what you don't know can hurt you
Showing 1 - 24 of 24 RSS Feed

Files Date: 2012-10-01

DM FileManager Remote File Inclusion
Posted Oct 1, 2012
Authored by infodox

In certain versions of the DM FileManager Wordpress Plugin, the security_file parameter does not correctly check the source of a file before including it, leading to a remote file inclusion vulnerability that can be leveraged to gain remote code execution.

tags | exploit, remote, code execution, file inclusion
MD5 | 635175952b7a41f683b1369d1bac11c5
Ubuntu Security Notice USN-1588-1
Posted Oct 1, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1588-1 - It was discovered that the apt-add-repository tool incorrectly validated PPA GPG keys when importing from a keyserver. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to install altered package repository GPG keys.

tags | advisory, remote
systems | linux, ubuntu
MD5 | fd21a52c2d25b90746674ab2d542a0ee
A Pentester's Guide To Hacking OData
Posted Oct 1, 2012
Authored by Gursev Kalra | Site mcafee.com

The Open Data Protocol (OData) is an open web based RESTful protocol for querying and updating data. This paper discusses OData penetration testing methodology and techniques.

tags | paper, web, protocol
MD5 | de2b6f30074f337146b28faab1c7043e
Bitdefender USSD Wipe Stopper
Posted Oct 1, 2012
Authored by Bitdefender | Site bitdefender.com

The operating system your smartphone is running may be vulnerable to USSD commands that could wipe your entire phone. Tapping on a link to a cleverly coded web page could order you phone to reset itself to factory settings and disintegrate all your private data with it. Any Android phone running Phone.apk version 4.1 or lower is at risk and that's the broader base of them. Install Bitdefender's USSD Wipe Stopper to protect against such attacks. Now, once you would tap on a exploiting link, Bitdefender will intercept the wipe command and ask you to decide what to do next. You may, if unsure, dismiss the USSD command.

tags | web, telephony
MD5 | 95b7807d9c07312abae6660c31bf1c1f
Switchvox Asterisk 5.1.2 Cross Site Scripting
Posted Oct 1, 2012
Authored by Ibrahim El-Sayed | Site vulnerability-lab.com

Switchvox Asterisk version 5.1.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | b4d9a4407d57a4a38e71df19855097d8
Zabbix 1.6.2 Remote Code Execution
Posted Oct 1, 2012
Authored by infodox

Zabbix version 1.6.2 suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | e052b369036ed35d3fa83d272d9ac496
CPE17 Autorun Killer ASCII Buffer Overflow
Posted Oct 1, 2012
Authored by mr.pr0n

CPE17 Autorun Killer ASCII buffer overflow exploit that affects version 1.8.6 Build 1590.

tags | exploit, overflow
MD5 | 194aca6ba6abd386e91bc3770982a5fb
GTA UTM Firewall GB 6.0.3 Cross Site Scripting
Posted Oct 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

GTA UTM Firewall GB version 6.0.3 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | aa4d634d61c4ce11c59a14af68d002ee
OPlayer 2.0.05 iOS Cross Site Scripting
Posted Oct 1, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

OPlayer version 2.0.05 iOS suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
systems | apple
MD5 | 04e344bd770203813139a8788f88ba85
Xoops 2.3.2 Remote Code Execution
Posted Oct 1, 2012
Authored by infodox

Xoops version 2.3.2 suffers from a remote code execution vulnerability in the mydirname parameter.

tags | exploit, remote, code execution
MD5 | de703bba947e5c2876359b3ce2f85805
Packet Storm New Exploits For September, 2012
Posted Oct 1, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 256 exploits added to Packet Storm in September, 2012.

tags | exploit
systems | linux
MD5 | 079f9e6ff54f8714bc540d6ce2da9e03
Mambo 4.6.4 Remote File Inclusion
Posted Oct 1, 2012
Authored by infodox

Mambo versions 4.6.4 and below suffer from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | a97fdc849b0d80a87ff7ce607454aea2
Digital Whisper Electronic Magazine #36
Posted Oct 1, 2012
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 36. Written in Hebrew.

tags | magazine
MD5 | a30e5df641ce96f3f47674bfb8a2bdca
Secunia Security Advisory 50827
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Avaya has acknowledged some vulnerabilities in Avaya Communication Server 1000, which can be exploited by malicious, local users to bypass certain security restrictions or cause a DoS (Denial of Service).

tags | advisory, denial of service, local, vulnerability
MD5 | 959ead2efbb96093f8d934f9204dcb57
Secunia Security Advisory 50708
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | aix
MD5 | 207bdc28800d535435e8f6816b58969e
Secunia Security Advisory 50824
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Symantec has acknowledged multiple vulnerabilities in Symantec Enterprise Vault, which can be exploited to malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
MD5 | dbe1fb84902366e1c49d0ac9ff028c1d
Secunia Security Advisory 50821
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in WebSphere Commerce, which can be exploited by malicious people to gain knowledge of sensitive information.

tags | advisory
MD5 | 74e6e08be134a3a33f3017880e236396
Secunia Security Advisory 50823
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in DeltaV, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | b445c21a41e89365a89567a66027b1d9
Secunia Security Advisory 50734
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in cgit, which can be exploited by malicious users to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | e3c91cd7f3eb865f9d1fd6d6ab9da4c8
Secunia Security Advisory 50758
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Tivoli Federated Identity Manager, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
MD5 | eb367ee5b1cde0a10e40d7e5ada74534
Secunia Security Advisory 50755
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in Rational Business Developer, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks and gain knowledge of potentially sensitive information.

tags | advisory, spoof, vulnerability, xss
MD5 | 2bf104133e9b1e264e837d9f58af3a02
Secunia Security Advisory 50830
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Oracle has acknowledged a security issue in IMPItool included in Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

tags | advisory, denial of service, local
systems | solaris
MD5 | a7fa23dbeedbc45d4e4db85cc9d30a3a
Secunia Security Advisory 50789
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Rational Team Concert, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
MD5 | 7cf76a1f2760ea579071110df3884d2b
Secunia Security Advisory 50828
Posted Oct 1, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for java-1_6_0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive data and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

tags | advisory, java, denial of service, local, vulnerability
systems | linux, suse
MD5 | badf613b89bfd2cd83144c84669127ab
Page 1 of 1
Back1Next

File Archive:

May 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    16 Files
  • 2
    May 2nd
    8 Files
  • 3
    May 3rd
    8 Files
  • 4
    May 4th
    2 Files
  • 5
    May 5th
    1 Files
  • 6
    May 6th
    15 Files
  • 7
    May 7th
    22 Files
  • 8
    May 8th
    16 Files
  • 9
    May 9th
    17 Files
  • 10
    May 10th
    16 Files
  • 11
    May 11th
    3 Files
  • 12
    May 12th
    4 Files
  • 13
    May 13th
    25 Files
  • 14
    May 14th
    24 Files
  • 15
    May 15th
    78 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    12 Files
  • 18
    May 18th
    2 Files
  • 19
    May 19th
    1 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    16 Files
  • 22
    May 22nd
    13 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close