exploit the possibilities
Showing 1 - 25 of 30 RSS Feed

Files Date: 2011-08-29

Red Hat Security Advisory 2011-1220-01
Posted Aug 29, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1220-01 - Samba is a suite of programs used by machines to share files, printers, and other information. A cross-site scripting flaw was found in the password change page of the Samba Web Administration Tool. If a remote attacker could trick a user, who was logged into the SWAT interface, into visiting a specially-crafted URL, it would lead to arbitrary web script execution in the context of the user's SWAT session. It was found that SWAT web pages did not protect against Cross-Site Request Forgery attacks. If a remote attacker could trick a user, who was logged into the SWAT interface, into visiting a specially-crafted URL, the attacker could perform Samba configuration changes with the privileges of the logged in user.

tags | advisory, remote, web, arbitrary, xss, csrf
systems | linux, redhat
advisories | CVE-2011-1678, CVE-2011-2522, CVE-2011-2694, CVE-2011-2724
MD5 | a5bf4c36fe233c02cd424d5b58288e3f
Red Hat Security Advisory 2011-1219-01
Posted Aug 29, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1219-01 - Samba is a suite of programs used by machines to share files, printers, and other information. A cross-site scripting flaw was found in the password change page of the Samba Web Administration Tool. If a remote attacker could trick a user, who was logged into the SWAT interface, into visiting a specially-crafted URL, it would lead to arbitrary web script execution in the context of the user's SWAT session. It was found that SWAT web pages did not protect against Cross-Site Request Forgery attacks. If a remote attacker could trick a user, who was logged into the SWAT interface, into visiting a specially-crafted URL, the attacker could perform Samba configuration changes with the privileges of the logged in user.

tags | advisory, remote, web, arbitrary, xss, csrf
systems | linux, redhat
advisories | CVE-2010-0547, CVE-2010-0787, CVE-2011-1678, CVE-2011-2522, CVE-2011-2694
MD5 | 7de3468a79b05efbb20097b9feb2dc7f
Axway SecureTransport /icons/ Directory Traversal
Posted Aug 29, 2011
Authored by Digital Defense, r@b13$, sxkeebler | Site digitaldefense.net

The Axway SecureTransport device contains a directory traversal in the '/icons/' directory. An unauthenticated remote attacker can use this vulnerability to obtain arbitrary files from the root file system of the vulnerable host.

tags | advisory, remote, arbitrary, root
MD5 | e35a29b1f835b8c6ef3ea3c7e7051e37
WordPress SH Slideshow 3.1.4 SQL Injection
Posted Aug 29, 2011
Authored by Miroslav Stampar

WordPress SH Slideshow plugin versions 3.1.4 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 270f9dde35ea5b6facd7ffac3c76d2df
DVD X Player 5.5 Professional Buffer Overflow
Posted Aug 29, 2011
Authored by D3r K0n!G

DVD X Player version 5.5 Professional universal buffer overflow exploit that creates a malicious .plf file.

tags | exploit, overflow
MD5 | afe2e32bd08d1284bfa0ca306a344ec8
Zynga Cafeworld Cross Site Scripting
Posted Aug 29, 2011
Authored by r007k17-w

Zynga Cafeworld suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 623b269e2fcd06ef801b4ca4d81a1aad
WordPress iCopyright Article Tools 1.1.4 SQL Injection
Posted Aug 29, 2011
Authored by Miroslav Stampar

WordPress iCopyright(R) Article Tools plugin versions 1.1.4 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f212ec7cdabf325476a680580ba3f8c0
Mini-Stream Ripper 2.9.7.273 Buffer Overflow
Posted Aug 29, 2011
Authored by D3r K0n!G

Mini-Stream Ripper version 2.9.7.273 universal buffer overflow exploit that creates a malicious .m3u file.

tags | exploit, overflow
MD5 | 4875d8c3eedb0f785fd535125bec43a7
Dienstplan 2.2 Predictive Passwords
Posted Aug 29, 2011
Authored by Dan Luedtke | Site danrl.de

Dienstplan version 2.2 suffers from multiple predictive password vulnerabilities.

tags | advisory, vulnerability
MD5 | 6069de39f274aa81e33528155f26324c
Zynga Vampiresgame Cross Site Scripting
Posted Aug 29, 2011
Authored by r007k17-w

Zynga Vampiresgame suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 774ee20a03a1b1ce5cb519842811ee96
EIN-SOF Solutions Blind SQL Injection
Posted Aug 29, 2011
Authored by RoAd_KiLlEr

EIN-SOF Solutions suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 703eedfa269f0721932a2682f0812302
Zynga Petville Cross Site Scripting
Posted Aug 29, 2011
Authored by r007k17-w

Zynga Petville suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d48ba78d19dc08e7266c9be18cdb02cc
Velaro Live Chat HTML Injection
Posted Aug 29, 2011
Authored by Sony

Velaro Live Chat Software suffers from an html injection vulnerability.

tags | exploit, xss
MD5 | d140bb6a0b0461cde61e3d8d82882592
Infomedya SQL Injection
Posted Aug 29, 2011
Authored by kurdish hackers team | Site kurdteam.org

Infomedya suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 21faf5e7c545b643b72501f9a67ffaca
Plomp Banner Grabber
Posted Aug 29, 2011
Authored by Andrew Cook

Plomp is a HTTP banner grabber script written in Perl that also sends malformed requests to the server in order to determine if the version information has been altered.

tags | tool, web, scanner, perl
systems | unix
MD5 | 2f38b5483ed6512b84505e1860f6a7a3
ClickCMS Anti-Automation / Denial Of Service
Posted Aug 29, 2011
Authored by MustLive

ClickCMS suffers from anti-automation and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability
MD5 | 5d58feced7dc674e303d59e0464e837f
Secunia Security Advisory 45844
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for MozillaFirefox. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose certain sensitive information, and compromise a vulnerable system.

tags | advisory, vulnerability
systems | linux, suse
MD5 | 8c0a7daf77724c65063574532d011035
Secunia Security Advisory 45816
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Miroslav Stampar has discovered a vulnerability in the MM Forms Community plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | 04bacccdf67ae3bb6e9cbffe32a48589
Secunia Security Advisory 45830
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in Ipswitch WhatsUp Gold, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | 955eaa1f4e0e647885d1e867d1c63715
Secunia Security Advisory 45843
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for mingw32-libpng. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, fedora
MD5 | 6ce8ece672037f68ee3947521b8c57c6
Secunia Security Advisory 45803
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Xerox has acknowledged multiple vulnerabilities in Xerox FreeFlow Print Server, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or gain escalated privileges, malicious users to cause a DoS (Denial of Service), and malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service) or potentially compromise a vulnerable system, and compromise a user's system.

tags | advisory, denial of service, local, vulnerability
MD5 | 7a8a1fc2b36f65727366b421352be7b2
Secunia Security Advisory 45778
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Omnistar Mailer, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 9b67b522c540f182967011e545c9a104
Secunia Security Advisory 45805
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Squid, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.

tags | advisory, denial of service
MD5 | 411833d6b0b7201e3fe91b14e49e0ddd
Secunia Security Advisory 45808
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for seamonkey. This fixes multiple vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose certain sensitive information, and compromise a vulnerable system.

tags | advisory, vulnerability
systems | linux, suse
MD5 | 81c1bee450948eb435b05c281631ff06
Secunia Security Advisory 45721
Posted Aug 29, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Luigi Auriemma has discovered a security issue in HP SiteScope, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
MD5 | 895bc9dad285c100e3d35b36250b85c1
Page 1 of 2
Back12Next

File Archive:

April 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    60 Files
  • 2
    Apr 2nd
    20 Files
  • 3
    Apr 3rd
    10 Files
  • 4
    Apr 4th
    0 Files
  • 5
    Apr 5th
    0 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    0 Files
  • 9
    Apr 9th
    0 Files
  • 10
    Apr 10th
    0 Files
  • 11
    Apr 11th
    0 Files
  • 12
    Apr 12th
    0 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    0 Files
  • 16
    Apr 16th
    0 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close