Exploit the possiblities
Showing 101 - 125 of 921 RSS Feed

Files Date: 2006-08-01 to 2006-08-31

PI-2006-001.txt
Posted Aug 28, 2006
Authored by Daniel Tumalad | Site pinoyinfosec.org

PinoyInfosec Advisory - Web500 does not have proper input validation in the fronteditor script which allows an attacker to execute arbitrary SQL commands. This allows an attacker to manipulate data on the CMS by passing specially crafted SQL statements through the Dbcountry variable. Version 2.80 is affected.

tags | advisory, arbitrary
MD5 | 77bcb5e5ff9f30497c2bdb0de283a0e5
Gentoo Linux Security Advisory 200608-24
Posted Aug 28, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200608-24 - AlsaPlayer contains three buffer overflows: in the function that handles the HTTP connections, the GTK interface, and the CDDB querying mechanism. Versions less than or equal to 0.99.76-r3 are affected.

tags | advisory, web, overflow
systems | linux, gentoo
MD5 | 04c76dbf6fe0e9b46fd79ae5a010f0bc
AlstraSoftRFI.txt
Posted Aug 28, 2006
Authored by Night_Warrior

AlstraSoft Video Share Enterprise suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | 795a33e0f784878dd752332827b4acb5
bigace182.txt
Posted Aug 28, 2006
Authored by Vampire | Site hackerz.ir

Bigace version 1.8.2 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | ad01d1a8d15ce11eb5f29be4a19ac405
comcomprofiler.txt
Posted Aug 28, 2006
Authored by Matdhule

The Mambo/Joomla com_comprofiler component versions 1.0 RC2 and below suffer from a remote file inclusion flaw.

tags | exploit, remote, file inclusion
MD5 | de9942327a797f1e8d029735ad24cc4f
ciscoNAC.txt
Posted Aug 28, 2006
Authored by Andreas Gal, Joachim Feise | Site andreasgal.com

The Cisco NAC appliance (formerly Cisco Clean Access) versions 3.6.4.1 and below suffer from an agent installation bypass vulnerability.

tags | advisory, bypass
systems | cisco
MD5 | 8b5a155e79f4f94be717183e6022d671
jetboxCMSinclude.txt
Posted Aug 28, 2006
Authored by D3nGeR

Jetbox CMS suffers from a remote file inclusion flaw in search_function.php.

tags | exploit, remote, php, file inclusion
MD5 | b24ab3ddb0a1435e7a81e3d00e607577
jupiterCMSinclude.txt
Posted Aug 28, 2006
Authored by D3nGeR

Jupiter CMS version 1.1.5 suffers from a remote file inclusion flaw in index.php.

tags | exploit, remote, php, file inclusion
MD5 | 9e99f920d2edec1318face5c24ce84b9
xoopsSQL.txt
Posted Aug 28, 2006
Authored by Omid | Site hackers.ir

Xoops version 2.0.14 suffers from a SQL injection flaw.

tags | advisory, sql injection
MD5 | 63f0b661c10e70db8989d68ac68f5f8e
mambojoomlaSQL.txt
Posted Aug 28, 2006
Authored by Omid | Site hackers.ir

Mambo 4.6 RC2 and Joomla 1.0.10 both suffer from SQL injection flaws.

tags | advisory, sql injection
MD5 | 5cb9da76d33775026da51c47f899db64
Mandriva Linux Security Advisory 2006.152
Posted Aug 28, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-152 - Vulnerabilities in the SCSI, DHCP, and SSCOP dissectors were discovered in versions of wireshark less than 0.99.3, as well as an off-by-one error in the IPsec ESP preference parser if compiled with ESP decryption support.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2006-4330, CVE-2006-4331, CVE-2006-4332, CVE-2006-4333
MD5 | 21bcc2ad588682cf576c61df7a3e012e
cutenews13.txt
Posted Aug 28, 2006
Authored by rUnViRuS | Site worlddefacers.de

Cutenews version 1.3.x suffers from a remote file inclusion flaw.

tags | exploit, remote, file inclusion
MD5 | 33e14177a3de6f7ae211c43ed1cf9cf4
Mandriva Linux Security Advisory 2006.151
Posted Aug 28, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-151 - A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.

tags | advisory, kernel, vulnerability
systems | linux, mandriva
advisories | CVE-2006-1066, CVE-2006-1863, CVE-2006-1864, CVE-2006-2934, CVE-2006-2935, CVE-2006-2936, CVE-2006-3468, CVE-2006-3745
MD5 | cdf73e0096e435078b094a1e440e8601
Mandriva Linux Security Advisory 2006.150
Posted Aug 28, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-150 - A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel.

tags | advisory, kernel, vulnerability
systems | linux, mandriva
advisories | CVE-2006-0554, CVE-2006-0744, CVE-2006-1343, CVE-2006-1857, CVE-2006-1858, CVE-2006-1863, CVE-2006-1864, CVE-2006-2274, CVE-2006-2935, CVE-2006-2936, CVE-2006-3468, CVE-2006-3745
MD5 | ea246ab274c940198e585ce3597c3775
fuji-xerox.txt
Posted Aug 28, 2006
Site itso.iu.edu

