Exploit the possiblities
Showing 1 - 25 of 54 RSS Feed

Files Date: 2012-05-16

OpenOffice.org Memory Overwrite
Posted May 16, 2012
Authored by Kestutis Gudinavicius

OpenOffice.org versions 3.3 and 3.4 Beta suffer from a memory overwrite vulnerability.

tags | advisory
advisories | CVE-2012-2149
MD5 | 8d24ba2273cd7740879523e887e141c7
Debian Security Advisory 2473-1
Posted May 16, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2473-1 - Tielei Wang discovered that OpenOffice.org does not allocate a large enough memory region when processing a specially crafted JPEG object, leading to a heap-based buffer overflow and potentially arbitrary code execution.

tags | advisory, overflow, arbitrary, code execution
systems | linux, debian
advisories | CVE-2012-1149
MD5 | f586ff1387b7dcf97cc7a30e0702e962
SiliSoftware phpThumb() 1.7.11 Cross Site Scripting
Posted May 16, 2012
Authored by LiquidWorm | Site zeroscience.mk

SiliSoftware phpThumb() version 1.7.11 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | f1e640638ed8dc3eac71a5a482db3b0c
FlashPeak SlimBrowser 6.0.1.38 Denial Of Service
Posted May 16, 2012
Authored by demonalex

FlashPeak SlimBrowser version 6.0.1.38 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | b9129424b21a6690e12d38542c75d08a
Drupal Aberdeen 6.x Cross Site Scripting
Posted May 16, 2012
Authored by Jakub Suchy, Premek Sumpela | Site drupal.org

Drupal Aberdeen third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 0ba5f7da083321ea080e82e8da13e972
Drupal Hostmaster 6.x Cross Site Scripting / Access Bypass
Posted May 16, 2012
Authored by STE Jones, Ivo Van Geertruyen | Site drupal.org

Drupal Hostmaster third party module version 6.x suffers from access bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 6440b605f2d0ee71b456ed2e0f35e92a
Drupal Post Affiliate Pro 6.x Cross Site Scripting / Access Bypass
Posted May 16, 2012
Authored by Lee Rowlands | Site drupal.org

Drupal Post Affiliate Pro third party module version 6.x suffers from access bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | aedddc9a76886c7127afb96eb03c427d
OpenOffice.org vclmi.dll Integer Overflow
Posted May 16, 2012
Authored by TieLei Wang

A vulnerability is caused due to an integer overflow error in the vclmi.dll module when allocating memory for an embedded image object. This can be exploited to cause a heap-based buffer overflow via, for example using a specially crafted JPEG object within a DOC file. OpenOffice.org 3.3.0 and 3.4 beta users are advised to upgrade to Apache OpenOffice 3.4. Users who are unable to upgrade immediately should be cautious when opening untrusted documents.

tags | advisory, overflow
advisories | CVE-2012-1149
MD5 | 0d853304d9491d0cb7d8fb6c76e96fe2
Linux Kernel HFS Plus Buffer Overflow
Posted May 16, 2012
Authored by Timo Warns | Site pre-cert.de

PRE-CERT Security Advisory - The Linux kernel contains a vulnerability in the driver for HFS plus file systems that may be exploited for code execution or privilege escalation. A specially-crafted HFS plus filesystem can cause a buffer overflow via the memcpy() call of hfs_bnode_read() (in fs/hfsplus/bnode.c).

tags | advisory, overflow, kernel, code execution
systems | linux
advisories | CVE-2012-2319
MD5 | 10a12ca5bb97ae18574eab4dbc7d9654
SEC-T 2012 Call For Papers
Posted May 16, 2012
Site sec-t.org

The SEC-T 2012 Call For Papers has been announced. It will be held from September 13th through the 14th in Stockholm, Sweden.

tags | paper, conference
MD5 | 2a2fd25a2a332d4a4c1ba4fa44931fdd
Apple Security Advisory 2012-05-15-1
Posted May 16, 2012
Authored by Apple | Site apple.com

Apple Security Advisory 2012-05-15-1 - QuickTime 7.7.2 is now available and addresses multiple security issues. Multiple stack overflows existed in QuickTime's handling of TeXML files. A heap overflow existed in QuickTime's handling of text tracks. A heap buffer overflow existed in the handling of H.264 encoded movie files. An uninitialized memory access issue existed in the handling of MP4 encoded files. For OS X Lion systems, this issue is addressed in OS X Lion v10.7.3. For Mac OS X v10.6 systems, this issue is addressed in Security Update 2012-001. Various other issues were also addressed.

