what you don't know can hurt you
Showing 1 - 25 of 54 RSS Feed

Files Date: 2011-11-08

Comtrend Router CT-5624 Remote Root Password Changer/Disclosure
Posted Nov 8, 2011
Authored by Todor Donev

Comtrend Router CT-5624 remote root / support password disclosure and change exploit.

tags | exploit, remote, root, info disclosure
MD5 | c8181cbecebd786cc8eff75eb910b0d2
Zero Day Initiative Advisory 11-320
Posted Nov 8, 2011
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 11-320 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy iFix HMI/SCADA. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ihDataArchiver.exe process which listens by default on TCP port 14000. The code within this module trusts a value supplied over the network and uses it as a length when copying user-supplied data to a stack buffer. By providing a large enough value, this buffer can be overflowed leading to arbitrary code execution under the context of the user running the service.

tags | advisory, remote, overflow, arbitrary, tcp, code execution
MD5 | 3a58c6ee44d0bcde6b37e827d084a7e8
Cisco CUCM Directory Traversal / Reversible Obfuscation
Posted Nov 8, 2011
Authored by FX, Sandro Gauci | Site recurity-labs.com

Cisco CUCM environment and the IP Phone CP-7975G suffer from a directory traversal, have a reversible obfuscation algorithm, security issues related to SCCP, CTFTP, and Voice VLAN separation. Versions 7.0 and 8.0(2) are affected.

tags | exploit, file inclusion
systems | cisco
MD5 | 0beac78c5f61b53a31e06e89fff5f7b2
Ubuntu Security Notice USN-1252-1
Posted Nov 8, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1252-1 - It was discovered that Tomcat incorrectly implemented HTTP DIGEST authentication. An attacker could use this flaw to perform a variety of authentication attacks. Polina Genova discovered that Tomcat incorrectly created log entries with passwords when encountering errors during JMX user creation. A local attacker could possibly use this flaw to obtain sensitive information. This issue only affected Ubuntu 10.04 LTS, 10.10 and 11.04. Various other issues were also addressed.

tags | advisory, web, local
systems | linux, ubuntu
advisories | CVE-2011-1184, CVE-2011-2204, CVE-2011-2526, CVE-2011-3190
MD5 | a97431efec12df324fe751f346a1f436
Red Hat Security Advisory 2011-1434-01
Posted Nov 8, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-1434-01 - This update fixes multiple security flaws in Adobe Reader. A PDF file with an embedded, specially-crafted SWF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. A flaw in Adobe Flash Player could allow an attacker to conduct cross-site scripting (XSS) attacks if a victim were tricked into visiting a specially-crafted web page. Various other issues were also addressed.

tags | advisory, web, arbitrary, xss
systems | linux, redhat
advisories | CVE-2011-2130, CVE-2011-2134, CVE-2011-2135, CVE-2011-2136, CVE-2011-2137, CVE-2011-2138, CVE-2011-2139, CVE-2011-2140, CVE-2011-2414, CVE-2011-2415, CVE-2011-2416, CVE-2011-2417, CVE-2011-2424, CVE-2011-2425, CVE-2011-2426, CVE-2011-2427, CVE-2011-2428, CVE-2011-2429, CVE-2011-2430, CVE-2011-2431, CVE-2011-2432, CVE-2011-2433, CVE-2011-2434, CVE-2011-2435, CVE-2011-2436, CVE-2011-2437, CVE-2011-2438, CVE-2011-2439
MD5 | 8cf3ce8f2a32239fcb72724e135422d1
Lexmark X656de Printer Information Leakage
Posted Nov 8, 2011
Authored by Deral Heiland | Site foofus.net

The Lexmark X656de multifunction printer suffers from a remote password disclosure vulnerability.

tags | exploit, remote
MD5 | bbccb61ee4c3ef35fa8c690051ce71e1
IPv6 Security Assessment Results
Posted Nov 8, 2011
Authored by Fernando Gont

These are the slides from a presentation called Results of a Security Assessment of the Internet Protocol version 6 (IPv6). It was presented at H2HC 2011.