Indiana University Security Advisory - The Fuji Xerox Printing Systems print engine suffers from multiple vulnerabilities. An FTP bounce attack is possible when FTP printing is enabled. The embedded HTTP server allows unauthenticated access to system configuration and settings.

tags | advisory, web, vulnerability
advisories | CVE-2006-2112, CVE-2006-2113
MD5 | 2cb98e5ba87c4422a8755026ba9cd46c
yapigXSS.txt
Posted Aug 28, 2006
Authored by Kuon | Site Armorize.com

YaPiG version 0.95b suffers from a cross site scripting flaw in thanks_comment.php.

tags | exploit, php, xss
MD5 | aa05648dd74b46f96b165ebda6334ac0
NSFOCUS-SA2006-08.txt
Posted Aug 28, 2006
Authored by Hu Qianwei | Site nsfocus.com

The NSFocus Security Team has discovered a buffer overflow in Internet Explorer 6.0SP1 which allows for remote code execution via an overly-long URL.

tags | advisory, remote, overflow, code execution
advisories | CVE-2006-3869
MD5 | 940734e3bcea00d99a804120cf1a3161
Mandriva Linux Security Advisory 2006.149
Posted Aug 28, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-149 - MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a table through a previously created MERGE table, even after the user's privileges are revoked for the original table, which might violate intended security policy. MySQL 4.1 before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run on case-sensitive filesystems, allows remote authenticated users to create or access a database when the database name differs only in case from a database for which they have permissions.

tags | advisory, remote, local
systems | linux, mandriva
advisories | CVE-2006-4031, CVE-2006-4226
MD5 | 66ab953c93b3e80e41742c49f9fedb13
EEYE-MS06-042-2.txt
Posted Aug 28, 2006
Authored by Derek Soeder | Site eeye.com

eEye Digital Security has discovered a heap overflow vulnerability in the MS06-042 cumulative Internet Explorer update that would allow an attacker to execute arbitrary code on the system of a victim who attempts to access a malicious URL. Only Windows 2000 and Windows XP SP1 systems running Internet Explorer 6 SP1 with the MS06-042 patch applied are vulnerable.

tags | advisory, overflow, arbitrary
systems | windows, 2k, xp
MD5 | b710d1b8ded5db4cbade77bb1cc43d44
Mandriva Linux Security Advisory 2006.148
Posted Aug 28, 2006
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory MDKSA-2006-148 - An integer overflow flaw was discovered in how xorg-x11/XFree86 handles PCF files. A malicious authorized client could exploit the issue to cause a DoS (crash) or potentially execute arbitrary code with root privileges on the xorg-x11/XFree86 server.

tags | advisory, overflow, arbitrary, root
systems | linux, mandriva
advisories | CVE-2006-3467
MD5 | 6a6215828998d29e13899def7efadbad
Gentoo Linux Security Advisory 200608-23
Posted Aug 28, 2006
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200608-23 - Yan Rong Ge discovered that the peel_netstring() function in cl_netstring.c does not validate the length parameter of user input, which can lead to an out-of-bounds memory access when processing certain Heartbeat messages. Furthermore an unspecified local DoS issue was fixed. Versions less than 2.0.7 are affected.

tags | advisory, local
systems | linux, gentoo
advisories | CVE-2006-3121, CVE-2006-3815
MD5 | f09b81c0273defe3fd1215c44243264a
advisory-052006.128.txt
Posted Aug 28, 2006
Authored by Stefan Esser | Site hardened-php.net

The Zend Platform versions 2.2.1 and below suffer from multiple vulnerabilities.

tags | advisory, vulnerability
MD5 | 6803e08d9732e4738b9206d5be9cbf8a
Debian Linux Security Advisory 1155-1
Posted Aug 28, 2006
Authored by Debian | Site debian.org

Debian Security Advisory 1155-1 - Frank Sheiness discovered that a MIME conversion routine in sendmail, a powerful, efficient, and scalable mail transport agent, could be tricked by a specially crafted mail to perform an endless recursion.

tags | advisory
systems | linux, debian
advisories | CVE-2006-1173
MD5 | 6c196000dd646710160eb41ddd2d2ea7
pslash07.txt
Posted Aug 28, 2006
Authored by XORON

pSlash version 0.7 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, file inclusion
MD5 | f09e1c73bcbce909a46fbddf9e54c6a2
vistabb2x.txt
Posted Aug 28, 2006
Authored by Mustafa Can Bjorn | Site nukedx.com

VistaBB versions 2.x and below suffer from multiple file inclusion vulnerabilities.

tags | exploit, vulnerability, file inclusion
MD5 | 2c6a545128c4c378cf2f3e9557636d5b
Page 5 of 37
Back34567Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    15 Files
  • 15
    Dec 15th
    28 Files
  • 16
    Dec 16th
    3 Files
  • 17
    Dec 17th
    13 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close