what you don't know can hurt you
Showing 1 - 25 of 37 RSS Feed

Files Date: 2012-04-16

Apache OFBiz 10.04 Code Execution
Posted Apr 16, 2012
Authored by Jacopo Cappellato

Apache OFBiz versions 10.04 and later allow remote attackers to execute arbitrary code.

tags | advisory, remote, arbitrary
MD5 | 16893f0a3b640f92fec6e9f58fb63079
Joomla Beatz 1.x Cross Site Scripting
Posted Apr 16, 2012
Authored by Aung Khant | Site yehg.net

Joomla Beatz component version 1.x suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2b586c41cf016f085955c1a7b2ef1ae7
Bypassing Address Space Layout Randomization
Posted Apr 16, 2012
Authored by TheXero | Site nullsecurity.net

Most modern day Operating Systems include some form of memory protection such as DEP and ASLR. This article focuses on ASLR, its implementation, limitations and finally various techniques which can be used to circumvent the protection.

tags | paper
MD5 | 0efab163baa971c694aefcc02f81e781
Mathematica On Linux /tmp Vulnerability
Posted Apr 16, 2012
Authored by Paul Szabo

Mathematica on Linux uses the /tmp/MathLink directory in insecure ways that can allow for account takeover. The problem was made worse by later versions as the addendum states. As of 02/08/2013, the author has noted that this problem is still present in version 9.0.1. As of 08/27/2014, the author has noted that this problem is still present in version 10.0.0 for the GUI interface.

tags | exploit
systems | linux
MD5 | cf04435fe0cf94cce428e9771e06db47
Packet Fence 3.3.0
Posted Apr 16, 2012
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: A major release focused on new features and enhancements. AlliedTelesis switches support. Introduction of Role-Based Access Control (RBAC) for Aruba, AeroHIVE, Meru, and Motorola equipment. Guests can now pre-register in advance or have their network access sponsored. Simplified inline enforcement. Several new configuration parameters that affects guest handling. Noteworthy fixes include a RADIUS Identity privacy fix and Captive portal look on mobile devices (smartphones and tablets). There is some polishing and translation updates.
tags | tool, remote
systems | unix
MD5 | 3069c96b7d5af21f0c3b193d0195c8a6
WordPress Zingiri Tickets File Disclosure
Posted Apr 16, 2012
Authored by MadLeeTs

The WordPress Zingiri Tickets plugin suffers from a file disclosure vulnerability that holds administrative username and password hashes.

tags | exploit, info disclosure
MD5 | 76c955763e6192235b9a5760e824be7b
Fastpath WebChat 4.0.0 Cross Site Scripting
Posted Apr 16, 2012
Authored by Aung Khant | Site yehg.net

Fastpath WebChat version 4.0.0 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 979d504fdf5a8a2603a2171b6348fe38
RadioGraPhy Forensic Tool
Posted Apr 16, 2012
Site security-projects.com

Radiography is a forensic tool which grabs as much information as possible from a Windows system. It checks registry keys related to start up processes, registry keys with Internet Explorer settings, host file contents, taskScheduler tasks, loaded system drivers, uses WinUnhide to catch hidden processes, and does much more.

tags | tool, registry, forensics
systems | windows
MD5 | 3b250869fc03d623c0391fb2eb009c78
Debian Security Advisory 2453-1
Posted Apr 16, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2453-1 - Several vulnerabilities have been discovered in gajim, a feature-rich jabber client.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2012-2093, CVE-2012-2086, CVE-2012-2085
MD5 | 0dbbae497e3b80bc477f5aeba91f7ca3
Debian Security Advisory 2452-1
Posted Apr 16, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2452-1 - Niels Heinen noticed a security issue with the default Apache configuration on Debian if certain scripting modules like mod_php or mod_rivet are installed. The problem arises because the directory /usr/share/doc, which is mapped to the URL /doc, may contain example scripts that can be executed by requests to this URL. Although access to the URL /doc is restricted to connections from localhost, this still creates security issues in two specific configurations.

tags | advisory
systems | linux, debian
advisories | CVE-2012-0216
MD5 | 1eee3de5ed3d7100da3d7834c93a1fcc
JavaScript Deobfuscation
Posted Apr 16, 2012
Authored by Sudeep Singh

Whitepaper called JavaScript Deobfuscation - A Manual Approach.

tags | paper, javascript
MD5 | 394491af70ed0366a12d7c638a9593c7
Yahoo Answer Wordpress Auto Poster Cross Site Scripting
Posted Apr 16, 2012
Authored by Ryuzaki Lawlet

Yahoo Answer Wordpress Auto Poster suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 49469cdc44e4e70dccf6eb8026a010ba
Secunia Security Advisory 48829
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for Red Hat Enterprise MRG. This fixes multiple vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory, vulnerability
systems | linux, redhat
MD5 | bfd3c4f3cf6ce8ab765591fcba08f40d
Secunia Security Advisory 48772
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Francis Provencher has discovered a vulnerability in the FlashPix PlugIn for IrfanView, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 45801465bb934f36ea0c4ae0aa57ad26
Secunia Security Advisory 48782
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in multiple VMware products, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
MD5 | de7b65f81edda965707726e21c032c6e
Secunia Security Advisory 48813
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the Dokodemo Rikunabi 2013 extension for Google Chrome, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 6446aceab747e9b04de23b231c2a774e
Secunia Security Advisory 48828
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for php5. This fixes a security issue and multiple vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to bypass certain security restrictions, disclose potentially sensitive information, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, denial of service, local, vulnerability
systems | linux, suse
MD5 | 09b7cb841beaefd245ef99e11842e68c
Secunia Security Advisory 48810
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Cumin, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory, vulnerability
MD5 | ebca94eea341e97e776cda3661e4107b
Secunia Security Advisory 48820
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, ubuntu
MD5 | 00d6a169b47da96177714274f48893ad
Secunia Security Advisory 48827
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in nginx, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 08b4ef01c8e276e11cbb9b57073b4380
Secunia Security Advisory 48816
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
systems | linux, ubuntu
MD5 | db59ff76e72724b25dfdcd528000b93a
Secunia Security Advisory 48815
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the SH Slideshow plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | ed1a3bcd1142987381684d3d6a73516f
Secunia Security Advisory 48796
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Chat plugin for Seditio, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | 1ce2cd0170489f5b6742517570905c1c
Secunia Security Advisory 48818
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for samba. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
systems | linux, debian
MD5 | e656a440ee114f89d3b26069b572c694
Secunia Security Advisory 48794
Posted Apr 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for gajim. This fixes a security issue and two vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to conduct SQL injection attacks and compromise a user's system.

tags | advisory, local, vulnerability, sql injection
systems | linux, debian
MD5 | 644a4208a1bb5fae3fba0f79461e0da0
Page 1 of 2
Back12Next

File Archive:

September 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    20 Files
  • 2
    Sep 2nd
    15 Files
  • 3
    Sep 3rd
    15 Files
  • 4
    Sep 4th
    4 Files
  • 5
    Sep 5th
    1 Files
  • 6
    Sep 6th
    1 Files
  • 7
    Sep 7th
    15 Files
  • 8
    Sep 8th
    27 Files
  • 9
    Sep 9th
    7 Files
  • 10
    Sep 10th
    16 Files
  • 11
    Sep 11th
    9 Files
  • 12
    Sep 12th
    0 Files
  • 13
    Sep 13th
    0 Files
  • 14
    Sep 14th
    25 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    15 Files
  • 17
    Sep 17th
    15 Files
  • 18
    Sep 18th
    12 Files
  • 19
    Sep 19th
    1 Files
  • 20
    Sep 20th
    1 Files
  • 21
    Sep 21st
    15 Files
  • 22
    Sep 22nd
    21 Files
  • 23
    Sep 23rd
    8 Files
  • 24
    Sep 24th
    15 Files
  • 25
    Sep 25th
    4 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close