exploit the possibilities
Showing 1 - 16 of 16 RSS Feed

Files Date: 2013-02-27

Cisco Security Advisory 20130227-hcs
Posted Feb 27, 2013
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. Exploitation of this vulnerability could interrupt the monitoring of voice services. Cisco has released free software updates that address this vulnerability.

tags | advisory, remote, denial of service
systems | cisco
SHA-256 | e8692d8dda3a665c7dd9de2f03a19590613ddcdb2a9380e15c20c121a14f0f14
Cisco Security Advisory 20130227-cups
Posted Feb 27, 2013
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Cisco Unified Presence Server (CUPS) contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Cisco has released free software updates that address this vulnerability. A workaround is available to mitigate this vulnerability.

tags | advisory, remote, denial of service
systems | cisco
SHA-256 | ded8e06b112e526831baf871d743d44d2c103cdf2681b8cd24634286b21672da
Ubuntu Security Notice USN-1753-1
Posted Feb 27, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1753-1 - Sebastian Krahmer and Bastien Nocera discovered that DBus-GLib did not properly validate the message sender when the "NameOwnerChanged" signal was received. A local attacker could possibly use this issue to escalate their privileges.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2013-0292
SHA-256 | 9ce1ac4e5f067377afdafd7442b6e3c1e4f0943a1f5f93e3180598e214b52378
Debian Security Advisory 2633-1
Posted Feb 27, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2633-1 - Helmut Grohne discovered multiple privilege escalation flaws in FusionForge, a web-based project-management and collaboration software. Most of the vulnerabilities are related to the bad handling of privileged operations on user-controlled files or directories.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2013-1423
SHA-256 | 887259b32ee22a9f8e0e8da18d4e9a19414ef7433786583622bc92c771b98ed4
Debian Security Advisory 2634-1
Posted Feb 27, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2634-1 - Several vulnerabilities have been discovered in python-django, a high-level python web development framework.

tags | advisory, web, vulnerability, python
systems | linux, debian
advisories | CVE-2012-4520, CVE-2013-0305, CVE-2013-0306, CVE-2013-1665
SHA-256 | 8377d247b2330890d79f474d182321f1f3ac22f1b48dd7ed09f05e3891683554
Drupal Creative Theme 7.x Cross Site Scripting
Posted Feb 27, 2013
Authored by Greg Knaddison | Site drupal.org

Drupal Creative Theme third party theme version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 7bd2d548ef1246483a1fd41308d4a1e69523c2b176e17fc4f0b8011557748495
Drupal Fresh Theme 7.x Cross Site Scripting
Posted Feb 27, 2013
Authored by Greg Knaddison | Site drupal.org

Drupal Fresh Theme third party theme version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | e3de67fa58d409a4f1ed295ca09c1ef3fd1d3ad772b98508639e2367e7725fef
Joomla! 3.0.2 PHP Object Injection
Posted Feb 27, 2013
Authored by EgiX

Joomla! versions 3.0.2 and below suffer from a PHP object injection vulnerability in highlight.php.

tags | exploit, php
advisories | CVE-2013-1453, OSVDB-89852
SHA-256 | b92a59cc11acf090199faddc39dc367a4ca15c89eb182aeebe087497a2bb2b43
Ubuntu Security Notice USN-1752-1
Posted Feb 27, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1752-1 - Nadhem Alfardan and Kenny Paterson discovered that the TLS protocol as used in GnuTLS was vulnerable to a timing side-channel attack known as the "Lucky Thirteen" issue. A remote attacker could use this issue to perform plaintext-recovery attacks via analysis of timing data.

tags | advisory, remote, protocol
systems | linux, ubuntu
advisories | CVE-2013-1619
SHA-256 | 1cfa24fa1e2257b80843bb7496808728d5ace2f7a980167a435ad01d16cc82ea
Ubuntu Security Notice USN-1751-1
Posted Feb 27, 2013
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1751-1 - Mathias Krause discovered a bounds checking error for netlink messages requesting SOCK_DIAG_BY_FAMILY. An unprivileged local user could exploit this flaw to crash the system or run programs as an administrator.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2013-1763
SHA-256 | be2d43a9f5f1464ceb14a292a1fb9499c7f7c6dd60431ec4fe7bf9ee6b73c602
From Write To Root On AIX
Posted Feb 27, 2013
Authored by Silent Signal | Site silentsignal.hu

This whitepaper is the story of Silent Signal LLC sharing a case study on achieving remote user-level access on an AIX server.

tags | paper, remote
systems | aix
SHA-256 | ef219a1b45e5d89670ecbe8a2b660a4c77111ecc02a5108596fadb9bec7c4141
WordPress Comment Rating 2.9.32 SQL Injection / Bypass
Posted Feb 27, 2013
Authored by ebanyu

WordPress Comment Rating plugin version 2.9.32 suffers from vote limitation bypass and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, bypass
SHA-256 | f3eff5dbde08320f1b9d6c19ee7a8ff2b8c4264d0143262e0b8d26506831ed4e
Story Of A Client-Side Attack
Posted Feb 27, 2013
Authored by Silent Signal | Site silentsignal.hu

This whitepaper is the story of Silent Signal LLC sharing an experience of performing a client-side attack.

tags | paper
SHA-256 | ac604eb1b18ace0ce59f47fbe848d4bb02d97b8fd31bc2e768bd586989f649d1
Red Hat Security Advisory 2013-0570-01
Posted Feb 27, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-0570-01 - Oracle Java SE 6 will no longer receive updates after February 28, 2013. The Oracle Java SE 6 packages on the Red Hat Enterprise Linux 5 and 6 Supplementary media and Red Hat Network channels will continue to be available after February 28, 2013.

tags | advisory, java
systems | linux, redhat
SHA-256 | 4b23dec91c0294f5db6ca888ca2eda4fa491bd1b5db966987a7953f62d50fdba
Red Hat Security Advisory 2013-0569-01
Posted Feb 27, 2013
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2013-0569-01 - JBoss Enterprise SOA Platform is the next-generation ESB and business process automation infrastructure. JBoss Enterprise Portal Platform is the open source implementation of the Java EE suite of services and Portal services running atop JBoss Enterprise Application Platform. An attack technique was found against the W3C XML Encryption Standard when block ciphers were used in cipher-block chaining mode. A remote attacker could use this flaw to conduct chosen-ciphertext attacks, leading to the recovery of the entire plain text of a particular cryptogram by examining the differences between SOAP responses sent from JBoss Web Services.

tags | advisory, java, remote, web
systems | linux, redhat
advisories | CVE-2011-1096
SHA-256 | 2587795973b4187dc98f0e3534f371af6311704b4e1d0fe7f9329c9f572d2026
Gambas /tmp Directory Hijack
Posted Feb 27, 2013
Authored by Larry W. Cashdollar

Gambas creates a directory in /tmp called gambas.UID where UID is the user id of the person running the software. Gambas does not check to see if a malicious user has already created that directory.

tags | exploit
SHA-256 | 265512fa79bfac648de386e18f99ee937d26851f9df7995309f00539ecbf6106
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    19 Files
  • 25
    May 25th
    5 Files
  • 26
    May 26th
    12 Files
  • 27
    May 27th
    12 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close