tags | advisory, overflow
systems | apple, osx
advisories | CVE-2011-3458, CVE-2011-3459, CVE-2011-3460, CVE-2012-0265, CVE-2012-0658, CVE-2012-0659, CVE-2012-0660, CVE-2012-0661, CVE-2012-0663, CVE-2012-0664, CVE-2012-0665, CVE-2012-0666, CVE-2012-0667, CVE-2012-0668, CVE-2012-0669, CVE-2012-0670, CVE-2012-0671
MD5 | 07014229c16c6183664eddcf78288d37
Unijimpe Captcha Cross Site Scripting
Posted May 16, 2012
Authored by Daniel Godoy

Unijimpe Captcha suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 88a50525ab630bd4268d5fd281052321
Drupal Smart Breadcrumb 6.x Cross Site Scripting
Posted May 16, 2012
Authored by coltrane | Site drupal.org

Drupal Smart Breadcrumb third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 90ce30a496d07a31e8fe82db13f1eec7
Drupal Advertisement 6.x Cross Site Scripting
Posted May 16, 2012
Authored by Andrew Berry | Site drupal.org

Drupal Advertisement third party module version 6.x suffers from cross site scripting and information disclosure vulnerabilities.

tags | advisory, vulnerability, xss, info disclosure
MD5 | 6a1466cac29a5eb2698cb99aa26147f8
Drupal Ubercart Product Keys 6.x Access Bypass
Posted May 16, 2012
Authored by Daniel Glucksman | Site drupal.org

Drupal Ubercart Product Keys third party module version 6.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | 6e27f081259391a277539457310e5db4
Debian Security Advisory 2472-1
Posted May 16, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2472-1 - Dave Love discovered that users who are allowed to submit jobs to a Grid Engine installation can escalate their privileges to root because the environment is not properly sanitized before creating processes.

tags | advisory, root
systems | linux, debian
advisories | CVE-2012-0208
MD5 | 404ac289a0a3e0a879f7482cff2d8767
Ubuntu Security Notice USN-1442-1
Posted May 16, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1442-1 - It was discovered that sudo incorrectly handled network masks when using Host and Host_List. A local user who is listed in sudoers may be allowed to run commands on unintended hosts when IPv4 network masks are used to grant access. A local attacker could exploit this to bypass intended access restrictions. Host and Host_List are not used in the default installation of Ubuntu.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2012-2337
MD5 | 8bd15a43a016332b8e59a510137e4128
Gentoo Linux Security Advisory 201205-02
Posted May 16, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201205-2 - Multiple vulnerabilities have been found in ConnMan, allowing attackers to execute arbitrary code or cause Denial of Service. Versions less than 1.0-r1 are affected.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2012-2320, CVE-2012-2321, CVE-2012-2322
MD5 | a218e2e428b524fd73ca6721b66e5f66
Secunia Security Advisory 48739
Posted May 16, 2012
Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in ispLEVER Classic, which can be exploited by malicious people to compromise a user's system.

MD5 | 2b282b47ded9808d77fe22e3db9b0996
Secunia Security Advisory 48739
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in ispLEVER Classic, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 2b282b47ded9808d77fe22e3db9b0996
Secunia Security Advisory 49203
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to potentially cause a DoS (Denial of Service) in an application using the library and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, suse
MD5 | 40ee549267c326123e04d3579570f268
Secunia Security Advisory 49198
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, java, denial of service, vulnerability
systems | hpux
MD5 | 60aba7411c61017a23f8fbff818e189a
Secunia Security Advisory 49130
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - gainover has discovered a vulnerability in JW Player, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 22ab8b1dc3e441152ea06355aed332aa
Secunia Security Advisory 48924
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in 3DVIA Composer, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 1982e6ded7f1326b70a1e74c5e78e004
Secunia Security Advisory 48923
Posted May 16, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Parvez Anwar has discovered a vulnerability in 3D XML Player, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 9521692f9824056ffc8cec84606eea5e
Page 1 of 3
Back123Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

February 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    15 Files
  • 2
    Feb 2nd
    15 Files
  • 3
    Feb 3rd
    15 Files
  • 4
    Feb 4th
    13 Files
  • 5
    Feb 5th
    16 Files
  • 6
    Feb 6th
    15 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    15 Files
  • 9
    Feb 9th
    18 Files
  • 10
    Feb 10th
    8 Files
  • 11
    Feb 11th
    8 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    15 Files
  • 14
    Feb 14th
    15 Files
  • 15
    Feb 15th
    17 Files
  • 16
    Feb 16th
    18 Files
  • 17
    Feb 17th
    37 Files
  • 18
    Feb 18th
    2 Files
  • 19
    Feb 19th
    16 Files
  • 20
    Feb 20th
    16 Files
  • 21
    Feb 21st
    15 Files
  • 22
    Feb 22nd
    16 Files
  • 23
    Feb 23rd
    31 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close