accept no compromises
Showing 1 - 25 of 42 RSS Feed

Files Date: 2012-09-18

SonicWALL EMail Security 7.3.5 Cross Site Scripting
Posted Sep 18, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

SonicWALL EMail Security version 7.3.5 suffers from multiple cross site scripting and script insertion vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 55e711f63c0524475898a301478326f8
Axis VoIP Manager 2.1.5.7 Cross Site Scripting
Posted Sep 18, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Axis VoIP Manager version 2.1.5.7 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | bb1651eba9ed1f3783f7b9d68775ee4a
Entropy Broker RNG 1.2
Posted Sep 18, 2012
Authored by Folkert van Heusden | Site vanheusden.com

Entropy Broker is an infrastructure for distributing cryptographically secure random numbers (entropy data) from one or more servers to one or more clients. Entropy Broker allows you to distribute entropy data (random values) to /dev/random devices from other systems (real servers or virtualised systems). It helps preventing that the /dev/random device gets depleted; an empty /dev/random-device can cause programs to hang (waiting for entropy data to become available). This is useful for systems that need to generate encryption keys, run VPN software or run a casino website.

Changes: This release has full IPv6 support, has bps output fixes, can now retrieve entropy data from smart cards, and has support for multiple broker servers. EGD server/client now supports TCP as well (for better compatibility with EntropyKey). There are fixes for Fedora and Coverity warning fixes.
tags | encryption
systems | linux
MD5 | 3b28e4bb24529bf31687b2e60a685b94
HP Security Bulletin HPSBMU02813 SSRT100712
Posted Sep 18, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02813 SSRT100712 - A potential security vulnerability has been identified with HP Operations Orchestration. The vulnerability could be remotely exploited to allow execution or arbitrary code. Revision 1 of this advisory.

tags | advisory, arbitrary
advisories | CVE-2012-3258
MD5 | fcb5791847fe9882ece3d9096c257b19
Symantec Messaging Gateway 9.5.3-3 Cross Site Scripting
Posted Sep 18, 2012
Authored by Ben Williams | Site nccgroup.com

Symantec Messaging Gateway version 9.5.3-3 suffers from an out-of-band stored cross site scripting vulnerability via email. Unfortunately, as usual, the NCC group are withholding any details for three months.

tags | advisory, xss
MD5 | 3975238671a8b47e5bc448e219ebfabe
Symantec Messaging Gateway 9.5.3-3 Arbitrary File Download
Posted Sep 18, 2012
Authored by Ben Williams | Site nccgroup.com

Symantec Messaging Gateway version 9.5.3-3 suffers from an authenticated arbitrary file download vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.

tags | advisory, arbitrary
MD5 | 2b91c1f139c0f6dcdec40664ba5dac47
Symantec Messaging Gateway 9.5.3-3 Unauthorized SSH Access
Posted Sep 18, 2012
Authored by Ben Williams | Site nccgroup.com

Symantec Messaging Gateway version 9.5.3-3 suffers from an unauthorized ssh access vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.

tags | advisory
MD5 | 37a236641d4118ea0aeb70c6520b9259
Symantec Messaging Gateway 9.5.3-3 Cross Site Request Forgery
Posted Sep 18, 2012
Authored by Ben Williams | Site nccgroup.com

Symantec Messaging Gateway version 9.5.3-3 suffers from a cross site request forgery vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.

tags | advisory, csrf
MD5 | 8e6e15cf34e3afa61786045123624764
Apple Security Advisory 2012-09-17-1
Posted Sep 18, 2012
Authored by Apple | Site apple.com

Apple Security Advisory 2012-09-17-1 - Apple Remote Desktop 3.5.3 is now available and addresses an information disclosure vulnerability.

tags | advisory, remote, info disclosure
systems | apple
advisories | CVE-2012-0681
MD5 | e1d4fd3ebe5a9ac1c24c43caf7ad8df9
Fortigate UTM WAF Appliance Cross Site Scripting
Posted Sep 18, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Fortigate UTM WAF Appliance suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 10c1336c6ca4cf59ab6eb2e558626699
How I DOS'ed My Bank
Posted Sep 18, 2012
Authored by FB1H2S

This is a brief whitepaper that discusses DTMF input processing and easy denial of service attack via phone lines against banking systems.

tags | paper, denial of service
MD5 | 525b16fb2baa86974f8a1b50afe7a536
WordPress 3.4.2 User Enumeration / Path Disclosure
Posted Sep 18, 2012
Authored by Akastep

WordPress version 3.4.2 appears to suffer from user enumeration and path disclosure vulnerabilities.

tags | exploit, vulnerability, info disclosure
MD5 | fa1b6660fa3b421b3ce956098eb9018e
Symantec Messaging Gateway 9.5.3-3 Disclosure
Posted Sep 18, 2012
Authored by Ben Williams | Site nccgroup.com

Symantec Messaging Gateway version 9.5.3-3 suffers from an unauthenticated detailed version disclosure vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.

tags | advisory
MD5 | 367e6d7ecd5e249203c321bd413cfb98
Avcmedia CMS SQL Injection
Posted Sep 18, 2012
Authored by Am!r | Site irist.ir

Avcmedia CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
MD5 | d77942ad7fa7ca9099fb1c8b431d5581
vBulletin 4.1.12 SQL Injection
Posted Sep 18, 2012
Authored by Am!r | Site irist.ir

vBulletin version 4.1.12 suffers from a remote SQL injection vulnerability in blog_plugin_useradmin.php.

tags | exploit, remote, php, sql injection
MD5 | 9c18fe314c155fbef6b23042cec8d89a
WordPress Author Name Disclosure
Posted Sep 18, 2012
Authored by PistqoN

A simple request to WordPress discloses a given author's name in the title when you enumerate values for author=.

tags | exploit, info disclosure
MD5 | 9bab0040ff8d75c5e337ee930efab14a
Secunia Security Advisory 50604
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in CoSoSys Endpoint Protector, which can be exploited by malicious people to conduct brute-force attacks.

tags | advisory
MD5 | ad95087e68a6513b51bd7cfeb20e0855
Secunia Security Advisory 50679
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for spice-gtk. This fixes a vulnerability, which can be exploited by malicious, local users to potentially gain escalated privileges.

tags | advisory, local
systems | linux, redhat
MD5 | 1725a4aca9725b2f4dc4b973741c34f7
Secunia Security Advisory 50643
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Jenkins, which can be exploited by malicious users to compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | 013ad8b2f6fbed84228104d89c6578fe
Secunia Security Advisory 50654
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in OptiPNG, which can be exploited by malicious people to potentially compromise a user's system.

tags | advisory
MD5 | 1b8ffa36058b8f25e4851dc181e70fba
Secunia Security Advisory 50626
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 2e0eda4a8eaca0fe42bba7052f063486
Secunia Security Advisory 50642
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Oracle Business Transaction Management, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 57d45f6891cd7e3b050bc8927def0a6d
Secunia Security Advisory 50653
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for xen. This fixes multiple vulnerabilities, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service) and potentially gain escalated privileges.

tags | advisory, denial of service, local, vulnerability
systems | linux, suse
MD5 | 5b8cef1a5b2bab266b87728093cd0175
Secunia Security Advisory 50588
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A weaknesses and some security issues have been reported in Moodle, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to disclose certain system information and bypass certain security restrictions.

tags | advisory
MD5 | 1417d5f2446c8bcba56ab57920c9e820
Secunia Security Advisory 50661
Posted Sep 18, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for inn. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.

tags | advisory
systems | linux, suse
MD5 | 0d13c7c9431de8b90257018607b08545
Page 1 of 2
Back12Next

File Archive:

August 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    30 Files
  • 3
    Aug 3rd
    20 Files
  • 4
    Aug 4th
    17 Files
  • 5
    Aug 5th
    4 Files
  • 6
    Aug 6th
    2 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    18 Files
  • 9
    Aug 9th
    10 Files
  • 10
    Aug 10th
    24 Files
  • 11
    Aug 11th
    10 Files
  • 12
    Aug 12th
    3 Files
  • 13
    Aug 13th
    3 Files
  • 14
    Aug 14th
    10 Files
  • 15
    Aug 15th
    16 Files
  • 16
    Aug 16th
    18 Files
  • 17
    Aug 17th
    15 Files
  • 18
    Aug 18th
    4 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close