exploit the possibilities
Showing 26 - 50 of 99 RSS Feed

Files Date: 2007-11-26 to 2007-11-27

dxmsft-overflow.txt
Posted Nov 26, 2007
Authored by Elazar Broad

Multiple stack overflows exist in dxmsft.dll version 6.3.2900.3199 (Image DirectX Transforms). Proof of concept included.

tags | exploit, overflow, proof of concept
MD5 | 5bd751ada3c01c561e54dbe81e6f971f
Gentoo Linux Security Advisory 200711-28
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-28 - Tavis Ormandy and Will Drewry (Google Security Team) discovered a heap-based buffer overflow in the Regular Expression engine (regcomp.c) that occurs when switching from byte to Unicode (UTF-8) characters in a regular expression. Versions less than 5.8.8-r4 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2007-5116
MD5 | c119debc5cff12e519f8b6d94077184f
wordpress-cookie-auth.txt
Posted Nov 26, 2007
Authored by Steven J. Murdoch | Site cl.cam.ac.uk

Wordpress versions 1.5 through 2.3.1 suffer from a cookie authentication vulnerability.

tags | advisory
MD5 | 97bed83893ee1660ad1dc3b73207d5fb
Mandriva Linux Security Advisory 2007.225
Posted Nov 26, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - The SNMP agent in net-snmp 5.4.1 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.

tags | advisory, remote, denial of service
systems | linux, mandriva
advisories | CVE-2007-5846
MD5 | aff94627279169e507cae4278624e45b
citrix-xss.txt
Posted Nov 26, 2007
Authored by nnposter

Citrix NetScaler version 8.0 suffers from a cross site scripting vulnerability in the web management interface.

tags | exploit, web, xss
MD5 | 2f2c386e1c668badc918bae31863ed37
omnipcx-reroute.txt
Posted Nov 26, 2007
Authored by Daniel Stirnimann | Site csnc.ch

The Alcatel OmniPCX Enterprise VoIP system versions 7.1 and below are susceptible to a audio stream reroute vulnerability.

tags | advisory
MD5 | 0f6acf675c5992b90648fd91a41fb30c
joomlajuser-rfi.txt
Posted Nov 26, 2007
Authored by NoGe

The Joomla component JUser version 1.0.14 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 13091709cb5b60627e07d8501ef507aa
clickbanex-sql.txt
Posted Nov 26, 2007
Authored by The-0utl4w | Site aria-security.net

ClickAndBaneX suffers from a SQL injection vulnerability.

tags | exploit, sql injection
MD5 | b3db1dc9a84cdf4cad82f06cb824161d
Gentoo Linux Security Advisory 200711-27
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-27 - Alin Rad Pop from Secunia Research discovered a boundary error in the function separate_sentence() in file tokenize.c when processing an overly long word which might lead to a stack-based buffer overflow. Versions less than 4.2.4-r1 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2007-5395
MD5 | 1eeae44c2f9d21dea0bc4f6fc98c980a
Gentoo Linux Security Advisory 200711-26
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-26 - Joachim Schrod discovered several buffer overflow vulnerabilities and an insecure temporary file creation in the dvilj application that is used by dvips to convert DVI files to printer formats. Bastien Roucaries reported that the dvips application is vulnerable to two stack-based buffer overflows when processing DVI documents with long \href{} URIs. teTeX also includes code from Xpdf that is vulnerable to a memory corruption and two heap-based buffer overflows (GLSA 200711-22); and it contains code from T1Lib that is vulnerable to a buffer overflow when processing an overly long font filename (GLSA 200710-12). Versions less than 3.0_p1-r6 are affected.

tags | advisory, overflow, vulnerability
systems | linux, gentoo
advisories | CVE-2007-5935, CVE-2007-5936, CVE-2007-5937
MD5 | 939fb5b05b883ecc852b7f833900b729
Gentoo Linux Security Advisory 200711-25
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-25 - Joe Gallo and Artem Russakovskii reported an error in the convert_search_mode_to_innobase() function in ha_innodb.cc in the InnoDB engine that is leading to a failed assertion when handling CONTAINS operations. Versions less than 5.0.44-r2 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2007-5925
MD5 | 036505c0ef830c9c876bffba789560eb
Gentoo Linux Security Advisory 200711-24
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-24 - Multiple vulnerabilities have been reported in Mozilla Thunderbird's HTML browser engine and JavaScript engine that can be exploited to cause a memory corruption. Versions less than 2.0.0.9 are affected.

tags | advisory, javascript, vulnerability
systems | linux, gentoo
advisories | CVE-2007-5339, CVE-2007-5340
MD5 | 4a12b5bd1ff975567e015e39baddc728
Gentoo Linux Security Advisory 200711-23
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-23 - Multiple vulnerabilities have been discovered in several VMware products. Neel Mehta and Ryan Smith (IBM ISS X-Force) discovered that the DHCP server contains an integer overflow vulnerability, an integer underflow vulnerability and another error when handling malformed packets, leading to stack-based buffer overflows or stack corruption. Rafal Wojtczvk (McAfee) discovered two unspecified errors that allow authenticated users with administrative or login privileges on a guest operating system to corrupt memory or cause a Denial of Service. Another unspecified vulnerability related to untrusted virtual machine images was discovered. Versions less than 6.0.1.55017 are affected.

