what you don't know can hurt you
Showing 1 - 25 of 38 RSS Feed

Files Date: 2011-10-20

HP Power Manager 'formExportDataLogs' Buffer Overflow
Posted Oct 20, 2011
Authored by Alin Rad Pop, sinn3r, ipax | Site metasploit.com

This Metasploit module exploits a buffer overflow in HP Power Manager's 'formExportDataLogs'. By creating a malformed request specifically for the fileName parameter, a stack-based buffer overflow occurs due to a long error message (which contains the fileName), which may result in arbitrary remote code execution under the context of 'SYSTEM'.

tags | exploit, remote, overflow, arbitrary, code execution
advisories | CVE-2009-3999
MD5 | d97a6ea1ca51e58b0c9aa89465f0fdc1
Ubuntu Security Notice USN-1235-1
Posted Oct 20, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1235-1 - Colin Watson discovered that iscsi_discovery in Open-iSCSI did not safely create temporary files. A local attacker could exploit this to to overwrite arbitrary files with root privileges.

tags | advisory, arbitrary, local, root
systems | linux, ubuntu
advisories | CVE-2009-1297
MD5 | 0311851675890564e0c22486946be85a
Debian Security Advisory 2324-1
Posted Oct 20, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2324-1 - The Microsoft Vulnerability Research group discovered that insecure load path handling could lead to execution of arbitrary Lua script code.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2011-3360
MD5 | 04540b37f4ca9fbaaf7be287b1d9ebc3
Red Hat Security Advisory 2011-1392-01
Posted Oct 20, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1392-01 - The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI for proxied requests. In certain configurations, if a reverse proxy used the ProxyPassMatch directive, or if it used the RewriteRule directive with the proxy flag, a remote attacker could make the proxy connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to the attacker.

tags | advisory, remote, web, arbitrary
systems | linux, redhat
advisories | CVE-2011-3368
MD5 | 41251dfd1c67d4b96ef4387e484c8620
OCS Inventory NG 2.0.1 Cross Site Scripting
Posted Oct 20, 2011
Authored by Nicolas DEROUET

OCS Inventory NG version 2.0.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2011-4024
MD5 | cdb354a77b80b590acee3a7330925c4b
HP Security Bulletin HPSBPI02711 SSRT100647
Posted Oct 20, 2011
Authored by HP | Site hp.com

HP Security Bulletin HPSBPI02711 SSRT100647 - A potential security vulnerability has been identified with HP MFP Digital Sending Software running on Windows. The vulnerability could result in disclosure of personal information contained in workflow metadata to unintended recipients. Revision 1 of this advisory.

tags | advisory
systems | windows
advisories | CVE-2011-3163
MD5 | ef0abdb6b8c47cc94d2e2b6b66115a5b
Opera Use-After-Free Proof Of Concept
Posted Oct 20, 2011
Authored by Roberto Suggi Liverani

Opera use-after-free proof of concept denial of service exploit. A full analysis is provided as well.

tags | exploit, denial of service, proof of concept
MD5 | f9b81cf3c9630e77065b0807a084ad2b
Ubuntu Security Notice USN-1236-1
Posted Oct 20, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1236-1 - It was discovered that the Auerswald usb driver incorrectly handled lengths of the USB string descriptors. A local attacker with physical access could insert a specially crafted USB device and gain root privileges. It was discovered that the Stream Control Transmission Protocol (SCTP) implementation incorrectly calculated lengths. If the net.sctp.addip_enable variable was turned on, a remote attacker could send specially crafted traffic to crash the system. Various other issues were also addressed.

tags | advisory, remote, local, root, protocol
systems | linux, ubuntu
advisories | CVE-2009-4067, CVE-2011-1573, CVE-2011-2494, CVE-2011-2495, CVE-2011-3188
MD5 | ae2696646303ce38ff705e1ba28f25ad
MIT krb5 Security Advisory 2011-006
Posted Oct 20, 2011
Site web.mit.edu

MIT krb5 Security Advisory 2011-006 - In releases krb5-1.9 and later, the KDC can crash due to a null pointer dereference if configured to use the LDAP back end. A trigger condition is publicly known but not known to be widely circulated. In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. No exploit is known to exist, but there is public evidence that the unidentified trigger condition occurs in the field. In releases krb5-1.8 and later, the KDC can crash due to a null pointer dereference. No exploit is known to exist.

tags | advisory
advisories | CVE-2011-1527, CVE-2011-1528, CVE-2011-1529
MD5 | 3a4a43e1df117ea89f7e2b3b8b096f97
Ubuntu Security Notice USN-1234-1
Posted Oct 20, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1234-1 - Vasiliy Kulikov discovered that acpid did not properly handle connections from poorly behaving clients. A local attacker could potentially exploit this to cause a denial of service.

tags | advisory, denial of service, local
systems | linux, ubuntu
advisories | CVE-2011-1159
MD5 | 1ed63bca7ddaadea147ee6cd589e2c1e
Red Hat Security Advisory 2011-1391-01
Posted Oct 20, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1391-01 - The Apache HTTP Server is a popular web server. It was discovered that the Apache HTTP Server did not properly validate the request URI for proxied requests. In certain configurations, if a reverse proxy used the ProxyPassMatch directive, or if it used the RewriteRule directive with the proxy flag, a remote attacker could make the proxy connect to an arbitrary server, possibly disclosing sensitive information from internal web servers not directly accessible to the attacker. It was discovered that mod_proxy_ajp incorrectly returned an "Internal Server Error" response when processing certain malformed HTTP requests, which caused the back-end server to be marked as failed in configurations where mod_proxy was used in load balancer mode. A remote attacker could cause mod_proxy to not send requests to back-end AJP servers for the retry timeout period or until all back-end servers were marked as failed.

tags | advisory, remote, web, arbitrary
systems | linux, redhat
advisories | CVE-2011-3348, CVE-2011-3368
MD5 | 22dd325ece6e09d6c1e869f0ba8bbe0f
Red Hat Security Advisory 2011-1386-01
Posted Oct 20, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1386-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. The maximum file offset handling for ext4 file systems could allow a local, unprivileged user to cause a denial of service. IPv6 fragment identification value generation could allow a remote attacker to disrupt a target system's networking, preventing legitimate users from accessing its services. Various other issues in the kernel have also been addressed.

tags | advisory, remote, denial of service, kernel, local
systems | linux, redhat
advisories | CVE-2009-4067, CVE-2011-1160, CVE-2011-1585, CVE-2011-1833, CVE-2011-2484, CVE-2011-2496, CVE-2011-2695, CVE-2011-2699, CVE-2011-2723, CVE-2011-2942, CVE-2011-3131, CVE-2011-3188, CVE-2011-3191, CVE-2011-3209, CVE-2011-3347
MD5 | 501de34ecdb0786ceee3492c07b05128
Skype VoIP Zero Day Exploitation
Posted Oct 20, 2011
Authored by Benjamin Kunz Mejri, Pim J.F. Campers

Whitepaper called Skype Voice Over IP Software Vulnerabilities, Techniques and Methods - Zero Day Exploitation 2011.

tags | paper, vulnerability
MD5 | b6ec606725fa2f9825409429680eaa18
Cyclope Internet Filtering Proxy Cross Site Scripting
Posted Oct 20, 2011
Authored by loneferret

Cyclope Internet Filtering Proxy suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8fe9605bc18d7889a21fdbe1e6dac2af
Metasploit 4.1.0 Web UI Cross Site Scripting
Posted Oct 20, 2011
Authored by Stefan Schurtz

The Web UI in Metasploit version 4.1.0 suffers from a stored cross site scripting vulnerability.

tags | exploit, web, xss
MD5 | c9511b8f41cfa7bf2af56d61f0769ddc
Pre Studio Business Cards Designer SQL Injection
Posted Oct 20, 2011
Authored by dr_zig

Pre Studio Business Cards Designer suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | aa0d3172e40347f4e96d3a6923b101f0
Oracle DataDirect Multiple Native Wire Protocol ODBC Drivers Buffer Overflow
Posted Oct 20, 2011
Authored by rgod | Site retrogod.altervista.org

Oracle DataDirect multiple native wire protocol ODBC drivers HOST attribute stack based buffer overflow proof of concept exploit. Oracle Hyperion Performance Management and BI version 11.1.2.1.0 is affected.

tags | exploit, overflow, protocol, proof of concept
MD5 | b45ff9698e86a1f31ad62dc540c6f3a1
HP Security Bulletin HPSBMU02716 SSRT100651
Posted Oct 20, 2011
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02716 SSRT100651 - Potential security vulnerabilities has been identified with HP Data Protector Notebook Extension. These vulnerabilities could be remotely exploited to allow execution of arbitrary code. Revision 1 of this advisory.

tags | advisory, arbitrary, vulnerability
advisories | CVE-2011-3156, CVE-2011-3157, CVE-2011-3158, CVE-2011-3159, CVE-2011-3160, CVE-2011-3161, CVE-2011-3162
MD5 | 121937cea378b95fe9a74d83cbe2cee9
Tine 2.0 Cross Site Scripting
Posted Oct 20, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Tine version 2.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | b96bf35a4ed6f9e82866500aaf4e5e9a
Uiga Personal Portal Cross Site Scripting / Blind SQL Injection
Posted Oct 20, 2011
Authored by Eyup CELIK

Uiga Personal Portal suffers from cross site scripting and remote blind SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 749b80089388461d31e87c5abffa0a3f
CMSmini 0.2.2 Local File Inclusion
Posted Oct 20, 2011
Authored by I2Sec5-BSK

CMSmini version 0.2.2 suffers from a local file inclusion vulnerability in edit.php.

tags | exploit, local, php, file inclusion
MD5 | 9ad9628e489d28b33b3334ea7989dfd0
UnrealIRCd 3.2.8.1 Stack Overflow
Posted Oct 20, 2011
Authored by DiGMi

UnrealIRCd version 3.2.8.1 local configuration stack overflow proof of concept exploit.

tags | exploit, overflow, local, proof of concept
MD5 | fb1cbf7bb5cac0840b802d12560d3dbc
Opera 11.52 Stack Overflow
Posted Oct 20, 2011
Authored by pigtail23

Opera versions 11.52 and below proof of concept stack overflow exploit.

tags | exploit, overflow, proof of concept
MD5 | b079250e550f9d8370daa2db5ece3245
Opera 11.52 Denial Of Service
Posted Oct 20, 2011
Authored by pigtail23

Opera versions 11.52 and below proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
MD5 | fe34293590459f9e2ce61f8b01aa7c63
Secunia Security Advisory 46484
Posted Oct 20, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in wizmall, which can be exploited by malicious people to disclose potentially sensitive information.

tags | advisory, vulnerability
MD5 | 7ec44220073837a8fb00c54dfc46152f
Page 1 of 2
Back12Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    1 Files
  • 17
    Jan 17th
    2 Files
  • 18
    Jan 18th
    20 Files
  • 19
    Jan 19th
    32 Files
  • 20
    Jan 20th
    15 Files
  • 21
    Jan 21st
    10 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close