aircrack-ng is a set of tools for auditing wireless networks. It's an enhanced/reborn version of aircrack. It consists of airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), airdecap (decrypts WEP/WPA capture files), and some tools to handle capture files (merge, convert, etc.).
dd76f20083aca758c71ce8b7d9f0a4c0042b9720d508e48339bf0949fad5300cDreamLog version 0.5 suffers from an arbitrary file upload vulnerability in upload.php.
59f5b3042a39dbe1f084314049b2796d10598b7bdc8adeb05628e3abef7e9d9bSiteDepth CMS version 3.44 suffers from a classic local file inclusion vulnerability in ShowImage.php.
e935915db163e0614b51e2261d97467ae97d3dfb9dd295401fec57822ed52acf6ALBlog suffers from a remote SQL injection vulnerability.
2750d55d835b076c3b979b3ec2c742a997dc51c949292c8e0d90e0bd356ab8e4BugMall Shopping Cart version 2.5 suffers from SQL injection and cross site scripting vulnerabilities.
46720fdcc675f6e7a4bc33504ba326fa6c45ade1f50aedacb27ec5225130d046b1gbb version 2.24.0 suffers from a remote file inclusion vulnerability in footer.inc.php.
e2a5e4bddbf4ba8b7fb8fb88a180dd73265cc81a590f679384809d32e04a0f66phpTrafficA versions 1.4.2 and below suffer from a remote SQL injection vulnerability.
2666f54dcc788fc35d7123ef1bca7eeb611ff9987b9a09b4be0a09d8fe8a9eeee107 versions 0.7.8 and below suffer from an arbitrary file upload vulnerability where it lacks validation of a files contents when uploaded, allowing for php code to be uploaded as an image, etc.
aa50d2197930982bc4bc6a785f17fb6c9451ead90d85aa3a6e6c19c2d2944af6Simple Invoices 2007 05 25 remote SQL injection exploit that makes use of index.php.
789cdabb10ed368c6e0c0898ce6c41d7c02e5b41e543d26be07ed34759552d40DAGGER Web Engine versions 23Jan2007 and below suffer from a remote file inclusion vulnerability.
91201b7980a985b3e40666b929305296f37dd0b22c62fb5036860ce9d5caac77Pluxml version 0.3.1 remote code execution exploit.
314a2e05ffd4f6f727a1201243521b1913ade489d0e3a04ab29ba9b2d6be0f20Pharmacy System versions 2 and below suffer from SQL injection vulnerabilities.
3da0c7f24a703b1dd8d929b44cdc2f46e4aa8400891cba6b01bcb105ed4d397fMandriva Linux Security Advisory - A vulnerability in emacs was discovered where it would crash when processing certain types of images.
56ffd3a8cab07cec48cfa5ba3327016834016fdfe902668450969fd28fd8978fiDefense Security Advisory 06.21.07 - Remote exploitation of multiple heap overflow vulnerabilities in Ingres Database Server as distributed with Computer Associates International Inc.'s (CA) products may allow attackers to execute arbitrary code with SYSTEM privileges. iDefense has confirmed the existence of this vulnerability in Ingres Database 3.0.3 as included with CA eTrust Secure Content Manager r8 on Windows. Previous versions may also be affected. In addition, any application that uses the Ingres Database may be vulnerable.
c10bd4cb55b515efc4bd6e42189843ba075f17c16299ac85c8c83f750e412b3bHP Security Bulletin - Various potential security vulnerabilities have been identified in Microsoft software that is running on the Storage Management Appliance (SMA). Some of these vulnerabilities may be pertinent to the SMA, please check the table in the Resolution section of this Security Bulletin.
e5a43e5efcf385223415c39c4906d17907472c19caa56ce18bd8cf25081ce70bNetClassifieds Premium Edition suffers from SQL injection and cross site scripting vulnerabilities.
b43100677b926fd9903b46e2e018b8d07d1e0852e00ca8bd3e5568e825432892Mandriva Linux Security Advisory - The 802.11 network stack in MadWifi prior to 0.9.3.1 would allow remote attackers to cause a denial of service (system hang) via a crafted length field in nested 802.3 Ethernet frames in Fast Frame packets, which results in a NULL pointer dereference. The ath_beacon_config function in MadWifi prior to 0.9.3.1 would allow a remote attacker to cause a denial of service (system crash) via crafted beacon interval information when scanning for access points, which triggered a divide-by-zero error. An array index error in MadWifi prior to 0.9.3.1 would allow a local user to cause a denial of service (system crash) and possibly obtain kerenl memory contents, as well as possibly allowing for the execution of arbitrary code via a large negative array index value.
e3151b1a8b7c3b4faba9dcc5cca7cea93eb4811e33e429f43521e7260dd6f38cVLC 0.8.6.b is vulnerable to a format string attack in the parsing of Vorbis comments in Ogg Vorbis and Ogg Theora files, CDDA data or SAP/SDP service discovery messages. Additionally, there are two errors in the handling of wav files, one a denial of service due to an uninitialized variable, and one integer overflow in sampling frequency calculations.
9d50d0d593eec1f8c572771506616244c776d2031e6bf643f1e971280a0aa262Debian Security Advisory 1316-1 - It has been discovered that emacs, the GNU Emacs editor, will crash when processing certain types of images.
4ad6325e42b3ee76a6ef9587dfc8fd9fd9aac9aceb61f36ca2364f3dea711bf6MyServer version 0.8.9 suffers from a cross site scripting vulnerability in post.mscgi.
6935e24d4052fa148c1f5bc5c2e00468fb5f4b877628d08dd4dd131e4c794c4cMyServer version 0.8.9 suffers from a source code disclosure when a file's extension is capitalized.
208915fd4367e7c32cb5098d03ad184ddf1665f2886fe2d784c705f76d90c4db
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed