what you don't know can hurt you
Showing 26 - 50 of 72 RSS Feed

Files Date: 2007-01-24 to 2007-01-25

MOAB-19-01-2007.tgz
Posted Jan 24, 2007
Authored by Kevin Finisterre, LMH | Site projects.info-pull.com

Month of Apple Bugs - Transmit does not allocate enough space when dealing with the string passed on via the ftps:// URL handler, leading to an exploitable heap-based buffer overflow condition. This is the proof of concept exploit.

tags | exploit, overflow, proof of concept
systems | apple
advisories | CVE-2007-0020
MD5 | 7370fba31d7c89633f6e4ad90a5ccc4a
oracle10g-3.txt
Posted Jan 24, 2007
Authored by Joxean Koret

Oracle 10g SYS.DBMS_CDC_IMPDP.BUMP_SEQUENCE PL SQL injection exploit.

tags | exploit, sql injection
MD5 | cdfc10dc1336a499c185b532bc08da26
oracle10g-2.txt
Posted Jan 24, 2007
Authored by Joxean Koret

Oracle 10g SYS.KUPW$WORKER.MAIN PL SQL injection exploit.

tags | exploit, sql injection
MD5 | 2806eef20abda4f9f473aeef06537bf7
oracle10g-1.txt
Posted Jan 24, 2007
Authored by Joxean Koret

Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL SQL injection exploit.

tags | exploit, sql injection
MD5 | e171f4cf083bf77791913273a9874716
votepro40-exec.txt
Posted Jan 24, 2007
Authored by r0ut3r

Vote-Pro version 4.0 remote code execution exploit that makes use of poll_frame.php.

tags | exploit, remote, php, code execution
MD5 | 77fd1fc711a31cbbaf61d993e5dae923
bbclone-rfi.txt
Posted Jan 24, 2007
Authored by Dr Max Virus

BBClone version 0.31 suffers from a remote file inclusion vulnerability in selectlang.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | 31741c2736b05fd8e448bbebe0919141
phpxd03-rfi.txt
Posted Jan 24, 2007
Authored by Dr Max Virus

phpXD versions 0.3 and below remote file inclusion exploit.

tags | exploit, remote, code execution, file inclusion
MD5 | 72fb1eb373124bdab06b785a4cf82561
sami-dos.txt
Posted Jan 24, 2007
Authored by shinnai | Site shinnai.altervista.org

Sami HTTP Server version 2.0.1 remote denial of service exploit.

tags | exploit, remote, web, denial of service
MD5 | 2d6c62525975eb3ba152376a50f73523
JvmGifVulPoc.java.txt
Posted Jan 24, 2007
Authored by luoluo

Sun Microsystems Java GIF file parsing memory corruption vulnerability proof of concept exploit.

tags | exploit, java, proof of concept
MD5 | 412821d74eeff2204657e555982ab394
freeforum090-rfi.txt
Posted Jan 24, 2007
Authored by BorN To K!LL

FreeForum version 0.9.0 suffers from a remote file inclusion vulnerability in index.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | 789b2ca3e8f51c521f3cdd365cb45810
phplinkdirectory_070121.txt
Posted Jan 24, 2007
Authored by Jussi Vuokko, Henri Lindberg | Site smilehouse.com

PHP Link versions 3.0.6 and below are susceptible to a cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 006d8604ff6d2cf09bd2bd09100b06c5
ruby.tgz
Posted Jan 24, 2007
Authored by Eric Hodel

RubyGems is susceptible to exploitation due to a lack of sanity checking on installation paths. Patches included.

tags | advisory
MD5 | 8defcfaa1c6579fd7b9e56be8bbf7dac
rapidkill.txt
Posted Jan 24, 2007
Authored by Red_Dragon | Site onhackerline.ir

RapidKill remote command execution exploit.

