what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 867 RSS Feed

Files Date: 2012-09-01 to 2012-09-30

Joomla FreiChat Shell Upload
Posted Sep 29, 2012
Authored by BHG Security Center, Siavash

Joomla FreiChat component suffers from a remote shell upload vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, shell
SHA-256 | aba198fd43c64e01782443997e14e495e21d0ec01345f455c63f5a6a28af19d0
Deadcow Design Local File Inclusion
Posted Sep 29, 2012
Authored by Net.W0lf, Hack Center Security Team

Sites by Deadcow Design suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.

tags | exploit, local, file inclusion
SHA-256 | 32b0d86e0d14e7be2ab6f62bc42f001b977e75b434bdb63cea9914243639b6f3
APlite Technologies Local File Inclusion
Posted Sep 29, 2012
Authored by Net.W0lf, Hack Center Security Team

Sites developed by APlite Technologies suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.

tags | exploit, local, file inclusion
SHA-256 | e34ffc698f14bb64e1b1a9d15ff1d38905eb52e37c2a3f262e23ffa2f2b06520
Usernamer Login Information Generator
Posted Sep 29, 2012
Authored by Jan Seidl | Site wroot.org

Usernamer is a penetration testing tool to generate a list of possible usernames/logins (ex: John Doe Doeson) for user enumeration or bruteforcing. This tool also supports text-files with one name per line as input.

tags | tool, rootkit
systems | unix
SHA-256 | d656aaa36ab03c431f79667bb3f471fba5fe95f7551a441559af6383ccb21f62
FvS Groupmp3 CMS SQL Injection
Posted Sep 29, 2012
Authored by Crim3R

FvS Groupmp3 CMS suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
SHA-256 | cd335c36fbb8a27835621d98fa4021a307685f5f42abf5058722c07616195bb8
Dream Ecommerce SQL Injection
Posted Sep 29, 2012
Authored by Crim3R

Sites by Dream Ecommerce suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
SHA-256 | 52b20400a47b6882b3bbd18d02cb2ef6a2fef8095646abad551e6d4dd308f99b
Foxit Reader 5.4.3.0920 Division By Zero
Posted Sep 29, 2012
Authored by coolkaveh

Foxit Reader version 5.4.3.0920 suffers from a division by zero vulnerability. Proof of concept included.

tags | exploit, proof of concept
systems | linux
SHA-256 | 64c39943ede48fafc7df094b4ba9db97e024699ae4b84cef93954f047664c5fc
MediaRocket Local File Inclusion
Posted Sep 29, 2012
Authored by Net.W0lf, Hack Center Security Team

Sites designed by MediaRocket suffer from a local file inclusion vulnerability. Note that this finding houses site-specific data.

tags | exploit, local, file inclusion
SHA-256 | 943ca34487381fc10f6e4a8403ff1d709fe719c01d7ac90c78d3b4e1ba03e384
Etoro.it Cross Site Scripting
Posted Sep 29, 2012
Authored by tig3rhack

Etoro.it suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ad63034f311cda954d829a7b909bd4cb3f73a3bdc4bf22746d9e89faada4cb0c
Mandriva Linux Security Advisory 2012-155
Posted Sep 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-155 - builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1. The updated packages have been patched to correct this issue.

tags | advisory, remote
systems | linux, mandriva
advisories | CVE-2012-0862
SHA-256 | 863af03c72dbb69168b28f12a6929adb4f37f3a4d72987ae371a07dc35323ba5
Mandriva Linux Security Advisory 2012-154
Posted Sep 28, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-154 - Multiple vulnerabilities has been found and corrected in apache. Insecure handling of LD_LIBRARY_PATH was found that could lead to the current working directory to be searched for DSOs. This could allow a local user to execute code as root if an administrator runs apachectl from an untrusted directory. Possible XSS for sites which use mod_negotiation and allow untrusted uploads to locations which have MultiViews enabled. The updated packages have been upgraded to the latest 2.2.23 version which is not vulnerable to these issues.

tags | advisory, local, root, vulnerability
systems | linux, mandriva
advisories | CVE-2012-0883, CVE-2012-2687
SHA-256 | bfb99130026e154f55b5d6d82315ea76e366608f40dc662375702575689be258
Gentoo Linux Security Advisory 201209-24
Posted Sep 28, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201209-24 - Multiple vulnerabilities have been found in PostgreSQL which may allow a remote attacker to conduct several attacks. Versions less than 9.1.5 are affected.

tags | advisory, remote, vulnerability
systems | linux, gentoo
advisories | CVE-2012-0866, CVE-2012-0867, CVE-2012-0868, CVE-2012-2143, CVE-2012-2655, CVE-2012-3488, CVE-2012-3489
SHA-256 | aadd0a998d1f2db81a1c115cf7617428cb68b328b2051e91f2e2de0940ce8305
Ubuntu Security Notice USN-1551-2
Posted Sep 28, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1551-2 - USN-1551-1 fixed vulnerabilities in Thunderbird. The new package caused a regression in the message editor and certain performance regressions as well. This update fixes the problems.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2012-1976, CVE-2012-3956, CVE-2012-3957, CVE-2012-3958, CVE-2012-3959, CVE-2012-3960, CVE-2012-3961, CVE-2012-3962, CVE-2012-3963, CVE-2012-3964, CVE-2012-1956, CVE-2012-3966, CVE-2012-3970, CVE-2012-3971, CVE-2012-3972, CVE-2012-3975, CVE-2012-3978, CVE-2012-3980
SHA-256 | 1602967884ed018b65f06beb0b383b585f12b939f434d554e8f41f7ebbb61865
Gentoo Linux Security Advisory 201209-23
Posted Sep 28, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201209-23 - Multiple vulnerabilities have been found in GIMP, the worst of which allow execution of arbitrary code or Denial of Service. Versions less than 2.6.12-r2 are affected.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2009-1570, CVE-2009-3909, CVE-2010-4540, CVE-2010-4541, CVE-2010-4542, CVE-2010-4543, CVE-2011-1178, CVE-2011-2896, CVE-2012-2763, CVE-2012-3402
SHA-256 | 926d432f20f636e85ac0519408b8e94f610b43cc70f07d0dd06875097611ddad
Gentoo Linux Security Advisory 201209-22
Posted Sep 28, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201209-22 - A vulnerability in libgssglue may allow a local attacker to gain escalated privileges. Versions less than 0.4 are affected.

tags | advisory, local
systems | linux, gentoo
advisories | CVE-2011-2709
SHA-256 | 0d3d0000d184d912cc4e1048613d398e249e31801e65d26a33f4721fa15ec5fd
Gentoo Linux Security Advisory 201209-21
Posted Sep 28, 2012
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201209-21 - Two directory traversal vulnerabilities have been found in fastjar, allowing remote attackers to create or overwrite arbitrary files. Versions less than 0.98-r1 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2010-0831, CVE-2010-2322
SHA-256 | e022f028e4ef4c5107668a4131cb86d99c9e544d46e31e5cbe4ca059d16246b7
360-FAAR Firewall Analysis Audit And Repair 0.3.1
Posted Sep 28, 2012
Authored by Dan Martin | Site sourceforge.net

360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Changes: This release cleans up the output in the new columns, so that specific VPN policy and object negation usage is easier to see. The VPN rules marked "Any", which are all rules in the rule base not marked with a specific VPN, that pass traffic that can be tunnelled via a route based VPN after dropping out of the policy, are no longer printed. Object's not negated in the policy (marked negation: "no") are also removed from the new columns for clarity. The Cisco ASA/PIX reader has been upgraded so that it prints more user friendly info during the config read ('safe' warnings are now printed as info) and handles rules using protocol groups far better than before. The cisco config reader now also reads negated source and dest services and excludes rules using these from the "rr" mode rulebase builds as well as reading rules with logging and no destination port correctly.
tags | tool, perl
systems | unix
SHA-256 | 73a58198a8995d01eb38a8a4e8e298fc639af8d7e3d23ed6ebffa7cdcd081379
Secunia Security Advisory 50720
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two security issues have been reported in the Organic groups module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
SHA-256 | 12f11cc5ca502afde4ce72af59bb4c30e0c9247caf064d88d6d2200e62bb0c76
Secunia Security Advisory 50775
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Cisco Unified Communications Manager, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | cisco
SHA-256 | f72d920ba0aa2ce12d27d19877fc09ba6878f99e6113240ac363b173e14aa86a
Secunia Security Advisory 50776
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Catalyst 4500E Series Switch, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | fa14e9d026d1aff5f61f9d606eac9c2b3d91f9bb6432415384513be96d4868ff
Secunia Security Advisory 50769
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for transmission. This fixes two vulnerabilities, which can be exploited by malicious people to conduct script insertion attacks.

tags | advisory, vulnerability
systems | linux, ubuntu
SHA-256 | 26d7993f42b6148010a73e358fc6c61d6cc5ab7ab640f0abb2f35e3a6c9af908
Secunia Security Advisory 50777
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Cisco IOS, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
systems | cisco
SHA-256 | 0fe8e6588d12ed5162b32b7a2a4ff911497521c1dd2f23867e07c746553cf07e
Secunia Security Advisory 50801
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for emacs23. This fixes two vulnerabilities, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
systems | linux, ubuntu
SHA-256 | b891f4edbb9fb710c7f3bbcccc54bdbb4ee2ffb8beaa06d9089000c85a88e94d
Secunia Security Advisory 50665
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in OpenStack Keystone, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory, vulnerability
SHA-256 | fba670eabd0bf51c788cd92d51df562939ba035d208fb24219518c94bde4e615
Secunia Security Advisory 50800
Posted Sep 28, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for libxml2. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
SHA-256 | e077f4eda742c6d406ad3331181b55affd42b1fc70279cc5a4f2261f0bf80afd
Page 1 of 35
Back12345Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close