advisory, web, arbitrary, local, cgi, xss
systems | linux, mandriva
advisories | CVE-2011-1937
MD5 | e87ae0e106e95f5f418a2cc6b3ba8d08
Mandriva Linux Security Advisory 2011-108
Posted Jun 13, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-108 - Apache Xerces2 Java, as used in Sun Java Runtime Environment in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.

tags | advisory, java, remote, denial of service
systems | linux, mandriva
advisories | CVE-2009-2625
MD5 | 161f1e1b70c05d814e961db49dc0aa67
PHP Nuke 8.3 MT Shell Upload
Posted Jun 13, 2011
Authored by Pentesters.ir

PHP Nuke version 8.3 MT suffers from an arbitrary shell upload vulnerability.

tags | exploit, arbitrary, shell, php
MD5 | e3964276166b9f3c37f3ab936dd8df14
Vitaminedz Blind SQL Injection
Posted Jun 13, 2011
Authored by Kalashinkov3

Vitaminedz suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a7e61cd2873dc98b9ccfa623db84dd9d
Microsoft Lync 4.0.7577.0 Javascript Injection
Posted Jun 13, 2011
Authored by Mark Lachniet | Site foofus.net

Microsoft Lync version 4.0.7577.0 suffers from a javascript insertion vulnerability.

tags | exploit, javascript
MD5 | 8fd0646916054784cecd4fa071f09929
Debian Security Advisory 2258-1
Posted Jun 13, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2258-1 - It was discovered that the STARTTLS implementation of the Kolab Cyrus IMAP server does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted IMAP, LMTP, NNTP and POP3 sessions by sending a cleartext command that is processed after TLS is in place. Please note that the advisory number listed in this advisory incorrectly calls it 2257-1, but it is 2258-1.

tags | advisory, imap
systems | linux, debian
advisories | CVE-2011-1926
MD5 | 53b5da26869a890a20776041e9d3f065
HITB Magazine Volume 1 Issue 6
Posted Jun 13, 2011
Authored by hitb | Site hackinthebox.org

HITB Magazine Volume 1 Issue 6 - Topics include Social Security, Botnet-Resistant Coding, Hardening Java Applications with Custom Security Policies, Windows Numeric Handle Allocation In-Depth, and more.

tags | java, magazine
systems | windows
MD5 | 78a6174c7c1fcad45e64917f7bdbb1bd
DNS Distributed Reflected Denial Of Service Tool
Posted Jun 13, 2011
Authored by noptrix | Site nullsecurity.net

Proof of concept code that demonstrates a distributed DNS reflection denial of service attack.

tags | denial of service, proof of concept
MD5 | bb2820c367bde6f2cf1df6efe90f642b
OATH Toolkit 1.10.2
Posted Jun 13, 2011
Site nongnu.org

The OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.

Changes: This release fixes liboath self tests to work regardless of local time zone.
tags | tool
systems | unix
MD5 | d34190a69f04b989271dde55f05e7ebf
ZRTP Protocol Library 2.0.0
Posted Jun 13, 2011
Site gnutelephony.org

ZRTP Protocol Library is an implementation of Phil Zimmermann's ZRTP protocol, created based on and interoperable with Zfone beta 2. Combined with the GNU RTP Stack (ccrtp), this offers the ability to create communication services that natively support the ZRTP protocol.

Changes: Updated to build using ccrtp 2.x and GNU uCommon 5.x libraries.
tags | protocol, library
systems | unix
MD5 | dc1501e7e8a46a1608fc3820c7476727
Debian Security Advisory 2259-1
Posted Jun 13, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2259-1 - It was discovered that fex, a web service for transferring very large, files, is not properly validating authentication IDs. While the service properly validates existing authentication IDs, an attacker who is not specifying any authentication ID at all, can bypass the authentication procedure.

tags | advisory, web
systems | linux, debian
advisories | CVE-2011-1409
MD5 | 9f155efd15e17842c067f738c46b6dfa
Technofact SQL Injection
Posted Jun 13, 2011
Authored by eXeSoul