tags | exploit, remote
MD5 | f2d5f3eba36f433a29a46dc3e9eb29a9
Gentoo Linux Security Advisory 200701-13
Posted Jan 24, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200701-13 - Neil Hoggarth has discovered that when delivering messages to a message delivery agent by means of the mda option, Fetchmail passes a NULL pointer to the ferror() and fflush() functions when refusing a message. Isaac Wilcox has discovered numerous means of plain-text password disclosure due to errors in secure connection establishment. Versions less than 6.3.6 are affected.

tags | advisory
systems | linux, gentoo
MD5 | bbbbb5a9b5ba6b2d82d6bd8602632926
Debian Linux Security Advisory 1251-1
Posted Jan 24, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1251-1 - It has been discovered that netrik, a text mode WWW browser with vi like keybindings, doesn't properly sanitize temporary filenames when editing textareas which could allow attackers to execute arbitrary commands via shell metacharacters.

tags | advisory, arbitrary, shell
systems | linux, debian
advisories | CVE-2006-6678
MD5 | 0b5fe92a420d657d2f587fec2d66d354
uniqueads-sql.txt
Posted Jan 24, 2007
Authored by Linux_Drox | Site LeZr.com

Unique Ads aka UDS version 1.x suffers from SQL injection flaws.

tags | exploit, sql injection
MD5 | e1f17d1f6a38bfc7bfd649962cae265b
gb400-xss.txt
Posted Jan 24, 2007
Authored by Linux_Drox

Guestbook version 4.00 beta by 212cafe.com is susceptible to cross site scripting attacks.

tags | exploit, xss
MD5 | 10623ba368921a2820400fae5f25cacf
212cafeboard-xss.txt
Posted Jan 24, 2007
Authored by Linux_Drox

212cafeBoard version 0.08 Beta and 6.30 Beta are susceptible to cross site scripting attacks.

tags | exploit, xss
MD5 | d2a92acabec410cacf7c6ee7ec91293b
cmsimple27-rfi.txt
Posted Jan 24, 2007
Authored by Alkomandoz

cmsimple version 2.7 suffers from multiple remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file inclusion
MD5 | 9d71b2a9beaa7c3922282824c1db1410
da-adv-01202007.txt
Posted Jan 24, 2007
Site digitalarmaments.com

Digital Armaments Advisory - A vulnerability exists in expand_stack() of the grsecurity patch. This vulnerability is only locally exploitable. Proof of concept exploitation code included.

tags | exploit, proof of concept
MD5 | cd2196f40f3a5d1d05ba2441bac61e19
paypal-inject.txt
Posted Jan 24, 2007
Authored by DoZ | Site hackerscenter.com

The PayPal Subscription Manager suffers from cross site scripting and SQL injection flaws.

tags | exploit, xss, sql injection
MD5 | 12d26a70beadc998e42fa9b36ecc28db
lmmhi-xss.txt
Posted Jan 24, 2007
Authored by DoZ | Site hackerscenter.com

Login Manager version 3.0 suffers from cross site scripting and SQL injection flaws.

tags | exploit, xss, sql injection
MD5 | 1f64f390ba8100bc42f0664757c05707
Secunia Security Advisory 23768
Posted Jan 24, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Kacper has reported a vulnerability in KGB, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 508f48198f840c0ba2fdf81d10f36e45
Secunia Security Advisory 23793
Posted Jan 24, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - KF has reported a weakness in Apple Mac OS X, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, local
systems | apple, osx
MD5 | b091b8fa4d14509699bb810b5e0abfb5
Secunia Security Advisory 23805
Posted Jan 24, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for squid. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability
systems | linux, suse
MD5 | 828ceebf112c9611dc3f928b60338106
Page 2 of 3
Back123Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    12 Files
  • 4
    Jul 4th
    1 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    25 Files
  • 7
    Jul 7th
    35 Files
  • 8
    Jul 8th
    4 Files
  • 9
    Jul 9th
    9 Files
  • 10
    Jul 10th
    7 Files
  • 11
    Jul 11th
    4 Files
  • 12
    Jul 12th
    4 Files
  • 13
    Jul 13th
    13 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close