exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 15 of 15 RSS Feed

Files Date: 2013-09-12

Mandriva Linux Security Advisory 2013-231
Posted Sep 12, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-231 - Multiple vulnerabilities has been discovered and corrected in openswan. The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the in many distributions and the upstream version, this tool has been disabled. The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted R_U_THERE_ACK Dead Peer Detection IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD. Various other issues have also been addressed.

tags | advisory, remote, denial of service, arbitrary, local, vulnerability
systems | linux, mandriva
advisories | CVE-2008-4190, CVE-2009-0790, CVE-2009-2185, CVE-2011-4073, CVE-2013-2053
SHA-256 | fb07f53fcbc6401898ba4775ff34c35ba6bd0724b1aaf7b8955e48769191fdc6
Drupal jQuery Countdown 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Joachim Noreiko | Site drupal.org

Drupal jQuery Countdown third party module version 7.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 2fc35ba2fb64959e39a544747940cccc810ca974f71b0115a443e20607b8c0d8
Drupal Click2Sell Suite 6.x XSS / CSRF
Posted Sep 12, 2013
Authored by Greg Knaddison | Site drupal.org

Drupal Click2Sell Suite third party module version 6.x suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf
SHA-256 | f9128e2fc0e3873d8139356c71a6efa885b9f893852d0ba5c2deec75ec4391ad
WikkaWiki 1.3.4 Cross Site Scripting
Posted Sep 12, 2013
Authored by High-Tech Bridge SA | Site htbridge.com

WikkaWiki version 1.3.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2013-5586
SHA-256 | 50a6264f9e82181f520977a4087cbbcda7d57a7f7edc82ecae17437d9e5bd3bc
Kwok Information Server 2.7.3 / 2.8.4 SQL Injection
Posted Sep 12, 2013
Authored by Yogesh Phadtare

Kwok Information Server versions 2.7.3 and 2.8.4 suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2013-5028
SHA-256 | df6cca0b9519acea28ac99e53fdf6de71e7490667f545e1ed50bc0a20372003c
Drupal MediaFront 6.x / 7.x Cross Site Scripting
Posted Sep 12, 2013
Authored by Justin C. Klein Keane | Site drupal.org

Drupal MediaFront versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
SHA-256 | 716da3a7cbe4af2f6d3e5adb8918f9e32d24859f3f7432b315869489d409c083
D-Link DSL-2740B Cross Site Request Forgery
Posted Sep 12, 2013
Authored by Ivano Binetti

D-Link DSL-2740B ADSL routers suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-5730
SHA-256 | fe2e9431049b9e6dd5b4acacc9d198f7e0af727e257da7fe42e487892de29a16
Ruby Programming Language 1.7 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Ruby Programming Language version 1.7 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload, ruby
systems | apple, ios
SHA-256 | 49117ffa584a6641af0f6e0eb35c19881e9012e3d2ba442f1e392d3e04e9e543
Vestel TV Denial Of Service
Posted Sep 12, 2013
Authored by HackerSofi

Vestel TV suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | ae35749d51f89e40567c1912556107f28523d54ef5071ea3ac61b5ef68542716
Ofilter Player 1.2.0.1 Buffer Overflow
Posted Sep 12, 2013
Authored by gunslinger

Ofilter Player version 1.2.0.1 SEH based buffer overflow exploit.

tags | exploit, overflow
SHA-256 | 065674883829ffa506db5184e414b21c45b8ef30ef86f9e87e8212600f06f337
Berndes Multimedia iCMS SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Berndes Multimedia iCMS suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | 78fa3512dc7a04e99bc4bc3f44b854083212008a8f8eb037c7e97fe946de7325
Perl Programming Language 1.6 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Perl Programming Language version 1.6 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
SHA-256 | 82f45a8cec71c681994d1f7677a3045e65b9ca71c95f7319e7b7dee148d692d5
Personal Address Book 2.0 File Upload
Posted Sep 12, 2013
Authored by Larry W. Cashdollar

Personal Address Book version 2.0 for iOS suffers from an unauthenticated file upload vulnerability.

tags | exploit, file upload
systems | apple, ios
SHA-256 | e7ac6dc4b5192b7ef32a6958064230df219e8fc4a639833ea2487803787e34b6
Cinfores SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Cinfores suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | dc4b51f71e196d3472c6919cff102e29b4eb01658e8791c06d0fd240a47417dc
Ceder Plus SQL Injection
Posted Sep 12, 2013
Authored by Ashiyane Digital Security Team

Sites powered by Ceder suffer from a remote SQL injection vulnerability. Note that this advisory has site-specific information.

tags | exploit, remote, sql injection
SHA-256 | 06b511a60c3a7012b99daab58bc1d44b215dd6a7dc0994bb8e341050d36c0759
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    0 Files
  • 7
    Mar 7th
    0 Files
  • 8
    Mar 8th
    0 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    0 Files
  • 15
    Mar 15th
    0 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close