what you don't know can hurt you
Showing 1 - 25 of 54 RSS Feed

Files Date: 2011-07-21

iDefense Security Advisory 07.20.11 - Webkit Memory Corruption
Posted Jul 21, 2011
Authored by iDefense Labs, wushi | Site idefense.com

iDefense Security Advisory 07.20.11 - Remote exploitation of a memory corruption vulnerability in WebKit, as included with multiple vendors' browsers, could allow an attacker to execute arbitrary code with the privileges of the current user. Scalable Vector Graphics (SVG) is an XML based file format used to describe two dimensional vector graphics. It defines both a markup language, and a JavaScript interface. When parsing a series of SVG tags, and then manipulating them via JavaScript, Safari fails to handle exceptional conditions. It is possible to trigger a use after free vulnerability by manipulating the animVal property of various SVG tags. This leaves a C++ object pointer in an inconsistent state, which can lead to the execution of arbitrary code. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, arbitrary, javascript
advisories | CVE-2011-0240
MD5 | 084f794d6ddec703cebfa1ab4a6c71f0
iDefense Security Advisory 07.20.11 - Safari Memory Corruption
Posted Jul 21, 2011
Authored by iDefense Labs, wushi | Site idefense.com

iDefense Security Advisory 07.20.11 - Remote exploitation of a memory corruption vulnerability in Apple Inc.'s Safari browser could allow an attacker to execute arbitrary code with the privileges of the current user. Safari is Apple's Web browser and is based on the open source WebKit browser engine. This vulnerability occurs when Safari incorrectly handles an error state when encountering a broken XHTML tag. Specifically, the tag enclosing the tag being processed is freed and is then referenced after it has already been freed. This can lead to the execution of arbitrary code. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, web, arbitrary
systems | apple
advisories | CVE-2011-0234
MD5 | 7b0affd8e3d099c6152cc3e13f546275
Zero Day Initiative Advisory 11-238
Posted Jul 21, 2011
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 11-238 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Secure Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the validate_login function defined within /apache/htdocts/php/common.php. The username parameter is passed with limited sanitization to an exec_qr call which can be abused to inject commands. The sanitation that does occur can limit the exploitation of this issue, however code execution can likely still be achieved. Successful attempts will yield remote code execution under the context of the apache server.

tags | advisory, remote, arbitrary, php, code execution
advisories | CVE-2011-2261
MD5 | e2c2e98b41f32659f6bac5179b65c4e0
A1 Solutions SQL Injection
Posted Jul 21, 2011
Authored by Ehsan_Hp200

A1 Solutions suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 936648b88128f510f86c7d6d33cafe93
Foxit Reader Insecure Library Loading
Posted Jul 21, 2011
Authored by Rob Kraus | Site solutionary.com

Foxit Reader is vulnerable to a insecure library loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll.

tags | advisory
MD5 | 5f49cb9b9c74f6824f344ca672e0d97b
Microsoft Internet Explorer toStaticHTML Information Disclosure
Posted Jul 21, 2011
Authored by Adi Cohen

Microsoft Internet Explorer versions 8 and 9 can have the toStaticHTML function bypassed by a specially formed CSS.

tags | exploit, info disclosure
advisories | CVE-2011-1252
MD5 | 1b8b19cb08ab9e084a2b1b6a9f0d8450
iDefense Security Advisory 07.20.11 - WebKit Heap Overflow
Posted Jul 21, 2011
Authored by iDefense Labs, Jose Antonio Vazquez Gonzalez | Site idefense.com

iDefense Security Advisory 07.20.11 - Remote exploitation of a heap based buffer overflow vulnerability in WebKit, as included with Apple Inc.'s Safari Web browser, could allow an attacker to execute arbitrary code with the privileges of the current user. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, web, overflow, arbitrary
systems | apple
advisories | CVE-2011-0223
MD5 | eec1cf1cd5e660001804d69304aa22a3
Red Hat Security Advisory 2011-1065-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1065-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Xen hypervisor implementation handled instruction emulation during virtual machine exits. A malicious user-space process running in an SMP guest could trick the emulator into reading a different instruction than the one that caused the virtual machine to exit. An unprivileged guest user could trigger this flaw to crash the host. This only affects systems with both an AMD x86 processor and the AMD Virtualization extensions enabled.

