exploit the possibilities
Showing 1 - 21 of 21 RSS Feed

Files Date: 2011-07-16

HP OpenView Network Node Manager Toolbar.exe CGI Buffer Overflow
Posted Jul 16, 2011
Authored by MC | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.50. By sending a specially crafted CGI request to Toolbar.exe, an attacker may be able to execute arbitrary code.

tags | exploit, overflow, arbitrary, cgi
advisories | CVE-2008-0067, OSVDB-53222
MD5 | 1f41176251557dfc0d1185653a49b2e6
HP OpenView Network Node Manager Toolbar.exe CGI Cookie Handling Buffer Overflow
Posted Jul 16, 2011
Authored by Oren Isacson, sinn3r, juan vazquez | Site metasploit.com

This Metasploit module exploits a stack buffer overflow in HP OpenView Network Node Manager 7.0 and 7.53. By sending a CGI request with a specially OvOSLocale cookie to Toolbar.exe, an attacker may be able to execute arbitrary code. Please note that this module only works against a specific build (ie. NNM 7.53_01195)

tags | exploit, overflow, arbitrary, cgi
advisories | CVE-2009-0920, OSVDB-53242
MD5 | 1a32c91dbc2998a78f72a8842250d61e
Java RMI Server Insecure Default Configuration Java Code Execution
Posted Jul 16, 2011
Authored by Michael Schierl | Site metasploit.com

This Metasploit module takes advantage of the default configuration of the RMI Registry and RMI Activation services, which allow loading classes from any remote (HTTP) URL. As it invokes a method in the RMI Distributed Garbage Collector which is available via every RMI endpoint, it can be used against both rmiregistry and rmid, and against most other (custom) RMI endpoints as well. Note that it does not work against Java Management Extension (JMX) ports since those do not support remote class loading, unless another RMI endpoint is active in the same Java process. RMI method calls do not support or require any sort of authentication.

tags | exploit, java, remote, web, registry
MD5 | 199c79c7d7f3ff41f8d63cc362f3614f
Ubuntu Security Notice USN-1150-1
Posted Jul 16, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1150-1 - Multiple vulnerabilities were fixed in Thunderbird. Multiple memory vulnerabilities were discovered in the browser rendering engine. Martin Barbella discovered that under certain conditions, viewing a XUL document while JavaScript was disabled caused deleted memory to be accessed. Jordi Chancel discovered a vulnerability on multipart/x-mixed-replace images due to memory corruption. Various other issues were also addressed.

tags | advisory, javascript, vulnerability
systems | linux, ubuntu
advisories | CVE-2011-2365, CVE-2011-2374, CVE-2011-2376, CVE-2011-0083, CVE-2011-0085, CVE-2011-2362, CVE-2011-2363, CVE-2011-2364, CVE-2011-2365, CVE-2011-2371, CVE-2011-2373, CVE-2011-2374, CVE-2011-2376, CVE-2011-2377
MD5 | 4c16eeb5bca0f2eb1af17bfc737f43ec
Ubuntu Security Notice USN-1170-1
Posted Jul 16, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1170-1 - Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. It was discovered that Xen did not correctly handle certain block requests. A local attacker in a Xen guest could cause the Xen host to use all available CPU resources, leading to a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2010-4076, CVE-2010-4077, CVE-2010-4247, CVE-2010-4526, CVE-2011-0726, CVE-2011-1163, CVE-2011-1577, CVE-2011-1745, CVE-2011-1746, CVE-2011-1747, CVE-2011-2022
MD5 | 909b3fb287fb01361d24f320d5126426
MyST BlogSite URL Redirect / Information Leakage
Posted Jul 16, 2011
Site yehg.net

MyST BlogSite suffers from arbitrary URL redirection and information leakage vulnerabilities.

tags | exploit, arbitrary, vulnerability
MD5 | 665c3752c7c7967cff34847c9a64c9ef
Debian Security Advisory 2254-2
Posted Jul 16, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2254-2 - Jamie Strandboge noticed that the patch proposed to fix CVE-2011-1760 in OProfile has been incomplete. OProfile is a performance profiling tool which is configurable by opcontrol, its control utility. Stephane Chauveau reported several ways to inject arbitrary commands in the arguments of this utility. If a local unprivileged user is authorized by sudoers file to run opcontrol as root, this user could use the flaw to escalate his privileges.

tags | advisory, arbitrary, local, root
systems | linux, debian
advisories | CVE-2011-1760
MD5 | e0e739c5dff9867a6e0776fef8707ff8
Using Metasploit With Nessus Bridge On Ubuntu
Posted Jul 16, 2011
Authored by David J. Dodd

Whitepaper called Using Metasploit With Nessus Bridge On Ubuntu. The author discusses using the autopwn feature in Metasploit, running Nessus from within Metasploit, choices of databases to use, and the benefits of each.

tags | paper
systems | linux, ubuntu
MD5 | 766f4a856aa3f0e813b475eecaa34efc
Malware Analyser 3.2
Posted Jul 16, 2011
Authored by Beenu Arora | Site malwareanalyser.com

Malware Analyser is freeware tool to perform static and dynamic analysis on malwares.

Changes: Added ThreatExpert for online scanning option. Packed libraries onto single executable. Improved traces signatures. Bug fixes.
tags | tool, forensics
MD5 | ba35d7a06043feac7b076c2e2f472468
HTTP Parameter Contamination
Posted Jul 16, 2011
Authored by Ivan Markovic

This is a brief whitepaper called HTTP Parameter Contamination (HPC) Attack / Research.

tags | paper, web
MD5 | b2608b0ad6615d2db4c78b1e09a4df76
Interactive World SQL Injection
Posted Jul 16, 2011
Authored by Netrondoank

Interactive World suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 133531cc7ce814e3946a3b3e04942ca3
Slackware Security Advisory - Mozilla-Firefox Updates
Posted Jul 16, 2011
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-firefox packages have been released for Slackware 13.0 and 13.1 to address security issues.

tags | advisory
systems | linux, slackware
MD5 | b7765619815124262458c7d4f9efba5b
iDefense Security Advisory 07.14.11 - Citrix Code Execution
Posted Jul 16, 2011
Authored by Michal Trojnara, iDefense Labs | Site idefense.com

iDefense Security Advisory 07.14.11 - Remote exploitation of a buffer overflow in Citrix Systems, Inc.'s Access Gateway Client ActiveX control allows remote attackers to execute arbitrary code. To exploit this vulnerability, a targeted user must load a malicious Web page created by an attacker. An attacker typically accomplishes this via social engineering or injecting content into compromised, trusted sites. Versions affected are 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4.

tags | advisory, remote, web, overflow, arbitrary, activex
MD5 | 31b1032c478986d6ec9d6fe7a11ba3ea
Open Source CERT Security Advisory 2011.001
Posted Jul 16, 2011
Authored by Andrea Barisani, Open Source CERT, Wireghoul | Site justanotherhacker.com

Chyrp versions 2.1 and below suffer from cross site scripting, local file inclusion, shell upload, and directory traversal vulnerabilities. Both the oCERT and original advisories are included here.

tags | exploit, shell, local, vulnerability, xss, file inclusion
MD5 | d2e9d03bb363c9b30358d7e88edeeb59
Slackware Security Advisory - Seamonkey Updates
Posted Jul 16, 2011
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New seamonkey packages have been released for Slackware 13.37 and -current to address security issues.

tags | advisory
systems | linux, slackware
MD5 | 9078eea11c95bba500abc71e179af613
Ubuntu Security Notice USN-1168-1
Posted Jul 16, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1168-1 - Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values. By inserting a specially crafted disk device, a local attacker could exploit this to gain root privileges. Neil Horman discovered that NFSv4 did not correctly handle certain orders of operation with ACL data. A remote attacker with access to an NFSv4 mount could exploit this to crash the system, leading to a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, local, root
systems | linux, ubuntu
advisories | CVE-2011-1017, CVE-2011-1090, CVE-2011-1163, CVE-2011-1494, CVE-2011-1495, CVE-2011-1593, CVE-2011-1598, CVE-2011-1745, CVE-2011-1746, CVE-2011-1747, CVE-2011-1748, CVE-2011-1770, CVE-2011-2022
MD5 | 008971a8f4ff5922d49f6b7f64cd0166
Apache Tomcat Information Disclosure And Availability
Posted Jul 16, 2011
Authored by Mark Thomas | Site tomcat.apache.org

Tomcat versions 7.0.0 through 7.0.18, 6.0.0 through 6.0.32, and 5.5.0 through 5.5.33 suffer from an information disclosure vulnerability. Tomcat provides support for sendfile with the HTTP NIO and HTTP APR connectors. sendfile is used automatically for content served via the DefaultServlet and deployed web applications may use it directly via setting request attributes. These request attributes were not validated.

tags | advisory, web, info disclosure
advisories | CVE-2011-2526
MD5 | aec71d20e0bebf4161b75c359a8d9a9c
Dell IT Assistant detectIESettingsForITA.ocx Remote Registry Dump
Posted Jul 16, 2011
Authored by rgod | Site retrogod.altervista.org

Dell IT Assistant detectIESettingsForITA.ocx Active-X control readRegVal() remote registry dump exploit.

tags | exploit, remote, registry, activex
MD5 | 649c55abd626a502b88a188681be5acd
Paltalk Messenger 10.0 Insecure Method
Posted Jul 16, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Paltalk Messenger version 10.0 suffers from an Active-X insecure method vulnerability.

tags | exploit, activex
MD5 | 78732181ef46408d3d6dc9ff1e6aaec0
Oracle I-Recruitment Cross Site Scripting
Posted Jul 16, 2011
Authored by Aditya K Sood

A persistent cross site scripting vulnerability exists in the Oracle I-Recruitment portal. The account information page allows the user to upload his resume in Microsoft Word document. An attacker can construct a malicious MSWord file to conduct the attack by setting a cross site scripting payload in hyperlinks in order to bypass conversion filters. Versions 11.5.10.2, 12.0.6, and 12.1.3 are affected.

tags | advisory, xss
advisories | CVE-2010-2404
MD5 | 915143d62fe7b7aa1ae2e6f7397f485b
Etoshop Blind SQL Injection
Posted Jul 16, 2011
Authored by R3d-D3v!L

Etoshop suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6f7bd38d14e377ac6a7a70af7250fb2a
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close