what you don't know can hurt you
Showing 1 - 21 of 21 RSS Feed

Files Date: 2012-01-07

Secunia Security Advisory 47426
Posted Jan 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in OpenSSL, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
MD5 | 162ebe3fb215c6d39267eebb7f496362
Secunia Security Advisory 47392
Posted Jan 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for krb5. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, debian
MD5 | a4db2811cfa78d2dc4b9c14dc2819390
Secunia Security Advisory 47443
Posted Jan 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Registration Codes module for Drupal, which can be exploited by malicious people to disclose sensitive information.

tags | advisory
MD5 | 5cc4412bb1cae30b786288924736fae8
Secunia Security Advisory 47452
Posted Jan 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in UBB.threads, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | a33240068cdf8547fdda371d6db223eb
OpenSSL Toolkit 1.0.0f
Posted Jan 7, 2012
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: A fix was introduced for a security issue where an extension of the Vaudenay padding oracle attack on CBC mode encryption enables an efficient plaintext recovery attack against the OpenSSL implementation of DTLS. Various other bugfixes and improvements were made.
tags | tool, encryption, protocol
systems | unix
advisories | CVE-2011-4108, CVE-2011-4576, CVE-2011-4619, CVE-2012-0027, CVE-2011-4577
MD5 | e358705fb4a8827b5e9224a73f442025
Technical Cyber Security Alert 2012-6A
Posted Jan 7, 2012
Authored by US-CERT | Site us-cert.gov

Technical Cyber Security Alert 2012-6A - Wi-Fi Protected Setup (WPS) provides simplified mechanisms to configure secure wireless networks. The external registrar PIN exchange mechanism is susceptible to brute force attacks that could allow an attacker to gain access to an encrypted Wi-Fi network.

tags | advisory
MD5 | 76510dac2e1855f24b26eba6af7220b0
Ubuntu Security Notice USN-1306-2
Posted Jan 7, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1306-2 - USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. Various other issues were also addressed.

tags | advisory, arbitrary, vulnerability
systems | linux, ubuntu
advisories | CVE-2011-3658, CVE-2011-3660, CVE-2011-3661, CVE-2011-3663, CVE-2011-3665
MD5 | 0cb8923ccca213371749c9ad49ba69bf
Ubuntu Security Notice USN-1306-1
Posted Jan 7, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1306-1 - Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. Aki Helin discovered a crash in the YARR regular expression library that could be triggered by javascript in web content. Various other issues were also addressed.

tags | advisory, web, arbitrary, javascript
systems | linux, ubuntu
advisories | CVE-2011-3658, CVE-2011-3660, CVE-2011-3661, CVE-2011-3663, CVE-2011-3665
MD5 | 66d158a2657e6a68eb213d345a66e000
Novell Netware XNFS.NLM NFS Rename Remote Code Execution
Posted Jan 7, 2012
Authored by Francis Provencher

Novell Netware version 6.5 SP8 suffers from a XNFS.NLM NFS Rename remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 932cbf32f536d7915c5001d7b70f4ad7
Novell Netware XNFS.NLM STAT Notify Remote Code Execution
Posted Jan 7, 2012
Authored by Francis Provencher

Novell Netware version 6.5 SP8 suffers from a XNFS.NLM STAT Notify remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | e949872ec1d486d378b559f2ae10cbf2
WordPress Pay With Tweet Cross Site Scripting / SQL Injection
Posted Jan 7, 2012
Authored by Gianluca Brindisi

WordPress Pay With Tweet plugin versions 1.1 and below suffer from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | f99a5a98a2e9a1fc938a1ee5b011398c
TinyWebGallery 1.8.3 Remote Command Execution
Posted Jan 7, 2012
Authored by Expl0!Ts

TinyWebGallery version 1.8.3 suffers from a remote command execution vulnerability.

tags | exploit, remote
MD5 | 76a84840d9d69bc0f2f1fe5560e568a3
Look411.com Cross Site Scripting
Posted Jan 7, 2012
Authored by Girish Shrimali

Look411.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c941a40693e31bf01cd71f90df626a9f
Atar2b CMS 4.0.1 SQL Injection
Posted Jan 7, 2012
Authored by Net.Edit0r, BHG Security Center, G3n3Rall

Atar2b CMS version 4.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 06205c4ee3f7a7dadcb5f4f6362acd49
Goto System SQL Injection
Posted Jan 7, 2012
Authored by ruben_linux

Goto System suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f9feba241ae681fd9ae505f00a4fc31c
DIGIT CMS 1.0.7 Cross Site Scripting / SQL Injection
Posted Jan 7, 2012
Authored by Net.Edit0r, BHG Security Center, G3n3Rall

DIGIT CMS version 1.0.7 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 3b352294564a321feab007d6f82e2331
Debian Security Advisory 2381-1
Posted Jan 7, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2381-1 - It was discovered that the IPv6 support code in Squid does not properly handle certain DNS responses, resulting in deallocation of an invalid pointer and a daemon crash.

tags | advisory
systems | linux, debian
advisories | CVE-2011-4096
MD5 | 0d3758cce8291f77407931a6809b80b4
VBDrupal Cross Site Scripting
Posted Jan 7, 2012
Authored by Sony

VBDrupal suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e93f49e0cf2740ff27beb978a01980a5
IRIS SQL Injection
Posted Jan 7, 2012
Authored by Farbod Mahini, H4ckCity Security Team | Site h4ckcity.org

IRIS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 5c4d945173a3a966eab13d38ac8a75eb
IpTools 0.1.4 Directory Traversal
Posted Jan 7, 2012
Authored by demonalex

IpTools (Tiny TCP/IP server) version 0.1.4 suffers from a directory traversal vulnerability.

tags | exploit, tcp, file inclusion
MD5 | a0ca8e6e3fa10f928aadb20af380402a
IpTools 0.1.4 Overflow
Posted Jan 7, 2012
Authored by demonalex

IpTools (Tiny TCP/IP server) version 0.1.4 suffers from denial of service and overflow vulnerabilities.

tags | exploit, denial of service, overflow, tcp, vulnerability
MD5 | f3b2cf7d3c6ed6032187ba5eaa0b2234
Page 1 of 1
Back1Next

File Archive:

November 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    2 Files
  • 2
    Nov 2nd
    9 Files
  • 3
    Nov 3rd
    15 Files
  • 4
    Nov 4th
    90 Files
  • 5
    Nov 5th
    22 Files
  • 6
    Nov 6th
    16 Files
  • 7
    Nov 7th
    1 Files
  • 8
    Nov 8th
    1 Files
  • 9
    Nov 9th
    40 Files
  • 10
    Nov 10th
    27 Files
  • 11
    Nov 11th
    28 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    18 Files
  • 14
    Nov 14th
    2 Files
  • 15
    Nov 15th
    2 Files
  • 16
    Nov 16th
    29 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    15 Files
  • 19
    Nov 19th
    21 Files
  • 20
    Nov 20th
    16 Files
  • 21
    Nov 21st
    1 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    19 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close