all things security
Showing 1 - 25 of 25 RSS Feed

Files Date: 2012-05-17

Web Application Vulnerability Scanner 0.11
Posted May 17, 2012
Authored by Twofiq I. | Site code.google.com

WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, web applications for security vulnerabilities. As a scan is running, details of the scan are dynamically updated to the user. These details include the status of the scan, the number of URLs found on the web application, the number of vulnerabilities found and details of the vulnerabilities found. After a scan is complete, a detailed PDF report is emailed to the user. The report includes descriptions of the vulnerabilities found, recommendations and details of where and how each vulnerability was exploited.

tags | tool, remote, web, local, scanner, php, vulnerability
systems | unix
MD5 | 344eece8b692a4f6c7159ef0b264d1ce
Division 6 IT SQL Injection / Cross Site Scripting
Posted May 17, 2012
Authored by the_cyber_nuxbie

Division 6 IT suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | e6aa49527836b842d72680951787521d
HP Security Bulletin HPSBUX02777 SSRT100854
Posted May 17, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBUX02777 SSRT100854 - Potential security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities may allow remote Denial of Service (DoS), unauthorized modification and disclosure of information. Revision 1 of this advisory.

tags | advisory, java, remote, denial of service, vulnerability
systems | hpux
advisories | CVE-2010-4447, CVE-2010-4448, CVE-2010-4454, CVE-2010-4462, CVE-2010-4465, CVE-2010-4469, CVE-2010-4473, CVE-2010-4475, CVE-2010-4476, CVE-2011-0802, CVE-2011-0814, CVE-2011-0815, CVE-2011-0862, CVE-2011-0864, CVE-2011-0865, CVE-2011-0867, CVE-2011-0871, CVE-2011-3389, CVE-2011-3545, CVE-2011-3547, CVE-2011-3548, CVE-2011-3549, CVE-2011-3552, CVE-2011-3556, CVE-2011-3557, CVE-2011-3560, CVE-2011-3563, CVE-2012-0499
MD5 | c77f357038a39f2f2d6d68ed6ea6496e
Mandriva Linux Security Advisory 2012-077
Posted May 17, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-077 - Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration file in the current working directory. A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format metadata. An attacker could create a specially-crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code. A denial of service flaw was found in the way ImageMagick processed images with malformed Exif metadata. An attacker could create a specially-crafted image file that, when opened by a victim, could cause ImageMagick to enter an infinite loop. Various other issues have also been addressed.

tags | advisory, denial of service, arbitrary, local, trojan
systems | linux, mandriva
advisories | CVE-2010-4167, CVE-2012-0247, CVE-2012-0248, CVE-2012-1185, CVE-2012-0259, CVE-2012-0260, CVE-2012-1798
MD5 | fa1ac8dbf0bf748076337278c27ec507
Ubuntu Security Notice USN-1443-1
Posted May 17, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1443-1 - It was discovered that Update Manager created system state archive files with incorrect permissions when upgrading releases. A local user could possibly use this to read repository credentials. Felix Geyer discovered that the Update Manager Apport hook incorrectly uploaded certain system state archive files to Launchpad when reporting bugs. This could possibly result in repository credentials being included in public bug reports. Various other issues were also addressed.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2012-0948, CVE-2012-0949, CVE-2012-0948, CVE-2012-0949
MD5 | 6a8efc42df765d42436eae37136a4b4b
Debian Security Advisory 2474-1
Posted May 17, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2474-1 - Benencia discovered that ikiwiki, a wiki compiler, does not properly escape the author (and its URL) of certain metadata, such as comments. This might be used to conduct cross-site scripting attacks.

tags | advisory, xss
systems | linux, debian
advisories | CVE-2012-0220
MD5 | 5fad70b2d9815c03d3370ed9ff770604
Secunia Security Advisory 49156
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in FishEye and Crucible, which can be exploited by malicious people to cause a DoS (Denial of Service) or disclose potentially sensitive information.

tags | advisory, denial of service
MD5 | 07ce8bf4ff716c0bcc1ade4a1d4f3f8b
Secunia Security Advisory 49146
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in JIRA, which can be exploited by malicious users to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | c8cb6ccb598a9918f706ba36d3bf960c
Secunia Security Advisory 49168
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Track That Stat plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | e64046c1d42665713b63548f0b00fa68
Secunia Security Advisory 49194
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, where some have unknown impacts and others can be exploited by malicious people to bypass certain security restrictions, and compromise a user's system.

tags | advisory, vulnerability
MD5 | 174c115e6c9ec8bd5137e44eb7fc3ce8
Secunia Security Advisory 49139
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Cisco Adaptive Security Appliance (ASA), which can be exploited by malicious people to disclose potentially sensitive information.

tags | advisory
systems | cisco
MD5 | 317cf30faf1ee1027ad6b1236fc3ed11
Secunia Security Advisory 47447
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in QuickTime, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 4558b72df0ae49fea007e92d2e031412
Secunia Security Advisory 49173
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Luigi Auriemma has discovered a vulnerability in Invensys Wonderware InTouch, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 7303f6b13cccca353732582e6bf61e91
Secunia Security Advisory 49186
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for connman. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
MD5 | 52b311475cd6587eb1ff36f3ff2f7fd2
Secunia Security Advisory 49193
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in RealPlayer, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
MD5 | 31b1edf958cb1fdd3ecb267581b17155
Secunia Security Advisory 49192
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in IBM Cognos Express, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory
MD5 | 067c7bcc1e1c0a098ad5c12d2e076c8b
Secunia Security Advisory 49133
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Chokri B.A. has reported a vulnerability in GENU, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | b977fecf0d091f2864b010b186861eb7
Secunia Security Advisory 49197
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for quagga. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
MD5 | 3856b724224186b93afd8ae018a1f0f1
Secunia Security Advisory 49161
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for gridengine. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
systems | linux, debian
MD5 | 78bae4da48e007079862b235e2200554
Secunia Security Advisory 49157
Posted May 17, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Walied Assar has discovered a vulnerability in Resource Tuner, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | b05ad9cfb8737f3c64285703958b5296
Artiphp CMS 5.5.0 Database Backup Disclosure
Posted May 17, 2012
Authored by LiquidWorm | Site zeroscience.mk

Artiphp CMS version 5.5.0 suffers from a database backup disclosure vulnerability.

tags | exploit
MD5 | 05194633dbe64cd33c6d2bc9a46c63ac
Artiphp CMS 5.5.0 Cross Site Scripting
Posted May 17, 2012
Authored by LiquidWorm | Site zeroscience.mk

Artiphp CMS version 5.5.0 suffers from multiple POST cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 8418d0559d7c2fda632eee004ed490d7
OpenOffice.org 3.3.0 Powerpoint Denial Of Service
Posted May 17, 2012
Authored by Sven Jacobias

A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.

tags | advisory, denial of service
advisories | CVE-2012-2334
MD5 | f6d947efd4efd1f77c34bbe6c9eb9d3a
Drupal Zen 6.x Cross Site Scripting
Posted May 17, 2012
Authored by Jakub Suchy, Premek Sumpela | Site drupal.org

Drupal Zen third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 0e862634ab82d9ac29bc33de3d75665c
SiliSoftware backupDB() 1.2.7a Cross Site Scripting
Posted May 17, 2012
Authored by LiquidWorm | Site zeroscience.mk

SiliSoftware backupDB() version 1.2.7a suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | fdd4f35a4a968373195090e4afe4af34
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    2 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close