tags | advisory, x86, kernel
systems | linux, redhat
advisories | CVE-2011-1780, CVE-2011-2525, CVE-2011-2689
MD5 | e6d294254105f97ce001fb30751bc425
Kamini Green SQL Injection
Posted Jul 21, 2011
Authored by Lazmania61

Kamini Green suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 39924f00170cc1065d1ed9c1b74fac00
iDefense Security Advisory 07.20.11 - WebKit Use-After-Free
Posted Jul 21, 2011
Authored by iDefense Labs, Juan Pablo Lopez Yacubian | Site idefense.com

iDefense Security Advisory 07.20.11 - Remote exploitation of a use-after-free vulnerability in WebKit, as included with Apple Inc.'s Safari Web browser, could allow an attacker to execute arbitrary code with the privileges of the current user. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, web, arbitrary
systems | apple
advisories | CVE-2011-0215
MD5 | 6e10fbf8dd2f49d04a7d81afe0c306b1
Recipes Script Silver Edition SQL Injection
Posted Jul 21, 2011
Authored by Lazmania61

Recipes Script Silver Edition suffers from a remote SQL injection vulnerability in viewRecipe.php.

tags | exploit, remote, php, sql injection
MD5 | 35db511392732e3f73ba76aa5e2cd836
Indiacon selloffers.php SQL Injection
Posted Jul 21, 2011
Authored by Ehsan_Hp200

Indiacon suffers from a remote SQL injection vulnerability in selloffers.php.

tags | exploit, remote, php, sql injection
MD5 | bf7a7e8f0320dca8d9f0e822b41ea660
iDefense Security Advisory 07.20.11 - MathML Use-After-Free
Posted Jul 21, 2011
Authored by iDefense Labs, wushi | Site idefense.com

iDefense Security Advisory 07.20.11 - Remote exploitation of a use-after-free vulnerability in WebKit, as included with multiple vendors' browsers, could allow an attacker to execute arbitrary code with the privileges of the current user. Safari versions prior to 5.1 and 5.0.6 are vulnerable.

tags | advisory, remote, arbitrary
advisories | CVE-2011-1449
MD5 | 139db848f2f747da2de3500d3d3115bd
Red Hat Security Advisory 2011-1073-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1073-01 - Bash is the default shell for Red Hat Enterprise Linux. It was found that certain scripts bundled with the Bash documentation created temporary files in an insecure way. A malicious, local user could use this flaw to conduct a symbolic link attack, allowing them to overwrite the contents of arbitrary files accessible to the victim running the scripts.

tags | advisory, arbitrary, shell, local, bash
systems | linux, redhat
advisories | CVE-2008-5374
MD5 | 107bf0324b4ff8f03c3e2e608fb97ae9
Red Hat Security Advisory 2011-1019-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1019-01 - The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. An integer overflow flaw was found in libvirtd's RPC call handling. An attacker able to establish read-only connections to libvirtd could trigger this flaw by calling virDomainGetVcpus() with specially-crafted parameters, causing libvirtd to crash.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2011-2511
MD5 | c94dc86a3fbfa9ce325fd16148468ba9
MyLife HTML Injection
Posted Jul 21, 2011
Authored by r007k17-w

MyLife suffers from an HTML injection vulnerability that may allow for cross site scripting.

tags | exploit, xss
MD5 | 340a7ff3dc0246135754bb1282d19f36
Joomla Simple Page Option Local File Inclusion
Posted Jul 21, 2011
Authored by Camilo Galdos

The Joomla Simple Page Option component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | b3efd88772333651daedfa2c9a1dd3bb
Red Hat Security Advisory 2011-1005-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1005-01 - The sysstat package contains a set of utilities which enable system monitoring of disks, network, and other I/O activity. It was found that the sysstat initscript created a temporary file in an insecure way. A local attacker could use this flaw to create arbitrary files via a symbolic link attack.

tags | advisory, arbitrary, local
systems | linux, redhat
advisories | CVE-2007-3852
MD5 | 8a00fe845ec2dbb52acf14d5bd56b74c
Red Hat Security Advisory 2011-1000-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1000-01 - The rgmanager package contains the Red Hat Resource Group Manager, which provides the ability to create and manage high-availability server applications in the event of system downtime. It was discovered that certain resource agent scripts set the LD_LIBRARY_PATH environment variable to an insecure value containing empty path elements. A local user able to trick a user running those scripts to run them while working from an attacker-writable directory could use this flaw to escalate their privileges via a specially-crafted dynamic library.

