what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files Date: 2012-01-04

Adobe Reader U3D Memory Corruption
Posted Jan 4, 2012
Authored by jduck, sinn3r, juan vazquez | Site metasploit.com

This Metasploit module exploits a vulnerability in the U3D handling within versions 9.x through 9.4.6 and 10 through to 10.1.1 of Adobe Reader. The vulnerability is due to the use of uninitialized memory. Arbitrary code execution is achieved by embedding specially crafted U3D data into a PDF document. A heap spray via JavaScript is used in order to ensure that the memory used by the invalid pointer issue is controlled.

tags | exploit, arbitrary, javascript, code execution
advisories | CVE-2011-2462, OSVDB-77529
MD5 | 0b78b73d96782aa18205e750b111a977
Debian Security Advisory 2380-1
Posted Jan 4, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2380-1 - It was discovered that the foomatic-filters, a support package for setting up printers, allowed authenticated users to submit crafted print jobs which would execute shell commands on the print servers.

tags | advisory, shell
systems | linux, debian
advisories | CVE-2011-2697, CVE-2011-2964
MD5 | ae3ac06dc724bdf7ece5b0b0a5472516
Debian Security Advisory 2379-1
Posted Jan 4, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2379-1 - It was discovered that the Key Distribution Center (KDC) in Kerberos 5 crashes when processing certain crafted requests.

tags | advisory
systems | linux, debian
advisories | CVE-2011-1528, CVE-2011-1529
MD5 | e686ca5f9bce5541546ac1695b954944
Limny 3.0.1 Cross Site Scripting
Posted Jan 4, 2012
Authored by LiquidWorm | Site zeroscience.mk

Limny version 3.0.1 suffers from a cross site scripting issue in '/admin/login.php' that uses the 'PHP_SELF' variable. The vulnerability is present because there isn't any filtering to the mentioned variable in the affected script. Attackers can exploit this weakness to execute arbitrary HTML and script code in a user's browser session.

tags | exploit, arbitrary, php, xss
MD5 | 6ffa488fe6a7a0cb4125d0deb6dc897e
S.S.T Javascript Keylogger
Posted Jan 4, 2012
Authored by Amir Masoud

S.S.T (Save Typed Text) javascript proof of concept keylogging code.

tags | tool, javascript, sniffer, proof of concept
MD5 | 80322d53bae1f81df3bae32d7ddf76cd
UBB Forum 7.5.6 Cross Site Scripting
Posted Jan 4, 2012
Authored by Sony

UBB Forum version 7.5.6 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1d2803253b408e9414ae323d8c6b2afb
PHP 4 Hash Collision Proof Of Concept
Posted Jan 4, 2012
Authored by Antoine Santo

PHP 4 hash collision proof of concept code that computes hash values for form parameters.

tags | exploit, php, proof of concept
systems | linux
advisories | CVE-2011-4885
MD5 | ea16bf2c76f5634fa3f2084454c76ac7
Orchard 1.3.9 Open Redirection
Posted Jan 4, 2012
Authored by Mesut Timur

Orchard versions 1.3.9 and below suffer from an open redirection vulnerability.

tags | exploit
MD5 | 50f40c6f8f019e5d899966e8058a1e73
Typo3 4.5 - 4.7 Code Execution
Posted Jan 4, 2012
Authored by MaXe

Typo3 versions 4.5 through 4.7 suffer from remote code execution vulnerabilities by leveraging local and remote file inclusion.

tags | exploit, remote, local, vulnerability, code execution, file inclusion
MD5 | 8ff731695fbfcede917872da831cd057
immediaC CMS SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

immediaC CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0277fd53af9e598e4fa92c49d3b1443d
Biz Technologies SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Biz Technologies suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 591d0ede1b412f5caeeaa1897991fa98
Ischianelweb SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Ischianelweb suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6a8692a2811d76a7baa14041eae6f5db
ImpressCMS 1.3 Final Cross Site Scripting / Local File Inclusion
Posted Jan 4, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

ImpressCMS version 1.3 Final suffers from cross site scripting and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
MD5 | 6f854723af5d4da1d5cd4770c4ba7b85
Logement Laval SQL Injection
Posted Jan 4, 2012
Authored by Th4 MasK

Logement Laval suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 03c18349f5b10133e3d5068190924eb1
Mediashaker Blind SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Mediashaker suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b6e3f7a353ddd96d06e81e6863c4aa70
EasyWebRealEstate Blind SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

EasyWebRealEstate suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0303bf504f5b24145693189344184851
Otterware Statit4 Cross Site Scripting
Posted Jan 4, 2012
Authored by Sony

Otterware Statit4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c1c45b55dddbb10dfac40dc2d512c27d
Posse Sports SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

Posse Sports suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 04d6c0def1d6e7498453e2a1fb5251df
SyriaNobles SQL Injection
Posted Jan 4, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

SyriaNobles suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 772906ecc907bd82199829132dafae52
VLC Media Player 1.1.11 Proof Of Concept
Posted Jan 4, 2012
Authored by Fabi

VLC Media Player version 1.1.11 local crash proof of concept exploit that creates a malicious .amr file.

tags | exploit, denial of service, local, proof of concept
MD5 | 4cc7f197937ce0cbcdcae6c426d00df2
Netcut 2.0 Denial Of Service
Posted Jan 4, 2012
Authored by MaYaSeVeN

Netcut version 2.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | f7d6c56b3e04622c434e841c71ac5d9e
Textpattern CMS 4.4.1 Cross Site Scripting
Posted Jan 4, 2012
Authored by Jonathan Claudius | Site trustwave.com

Textpattern CMS version 4.4.1 before change set 3612 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2011-5019
MD5 | c1a8fa607d7e69ae3ed1115ee98c8e2f
Ubuntu Security Notice USN-1317-1
Posted Jan 4, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1317-1 - It was discovered that Ghostscript did not correctly handle memory allocation when parsing certain malformed JPEG-2000 images. If a user or automated system were tricked into opening a specially crafted image, an attacker could cause a denial of service and possibly execute arbitrary code with user privileges. It was discovered that Ghostscript did not correctly handle certain formatting operations when parsing JPEG-2000 images. If a user or automated system were tricked into opening a specially crafted image, an attacker could cause a denial of service and possibly execute arbitrary code with user privileges. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2008-3520, CVE-2008-3522, CVE-2009-3743, CVE-2010-4054, CVE-2011-4516, CVE-2011-4517
MD5 | a8d6590574487c9c0fbd6b8d75b7c24f
Guestek / Oneview Wireless Cracker
Posted Jan 4, 2012
Authored by Skraps

Proof of concept WiFi cracking code for Guestek / Oneview systems as found in Extended Stay of America hotels.

tags | cracker, proof of concept
MD5 | cd58f968bb374c9c68857247dbf05792
Secunia Security Advisory 47372
Posted Jan 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in GraphicsClone Script, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | d15ee0640bbf6002c1dcb76b738cf41b
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    2 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close