Smeego version 1.0 local file inclusion exploit. Written in Python.
1fae885c56c949e133d6410a059153f825e4fff19016c3ef6c38d964599e4e97FicHive version 1.0 remote blind SQL injection exploit.
1aed39560b08f9d3743b84c2ca7d0ad3400e5a7c5d0e020b0618554114b0d3efHow2ASP.net Webboard versions 4.1 and below suffer from a remote SQL injection vulnerability.
85431c6a61b45dfe183a7f8fe49e27479cca88d6d14404e14503572b2c145245Mandriva Linux Security Advisory - Will Drewry of the Google Security Team reported several vulnerabilities in how libvorbis processed audio data. An attacker could create a carefully crafted OGG audio file in such a way that it would cause an application linked to libvorbis to crash or possibly execute arbitrary code when opened.
b2632b2204fce079d6ef4e025581166e3b43e6874925cba60843d3d81c1b7fd8Mandriva Linux Security Advisory - Several vulnerabilities were discovered in rdesktop, a Remote Desktop Protocol client. An integer underflow vulnerability allowed attackers to cause a denial of service (crash) and possibly execute arbitrary code with the privileges of the logged-in user. A buffer overflow vulnerability allowed attackers to execute arbitrary code with the privileges of the logged-in user. An integer signedness vulnerability allowed attackers to execute arbitrary code with the privileges of the logged-in user. In order for these vulnerabilities to be exploited, an attacker must persuade a targeted user to connect to a malicious RDP server.
db35b2491ffc6bcc8072e207eafd14eb6687885e6bd7c7e75eee998a45940f2fTechnical Cyber Security Alert TA08-137A - A vulnerability in the OpenSSL package included with the Debian GNU/Linux operating system and its derivatives may cause weak cryptographic keys to be generated. Any package that uses the affected version of SSL could be vulnerable.
9cb01cb5a94c75104bd23f3309553d75e3d039e62caa2cd5c2bcb330ec6e539bDebian Security Advisory 1576-2 - Matt Zimmerman discovered that entries in ~/.ssh/authorized_keys with options (such as "no-port-forwarding" or forced commands) were ignored by the new ssh-vulnkey tool introduced in openssh 1:4.3p2-9etch1 (see DSA 1576-1). This could cause some compromised keys not to be listed in ssh-vulnkey's output.
9a08d757026ded7307f939be069d89b9021ed7b39ce0e38b14bb5e3807dd48bcttyrpld is a kernel-based TTY shell, screen, and key logger for Linux, FreeBSD/PCBSD, and OpenBSD. It has a real-time log analyzer. It supports any TTY type (vc (console), BSD/Unix98 pty (xterm/SSH), serial, ISDN, USB, etc.).
4b9b90de7c1d69a2f4d96746a4d0f23e149a8885e20aee818a08c0b655f21fe4WR-Meeting version 1.0 suffers from a local file disclosure vulnerability.
00a2a013d572c3d8b2503177cc7e1628cccd2c16b5a820f25fc85428c8e361e9Zomplog versions 3.8.2 and below suffer from a file disclosure vulnerability in force_download.php.
7a7d85f5bcf11c89b225116486c9f7b574ca5eae1ce84905164f20ccd185b9f5Archangel Weblog version 0.90.02 remote SQL injection exploit.
484e07f609fee67f07b5122d7cf6232b3229024fcffd22e7acf39cf6d89ca4c8Zomplog versions 3.8.2 and below arbitrary add administrator exploit that takes advantage of newuser.php.
c6601fc9621b9463f309bc800f3ea1d990f06d77d7e3305cb5f7fdb921cab011StanWeb.CMS remote SQL injection exploit that takes advantage of default.asp.
03e3865b79584f2101617ae3227dd81b75d15db288870e2b617ade30c65db467Debian SSH exploit that uses the OpenSSL predictable PRNG vulnerability. Written in Ruby.
203717acd81fc26f3a8c0466e6998a240b7b607d92250032e9d4b7187ed2b2cbSecunia Security Advisory - Some security issues have been discovered in Blender, which can be exploited by malicious, local users to disclose potentially sensitive information and perform certain actions with escalated privileges.
a0c344cc8a1f6fdf710978ec76e4393b0a907a24a0c8fb747af30a72ab164e7bSecunia Security Advisory - A security issue has been reported in GForge, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
92576df9f42b87c7c6f4ba03e7e23b70d535e93569e24a8b27b1ced4c93aed1dSecunia Security Advisory - Gentoo has issued an update for openoffice and openoffice-bin. This fixes some vulnerabilities, which potentially can be exploited by malicious people to compromise a user's system.
9700ad34e72018784ee418a62904d448bd8ef0ded3c2b03b9e66d1451d3c75efSecunia Security Advisory - cyb3r-1st has reported a vulnerability in Model Search, which can be exploited by malicious people to conduct SQL injection attacks.
ed1367fa0ee2b16502b7fb6e80808377b43680b28687c4997a970862b67992f1Secunia Security Advisory - Some vulnerabilities have been discovered in Kostenloses Linkmanagementscript, which can be exploited by malicious people to conduct SQL injection attacks, disclose sensitive information, and to compromise a vulnerable system.
41d81d677631bd65a9f7cae061e285456304c54816ad8f31a13e88b90c5609c8Secunia Security Advisory - Saime has discovered a vulnerability in the BLOG Engine plugin for e107, which can be exploited by malicious people to conduct SQL injection attacks.
880d4263344556ddc3d530932bb5432af59ff9f1425205a934b3693be8959c29Secunia Security Advisory - t0pP8uZz has reported a vulnerability in AJ Classifieds 2008, which can be exploited by malicious people to conduct SQL injection attacks.
91cc7aed9481b699df92ca74e94d39994bb1ddd745a709672a46d73035596a68Secunia Security Advisory - t0pP8uZz has reported a vulnerability in AJ Article, which can be exploited by malicious people to conduct SQL injection attacks.
d523f3652cf586949fda6987cee36ebe0fdeb52fd31ebbaf9e950229faf1cc99Secunia Security Advisory - Two vulnerabilities have been reported in Cisco Unified Presence, which can be exploited by malicious people to cause a DoS (Denial of Service).
9f4fe3bcc8d3cd3eb5455da72aec270eff1a57f4aa32dfff82aee4d5a2427cdbSecunia Security Advisory - Some vulnerabilities have been reported in the Linux kernel, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to potentially cause a DoS (Denial of Service).
051f691b9fa4ffd2e0a226aa66d9743396d7e9c8e79e0a8d7da2ac20c8f61330Secunia Security Advisory - Fedora has issued an update for rdesktop. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
bccb03d0b97c740a0562c594728abc515600573a8122f65bc386f6efc94477bd
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed