exploit the possibilities
Showing 1 - 25 of 29 RSS Feed

Files Date: 2012-01-19

Suricata IDPE 1.2
Posted Jan 19, 2012
Site openinfosecfoundation.org

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: PCAP live runmodes were fixed. CPU affinity settings for live runmodes were fixed. Windows/Cygwin path handling was improved.
tags | tool, intrusion detection
systems | unix
MD5 | bd7dbcb882281b5a2bdceed5821c114c
Ubuntu Security Notice USN-1334-1
Posted Jan 19, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1334-1 - It was discovered that libxml2 contained an off by one error. If a user or application linked against libxml2 were tricked into opening a specially crafted XML file, an attacker could cause the application to crash or possibly execute arbitrary code with the privileges of the user invoking the program. It was discovered that libxml2 is vulnerable to double-free conditions when parsing certain XML documents. This could allow a remote attacker to cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2011-0216, CVE-2011-2821, CVE-2011-2834, CVE-2011-3905, CVE-2011-3919
MD5 | d35688e59e6cb186155a63ae04e731e5
OpenSSL Toolkit 1.0.0g
Posted Jan 19, 2012
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: This release fixed a DTLS DoS issue which was recently introduced by the fix for CVE-2011-4109.
tags | encryption, protocol
systems | unix
advisories | CVE-2011-4109
MD5 | 07ecbe4324f140d157478637d6beccf1
Ubuntu Security Notice USN-1335-1
Posted Jan 19, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1335-1 - Jon Larimer discovered that t1lib did not properly parse AFM fonts. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. Jonathan Brossard discovered that t1lib did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2010-2642, CVE-2011-0433, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554
MD5 | f1820e005118801463e6d76e84524323
Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow
Posted Jan 19, 2012
Authored by Stefan Esser

A possible stack buffer overflow in Suhosin extension's transparent cookie encryption that can only be triggered in an uncommon and weakened Suhosin configuration can lead to arbitrary remote code execution, if the FORTIFY_SOURCE compile option was not used when Suhosin was compiled. Versions 0.9.32.1 and below are affected.

tags | exploit, remote, overflow, arbitrary, code execution
MD5 | 606156cd50168f1f52ef5ba71487136d
Wvdial / usb_modeswitch File Overwrite
Posted Jan 19, 2012
Authored by srm

When using usb_modeswitch and invoking pppd from wvdial in -detach mode. a /tmp/debug file is created. A local Attacker could overwrite arbitrary files.

tags | exploit, arbitrary, local
MD5 | f6613eb3493fd001a067ea44bef97ceb
MySQL Brute Force Tool
Posted Jan 19, 2012
Authored by James Stevenson | Site stev.org

This is a small MySQL cracking tool capable of running login attempts from multiple threads in parallel. It is capable of 1024 concurrent connections.

tags | tool, cracker, sql injection
MD5 | c86b51dfee55c0a71e8fff874ef270d7
Brand PHP SQL Injection
Posted Jan 19, 2012
Authored by Th4 MasK

Brand PHP suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | d2e4ddee01ca89dd7b8bf6f11f96ceca
appRain CMF 0.1.5 Shell Upload
Posted Jan 19, 2012
Authored by EgiX

appRain CMF versions 0.1.5 and below suffer from an unrestricted shell upload vulnerability in uploadify.php.

tags | exploit, shell, php
MD5 | a37855a3c5afededad945923bdcb253d
WordPress uCan Post 1.0.09 Cross Site Scripting
Posted Jan 19, 2012
Authored by Gianluca Brindisi

WordPress uCan Post plugin versions 1.0.09 and below suffer from a stored cross site scripting vulnerability.

tags | exploit, xss
MD5 | c3a7d18f3408a218f51307c8b1b93a4c
Microsoft Anti-XSS Library Bypass
Posted Jan 19, 2012
Authored by Adi Cohen

The Microsoft Anti-XSS library versions 3.0 and 4.0 suffer from a javascript bypass vulnerability.

tags | exploit, javascript, bypass
MD5 | a567db148a847772b7a71ca9b993ef69
WebCrafters Design SQL Injection
Posted Jan 19, 2012
Authored by 3spi0n

WebCrafters Design suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | bca70c4777251c947ccd045aab1e4eff
WOL-E Wake On LAN Hacking Toolset 1.0
Posted Jan 19, 2012
Authored by Nathaniel Carew | Site code.google.com

WOL-E is a suite of tools for the Wake on LAN feature of network attached computers, this is now enabled by default on many Apple computers. These tools include bruteforcing the MAC address to wake up clients, sniffing WOL attempts and passwords, scanning for Apple devices and more.

tags | tool, wireless
systems | unix, apple
MD5 | c13b145872bfba6b1dabb7775f28a8ab
Fiche Avion SQL Injection
Posted Jan 19, 2012
Authored by Th4 MasK

Fiche Avion suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 69b6cdf4524427d48fc72fe0c92b1cd7
MaDVideO SQL Injection
Posted Jan 19, 2012
Authored by Th4 MasK

MaDVideO suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0454469dc53ea4e42af74db3d4f63bb7
Visualizza SQL Injection
Posted Jan 19, 2012
Authored by Th4 MasK

Visualizza suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c410a2b7ed1f2fd5f631da0dc888d2f7
Common Security Vulnerabilities In Online Payment Systems
Posted Jan 19, 2012
Authored by Hitesh Malviya

This is a short whitepaper that discusses common vulnerabilities in online payment systems.

tags | paper, vulnerability
MD5 | f4267b132dd0f54dcdfcfb54738eda4e
PostNuke pnAddressbook SQL Injection
Posted Jan 19, 2012
Authored by Robert Cooper

The PostNuke pnAddressbook module suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c6e75f0f75dc00334b2856d768bc8f2d
HP Security Bulletin HPSBMU02736 SSRT100699
Posted Jan 19, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02736 SSRT100699 - Potential security vulnerabilities have been identified with HP Business Availability Center (BAC) and Business Service Management (BSM) . The vulnerabilities could be remotely exploited to allow unauthorized access to sensitive information. Revision 1 of this advisory.

tags | advisory, vulnerability
advisories | CVE-2008-3273, CVE-2010-1428, CVE-2010-1429
MD5 | 29b998ace0da9a74489931aee8bdaa5e
Secunia Security Advisory 47600
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in XnView, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 1e7ab3eaebc6fb2848b4d0b6f9dd6196
Secunia Security Advisory 47584
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in McAfee GroupShield, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 55bb0653ff17b7d4eaba081a34004da5
Secunia Security Advisory 47586
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Oracle MySQL Server, which can be exploited by malicious, local users to gain knowledge of sensitive information, manipulate certain data, or cause a DoS (Denial of Service), by malicious users to gain knowledge of sensitive information, manipulate certain data, or cause a DoS, or by malicious people to cause a DoS.

tags | advisory, denial of service, local, vulnerability
MD5 | d8be4d8d2b4d69322df7a0baefb3e50f
Secunia Security Advisory 47649
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Panels module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | 66f2cc2ecbb5aa49a1cace00ea9fbf9b
Secunia Security Advisory 47653
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Quick Tabs module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | 6e9b7f070abee63b119fa2501ea6175f
Secunia Security Advisory 47566
Posted Jan 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gu1 has discovered a weakness in X.Org, which can be exploited by malicious people with physical access to bypass certain security restrictions.

tags | advisory
MD5 | 78ac4dd7d46049ed9aab1a6a5caf8a80
Page 1 of 2
Back12Next

File Archive:

May 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    16 Files
  • 2
    May 2nd
    8 Files
  • 3
    May 3rd
    8 Files
  • 4
    May 4th
    2 Files
  • 5
    May 5th
    1 Files
  • 6
    May 6th
    15 Files
  • 7
    May 7th
    22 Files
  • 8
    May 8th
    16 Files
  • 9
    May 9th
    17 Files
  • 10
    May 10th
    16 Files
  • 11
    May 11th
    3 Files
  • 12
    May 12th
    4 Files
  • 13
    May 13th
    25 Files
  • 14
    May 14th
    24 Files
  • 15
    May 15th
    78 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    16 Files
  • 18
    May 18th
    2 Files
  • 19
    May 19th
    1 Files
  • 20
    May 20th
    11 Files
  • 21
    May 21st
    21 Files
  • 22
    May 22nd
    20 Files
  • 23
    May 23rd
    36 Files
  • 24
    May 24th
    2 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close