Exploit the possiblities
Showing 1 - 25 of 977 RSS Feed

Files Date: 2012-02-01 to 2012-02-29

Mandriva Linux Security Advisory 2012-023-1
Posted Feb 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-023 - A vulnerability has been found and corrected in libvpx. VP8 Codec SDK before 1.0.0 Duclair allows remote attackers to cause a denial of service unspecified corrupt input or by starting decoding from a P-frame, which triggers an out-of-bounds read, related to the clamping of motion vectors in SPLITMV blocks. The updated packages have been patched to correct this issue. This is a symbolic advisory correction because there was a clash with MDVSA-2012:023 that addressed libxml2.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2012-0823
MD5 | a9412136078e46e98a651a0911c85265
Mandriva Linux Security Advisory 2012-022-1
Posted Feb 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-022 - Security issues were identified and fixed in mozilla firefox and thunderbird. An integer overflow in the libpng library can lead to a heap-buffer overflow when decompressing certain PNG images. This leads to a crash, which may be potentially exploitable. The mozilla firefox and thunderbird packages have been upgraded to the latest respective versions which is not affected by this security flaw. Additionally the rootcerts packages has been upgraded to the latest version as of 2012/02/18 and the NSS library has been rebuilt accordingly to pickup the changes. This is a symbolic advisory correction because there was a clash with MDVSA-2012:022 that addressed libpng.

tags | advisory, overflow
systems | linux, mandriva
advisories | CVE-2011-3026
MD5 | de9592924e876ccd8692ea4405f7cd1b
Mandriva Linux Security Advisory 2012-025
Posted Feb 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-025 - Heap-based buffer overflow in process.c in smbd in Samba allows remote attackers to cause a denial of service or possibly execute arbitrary code via a Batched request that triggers infinite recursion. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2012-0870
MD5 | a48eb7599f579a43e0f56af097cbf7f0
Mandriva Linux Security Advisory 2012-024
Posted Feb 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-024 - Ruby before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service via crafted input to an application that maintains a hash table. The updated packages have been patched to correct this issue.

tags | advisory, denial of service, ruby
systems | linux, mandriva
advisories | CVE-2011-4815
MD5 | 1d8d72261c80ebe8501cf18c76dafc78
darkb0t IRC Python Bot 0.3
Posted Feb 28, 2012
Authored by baltazar

darkb0t is an IRC bot written in Python that is capable of doing reverse DNS lookups, google dork searching, performing link checking on SQL injection, and more.

Changes: Added new checks.
tags | sql injection, python
MD5 | 7a1aa3fd5bb9bb0c7134df94f38f31a3
Ubuntu Security Notice USN-1377-1
Posted Feb 28, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1377-1 - Drew Yao discovered that the WEBrick HTTP server was vulnerable to cross-site scripting attacks when displaying error pages. A remote attacker could use this flaw to run arbitrary web script. Drew Yao discovered that Ruby's BigDecimal module did not properly allocate memory on 64-bit platforms. An attacker could use this flaw to cause a denial of service or possibly execute arbitrary code with user privileges. Various other issues were also addressed.

tags | advisory, remote, web, denial of service, arbitrary, xss, ruby
systems | linux, ubuntu
advisories | CVE-2010-0541, CVE-2011-0188, CVE-2011-1004, CVE-2011-1005, CVE-2011-2686, CVE-2011-2705, CVE-2011-4815, CVE-2010-0541, CVE-2011-0188, CVE-2011-1004, CVE-2011-1005, CVE-2011-2686, CVE-2011-2705, CVE-2011-4815
MD5 | 96e246b81f447daeed7e88c291d1bc26
Metasploit Low Level View
Posted Feb 28, 2012
Authored by Saad Talaat

Whitepaper called Metasploit: Low Level View. It touches on topics such as code injection and malware detection evasion / Metasploit encoders.

tags | paper
MD5 | 0559a81662deefef0464d9ae73e2544c
ImgPals Photo Host 1.0 Stable Admin Account Deactivation
Posted Feb 28, 2012
Authored by CorryL

ImgPals Photo Host version 1.0 STABLE suffers from a remote administrative account disabling vulnerability.

tags | exploit, remote
MD5 | cba530ca9691ccc3d36ba9f01870182e
REC0N 2012 Call For Papers
Posted Feb 28, 2012
Authored by REC0N 2012 | Site recon.cx

The REC0N 2012 Call For Papers has been announced. It will take place June 14th through June 16h, 2012 in Montreal, Canada.

tags | paper, conference
MD5 | 8f09f73114ba73df743325d409ca2e3e
Ubuntu Security Notice USN-1375-1
Posted Feb 28, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1375-1 - The httplib2 Python library earlier than version 0.7.0 did not perform any server certificate validation when using HTTPS connections. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to alter or compromise confidential information in applications that used the httplib2 library.

