Multiple vulnerabilities in the LDAP component of CommuniGate Pro Server version 5.0.6 have been uncovered.
c122b73e3f2aa436f247e447fbdaab96d30da06836b9880f9e41cca5aa1015edTHC-Hydra is a high quality parallelized login hacker for Samba, Smbnt, Cisco AAA, FTP, POP3, IMAP, Telnet, HTTP Auth, LDAP, NNTP, MySQL, VNC, ICQ, Socks5, PCNFS, Cisco and more. Includes SSL support, parallel scans, and is part of Nessus.
a3793901ab06ebc896a9cb28db9a4da122515151f2227f4e16921d446a5cffe2VP-ASP Shopping Cart version 5.50 is susceptible to SQL injection attacks.
332f445af6a6c5c47f068cb8d8c03ed007441924b9c1604249e696ad8d996b1fScore is an interactive shellcode that allows a user to work further with an exploited process. Designed for exploitation of Linux systems on x86.
f04cd91c321cff6cb5956c5d32f4877b06ebe3f28072ee5e9bf0708794928df0Debian Security Advisory DSA 958-1 - Several security related problems have been discovered in Drupal. Several cross-site scripting vulnerabilities allow remote attackers to inject arbitrary web script or HTML. When running on PHP5, Drupal does not correctly enforce user privileges, which allows remote attackers to bypass the 'access user profiles' permission. An interpretation conflict allows remote authenticated users to inject arbitrary web script or HTML via HTML in a file with a GIF or JPEG file extension.
6617ce3617d2df0765157c99bbfed6ac6846cdb4e42aa4be13ef98569b0ff189The CA iGateway common component, which is included with several CA products for UNIX/Linux/Windows platforms, contains a buffer overflow vulnerability that can allow arbitrary code to be executed remotely with SYSTEM privileges on Windows, and cause iGateway component failure on UNIX and Linux platforms.
8409e14595803164e947c37dd2dfbb346cd4de292b503ce34d26b1d3bf7dc40dASPThai Forums version 8.0 and below suffer from a SQL injection vulnerability.
93276453d3b2b676be84804ca850ae7bc84529e3932139ea4d06dc2ecdb516daOracle 10g Release 1 exploit for the GENERATESCHEMA buffer overflow with shellcode that creates a file named Unbreakable.txt.
8dcd96b32a3ae1a3fe4c1eab28829ac25e5c1eadd36797cb4a889d49c78de7f6Argeniss Security Advisory - Oracle Database Server provides the DBMS_XMLSCHEMA and DBMS_XMLSCHEMA_INT Packages that include procedures to register and delete XML schemas. These packages contain the public procedures GENERATESCHEMA and GENERATESCHEMAS that are vulnerable to buffer overflow attacks.
367ed9eab6261d53ec2bfcaf1f65901f75fa8a8fa1f0d9139fb4c8389da1b9d7A severe problem with the way browsers translate the soft-hyphen (alt + 0173) character has been brought to light which malicious users could utilise alongside a multitude of injection methods as a way to gain unauthorized access and or to spoof content on websites. Both Microsoft Internet Explorer and Mozilla Firefox are affected.
d09b0df55ff9047753e2601a5303cfff7be219ab1bd6e4197197029d5cb00843Windows DOS emulation allows dumping of the first 1 Mo of RAM with no particular privileges needed. asm code that demonstrates this is included.
aceb62ce144c71dd62228f743981f71247e409a1a283eb1c7c67042ed629b498mIRC /font exploit that spawns a cmd.exe.
6bba1bfaa52ce010f24d124f672f209484623b97f3b5f54de63c58d741cbff1dThe WorldsEnd.NET Free Ping script is susceptible to a restriction bypass condition.
6d29d8f9f8da03aeba6ea1433f4351f9657d1209e01d0797f765715eb7f426b0Pixelpost version 1.4.3 is susceptible to cross site scripting attacks.
7348d6772006dbb9c4e9e232c87483f487fd980dbc8f6b11a8a7ec24c01a19dcAzbb versions 1.1.00 and below suffer from cross site scripting vulnerabilities. NASL plugin to test for this included.
e46562189f15c20dbe453280bb61f21d177294498714aaf8c0eaf491c5f84ecaGenie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Archive password is set to p4ssw0rd. Use at your own risk.
6b2c844a48f914163cc86fe1d678b581e633d8a90a312f77d7d6aba2c01066f8Whitepaper entitled 'Attacking Automatic Wireless Network Selection'.
0fab76effc4d98fe89fa651a422e69e400fe3ac37312fd2e5b3e468409306386
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed