what you don't know can hurt you
Showing 1 - 15 of 15 RSS Feed

Files Date: 2013-09-12

Mandriva Linux Security Advisory 2013-231
Posted Sep 12, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-231 - Multiple vulnerabilities has been discovered and corrected in openswan. The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the in many distributions and the upstream version, this tool has been disabled. The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted R_U_THERE_ACK Dead Peer Detection IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD. Various other issues have also been addressed.

tags | advisory, remote, denial of service, arbitrary, local, vulnerability
systems | linux, mandriva
advisories | CVE-2008-4190, CVE-2009-0790, CVE-2009-2185, CVE-2011-4073, CVE-2013-2053
MD5 | 0f0c4fba4c575d9921bf3f0995946218
Drupal jQuery Countdown 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Joachim Noreiko | Site drupal.org

Drupal jQuery Countdown third party module version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | b9f5366e7557da7730eaaae90b8cb496
Drupal Click2Sell Suite 6.x XSS / CSRF
Posted Sep 12, 2013
Authored by Greg Knaddison | Site drupal.org

Drupal Click2Sell Suite third party module version 6.x suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf
MD5 | 9680394ee071ae7e087e8001535f6e1a
WikkaWiki 1.3.4 Cross Site Scripting
Posted Sep 12, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5586
MD5 | 6f4faafcb497a64d5fef3ac76b3601e5
Kwok Information Server 2.7.3 / 2.8.4 SQL Injection
Posted Sep 12, 2013
Authored by Yogesh Phadtare

Kwok Information Server versions 2.7.3 and 2.8.4 suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-5028
MD5 | 7fa3ed5c241b3e5c6bf37f382145c9ad
Drupal MediaFront 6.x / 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Justin C. Klein Keane | Site drupal.org

Drupal MediaFront versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 8ca4ccb72775bba67a3d97bf11780204
D-Link DSL-2740B Cross Site Request Forgery
Posted Sep 12, 2013
Authored by Ivano Binetti

D-Link DSL-2740B ADSL routers suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-5730
MD5 | e0c06b763e970acdc2074c9dc6871ae5
Ruby Programming Language 1.7 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Ruby Programming Language version 1.7 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload, ruby
systems | apple, ios
MD5 | 56a97b4d5b088b633aad2c86720b9a70
Vestel TV Denial Of Service
Posted Sep 12, 2013
Authored by HackerSofi

Vestel TV suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 98450d7c94215801e7074781f2e02cf6
Ofilter Player 1.2.0.1 Buffer Overflow
Posted Sep 12, 2013
Authored by gunslinger

Ofilter Player version 1.2.0.1 SEH based buffer overflow exploit.

tags | exploit, overflow
MD5 | f874208bb388eadbb78bfbd0424c5708
Berndes Multimedia iCMS SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Berndes Multimedia iCMS suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
MD5 | 2f6330dbaa1f18ed2b288706110441e9
Perl Programming Language 1.6 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Perl Programming Language version 1.6 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
MD5 | c5c5fe337938c67c54da0e2f5f79dbef
Personal Address Book 2.0 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Personal Address Book version 2.0 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
MD5 | d957e66be95e46ee976074d69828ebc5
Cinfores SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Cinfores suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
MD5 | 413351a8cc7bb100876cb624bdee09f0
Ceder Plus SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Ceder suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
MD5 | f7469d5d1d38934f28f0f3fa6c1cfdc8
Page 1 of 1
Back1Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    1 Files
  • 24
    Jul 24th
    19 Files
  • 25
    Jul 25th
    1 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close