what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 15 of 15 RSS Feed

Files Date: 2013-07-12

HP Security Bulletin HPSBST02890 3
Posted Jul 12, 2013
Authored by HP | Site hp.com

HP Security Bulletin HPSBST02890 3 - A potential security vulnerability has been identified with HP StoreOnce D2D Backup System. The vulnerability could be exploited remotely resulting in unauthorized access, modification, and escalation of privilege. Please note that this issue does not affect HP StoreOnce Backup systems that are running software version 3.0.0 or newer. Devices running software version 3.0.0 or newer do not have a HPSupport user account with a pre-set password configured. Revision 3 of this advisory.

tags | advisory
advisories | CVE-2013-2342
SHA-256 | 422b3375eb717c521ae8728e85ffcb04eb02f34f89ad0731bdbeff7ba22d3908
ZedLog 0.2 Beta 2
Posted Jul 12, 2013
Authored by Zachary Scott | Site github.com

ZedLog is a robust cross-platform input logging tool (or key logger). It is based on a flexible data logging system which makes it easy to get the required data. It captures all keyboard and mouse events, has a full GUI, and supports logging to a file and basic hiding.

Changes: This is an interim release with mainly non-functional updates. It removes the GUI Builder dependency, adds general code cleanup/refactoring, and updates the embedded program documentation.
tags | tool, system logging
systems | unix
SHA-256 | 0de4d2153f3495331a767eb87f5a3d42e7bd5e87d00251f505f42ba34c93e0a0
MediaCoder .M3U Buffer Overflow
Posted Jul 12, 2013
Authored by metacom | Site metasploit.com

This Metasploit module exploits a buffer overflow in MediaCoder 0.8.22. The vulnerability occurs when adding an .m3u, allowing arbitrary code execution under the context of the user. DEP bypass via ROP is supported on Windows 7, since the MediaCoder runs with DEP. This Metasploit module has been tested successfully on MediaCoder 0.8.21.5539 to 0.8.22.5530 over Windows XP SP3 and Windows 7 SP0.

tags | exploit, overflow, arbitrary, code execution
systems | windows
advisories | OSVDB-94522
SHA-256 | 7d841ff629512953fde2ad0b9d42720ffd2fc843859e5ee5bfe58e990084b709
Corel PDF Fusion Stack Buffer Overflow
Posted Jul 12, 2013
Authored by juan vazquez, Kaveh Ghaemmaghami | Site metasploit.com

This Metasploit module exploits a stack-based buffer overflow vulnerability in version 1.11 of Corel PDF Fusion. The vulnerability exists while handling a XPS file with long entry names. In order for the payload to be executed, an attacker must convince the target user to open a specially crafted XPS file with Corel PDF Fusion. By doing so, the attacker can execute arbitrary code as the target user.

tags | exploit, overflow, arbitrary
advisories | CVE-2013-3248, OSVDB-94933
SHA-256 | 916643fb975e5382aef5b8e8b08179bdf4cfd923b7b247577966efc132ea1fa0
BMC Service Desk Express 10.2.1.95 XSS / SQL Injection
Posted Jul 12, 2013
Authored by Nuri Fattah

BMC Service Desk Express (SDE) version 10.2.1.95 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 74e4eb8d243a17c5340d032406938b29866d6db49d3fd71d6544cb957ed04e2e
McAfee ePO 4.6.6 Cross Site Scripting / SQL Injection
Posted Jul 12, 2013
Authored by Nuri Fattah

McAfee ePO version 4.6.6 Build 176 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 5bc2c2825a2b841fc950d28fa7e61d6b5aadf005eca175d8a43288f8aebc17b2
Serendipity 1.6.2 Cross Site Scripting
Posted Jul 12, 2013
Authored by Omar Kurt | Site netsparker.com

Serendipity version 1.6.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 481030d108ff5fb5beee22933c98925f5eef0b088e04471fe3ccaba9809718d3
Gentoo Linux Security Advisory 201307-01
Posted Jul 12, 2013
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201307-1 - Multiple vulnerabilities have been found in HAProxy, allowing attackers to execute arbitrary code or cause Denial of Service. Versions less than 1.4.24 are affected.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2013-1912, CVE-2013-2175
SHA-256 | 6fbe65c7f8c455d91fb9793263cbcd363c732b4b7cf6a52f71982d44d7efc8bb
MiniBB 3.0.0 Cross Site Scripting / SQL Injection
Posted Jul 12, 2013
Authored by Omar Kurt | Site netsparker.com

MiniBB version 3.0.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | 60efdb16bbc0c67a01ff8f726472ed1cccf342759ebc5a483ba9586b56560491
MintBoard 0.3 Cross Site Scripting
Posted Jul 12, 2013
Authored by Canberk BOLAT | Site netsparker.com

MintBoard version 0.3 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 0174d84652ee11ebd0d8df03e6ea9c0f95630c6d3a8b6ca085db8d8d8df10b24
Mediacoder 0.8.23.5530 SEH Buffer Overflow
Posted Jul 12, 2013
Authored by metacom

Mediacoder version 0.8.23.5530 SEH buffer overflow exploit that spawns calc.exe.

tags | exploit, overflow
SHA-256 | f9059da4b8565d2a2be053e35a764c75974e90bcf82f6ad60e76c537d880d579
Linksys WRT110 Command Injection / CSRF
Posted Jul 12, 2013
Authored by Craig Young

Linksys WRT110 suffers from root shell command injection and cross site request forgery vulnerabilities.

tags | advisory, shell, root, vulnerability, csrf
advisories | CVE-2013-3568
SHA-256 | 850308c35db1a6b6413065eb09749bb1a66bb16d4e5f80c535788b446adada12
Ultra Mini HTTPd 1.21 Buffer Overflow
Posted Jul 12, 2013
Authored by superkojiman

Ultra Mini HTTPd version 1.21 suffers from a stack buffer overflow vulnerability. This exploit binds a shell.

tags | exploit, overflow, shell
SHA-256 | b39d7035823d90ebf298af86caffb2621a6df69d4546157dd8458dfb62f0ac9a
Camuflage AES Encryption Shell Script
Posted Jul 12, 2013
Authored by Juan J. Fernandez Lopez

Camuflage is a short shellscript that makes AES encryption/decryption operations with OpenSSL easier.

tags | tool, encryption
SHA-256 | 77a5d5c0b689028319d8a3180931df3bf00aa5038570239dac656b70d7e35de4
DD-WRT 24-sp2 CSRF / Command Injection
Posted Jul 12, 2013
Authored by cyoung

DD-WRT suffers from cross site request forgery and remote command injection vulnerabilities.

tags | exploit, remote, vulnerability, csrf
advisories | CVE-2012-6297
SHA-256 | 71cefeed41482f3cd8e7f0937d18ccfcff76e6e7d15e71a4d8ebe20319e20870
Page 1 of 1
Back1Next

File Archive:

October 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    10 Files
  • 2
    Oct 2nd
    0 Files
  • 3
    Oct 3rd
    12 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close