exploit the possibilities
Showing 1 - 15 of 15 RSS Feed

Files Date: 2013-09-12

Mandriva Linux Security Advisory 2013-231
Posted Sep 12, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-231 - Multiple vulnerabilities has been discovered and corrected in openswan. The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the in many distributions and the upstream version, this tool has been disabled. The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted R_U_THERE_ACK Dead Peer Detection IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD. Various other issues have also been addressed.

tags | advisory, remote, denial of service, arbitrary, local, vulnerability
systems | linux, mandriva
advisories | CVE-2008-4190, CVE-2009-0790, CVE-2009-2185, CVE-2011-4073, CVE-2013-2053
SHA-256 | fb07f53fcbc6401898ba4775ff34c35ba6bd0724b1aaf7b8955e48769191fdc6
Drupal jQuery Countdown 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Joachim Noreiko | Site drupal.org

Drupal jQuery Countdown third party module version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 2fc35ba2fb64959e39a544747940cccc810ca974f71b0115a443e20607b8c0d8
Drupal Click2Sell Suite 6.x XSS / CSRF
Posted Sep 12, 2013
Authored by Greg Knaddison | Site drupal.org

Drupal Click2Sell Suite third party module version 6.x suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf
SHA-256 | f9128e2fc0e3873d8139356c71a6efa885b9f893852d0ba5c2deec75ec4391ad
WikkaWiki 1.3.4 Cross Site Scripting
Posted Sep 12, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5586
SHA-256 | 50a6264f9e82181f520977a4087cbbcda7d57a7f7edc82ecae17437d9e5bd3bc
Kwok Information Server 2.7.3 / 2.8.4 SQL Injection
Posted Sep 12, 2013
Authored by Yogesh Phadtare

Kwok Information Server versions 2.7.3 and 2.8.4 suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-5028
SHA-256 | df6cca0b9519acea28ac99e53fdf6de71e7490667f545e1ed50bc0a20372003c
Drupal MediaFront 6.x / 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Justin C. Klein Keane | Site drupal.org

Drupal MediaFront versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 716da3a7cbe4af2f6d3e5adb8918f9e32d24859f3f7432b315869489d409c083
D-Link DSL-2740B Cross Site Request Forgery
Posted Sep 12, 2013
Authored by Ivano Binetti

D-Link DSL-2740B ADSL routers suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-5730
SHA-256 | fe2e9431049b9e6dd5b4acacc9d198f7e0af727e257da7fe42e487892de29a16
Ruby Programming Language 1.7 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Ruby Programming Language version 1.7 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload, ruby
systems | apple, ios
SHA-256 | 49117ffa584a6641af0f6e0eb35c19881e9012e3d2ba442f1e392d3e04e9e543
Vestel TV Denial Of Service
Posted Sep 12, 2013
Authored by HackerSofi

Vestel TV suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | ae35749d51f89e40567c1912556107f28523d54ef5071ea3ac61b5ef68542716
Ofilter Player 1.2.0.1 Buffer Overflow
Posted Sep 12, 2013
Authored by gunslinger

Ofilter Player version 1.2.0.1 SEH based buffer overflow exploit.

tags | exploit, overflow
SHA-256 | 065674883829ffa506db5184e414b21c45b8ef30ef86f9e87e8212600f06f337
Berndes Multimedia iCMS SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Berndes Multimedia iCMS suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | 78fa3512dc7a04e99bc4bc3f44b854083212008a8f8eb037c7e97fe946de7325
Perl Programming Language 1.6 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Perl Programming Language version 1.6 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
SHA-256 | 82f45a8cec71c681994d1f7677a3045e65b9ca71c95f7319e7b7dee148d692d5
Personal Address Book 2.0 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Personal Address Book version 2.0 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
SHA-256 | e7ac6dc4b5192b7ef32a6958064230df219e8fc4a639833ea2487803787e34b6
Cinfores SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Cinfores suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | dc4b51f71e196d3472c6919cff102e29b4eb01658e8791c06d0fd240a47417dc
Ceder Plus SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Ceder suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | 06b511a60c3a7012b99daab58bc1d44b215dd6a7dc0994bb8e341050d36c0759
Page 1 of 1
Back1Next

File Archive:

May 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    0 Files
  • 2
    May 2nd
    15 Files
  • 3
    May 3rd
    19 Files
  • 4
    May 4th
    24 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    14 Files
  • 7
    May 7th
    0 Files
  • 8
    May 8th
    0 Files
  • 9
    May 9th
    13 Files
  • 10
    May 10th
    7 Files
  • 11
    May 11th
    99 Files
  • 12
    May 12th
    45 Files
  • 13
    May 13th
    7 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    26 Files
  • 18
    May 18th
    4 Files
  • 19
    May 19th
    17 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    6 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close