tags | advisory, denial of service, overflow, vulnerability
systems | linux, gentoo
advisories | CVE-2004-0813, CVE-2006-3619, CVE-2006-4146, CVE-2006-4600, CVE-2007-0061, CVE-2007-0062, CVE-2007-0063, CVE-2007-1716, CVE-2007-4496, CVE-2007-4497, CVE-2007-5617
MD5 | a15a426e0b804db611464609d58fe90d
Gentoo Linux Security Advisory 200711-22
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-22 - Alin Rad Pop (Secunia Research) discovered several vulnerabilities in the Stream.cc file of Xpdf: An integer overflow in the DCTStream::reset() method and a boundary error in the CCITTFaxStream::lookChar() method, both leading to heap-based buffer overflows. He also discovered a boundary checking error in the DCTStream::readProgressiveDataUnit() method causing memory corruption. Note: Gentoo's version of Xpdf is patched to use the Poppler library, so the update to Poppler will also fix Xpdf. Versions less than 0.6.1-r1 are affected.

tags | advisory, overflow, vulnerability
systems | linux, gentoo
advisories | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393
MD5 | cf524b80ddac93d7e85c3902d5b2422a
certspoof.txt
Posted Nov 26, 2007
Authored by Nils Toedtmann

Mozilla based browsers (Firefox, Netscape, etc), Konqueror and Safari 2 do not bind a user-approved webserver certificate to the originating domain name. This makes the user vulnerable to certificate spoofing by "subjectAltName:dNSName" extensions.

tags | advisory, spoof
MD5 | b875aafb6dd3bf1718f4e57709f83c5e
live555x.zip
Posted Nov 26, 2007
Authored by Luigi Auriemma | Site aluigi.org

Proof of concept exploit that demonstrates a memory accession violation in LIVE555 Media Server versions 2007.11.01 and below.

tags | exploit, proof of concept
MD5 | 263d2256b5a53e304b8cf6ab268fef96
live555x.txt
Posted Nov 26, 2007
Authored by Luigi Auriemma | Site aluigi.org

LIVE555 Media Server versions 2007.11.01 and below suffer from a denial of service vulnerability due to a memory access violation.

tags | advisory, denial of service
MD5 | 3d16fc37149b52055a09781bc02e564a
Debian Linux Security Advisory 1407-1
Posted Nov 26, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1407-1 - Alin Rad Pop discovered that the Common UNIX Printing System is vulnerable to an off-by-one buffer overflow in the code to process IPP packets, which may lead to the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, unix, debian
advisories | CVE-2007-4351
MD5 | b0d8e1d4860d5ee1f39cbf7446d0a39f
adv84-K-159-2007.txt
Posted Nov 26, 2007
Authored by M.Hasran Addahroni | Site advisories.echo.or.id

ProfileCMS versions 1.0 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | eb0095db795629ae1effae4a5290d4a6
sciuris-inject.txt
Posted Nov 26, 2007
Authored by Liz0ziM | Site expw0rm.com

Sciurus Hosting Panel remote code injection exploit.

tags | exploit, remote
MD5 | e451e42019ef88a0c604bb61ffb032a0
icebb-database.txt
Posted Nov 26, 2007
Authored by Gu1ll4um3r0m41n

IceBB versions 1.0-rc6 and below database authentication details exploit.

tags | exploit
MD5 | ad3f1f6c584e38b327147073150c33f6
hotscripts-sql.txt
Posted Nov 26, 2007
Authored by t0pp8uzz, xprog

HotScripts Clone Script suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9516555e9a8a8637314f6910ed21b114
vigilecms-multi.txt
Posted Nov 26, 2007
Authored by DevilAuron | Site devilsnight.altervista.org

VigileCMS version 1.4 suffers from local file inclusion, cross site scripting, and cross site request forgery vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion, csrf
MD5 | 05ff2ea389f5d3dbe3066636be2c2720
phpbbviet-rfi.txt
Posted Nov 26, 2007
Authored by XORON

phpBBViet version 0.22 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | a61ff8c141874c56084412e9c9b62100
Gentoo Linux Security Advisory 200711-21
Posted Nov 26, 2007
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-21 - Tavis Ormandy of the Google Security Team discovered a heap-based overflow vulnerability in the NE2000 driver. He also discovered a divide-by-zero error in the emulated floppy disk controller. Versions less than 2.3 are affected.

tags | advisory, overflow
systems | linux, gentoo
advisories | CVE-2007-2893, CVE-2007-2894
MD5 | 701b06a54668212a4a8bfe55c424261c
Page 2 of 4
Back1234Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    12 Files
  • 4
    Jul 4th
    1 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    25 Files
  • 7
    Jul 7th
    35 Files
  • 8
    Jul 8th
    4 Files
  • 9
    Jul 9th
    9 Files
  • 10
    Jul 10th
    7 Files
  • 11
    Jul 11th
    4 Files
  • 12
    Jul 12th
    4 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close