tags | paper, protocol
MD5 | d07e41f43379026ab674eb6e151d845a
Debian Security Advisory 2340-1
Posted Nov 8, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2340-1 - magnum discovered that the blowfish password hashing used amongst others in PostgreSQL contained a weakness that would give passwords with 8 bit characters the same hash as weaker equivalents.

tags | advisory
systems | linux, debian
advisories | CVE-2011-2483
MD5 | 7ed05156c8a57010446ebf3bc6aff949
Debian Security Advisory 2336-1
Posted Nov 8, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2336-1 - Multiple vulnerabilities were found in the ffmpeg, a multimedia player, server and encoder.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2011-3362, CVE-2011-3973, CVE-2011-3974, CVE-2011-3504
MD5 | 15aa90621db2a6c22fce4b8cef13f9ab
Facebook A+ Academy SQL Injection
Posted Nov 8, 2011
Site vulnerability-lab.com

Facebook A+ Academy suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e4809e77e6c5ce022f5e04d7c9e2d05e
iGuard Biometric Access Control Cross Site Scripting
Posted Nov 8, 2011
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

iGuard Biometric Access Control suffers from multiple input validation vulnerabilities that can allow for cross site scripting.

tags | advisory, vulnerability, xss
MD5 | a0012a1a2e65dae690f93c1766ef61fe
Secunia Security Advisory 46643
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Barracuda Link Balancer, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 1f4de103681823f005337e0759022eb9
Secunia Security Advisory 46728
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for sun-jre-bin, emul-linux-x86-java, and sun-jdk. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, by malicious users to disclose certain information, and by malicious people to disclose potentially sensitive information, bypass certain security restrictions, hijack a user's session, manipulate certain data, conduct DNS cache poisoning attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, java, denial of service, x86, local, vulnerability
systems | linux, gentoo
MD5 | 4ccc2d206a1bf47a6d85e9bb2661118e
Secunia Security Advisory 46765
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in UBB.threads, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | 933c8b9983d7b9715599a8c6125fd7d7
Secunia Security Advisory 46736
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in FFmpeg, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
MD5 | 8632e572f6743a89cb6ef7277ea54835
Secunia Security Advisory 46754
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Mr.PaPaRoSSe has reported a vulnerability in SmartJobBoard, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | a3e4d47e5c3c1b895ad0312d0106d6b3
Secunia Security Advisory 46719
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Mahara, which can be exploited by malicious users to disclose potentially sensitive information, conduct script insertion attacks, and cause a DoS (Denial of Service) and by malicious people to conduct cross-site request forgery attacks.

tags | advisory, denial of service, vulnerability, csrf
MD5 | eeaf05d84fe612c4749434517a0e9492
Secunia Security Advisory 46782
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Fedora has issued an update for kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, fedora
MD5 | f91e2e5dda4f54319a170c21967c6101
Secunia Security Advisory 46660
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in the JEEMA SMS component for Joomla!, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site request forgery attacks.

tags | advisory, vulnerability, sql injection, csrf
MD5 | 8a6f15e9e69805a856e321fba6054892
Secunia Security Advisory 46749
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in zenphoto, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | b82e08714a840de7fa9de685be6d65c7
Secunia Security Advisory 46707
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weakness has been discovered in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | apple, osx
MD5 | 4e9fbdd4952c7d7d8bd4c915c92783e3
Secunia Security Advisory 46746
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Iwate Portal Bar, which can be exploited by malicious people to conduct script insertion attacks.

tags | advisory
MD5 | 9d43a0c35bed3ea416609c8008aea680
Secunia Security Advisory 46659
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in the ZTE ZXDSL 831 II modem, which can be exploited by malicious people to conduct cross-site request forgery attacks and to disclose sensitive information.

tags | advisory, vulnerability, csrf
MD5 | a56efc348cb54a76eedbbfe484c77a94
Secunia Security Advisory 46694
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Hitachi has acknowledged multiple vulnerabilities in Hitachi Cosminexus products, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
MD5 | a65bc1350c2414ac299386543e3e681a
Secunia Security Advisory 46731
Posted Nov 8, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
systems | windows
MD5 | a4b9d4cb6d1fcb34bc63b83f5f013cce
Page 1 of 3
Back123Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    6 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close