tags | advisory, remote, web, python
systems | linux, ubuntu
MD5 | 939cc6e4e37bfb09419bf5c19c77167f
Gentoo Linux Security Advisory 201202-07
Posted Feb 28, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201202-7 - Multiple vulnerabilities were found in libvirt, the worst of which might allow guest OS users to read arbitrary files on the host OS. Versions less than 0.9.3-r1 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2011-1146, CVE-2011-1486, CVE-2011-2178, CVE-2011-2511
MD5 | 51c92e021d56d918a763f5b493103655
Ubuntu Security Notice USN-1376-1
Posted Feb 28, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1376-1 - Juraj Somorovsky discovered that libxml2 was vulnerable to hash table collisions. If a user or application linked against libxml2 were tricked into opening a specially crafted XML file, an attacker could cause a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2012-0841
MD5 | 5dea3786c8208c8deccce3066fe74417
Debian Security Advisory 2419-1
Posted Feb 28, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2419-1 - Two vulnerabilities were discovered in Puppet, a centralized configuration management tool.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2012-1053, CVE-2012-1054
MD5 | f8236b1b7c5fd4bbe375e87807dcc4a1
Debian Security Advisory 2418-1
Posted Feb 28, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2418-1 - Several local vulnerabilities have been discovered in PostgreSQL, an object-relational SQL database.

tags | advisory, local, vulnerability
systems | linux, debian
advisories | CVE-2012-0866, CVE-2012-0867, CVE-2012-0868
MD5 | 0f8d2d68e3571902f6851a5e902ba616
Debian Security Advisory 2414-2
Posted Feb 28, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2414-2 - It was discovered that the last security update for F*X, DSA-2414-1, introduced a regression. Updated packages are now available to address this problem.

tags | advisory
systems | linux, debian
advisories | CVE-2012-0869
MD5 | c84164d80d53998f1d44a34d2855ee13
Microsoft AdCenter Service Cross Site Scripting
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

Microsoft AdCenter Service at advertising.microsoft.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9e4d3a19dd8fc9a33f8ab87369204995
DeepSec 2012 Call For Papers
Posted Feb 27, 2012
Site deepsec.net

DeepSec 2012 Call For Papers - "Sector v6" will be held November 27th to the 30th, 2012 in Austria.

tags | paper, conference
MD5 | 32c42322b7e32b5063ada9c235f003b7
Sysax 5.53 SSH Username Buffer Overflow Exploit
Posted Feb 27, 2012
Authored by Craig Freyman

Sysax Multi Server versions 5.53 and below SSH username buffer overflow pre-authentication remote code execution exploit with egghunter shellcode that binds a shell to port 4444.

tags | exploit, remote, overflow, shell, shellcode, code execution
MD5 | efa4237db0195980bc7a8d07b894b4a8
Sysax Multi Server 5.53 SFTP Post Auth SEH Exploit
Posted Feb 27, 2012
Authored by Craig Freyman

Sysax Multi Server version 5.53 SFTP post authentication SEH exploit with egghunter shellcode that binds a shell to port 4444.

tags | exploit, shell, shellcode
MD5 | 9ebc939a18d9148892f51f798563dd37
Socusoft Photo 2 Video 8.05 Buffer Overflow
Posted Feb 27, 2012
Authored by Julien Ahrens | Site vulnerability-lab.com

Socusoft Photo 2 Video version 8.05 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | cd96556d5b30deabdb08867c30b8affe
OSQA CMS 3b Cross Site Scripting
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

OSQA CMS version 3b suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b854525d547f8cfab225d0e812767448
Wolf CMS 0.7.5 Cross Site Scripting / SQL Injection
Posted Feb 27, 2012
Authored by longrifle0x | Site vulnerability-lab.com

Wolf CMS version 0.7.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 1fb6cb749d247422778e7fd15ba5466f
Mozilla Firefox 4.0.1 Integer Overflow
Posted Feb 27, 2012
Authored by pa_kt

Mozilla Firefox version 4.0.1 Array.reduceRight() integer overflow exploit.

tags | exploit, overflow
advisories | CVE-2011-2371
MD5 | 7b1de00624beb0c2e001fc131c1ec90c
Lorewing Design SQL Injection
Posted Feb 27, 2012
Authored by Th4 MasK

Lorewing Design suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a4d5c6ec42bffe212746d5a2d5ecdff6
Kongreg8 1.7.3 Cross Site Scripting
Posted Feb 27, 2012
Authored by G13

Kongreg8 version 1.7.3 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 3583867adb0172ea152f319c2b43ee41
Page 1 of 40
Back12345Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    10 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close