Technofact suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 436e0f96c83dfd603a095a93cbf57675
Web Application SQL Injection
Posted Jun 13, 2011
Authored by Kalashinkov3

Web Application from Site By Wapps suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, web, vulnerability, sql injection
MD5 | 3707a19c74cc618ffe8d641c1d78d4c4
MGF SQL Injection
Posted Jun 13, 2011
Authored by Kalashinkov3

MGF suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 18a225718a06776bb7d7acd0705f3e23
CyberScribe SQL Injection
Posted Jun 13, 2011
Authored by Kalashinkov3

CyberScribe suffers multiple remote SQL injection vulnerabilities one of which allows for authentication bypass.

tags | exploit, remote, vulnerability, sql injection
MD5 | ba576e77638df5567d0f88b6853c7355
Athollsweb SQL Injection
Posted Jun 13, 2011
Authored by Kalashinkov3

Athollsweb suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | cb80048c29503c9e9ee234ed6eeea786
WebFileExplorer 3.6 SQL Injection
Posted Jun 13, 2011
Authored by Cru3l.b0y

WebFileExplorer version 3.6 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 0c83bd381565cd1a748e571ac07a7e43
Blind SQL Injection With Regular Expressions Attack
Posted Jun 13, 2011
Authored by IHTeam, white_sheep | Site ihteam.net

Whitepaper called Blind SQL Injection with Regular Expressions Attack.

tags | paper, sql injection
MD5 | f0fa901d1c691c1e0c55151687ac10ae
Secunia Security Advisory 44928
Posted Jun 13, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for cyrus-imapd. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.

tags | advisory
systems | linux, fedora
MD5 | 2f1662ac7ddaa10b21bc5a3eaaf6ea6e
Secunia Security Advisory 44940
Posted Jun 13, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for fex. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
systems | linux, debian
MD5 | 13b29c836e216002ff7b7339d523245b
Secunia Security Advisory 44934
Posted Jun 13, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for java-1.6.0-openjdk. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), compromise a user's system, and compromise a vulnerable system.

tags | advisory, java, denial of service, vulnerability
systems | linux, fedora
MD5 | acfd8fcdccbaef3ef2e1cba1a7dc793e
Secunia Security Advisory 44932
Posted Jun 13, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for kernel. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel
systems | linux, fedora
MD5 | cf956597bb7bedb90bca8f8786fefe8b
Secunia Security Advisory 44900
Posted Jun 13, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for qemu-kvm. This fixes some vulnerabilities, which can be exploited by malicious, local users in a guest system to cause a DoS (Denial of Service) and potentially gain escalated privileges.

tags | advisory, denial of service, local, vulnerability
systems | linux, ubuntu
MD5 | 21faf2a7618b3ddc55c688d00400ac44
Page 1 of 2
Back12Next

File Archive:

March 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    2 Files
  • 2
    Mar 2nd
    18 Files
  • 3
    Mar 3rd
    15 Files
  • 4
    Mar 4th
    12 Files
  • 5
    Mar 5th
    19 Files
  • 6
    Mar 6th
    8 Files
  • 7
    Mar 7th
    1 Files
  • 8
    Mar 8th
    1 Files
  • 9
    Mar 9th
    11 Files
  • 10
    Mar 10th
    15 Files
  • 11
    Mar 11th
    9 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    13 Files
  • 14
    Mar 14th
    10 Files
  • 15
    Mar 15th
    13 Files
  • 16
    Mar 16th
    27 Files
  • 17
    Mar 17th
    15 Files
  • 18
    Mar 18th
    23 Files
  • 19
    Mar 19th
    25 Files
  • 20
    Mar 20th
    10 Files
  • 21
    Mar 21st
    6 Files
  • 22
    Mar 22nd
    1 Files
  • 23
    Mar 23rd
    22 Files
  • 24
    Mar 24th
    15 Files
  • 25
    Mar 25th
    23 Files
  • 26
    Mar 26th
    20 Files
  • 27
    Mar 27th
    15 Files
  • 28
    Mar 28th
    10 Files
  • 29
    Mar 29th
    1 Files
  • 30
    Mar 30th
    18 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close