This is a brief presentation that touches on various elements of attacks used to cause computer security issues. It is very high level.
34f4f122d7199b20bb266a1772100939Ubuntu Security Notice 1420-1 - It was discovered that the NVIDIA graphics drivers could be reconfigured to gain access to arbitrary system memory. A local attacker could use this issue to possibly gain root privileges.
fcf3621d1e929a10c6ff0a8f0afed521Technical Cyber Security Alert 2012-101B - Adobe has released Security Bulletin APSB12-08, which describes multiple vulnerabilities affecting Adobe Reader and Acrobat. As part of this update, Adobe Reader and Acrobat 9.x will use the system-wide Flash Player browser plug-in instead of the Authplay component. In addition, Reader and Acrobat now disable the rendering of 3D content by default.
6595d0dd4ab1e29fe00b04df2e20537dNetwork Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules.
e9f4ca6f02b310f96cfc608eadac646fBGS CMS version 2.2.1 suffers from multiple stored and reflected cross site scripting vulnerabilities when parsing user input to several parameters via GET and POST method (post-auth). Attackers can exploit this weakness to execute arbitrary HTML and script code in a user's browser session.
c54a0b84f4d59f813d6cc23eb05848b4Seditio Chat plugin version 1.0 suffers from a cross site request forgery vulnerability.
dd3f6378280f2561e905f9b5dde908a2Mandriva Linux Security Advisory 2012-055 - The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory allocation, which allows remote attackers to execute arbitrary code via a crafted RPC call. The updated packages have been patched to correct this issue.
b1365ce3f37309392f2a856a33bc2c37Koprana CMS remote SQL injection exploit written in PHP.
75d22aa7ea037fa9dd9fbc4af9eebb2eKoprana CMS remote shell upload exploit written in PHP.
5363b47d972d785998ba879624130b09Technical Cyber Security Alert 2012-101A - There are multiple vulnerabilities in Microsoft Windows, Internet Explorer, Microsoft .NET Framework, Microsoft Office, Microsoft Server Software, Microsoft SQL Server, Microsoft Developer Tools, and Microsoft Forefront United Access Gateway. Microsoft has released updates to address these vulnerabilities.
012a55eecbf0aa3febb5ac96e10846eawicd suffers from a privilege escalation vulnerability. Exploit that spawns a root shell and a patch are included.
a33a9fa0bd4815a1f8f963ca6c0d50b7This exploit dynamically creates a .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page with. The victim's Firefox browser will pop a dialog asking if they trust the addon. Once the user clicks "install", the addon is installed and executes the payload with full user permissions. As of Firefox 4, this will work without a restart as the addon is marked to be "bootstrapped". As the addon will execute the payload after each Firefox restart, an option can be given to automatically uninstall the addon once the payload has been executed.
3db86c57b35683b631c29411e6cb10f8GroupWare epesiBIM CRM version 1.2.1 suffers from a cross site scripting vulnerability.
2663bd6db7609e1cf3448329ff2e3322The Joomla The Estate Agent component suffers from a remote SQL injection vulnerability.
6b14536e0db2a8f20eac16309765a5adThe Joomla Bearleague component suffers from a remote SQL injection vulnerability.
febefa16693396ef43efb94a14bcae88The National Center of Education Research suffers from a remote blind SQL injection vulnerability.
562aaa00b8dde12dd0588f8b82adf5f3Matterdaddy Market eCommerce CMS version 1.1 suffers from a remote SQL injection vulnerability.
24bf9937eb1c1c914dd965bfc2971cf0Europcar.bg suffers from a cross site scripting vulnerability.
c83682e9b5b35121eac6bd0544ef7736Europcarug.com suffers from a cross site scripting vulnerability.
b44c3b05690bd17469a89f98a6b9347fScully.cfa.harvard.edu suffers from a cross site scripting vulnerability.
85f9da8c7253080b70e8c4f898e762dcMinerva Infotech CMS version 1.0 suffers from a remote blind SQL injection vulnerability.
c3ce1229da6a490303ba75a47879ed4bDebian Linux Security Advisory 2448-1 - It was discovered that a heap-based buffer overflow in InspIRCd could allow remote attackers to execute arbitrary code via a crafted DNS query.
b6f9381caf3501eaca8f7794e84f1710Gentoo Linux Security Advisory 201204-2 - A heap-based buffer overflow in InspIRCd may allow execution of arbitrary code. Versions less than 2.0.5-r1 are affected.
6491b034555e88df6c6c262a126947b2Ubuntu Security Notice 1419-1 - It was discovered that Puppet used a predictable filename when downloading Mac OS X package files. A local attacker could exploit this to overwrite arbitrary files. It was discovered that Puppet incorrectly handled filebucket retrieval requests. A local attacker could exploit this to read arbitrary files. It was discovered that Puppet incorrectly handled filebucket store requests. A local attacker could exploit this to perform a denial of service via resource exhaustion. Various other issues were also addressed.
c04fc17bff68786d0e5e2e838af6ab31Gentoo Linux Security Advisory 201204-3 - Multiple vulnerabilities have been reported in Chromium, some of which may allow execution of arbitrary code. Versions less than 18.0.1025.151 are affected.
ead3c2c0741b009b67faaa12f05c10e9
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed