accept no compromises
Showing 1 - 17 of 17 RSS Feed

Files Date: 2013-09-05

Datalogicco CMS SQL Injection
Posted Sep 5, 2013
Authored by Hossein Hezami

Datalogicco CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | bf5591cbc18e51de81ecee3b403f6ea2
Grouplink Everything Helpdesk 10.0.3 XSS / Admin Takeover
Posted Sep 5, 2013
Authored by Johannes Greil, V. Paulikas | Site sec-consult.com

Grouplink Everything HelpDesk versions 10.0.3 and below suffers from cross site scripting and password reset vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | ab61f982fe67dd203c16f9f0795a37f1
Linux/ARM execve("/bin/sh", [], [0 vars]) Shellcode
Posted Sep 5, 2013
Authored by gunslinger

35 bytes small Linux/ARM execve("/bin/sh", [], [0 vars]) shellcode.

tags | shellcode
systems | linux
MD5 | 0b194bcf2ec22dd27837ed30fc8b5c2b
Linux/ARM creat("/root/pwned", 0777) Shellcode
Posted Sep 5, 2013
Authored by gunslinger

39 bytes small Linux/ARM creat("/root/pwned", 0777) shellcode.

tags | root, shellcode
systems | linux
MD5 | b0eff45d59db801810f8ab55af097d55
Linux/ARM chmod("/etc/passwd", 0777) Shellcode
Posted Sep 5, 2013
Authored by gunslinger

39 bytes small Linux/ARM chmod("/etc/passwd", 0777) shellcode.

tags | shellcode
systems | linux
MD5 | 29e60240a86705672967aeb923afe628
Debian Security Advisory 2751-1
Posted Sep 5, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2751-1 - Several vulnerabilities have been discovered in libmodplug, a library for mod music based on ModPlug, that might allow arbitrary code execution when processing specially-crafted ABC files through applications using the library, such as media players.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, debian
advisories | CVE-2013-4233, CVE-2013-4234
MD5 | 3a849025b113018b5cc18fb1f87d959b
Mandriva Linux Security Advisory 2013-226
Posted Sep 5, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-226 - Multiple vulnerabilities has been discovered and corrected in Multiple cross-site scripting vulnerabilities in Roundcube webmail before 0.9.3 allow user-assisted remote attackers to inject arbitrary web script or HTML via the body of a message visited in new or might allow remote authenticated users to inject arbitrary web script or HTML via an HTML signature, related to save_identity.inc. The updated packages have been patched to correct these issues.

tags | advisory, remote, web, arbitrary, vulnerability, xss
systems | linux, mandriva
advisories | CVE-2013-5645
MD5 | fc55d46b3419d595508ed83d5250e947
Nimbostratus d900c27
Posted Sep 5, 2013
Authored by Andres Riancho | Site andresriancho.github.io

Nimbostratus is the first toolset to help you in the process of pivoting in Amazon AWS clouds. it allows you to enumerate permissions to AWS services for current IAM role, clone DB to access information stored in snapshot, inject raw Celery task for pickle attack, and much more.

tags | tool
systems | unix
MD5 | 2565e009d49cc293c2d5e681d326e9b8
KingView 6.53 Active-X File Copy
Posted Sep 5, 2013
Authored by Blake

KingView version 6.53 has an insecure active-x control that allows for arbitrary file copying.

tags | exploit, arbitrary, activex
MD5 | e14559c44d143bb426239e7c6f703b53
Drupal Make Meeting Scheduler 6.x Access Bypass
Posted Sep 5, 2013
Authored by rhatto | Site drupal.org

Drupal Make Meeting Scheduler third party module version 6.x suffers from an access bypass vulnerability due to insufficient checks.

tags | advisory, bypass
MD5 | 63fbf1b6326cf0c438e1b42632e6a079
Drupal Core 6.x / 7.x Information Disclosure
Posted Sep 5, 2013
Authored by Aaron Weiss | Site drupal.org

Drupal core versions 6.x and 7.x suffer from an information disclosure vulnerability.

tags | advisory, info disclosure
MD5 | 4dcc4facf4d2d6909da95bd07b7642f9
KingView 6.53 Active-X File Overwrite / Creation
Posted Sep 5, 2013
Authored by Blake

KingView version 6.53 has an insecure active-x control that allows for arbitrary file creation and overwrite.

tags | exploit, arbitrary, activex
MD5 | d48d388c1554e21d38206d0028d68f1c
Prestige Software CMS Local File Disclosure
Posted Sep 5, 2013
Authored by bie gabby

This is an exploit that leverages a local file disclosure vulnerability in systems running Prestige Software CMS in order to gain database information and credentials.

tags | exploit, local, info disclosure
MD5 | a65627350ffa3a9fb20df0cde552a8e5
Symantec Endpoint Protection 12.1.2015.2015 Uninstall
Posted Sep 5, 2013
Authored by Aaron Lewis

A weakness has been revealed on SEP installation that allows a user to uninstall this product without previous knowledge of the un-installation password. Version 12.1.2015.2015 is affected.

tags | exploit
MD5 | 2ae3da90d64145f45b603fe11b72e2e7
jetAudio 8.0.16.2000 Plus VX Crash Proof Of Concept
Posted Sep 5, 2013
Authored by ariarat

jetAudio version 8.0.16.2000 Plus VX crash proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
MD5 | d214766f0cd0239b9386eb55a4a336de
Cisco Security Advisory 20130904-webex
Posted Sep 5, 2013
Authored by Cisco Systems | Site cisco.com

Cisco Security Advisory - Multiple buffer overflow vulnerabilities exist in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. Exploitation of these vulnerabilities could allow a remote attacker to crash an affected player, and in some cases, could allow a remote attacker to execute arbitrary code on the system of a targeted user. The Cisco WebEx Players are applications that are used to play back WebEx meeting recordings that have been recorded on the computer of an on-line meeting attendee. The players can be automatically installed when the user accesses a recording file that is hosted on a WebEx server. Cisco has updated affected versions of the Cisco WebEx Business Suite meeting sites, Cisco WebEx 11 meeting sites, Cisco WebEx Meetings Server, and Cisco WebEx WRF and ARF Players to address these vulnerabilities. Cisco has released free software updates that address these vulnerabilities.

tags | advisory, remote, overflow, arbitrary, vulnerability
systems | cisco
MD5 | 0681295383c6d772a559380fb3b52625
GOMPlayer 2.2.53.5169 Crash Proof Of Concept
Posted Sep 5, 2013
Authored by ariarat

GOMPlayer version 2.2.53.5169 crash proof of concept denial of service exploit.

tags | exploit, denial of service, proof of concept
MD5 | becf807a15040b42707fef1ddc9c1c08
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    2 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    28 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close