exploit the possibilities
Showing 51 - 75 of 99 RSS Feed

Files Date: 2007-11-26 to 2007-11-27

smf-upload.txt
Posted Nov 26, 2007
Authored by mas_bloon

SMF Forum suffers from a remote PHP shell upload vulnerability.

tags | exploit, remote, shell, php, file upload
MD5 | de9795ae118e266d90d4f666a34c8f30
Mandriva Linux Security Advisory 2007.224
Posted Nov 26, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - The samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. If samba is configured as a Primary or Backup Domain Controller, this could be used by a remote attacker to send malicious logon requests and possibly cause a denial of service. As well, Alin Rad Pop of Secunia Research found that nmbd did not properly check the length of netbios packets. If samba is configured as a WINS server, this could be used by a remote attacker able to send multiple crafted requests to nmbd, resulting in the execution of arbitrary code with root privileges.

tags | advisory, remote, denial of service, overflow, arbitrary, root
systems | linux, mandriva
advisories | CVE-2007-5398, CVE-2007-4572
MD5 | c32c1a151a0949b55ac1568072ffec25
Mandriva Linux Security Advisory 2007.223
Posted Nov 26, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in pdftohtml. An attacker could create a malicious PDF file that would cause pdftohtml to crash or potentially execute arbitrary code when opened.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393
MD5 | 3a6082d40c24a99449767333148956af
Mandriva Linux Security Advisory 2007.222
Posted Nov 26, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Alin Rad Pop found several flaws in how PDF files are handled in koffice. An attacker could create a malicious PDF file that would cause koffice to crash or potentially execute arbitrary code when opened.

tags | advisory, arbitrary
systems | linux, mandriva
advisories | CVE-2007-4352, CVE-2007-5392, CVE-2007-5393
MD5 | b1b3fdc38e368c4d50af7677b8475a7f
lizard-rfi.txt
Posted Nov 26, 2007
Authored by fl0 fl0w | Site fl0-fl0w.docspages.com

Lizardware CMS suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 4adfd3b37019e1a5a711f9a0fef5380e
netfinity-sql.txt
Posted Nov 26, 2007
Authored by VerY-SecReT | Site sniper-sa.com

net-finity suffers from a SQL injection vulnerability in links.php.

tags | exploit, php, sql injection
MD5 | 8d106df36c3ed4b42ccf9275e67bebf1
blacklily-rfi.txt
Posted Nov 26, 2007
Authored by VerY-SecReT | Site sniper-sa.com

Black Lily 2007 suffers from a remote SQL injection vulnerability in products.php.

tags | exploit, remote, php, code execution, sql injection, file inclusion
MD5 | f5c2eb3152d2ce867b4693628475d464
mcs-rfi.txt
Posted Nov 26, 2007
Authored by VerY-SecReT | Site sniper-sa.com

MySpace Clone Script suffers from a remote file inclusion vulnerability in index.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | c9610154d92b2e53293abf2eb30ad14d
projectalumni-sqlxss.txt
Posted Nov 26, 2007
Authored by tomplixsee

Project Alumni versions 1.0.9, 1.0.8, and possibly prior releases suffer from cross site scripting and SQL injection vulnerabilities.

tags | exploit, vulnerability, xss, sql injection
MD5 | 4cf7c7514232e5aecf2ea8f832899041
keller-rfi.txt
Posted Nov 26, 2007
Authored by fl0 fl0w | Site fl0-fl0w.docspages.com

Keller Web Admin suffers from a remote file inclusion vulnerability.

tags | exploit, remote, web, code execution, file inclusion
MD5 | 956458858140e5f0c5da3172dee698bb
Ubuntu Security Notice 544-2
Posted Nov 26, 2007
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 544-2 - USN-544-1 fixed two vulnerabilities in Samba. Fixes for CVE-2007-5398 are unchanged, but the upstream changes for CVE-2007-4572 introduced a regression in all releases which caused Linux smbfs mounts to fail. Additionally, Dapper and Edgy included an incomplete patch which caused configurations using NetBIOS to fail. A proper fix for these regressions does not exist at this time, and so the patch addressing CVE-2007-4572 has been removed. This vulnerability is believed to be an unexploitable denial of service, but a future update will address this issue. We apologize for the inconvenience.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2007-5398, CVE-2007-4572
MD5 | 72259e6752df012d7870529f5775034a
jiros-sql.txt
Posted Nov 26, 2007
Authored by The-0utl4w | Site aria-security.net

