what you don't know can hurt you
Showing 1 - 25 of 48 RSS Feed

Files Date: 2011-08-25

Slackware Security Advisory - PHP Updates
Posted Aug 25, 2011
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues.

tags | advisory, php
systems | linux, slackware
advisories | CVE-2011-1148, CVE-2011-1938, CVE-2011-2202, CVE-2011-2483
MD5 | 6c04f10a0fbac3e86566069f5872fb5f
Dissecting Java Server Faces For Penetration Testing
Posted Aug 25, 2011
Authored by Aditya K Sood, Krishna Raja

Whitepaper called Dissecting Java Server Faces for Penetration Testing. This paper is divided into two parts. In the first part, they discuss the internals of JSF, a Java based web application framework and its inherent security model. In the second part, they discuss about the security weaknesses and applied security features in the JSF. In addition, they also raise a flag on the security issues present in JSF in order to conduct effective penetration testing.

tags | paper, java, web
MD5 | 3e0ca590152a28d58e6b4fd24b67f72a
RSA enVision Credential Disclosure / File Retrieval
Posted Aug 25, 2011
Site emc.com

RSA, the security division of EMC, announces security fixes to address two security vulnerabilities in RSA enVision. These include arbitrary file retrieval and credentials being mailed in the clear.

tags | advisory, arbitrary, vulnerability
advisories | CVE-2011-2736, CVE-2011-2737
MD5 | b5547e4553422de985ab9d31a51604d9
GLPI 0.80.1 Database Information Disclosure
Posted Aug 25, 2011
Authored by Yuri Goltsev | Site ptsecurity.com

GLPI versions 0.80.1 and below suffer from a database information disclosure vulnerability.

tags | advisory, info disclosure
MD5 | 42ad78391a5403fccf10bf0f6f697936
WordPress SendIt 1.5.9 Blind SQL Injection
Posted Aug 25, 2011
Authored by evilsocket

WordPress SendIt plugin versions 1.5.9 and below suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d23897fdd75dbb94ae3a99837552054e
Demystifying The Android Malware
Posted Aug 25, 2011
Authored by Dinesh Shetty

Whitepaper called Demystifying the Android Malware. It dives into various phases to discuss the hows and whys behind malware implementation for Android.

tags | paper
MD5 | 835318cb1137bfcff0f35c73fecb636f
Studiomenozzi SQL Injection
Posted Aug 25, 2011
Authored by Ehsan_Hp200

Studiomenozzi suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7bc5d30fd8915087d7702f4d0645fbc9
Ninuz SQL Injection
Posted Aug 25, 2011
Authored by Ehsan_Hp200

Ninuz suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7554dd6534c66bbfe6dadbd1e244325b
Arya Web SQL Injection
Posted Aug 25, 2011
Authored by CR9

Arya Web suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 64c0915364992bc2126df0b32fabb119
NetSaro Enterprise Messenger Server Code Disclosure
Posted Aug 25, 2011
Authored by Rob Kraus | Site solutionary.com

A vulnerability exists in the NetSaro Enterprise Messenger Server Administration Console allowing a remote attacker to obtain unauthenticated access to the applications source code. Attackers may make HTTP GET requests and append a Null Byte to allow download of the source code for the applications web pages. An attacker does not need to authenticate to obtain access to source code for pages that usually require authentication prior to viewing.

tags | advisory, remote, web
MD5 | 7b49b43698a2dd6a893cb299575f393d
Microsoft Report Viewer Cross Site Scripting
Posted Aug 25, 2011
Authored by Adam Bixby | Site gdssecurity.com

Microsoft Report Viewer controls suffer from a cross site scripting vulnerability. Microsoft Report Viewer Redistributable 2005 SP1 and Microsoft Visual Studio 2005 Service Pack 1 are affected.

tags | exploit, xss
advisories | CVE-2011-1976
MD5 | 2127d7df083651d49fe5271549571c9f
LedgerSMB 1.2.24 SQL Injection
Posted Aug 25, 2011
Authored by Chris Travers

The LedgerSMB development team has found an SQL injection issue in LedgerSMB version 1.2.24. Because this issue stems from their common SQL-Ledger heritage, it affects all versions of LedgerSMB and has been confirmed in SQL-Ledger version 2.8.33.

tags | advisory, sql injection
MD5 | 0b83d4bf0a0266a9d68b3d21c59b8494
Lumension Device Control Memory Corruption
Posted Aug 25, 2011
Authored by Andy Davis | Site ngssecure.com

Lumension Device Control (formerly Sanctuary) version 4.4 SR6 suffers from a remote memory corruption vulnerability.

tags | exploit, remote
MD5 | 92adf650a0049fc5f34f7d74525c82ae
Zazavi 1.2.1 Cross Site Request Forgery / Shell Upload
Posted Aug 25, 2011
Authored by KedAns-Dz

Zazavi versions 1.2.1 and below suffer from cross site request forgery and shell upload vulnerabilities.

tags | exploit, shell, vulnerability, csrf
MD5 | 8c1df90553965c8ad1f216fb0336ce64
SmartCMS Cross Site Scripting
Posted Aug 25, 2011
Authored by Sony

SmartCMS suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6e732c621e0a36dd3499aaee59dea16e
Apache HTTPd Range Header Denial Of Service
Posted Aug 25, 2011
Site apache.org

A denial of service vulnerability has been found in the way the multiple overlapping ranges are handled by the Apache HTTPd server. Both the 1.3 and 2.x releases are affected. An attack tool is circulating in the wild. Active use of this tool has been observed. The attack can be done remotely and with a modest number of requests can cause very significant memory and CPU usage on the server.

tags | advisory, denial of service
advisories | CVE-2011-3192
MD5 | 76a8b5bf3def6f20efa9a89f2281f822
Secunia Security Advisory 45733
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - IBM has acknowledged a vulnerability in IBM Rational ClearCase / ClearQuest, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 9801c57dcc855a01eb3cebb8ac99037f
Secunia Security Advisory 45692
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - MustLive has discovered two vulnerabilities in neolao FLV Player Multi / Maxi, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 3429904c693ea285ae88f64786378209
Secunia Security Advisory 45727
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Apache Wicket, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 2a18a1f5efe073413deae3a1a319968d
Secunia Security Advisory 45726
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Citrix Access Gateway, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | f70a2255b5d7d8cc3488491c1de0c8a6
Secunia Security Advisory 45769
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in VicBlog, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | a60ecf222e9e5dd2ae8eb3f30bc9a6c9
Secunia Security Advisory 45767
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in CommodityRentals Books/eBooks Rentals Script, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 15418ac4cb96ffcd52ca1fcda842f28d
Secunia Security Advisory 45782
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Redirection plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 083e2d0832fb3f8e8e26ad863bc69092
Secunia Security Advisory 45725
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in the WordPress-Amazon-Associate plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | bc8abdc76399bfd451195b0533548fd0
Secunia Security Advisory 45773
Posted Aug 25, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for clamav. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | linux, suse
MD5 | 6f61849fcfb232e1dc43b2390876ed12
Page 1 of 2
Back12Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    0 Files
  • 3
    Apr 3rd
    0 Files
  • 4
    Apr 4th
    0 Files
  • 5
    Apr 5th
    0 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    0 Files
  • 9
    Apr 9th
    0 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close