Exploit the possiblities
Showing 1 - 25 of 41 RSS Feed

Files Date: 2012-08-01

Citrix Access Gateway Plug-in For Windows nsepacom Buffer Overflow
Posted Aug 1, 2012
Authored by Dmitriy Pletnev | Site secunia.com

Secunia Research has discovered a vulnerability in Citrix Access Gateway Plug-in for Windows, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error in the nsepacom ActiveX control (nsepa.exe) when processing HTTP responses based on the request via the "StartEpa()" method. This can be exploited to cause a heap-based buffer overflow via an overly long "CSEC" HTTP response header. Successful exploitation allows execution of arbitrary code. Citrix Access Gateway Plug-in for Windows version 9.3.49.5 is affected.

tags | advisory, web, overflow, arbitrary, activex
systems | windows
advisories | CVE-2011-2592
MD5 | 1bc295b946271ecd2579f8f939622ef7
Citrix Access Gateway Plug-in For Windows nsepacom Integer Overflow
Posted Aug 1, 2012
Authored by Dmitriy Pletnev | Site secunia.com

Secunia Research has discovered a vulnerability in Citrix Access Gateway Plug-in for Windows, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by an integer overflow error in the nsepacom ActiveX control (nsepa.exe) when processing HTTP responses based on the request via the "StartEpa()" method. This can be exploited to cause a heap-based buffer overflow via a specially crafted "Content-Length" HTTP response header. Successful exploitation may allow execution of arbitrary code. Citrix Access Gateway Plug-in for Windows version 9.3.49.5 is affected.

tags | advisory, web, overflow, arbitrary, activex
systems | windows
advisories | CVE-2011-2593
MD5 | d7652baa48d94a73aa28dc3115aece5e
WordPress G-Lock Double Opt-in Manager 2.6.2 SQL Injection
Posted Aug 1, 2012
Authored by BEASTIAN

WordPress G-Lock Double Opt-in Manager plugin versions 2.6.2 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f0f9d0672603192eda88598cc6166338
Debian Security Advisory 2518-1
Posted Aug 1, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2518-1 - Emmanuel Bouillon from NCI Agency discovered multiple vulnerabilities in MIT Kerberos, a daemon implementing the network authentication protocol.

tags | advisory, vulnerability, protocol
systems | linux, debian
advisories | CVE-2012-1014, CVE-2012-1015
MD5 | f397bbb4b71f029257a2c149b36d7d69
Nvidia Linux Drive Privilege Escalation
Posted Aug 1, 2012

This is an anonymously written exploit that takes advantage of an Nvidia Linux driver vulnerability.

tags | exploit
systems | linux
MD5 | 560d0ae77daada2a3fc416ab9cd5b4f0
Digital Whisper Electronic Magazine #34
Posted Aug 1, 2012
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 34. Written in Hebrew.

tags | magazine
MD5 | b96f5e1d9b2e018c9ec69a4026f7b5f4
Tekno.Portal 0.1b Blind SQL Injection
Posted Aug 1, 2012
Authored by Socket_0x03

Tekno.Portal version 0.1b suffers from a remote blind SQL injection vulnerability in link.php. This version was already known to have issues with SQL injection since 2010.

tags | exploit, remote, php, sql injection
MD5 | 577e392415ccfe6fa1824f15e00d21c4
eGlibc Signedness Code Execution
Posted Aug 1, 2012
Authored by c0ntex

A patch introduced a signedness bug causing any program compiled against the vulnerable version of eglibc and using optimized functions such as memcpy_ssse3 and memcpy-ssse3-back to be potentially vulnerable to unexpected code execution.

tags | exploit, code execution
advisories | CVE-2011-2702
MD5 | 0118c7235154fbe0b55f82748fc0a10c
Joomla Nice Ajax Poll 1.3.0 SQL Injection
Posted Aug 1, 2012
Authored by Patrick de Brouwer

Joomla Nice Ajax Poll component versions 1.3.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1cba2e8da7f50b95d9225fad44842c3e
Secunia Security Advisory 50096
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for xen. This fixes a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | linux, redhat
MD5 | a480bd6579055583b13a0bbd7717a1da
Secunia Security Advisory 50101
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for libjpeg-turbo. This fixes a vulnerability, which can be exploited by malicious people to compromise an application using the library.

tags | advisory
systems | linux, suse
MD5 | 229118a76d3b5ff95bdca64e6574c775
Kaspersky Password Manager 5.0.0.164 XSS / Bypass
Posted Aug 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Kaspersky Password Manager versions 5.0.0.164 and below suffer from script insertion and bypass vulnerabilities.

tags | exploit, vulnerability
MD5 | c6b6ce31258ec27d1a342355840819db
ME Mobile Application Manager 10 SQL Injection
Posted Aug 1, 2012
Authored by Ibrahim El-Sayed | Site vulnerability-lab.com

ME Mobile Application Manager version 10 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 669083efead43f3f5ba2410cccafaf9c
Distimo Monitor 6.0 Cross Site Scripting
Posted Aug 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Distimo Monitor version 6.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 826e42d7f6927c442fa2161c8b2aa32b
ME Application Manager 10 Cross Site Scripting / SQL Injection
Posted Aug 1, 2012
Authored by Ibrahim El-Sayed | Site vulnerability-lab.com

ME Application Manager 10 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | c5afa46b3a6eab7ceda88fb54404c718
GunBound Denial Of Service
Posted Aug 1, 2012
Authored by X-Cisadane

GunBound suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 43698ae4bc0dac4686c8b5e681a59354
Barracuda SSL VPN 680 Cross Site Scripting
Posted Aug 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

The Barracuda SSL VPN 680 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4aca3120aedae376ce5a87a0871eb3ea
Barracuda Application Validation Filter Bypass
Posted Aug 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Barracuda Appliances suffer from a validation filter bypass vulnerability.

tags | exploit, bypass
MD5 | b173b9ad673c8e2625142b63e4ac1be7
Secunia Security Advisory 50118
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in libvirt, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 3900445dd34dfe8e7f6f792520454bc9
Secunia Security Advisory 50041
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Kerberos, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory, vulnerability
MD5 | 365bae8b009680fc3b16a73f610fc448
Secunia Security Advisory 50105
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

tags | advisory, vulnerability
MD5 | 3e1374874324965b33b968deb56a0c41
Secunia Security Advisory 50111
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for krb5. This fixes two vulnerabilities, which can be exploited by malicious people to potentially compromise a vulnerable system.

tags | advisory, vulnerability
systems | linux, debian
MD5 | 49f2e8c36c0441d17f43d46f627c975d
Secunia Security Advisory 50084
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for JBoss Enterprise SOA Platform. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, manipulate certain data, and cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, redhat
MD5 | a39cd18fbf96d180ea0e4bb11d358b4f
Secunia Security Advisory 50119
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in the RSGallery2 component for Joomla!, which can be exploited by malicious users to conduct script insertions attacks and by malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 1d9a29cfdfe8445be5d4780f3900a178
Secunia Security Advisory 50082
Posted Aug 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Oliver Karow has reported a vulnerability in Dr.Web Enterprise Server, which can be exploited by malicious people to conduct script insertion attacks.

tags | advisory, web
MD5 | 8d9b37a110ee461ae2c1642f5a399332
Page 1 of 2
Back12Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close