JiRos Upload Manager suffers from a SQL injection vulnerability.

tags | exploit, sql injection
MD5 | 344c1e27bdcbd968000a51ddf8a6c560
meBiblio-xss.txt
Posted Nov 26, 2007
Authored by ShAy6oOoN

meBiblio version 0.4.5 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 40d8e1f4044e8e5be3c097e6de705f58
meBiblio-rfi.txt
Posted Nov 26, 2007
Authored by ShAy6oOoN

meBiblio version 0.4.5 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 6a42bf4ac0f2adc0d129c414617273c3
phpbms-rfi.txt
Posted Nov 26, 2007
Authored by fl0 fl0w | Site fl0-fl0w.docspages.com

PHPBMS version 0.92 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
MD5 | 0151c9f3079743c15998104da0b3e235
AD20071116.txt
Posted Nov 26, 2007
Authored by Sowhat | Site nevisnetworks.com

AhnLab AntiVirus V3 Internet Security 2008 suffers from a denial of service condition that may lead to arbitrary code execution.

tags | advisory, denial of service, arbitrary, code execution
MD5 | 7725e779e01714f6a14a54ea4885a2f5
msjet-overflow.txt
Posted Nov 26, 2007
Authored by cocoruder | Site ruder.cdut.net

A remote code execute vulnerability exists in Microsoft Jet Engine. A remote attacker who successfully exploit this vulnerability can execute arbitrary code on the affected system.

tags | advisory, remote, overflow, arbitrary
MD5 | 8c40aee731e7e2aff5e039121162cbcf
i386_set_ldt-dos.txt
Posted Nov 26, 2007
Site risesecurity.org

Apple Mac OS X 10.4.x kernel i386_set_ldt() integer overflow proof of concept exploit.

tags | exploit, denial of service, overflow, kernel, proof of concept
systems | apple, osx
MD5 | 34a577aefb5c5cb73fecdb277747bf56
Nmap-Parser-1.12.tar.gz
Posted Nov 26, 2007
Authored by Anthony G Persaud | Site npx.sourceforge.net

Nmap Parser is a Perl module that simplifies the process of developing scripts and collecting information from the XML nmap scan data, which can be obtained by using nmap's -oX switch or from the file handle of a pipe to an nmap process. It uses the XML twig library for parsing, and supports filters.

Changes: Added references to Google Code Project page.
tags | tool, perl, nmap
systems | unix
MD5 | ea2732f02f34dda18a89018c57af040d
Fwknop Port Knocking Utility
Posted Nov 26, 2007
Authored by Michael Rash | Site cipherdyne.org

fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.

Changes: Multiple additions, some updates, and a bug fix.
tags | tool, scanner, vulnerability
systems | unix
MD5 | 9ee3ff46a01911a095f4cec9a3ca2e3b
arpalert-2.0.9.tar.gz
Posted Nov 26, 2007
Authored by Thierry Fournier | Site perso.numericable.fr

arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.

Changes: Some fixes, documentation additions, and API additions.
tags | local
systems | unix
MD5 | ea3fb1831258185ad6b2d0e4f60c052f
Secunia Security Advisory 27690
Posted Nov 26, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in nss-mdns, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | b9004e5234bf348eaabf802ae5811aef
Secunia Security Advisory 27703
Posted Nov 26, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - rPath has issued an update for the kernel. This fixes some vulnerabilities, which can be exploited by malicious, local users and by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local, vulnerability
MD5 | e244030b504b3fcb7143f6d84808b0d6
Secunia Security Advisory 27730
Posted Nov 26, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - M.Hasran Addahroni has reported a vulnerability in ProfileCMS, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | fcdf6e0e2c3298fbe1afc01d889e42be
Secunia Security Advisory 27734
Posted Nov 26, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Lhaplus, which can be exploited by malicious people to compromise a user's system.

tags | advisory
MD5 | 27528b595a92503a26c5d9dc1f447e35
Page 3 of 4
Back1234Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    12 Files
  • 4
    Jul 4th
    1 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    25 Files
  • 7
    Jul 7th
    35 Files
  • 8
    Jul 8th
    4 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close