tags | advisory, local
systems | linux, redhat
advisories | CVE-2010-3389
MD5 | 39d6abf49316c7a91adead5b7408b1a5
Red Hat Security Advisory 2011-0999-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-0999-01 - rsync is a program for synchronizing files over a network. A flaw was found in the way the rsync daemon handled the "filter", "exclude", and "exclude from" options, used for hiding files and preventing access to them from rsync clients. A remote attacker could use this flaw to bypass those restrictions by using certain command line options and symbolic links, allowing the attacker to overwrite those files if they knew their file names and had write access to them.

tags | advisory, remote
systems | linux, redhat
advisories | CVE-2007-6200
MD5 | e35e01d6a74663fa2551ee19e1bf1504
Red Hat Security Advisory 2011-0975-01
Posted Jul 21, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-0975-01 - The System Security Services Daemon provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back-end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects such as FreeIPA. A flaw was found in the SSSD PAM responder that could allow a local attacker to force SSSD to enter an infinite loop via a carefully-crafted packet. With SSSD unresponsive, legitimate users could be denied the ability to log in to the system.

tags | advisory, remote, local
systems | linux, redhat
advisories | CVE-2010-4341
MD5 | 466ffb740bd5b612ac40d9712a4cb309
Apple Security Advisory 2011-07-20-1
Posted Jul 21, 2011
Authored by Apple | Site apple.com

Apple Security Advisory 2011-07-20-1 - A large amount of security issues have been addressed in Safari versions 5.1 and 5.0.6. These range from cross site scripting, possible arbitrary code execution, accidental trust in a disable root certificate, buffer and integer overflows, and more.

tags | advisory, overflow, arbitrary, root, code execution, xss
systems | apple
advisories | CVE-2010-1383, CVE-2010-1420, CVE-2010-1823, CVE-2010-3829, CVE-2011-0164, CVE-2011-0195, CVE-2011-0200, CVE-2011-0201, CVE-2011-0202, CVE-2011-0204, CVE-2011-0206, CVE-2011-0214, CVE-2011-0215, CVE-2011-0216, CVE-2011-0217, CVE-2011-0218, CVE-2011-0219, CVE-2011-0221, CVE-2011-0222, CVE-2011-0223, CVE-2011-0225, CVE-2011-0232, CVE-2011-0233, CVE-2011-0234, CVE-2011-0235, CVE-2011-0237, CVE-2011-0238, CVE-2011-0240
MD5 | f4872bf7b4569d341c9eeaa28b85e926
Mevin Basic PHP Events Lister 2.03 Cross Site Request Forgery
Posted Jul 21, 2011
Authored by Crazy_Hacker

Mevin Basic PHP Events Lister version 2.03 suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf
MD5 | b56c70a65d727495e40f2a3c3591a188
Joomla JE K2 Story Submit Local File Inclusion
Posted Jul 21, 2011
Authored by v3n0m

The Joomla JE K2 Story Submit component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | b8432fb114bb0e636e254ece29074d8e
Debian Security Advisory 2281-1
Posted Jul 21, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2281-1 - Sebastian Krahmer discovered that opie, a system that makes it simple to use One-Time passwords in applications, is prone to a privilege escalation (CVE-2011-2490) and an off-by-one error, which can lead to the execution of arbitrary code (CVE-2011-2489). Adam Zabrocki and Maksymilian Arciemowicz also discovered another off-by-one error (CVE-2010-1938), which only affects the lenny version as the fix was already included for squeeze.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2011-2489, CVE-2011-2490, CVE-2010-1938
MD5 | c3049b728fe691b5160759cc5b6e5381
Page 1 of 3
Back123Next

File Archive:

November 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    28 Files
  • 2
    Nov 2nd
    1 Files
  • 3
    Nov 3rd
    1 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    19 Files
  • 6
    Nov 6th
    65 Files
  • 7
    Nov 7th
    22 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    1 Files
  • 10
    Nov 10th
    1 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    65 Files
  • 13
    Nov 13th
    27 Files
  • 14
    Nov 14th
    22 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    1 Files
  • 17
    Nov 17th
    3 Files
  • 18
    Nov 18th
    22 Files
  • 19
    Nov 19th
    17 Files
  • 20
    Nov 20th
    15 Files
  • 21
    Nov 21st
    13 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close